$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: v6oJaDvxHaOdOnUjRG8Xng8GrsrN6581uPs+nrkF1mQ= Subject key identifier: 6C:EF:26:03:20:97:FE:3A:88:A7:BD:DC:CE:30:1D:D6:D9:54:DC:54 Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 03BB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 03B7 Signing time: Wed 05 Nov 2025 00:46:06 +0000 Manifest this update: Wed 05 Nov 2025 00:46:06 +0000 Manifest next update: Wed 12 Nov 2025 00:46:06 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: qVb4XHce6zwob9727ujlbjNDGZim+8BsnbrAeOK1DTw=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fCg3LsUh16wFnDfXkxVhThF2ZOUkgckgr+TaTcI9RIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Nov 5 00:46:06 2025 GMT Not After : Nov 12 00:46:06 2025 GMT Subject: CN=690a9e4e-45f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c4:d1:03:57:40:1d:bf:cc:6b:2a:5e:5e:d6: 58:5a:f0:7c:66:67:f7:30:19:93:55:60:51:8e:10: d3:10:fd:af:7f:35:39:f3:17:a5:6f:32:60:2a:8e: ac:4d:cd:0d:6d:05:ec:2f:f2:4c:68:6a:ea:3f:48: a1:6d:44:39:00:01:ae:46:c8:25:09:94:f8:e8:8d: d7:11:bd:03:53:59:68:c2:71:8a:7a:9d:c8:56:d1: 06:97:00:c7:cf:e4:dc:ee:0e:89:0f:44:71:a3:4b: 45:21:e0:43:b5:6f:9d:83:47:0e:5b:7e:26:36:41: 6c:f2:d3:f0:11:59:c1:ae:e7:18:99:cf:cc:7f:3c: 02:c5:b7:d5:82:dc:85:14:75:93:d9:99:2a:ce:0a: 91:0c:6c:4d:c6:40:fb:1c:96:db:a6:9c:a3:3f:1c: c3:fd:a1:76:37:d6:c1:34:e4:cd:5c:30:63:26:d0: 93:55:71:da:5b:a0:dc:5e:96:86:4a:3c:73:c3:f6: a5:35:9a:d2:40:50:f6:e3:4b:61:88:bd:2f:ef:8c: 21:ef:38:d4:ca:a7:d9:1e:14:c6:c5:22:6e:4f:e2: 9b:a2:89:5a:4e:8b:c0:d2:f9:aa:63:d1:06:3b:5b: d2:e5:3e:08:ca:c2:73:33:24:ca:0e:61:1b:98:d3: 16:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:EF:26:03:20:97:FE:3A:88:A7:BD:DC:CE:30:1D:D6:D9:54:DC:54 X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:d8:ff:c0:fc:21:80:66:3a:c6:a7:d4:40:32:a2:73:fa:0b: d2:a1:1f:39:8b:8b:4b:42:6c:94:55:c7:8b:1e:c3:43:78:cb: b9:d5:1d:39:77:8e:ec:12:a7:cc:96:bc:8f:05:6e:65:9b:3e: 37:b4:9c:80:2d:11:d6:a1:1f:2e:04:7e:dc:b4:6d:59:f4:a6: 19:47:4d:f8:02:d1:7a:fe:8b:6e:6b:56:53:15:12:6e:3e:41: 6f:6d:dc:52:a1:26:8f:a2:0c:ef:e6:01:a3:e1:4c:62:10:9d: 3e:59:cc:0f:56:8e:1a:50:34:6b:2b:1d:b2:13:0c:a7:83:04: 61:8c:23:43:6f:63:7a:7b:c4:94:e3:31:03:c3:af:b7:bc:7b: f1:fd:1f:8b:c0:fa:35:9c:81:46:4a:57:64:d2:1f:fe:10:e9: d6:95:60:9a:39:a3:8e:5b:c3:bc:46:34:b3:7f:82:3f:7f:f7: 5d:84:2a:9f:bc:27:12:80:9f:d8:8e:7f:c7:00:68:83:08:01: f0:ee:81:48:0e:f0:fd:b3:d4:00:34:3d:b6:1f:5e:fa:18:88: 8c:ba:57:88:3a:d3:0c:b2:97:f3:9c:27:8c:36:c5:a7:08:eb: 2f:94:54:dc:e6:64:18:19:02:99:6f:ee:7e:5a:69:3c:e2:bb: 4f:4a:36:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjUxMTA1MDA0NjA2WhcNMjUxMTEyMDA0NjA2WjAYMRYwFAYD VQQDEw02OTBhOWU0ZS00NWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8TRA1dAHb/MaypeXtZYWvB8Zmf3MBmTVWBRjhDTEP2vfzU58xelbzJgKo6s Tc0NbQXsL/JMaGrqP0ihbUQ5AAGuRsglCZT46I3XEb0DU1lownGKep3IVtEGlwDH z+Tc7g6JD0Rxo0tFIeBDtW+dg0cOW34mNkFs8tPwEVnBrucYmc/MfzwCxbfVgtyF FHWT2ZkqzgqRDGxNxkD7HJbbppyjPxzD/aF2N9bBNOTNXDBjJtCTVXHaW6DcXpaG Sjxzw/alNZrSQFD240thiL0v74wh7zjUyqfZHhTGxSJuT+KboolaTovA0vmqY9EG O1vS5T4IysJzMyTKDmEbmNMW6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzvJgMg l/46iKe93M4wHdbZVNxUMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd2P/A/CGAZjrGp9RAMqJz+gvSoR85i4tLQmyUVceLHsNDeMu51R05 d47sEqfMlryPBW5lmz43tJyALRHWoR8uBH7ctG1Z9KYZR034AtF6/otua1ZTFRJu PkFvbdxSoSaPogzv5gGj4UxiEJ0+WcwPVo4aUDRrKx2yEwyngwRhjCNDb2N6e8SU 4zEDw6+3vHvx/R+LwPo1nIFGSldk0h/+EOnWlWCaOaOOW8O8RjSzf4I/f/ddhCqf vCcSgJ/Yjn/HAGiDCAHw7oFIDvD9s9QAND22H176GIiMuleIOtMMspfznCeMNsWn COsvlFTc5mQYGQKZb+5+Wmk84rtPSjYw -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:37 2025 by rpki-client