$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft File: UCfzGS691UlQo5w9EwlKcfHTMmY.mft (raw, json) Hash identifier: jzWTrd6C3jI2RZiaPwOW55HtPL/S1UcTMCGFEybOX8I= Subject key identifier: 00:0F:6B:62:4C:B9:9C:58:00:98:77:F4:33:90:9B:69:EF:EE:3C:69 Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0B58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft Manifest number: 0B39 Signing time: Tue 04 Nov 2025 19:22:52 +0000 Manifest this update: Tue 04 Nov 2025 19:22:51 +0000 Manifest next update: Tue 11 Nov 2025 19:22:51 +0000 Files and hashes: 1: UCfzGS691UlQo5w9EwlKcfHTMmY.crl (hash: PY2XVVlb+tnjSH/7PdeXPMLWPZHgriPsdWl/KY+SllM=) 2: F3F7D2B0CE9711ECA2477C19C4F9AE02.roa (hash: YSanlXPMFGlUc59onSU43QiRooXV0uHeNRhQl6sQvzs=) 3: CDD62642854E11EBA2CFDC87C4F9AE02.roa (hash: EMIkCzah8q7OcQkgGcb8CJSovHyJ1MV1+D6g6V84DdU=) 4: CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa (hash: neskcJ2ryIraX5yGhHnDKoHimVr5nfZfeUgF/8p7xpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2904 (0xb58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078, serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Validity Not Before: Nov 4 19:22:51 2025 GMT Not After : Nov 11 19:22:51 2025 GMT Subject: CN=690a528b-d9cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e1:73:c3:b4:20:1f:51:38:95:6f:a9:99:40: 2e:3b:d0:d2:de:a7:bb:23:2f:d2:ae:77:0b:af:32: 0e:22:10:57:a1:3f:03:21:eb:10:19:6a:53:13:7b: cb:30:87:31:ff:1b:ba:82:7c:81:d1:08:82:b6:dc: 73:4f:11:86:2c:9f:bb:15:3e:90:ac:66:1b:10:c9: a4:aa:dd:73:9f:73:51:44:56:9b:62:db:f8:b4:7e: 1f:3d:c2:6e:56:99:13:e4:73:89:be:7e:80:04:a0: 97:2a:76:5f:c0:ca:4d:40:de:b4:94:de:59:4d:2b: 5a:37:16:db:bd:1a:ab:31:9c:31:a9:81:64:7d:ab: 81:e5:bf:dc:6c:c9:58:2f:27:c4:de:79:e0:e9:df: d8:5a:ce:2c:54:0a:33:10:b0:30:28:10:92:af:da: e1:bf:e0:ca:cd:29:18:25:e2:eb:61:a5:88:f9:72: 02:bb:b0:1f:6c:6a:be:1c:cc:a7:e5:b9:b1:33:0d: 62:b2:a9:cb:a2:c1:eb:0c:c0:ad:13:f3:bc:11:c4: 09:e0:ef:7d:dc:13:bc:08:09:26:08:31:0b:04:c4: c1:3b:b7:44:33:fc:1c:46:2e:fb:34:6f:46:40:8e: 02:4d:b5:5c:8a:49:90:e9:49:72:1a:16:52:a4:e4: e1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0F:6B:62:4C:B9:9C:58:00:98:77:F4:33:90:9B:69:EF:EE:3C:69 X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:70:e7:27:1c:1d:4f:23:83:b3:f0:de:e8:01:1c:f8:9c:ae: 70:17:0b:5e:03:a9:63:e2:50:85:08:0a:03:4c:06:fd:17:21: 40:9c:39:f6:02:86:29:16:4a:60:ac:5e:73:9e:42:d8:c9:62: c5:2f:59:c3:ed:89:d5:f2:54:8f:78:ff:3a:4b:66:d1:cb:81: b1:dd:43:c5:48:e7:a4:84:5c:e1:b7:43:5e:b8:71:c5:65:b0: 5b:e6:00:eb:23:bb:0b:90:49:9f:c4:96:33:3a:4c:71:f1:51: fa:1a:77:c7:1f:80:e1:47:25:1a:5e:81:d5:b7:e3:5f:44:6f: b2:5f:9d:ac:fc:ca:3b:68:e9:71:6b:0e:3e:bb:b8:43:d4:e0: 33:05:f8:f1:f2:12:96:46:ea:0a:cb:75:96:b1:f1:4e:76:2c: 0a:59:f4:ac:ae:fc:02:48:80:08:fb:f8:56:27:db:70:05:36: 91:f9:17:f4:44:71:17:fd:8d:5e:50:8a:d2:a6:ae:10:83:41: c7:77:bd:14:ca:2a:7f:7e:1b:fe:e6:59:61:9e:2d:95:10:61: 34:8a:ae:c5:8f:67:a9:b3:d1:72:74:54:78:58:5a:3a:7a:d0: 90:69:fc:32:59:e3:5f:89:c0:9d:82:75:c3:e8:fc:fd:78:4c: 41:e7:fb:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjUxMTA0MTkyMjUxWhcNMjUxMTExMTkyMjUxWjAYMRYwFAYD VQQDEw02OTBhNTI4Yi1kOWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl+Fzw7QgH1E4lW+pmUAuO9DS3qe7Iy/SrncLrzIOIhBXoT8DIesQGWpTE3vL MIcx/xu6gnyB0QiCttxzTxGGLJ+7FT6QrGYbEMmkqt1zn3NRRFabYtv4tH4fPcJu VpkT5HOJvn6ABKCXKnZfwMpNQN60lN5ZTStaNxbbvRqrMZwxqYFkfauB5b/cbMlY LyfE3nng6d/YWs4sVAozELAwKBCSr9rhv+DKzSkYJeLrYaWI+XICu7AfbGq+HMyn 5bmxMw1isqnLosHrDMCtE/O8EcQJ4O993BO8CAkmCDELBMTBO7dEM/wcRi77NG9G QI4CTbVcikmQ6UlyGhZSpOThAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAPa2JM uZxYAJh39DOQm2nv7jxpMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA3OC84NjMwQjFDODRDOEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFV bFFvNXc5RXdsS2NmSFRNbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXcOcnHB1PI4Oz8N7oARz4nK5wFwteA6lj4lCFCAoDTAb9FyFAnDn2 AoYpFkpgrF5znkLYyWLFL1nD7YnV8lSPeP86S2bRy4Gx3UPFSOekhFzht0NeuHHF ZbBb5gDrI7sLkEmfxJYzOkxx8VH6GnfHH4DhRyUaXoHVt+NfRG+yX52s/Mo7aOlx aw4+u7hD1OAzBfjx8hKWRuoKy3WWsfFOdiwKWfSsrvwCSIAI+/hWJ9twBTaR+Rf0 RHEX/Y1eUIrSpq4Qg0HHd70Uyip/fhv+5llhni2VEGE0iq7Fj2eps9FydFR4WFo6 etCQafwyWeNficCdgnXD6Pz9eExB5/uE -----END CERTIFICATE-----Generated at Wed Nov 5 02:17:53 2025 by rpki-client