$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: tqIcZY3SAO0w3pKAMuRC7LKYc0f++GbfQsOT5C238fY= Subject key identifier: D2:B9:FB:E3:0E:C2:E5:C8:B5:EA:A6:96:15:CD:E9:53:57:D1:B6:4B Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1E4F Signing time: Tue 04 Nov 2025 16:10:54 +0000 Manifest this update: Tue 04 Nov 2025 16:10:53 +0000 Manifest next update: Tue 11 Nov 2025 16:10:53 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: EavNoiuDgjz61sIVW/BIgoWAlVvJ/6JDhSrF9P+zgiU=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: 1U6J+6Id+mf2w4NcxMra67o7UyeEGu3wuhpl6ihE5eM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7781 (0x1e65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Nov 4 16:10:53 2025 GMT Not After : Nov 11 16:10:53 2025 GMT Subject: CN=690a258e-82f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c1:c8:01:4a:48:6b:ca:6b:3e:4a:82:73:ba: 28:97:c4:61:b3:ee:a7:05:08:c4:aa:19:ae:f9:bc: 45:f3:5c:e0:58:18:aa:05:3a:3a:3a:45:11:3f:af: 04:78:b1:13:9d:52:22:bf:0b:af:42:6a:8a:2a:29: 85:14:b0:5a:5a:81:28:5a:41:07:cf:98:72:5f:a9: 49:a8:2a:26:7e:fc:3c:ce:91:19:8d:32:21:f0:ef: ba:2f:ad:c3:81:c7:48:24:21:8f:8b:37:45:43:1e: 08:83:6e:96:11:40:59:74:ec:33:b7:97:72:b9:0e: e7:96:35:a6:4c:d3:e2:46:24:42:25:e0:80:0f:9f: 05:78:8b:5f:8d:93:cb:e4:67:7e:b4:ff:c3:6e:30: 57:50:1e:58:f7:b0:06:6e:70:78:6a:7e:34:22:0b: 99:4a:47:bd:23:7c:c5:f2:94:f6:1f:0e:63:41:73: bd:7c:05:f8:cf:14:d5:a7:29:65:3c:cc:55:51:bd: f1:32:94:1c:c5:70:4d:0a:da:aa:ee:5a:43:ea:a3: 67:4d:ee:17:93:f3:9b:7f:0d:bc:cd:6c:d8:f4:4e: a4:0e:42:53:4f:cd:54:5f:a2:c3:70:d7:a7:3c:ca: 59:a1:5f:6f:dc:b0:22:41:1e:9d:7f:c7:bc:75:69: 6a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B9:FB:E3:0E:C2:E5:C8:B5:EA:A6:96:15:CD:E9:53:57:D1:B6:4B X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:d5:4b:b2:ef:83:36:61:8b:cb:cd:c5:9e:dc:b4:57:8d:42: d3:7c:23:97:cd:ab:fa:6f:91:52:68:dd:94:3d:59:2a:aa:6b: dd:b1:f7:df:27:29:c9:a7:5d:5e:8d:70:a9:2c:48:25:d2:95: ed:d4:ea:ce:c5:bd:dc:0d:a6:23:b7:dc:e4:21:6d:0e:a9:bb: 04:c2:e6:b6:13:76:46:34:e9:83:b6:fb:99:bb:65:48:32:df: 75:69:93:14:a4:19:b1:9d:dd:e2:51:6c:47:af:3d:be:a2:11: e9:bd:c6:b6:1c:cb:10:78:15:24:62:11:99:b1:3c:9c:03:e3: fd:8e:84:1c:9e:0a:bd:c1:6a:9b:9a:d4:7e:af:65:71:8c:8a: 86:8c:61:3c:ce:ee:f0:64:5c:d3:79:2c:15:8a:78:a5:56:c0: e0:db:be:76:bf:f4:f2:4d:99:51:7f:7e:b0:51:67:7a:29:8e: 74:cc:01:6a:a5:bb:3a:a2:45:d2:51:c2:90:b1:70:5b:0b:df: e9:41:07:13:ce:c0:e7:a9:e0:0e:1e:8b:5d:11:a8:08:b0:85: f4:62:c2:ee:e9:16:45:2b:75:d0:21:26:ef:2c:85:97:be:a7: 44:f1:f7:80:33:f2:c4:31:d3:db:cf:67:81:7c:c7:27:23:a8: b6:6b:d3:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHmUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUxMTA0MTYxMDUzWhcNMjUxMTExMTYxMDUzWjAYMRYwFAYD VQQDEw02OTBhMjU4ZS04MmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8HIAUpIa8prPkqCc7ool8Rhs+6nBQjEqhmu+bxF81zgWBiqBTo6OkURP68E eLETnVIivwuvQmqKKimFFLBaWoEoWkEHz5hyX6lJqComfvw8zpEZjTIh8O+6L63D gcdIJCGPizdFQx4Ig26WEUBZdOwzt5dyuQ7nljWmTNPiRiRCJeCAD58FeItfjZPL 5Gd+tP/DbjBXUB5Y97AGbnB4an40IguZSke9I3zF8pT2Hw5jQXO9fAX4zxTVpyll PMxVUb3xMpQcxXBNCtqq7lpD6qNnTe4Xk/Obfw28zWzY9E6kDkJTT81UX6LDcNen PMpZoV9v3LAiQR6df8e8dWlqRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNK5++MO wuXIteqmlhXN6VNX0bZLMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj1Uuy74M2YYvLzcWe3LRXjULTfCOXzav6b5FSaN2UPVkqqmvdsfff JynJp11ejXCpLEgl0pXt1OrOxb3cDaYjt9zkIW0OqbsEwua2E3ZGNOmDtvuZu2VI Mt91aZMUpBmxnd3iUWxHrz2+ohHpvca2HMsQeBUkYhGZsTycA+P9joQcngq9wWqb mtR+r2VxjIqGjGE8zu7wZFzTeSwVinilVsDg2752v/TyTZlRf36wUWd6KY50zAFq pbs6okXSUcKQsXBbC9/pQQcTzsDnqeAOHotdEagIsIX0YsLu6RZFK3XQISbvLIWX vqdE8feAM/LEMdPbz2eBfMcnI6i2a9NH -----END CERTIFICATE-----Generated at Wed Nov 5 20:01:42 2025 by rpki-client