$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: OKcPDNxfJsWowsHcQ8nK0Hirj2JM2b7jNwkNLlj4Ysk= Subject key identifier: 20:BB:4B:C4:BF:C9:25:C7:96:42:AB:3E:B0:83:B7:CA:48:C7:3A:34 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0461 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 045C Signing time: Mon 03 Nov 2025 00:08:59 +0000 Manifest this update: Mon 03 Nov 2025 00:08:59 +0000 Manifest next update: Mon 10 Nov 2025 00:08:59 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: eXXfQswbXeMMjPRWmoorCASvvHm6IkuNwBiYPZXQ1sE=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: Tec1GQXrCvVOwblaXBeRPQBIHEsrifUiDT/fZJx0nLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1121 (0x461) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Nov 3 00:08:59 2025 GMT Not After : Nov 10 00:08:59 2025 GMT Subject: CN=6907f29b-d34e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:05:ef:92:c0:e3:fa:6e:56:8a:20:d9:fc:f6: fb:dc:df:a8:a7:41:f6:9e:12:a5:e4:81:40:17:9a: fb:a8:b6:9d:98:69:0a:ab:b8:02:88:99:67:15:c9: 45:57:24:ff:8a:d2:79:59:ff:70:82:82:a9:69:6e: 36:90:6e:b6:8a:5e:3a:b8:d7:78:48:4e:b7:c8:9a: 82:3f:9b:b5:c5:72:c0:92:e4:bd:c9:30:b8:8c:be: 6f:ae:b9:91:65:14:65:46:35:e7:35:2d:dd:ad:59: 2d:df:3a:f2:7f:5f:8c:a8:39:e6:15:2a:27:f9:01: b1:18:c4:af:80:a1:83:f4:da:bd:ee:b0:84:b1:22: 18:ee:39:74:58:d9:fe:fa:9e:df:2d:1b:9b:09:82: e8:a9:49:08:98:99:e8:b9:1e:47:38:df:5b:6b:39: 3f:ad:b0:a3:67:2d:ba:a4:3e:10:b3:cd:31:97:0e: e7:c6:32:53:b7:e2:6f:58:7d:4d:e7:02:9c:66:e0: 21:42:84:7c:da:22:04:a7:6b:4c:77:f0:44:1e:89: 81:de:5a:71:19:03:1a:96:f6:7a:08:b7:c6:cb:99: 64:ef:9a:4c:66:5d:c6:3d:be:3e:6e:9f:f9:5e:c6: 0f:c6:55:f6:6f:62:31:ca:ec:6c:e0:6c:06:5b:4f: d0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:BB:4B:C4:BF:C9:25:C7:96:42:AB:3E:B0:83:B7:CA:48:C7:3A:34 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:f4:26:f8:23:c1:40:da:5a:fc:e8:64:16:0c:2c:dc:ae:c3: b1:53:e1:85:74:8c:ba:ba:5e:c8:bc:bb:8e:1c:24:a7:1f:9f: 9d:0c:9e:5d:b1:66:ce:dc:4f:b3:03:31:aa:84:3b:63:f2:be: de:c8:b8:73:dc:22:08:3a:bc:aa:52:fa:98:a8:ad:21:9b:f3: f7:14:a3:5d:33:38:d1:a6:82:d6:cf:0b:c2:2e:a1:7e:84:60: 2b:e3:18:4d:ad:fd:d7:57:93:a7:b7:61:75:3b:07:bf:e8:88: 81:9d:d0:39:34:f4:1a:1e:45:53:c1:da:32:07:47:f8:60:c4: 4c:5e:4a:e4:7e:24:fc:0f:18:bc:5e:ea:9f:7d:33:7e:b6:11: 56:fd:9e:a5:a9:79:82:c5:56:b6:77:1a:5b:bd:a8:76:ab:b8: d4:0d:51:18:c2:c7:ad:12:eb:f6:f8:7b:44:f2:e3:98:ac:ae: 26:35:21:57:f6:63:d2:e7:b7:9e:dd:92:e1:da:a9:b4:43:ab: 2f:14:af:98:e7:4f:7a:ef:03:ad:b5:de:d3:43:2e:f9:26:73: 7e:81:52:e0:f2:9d:c2:cd:f0:1d:80:b0:3e:cb:18:62:04:c3: 63:44:99:ef:59:56:82:61:94:90:73:6b:33:55:d3:ef:bc:33: e9:1f:4e:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUxMTAzMDAwODU5WhcNMjUxMTEwMDAwODU5WjAYMRYwFAYD VQQDEw02OTA3ZjI5Yi1kMzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngXvksDj+m5WiiDZ/Pb73N+op0H2nhKl5IFAF5r7qLadmGkKq7gCiJlnFclF VyT/itJ5Wf9wgoKpaW42kG62il46uNd4SE63yJqCP5u1xXLAkuS9yTC4jL5vrrmR ZRRlRjXnNS3drVkt3zryf1+MqDnmFSon+QGxGMSvgKGD9Nq97rCEsSIY7jl0WNn+ +p7fLRubCYLoqUkImJnouR5HON9bazk/rbCjZy26pD4Qs80xlw7nxjJTt+JvWH1N 5wKcZuAhQoR82iIEp2tMd/BEHomB3lpxGQMalvZ6CLfGy5lk75pMZl3GPb4+bp/5 XsYPxlX2b2Ixyuxs4GwGW0/QxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCC7S8S/ ySXHlkKrPrCDt8pIxzo0MB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDA9Cb4I8FA2lr86GQWDCzcrsOxU+GFdIy6ul7IvLuOHCSnH5+dDJ5d sWbO3E+zAzGqhDtj8r7eyLhz3CIIOryqUvqYqK0hm/P3FKNdMzjRpoLWzwvCLqF+ hGAr4xhNrf3XV5Ont2F1Owe/6IiBndA5NPQaHkVTwdoyB0f4YMRMXkrkfiT8Dxi8 XuqffTN+thFW/Z6lqXmCxVa2dxpbvah2q7jUDVEYwsetEuv2+HtE8uOYrK4mNSFX 9mPS57ee3ZLh2qm0Q6svFK+Y50967wOttd7TQy75JnN+gVLg8p3CzfAdgLA+yxhi BMNjRJnvWVaCYZSQc2szVdPvvDPpH04F -----END CERTIFICATE-----Generated at Tue Nov 4 08:08:08 2025 by rpki-client