$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft File: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft (raw, json) Hash identifier: D1jrNm67Mnf77EBsAJT2HhVqr3hc22wfDvxi6yUQLZY= Subject key identifier: C2:A1:43:B4:BC:D5:84:29:E4:F8:0D:B6:35:55:54:92:D5:CE:0B:11 Authority key identifier: 50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C Certificate issuer: /CN=A91A3D65/serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Certificate serial: 0224 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft Manifest number: 0220 Signing time: Wed 05 Nov 2025 02:15:28 +0000 Manifest this update: Wed 05 Nov 2025 02:15:28 +0000 Manifest next update: Wed 12 Nov 2025 02:15:28 +0000 Files and hashes: 1: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl (hash: mqhdUL9WHtEyo68UCty7W7qKOPHqmXTUk3l4Pqc8eO4=) 2: 57DD65D0D1FB11EDA0A31C2FC4F9AE02.roa (hash: FNFbf5sb9V0I6f51NgIRl7bd8+WZE2kCB/02TRMhw6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 548 (0x224) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3D65, serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Validity Not Before: Nov 5 02:15:28 2025 GMT Not After : Nov 12 02:15:28 2025 GMT Subject: CN=690ab340-26e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e8:63:1a:0f:a0:d0:b6:5b:03:77:95:99:26: e0:22:cc:7b:32:0f:22:39:83:33:e5:f8:59:a0:b9: 8e:15:02:9b:5b:a6:fd:23:78:cd:9c:bc:1f:ce:50: c0:97:fc:16:49:f8:8d:e9:b0:b0:8b:b0:14:c1:09: 82:cd:bc:68:a0:e7:63:a1:87:21:09:fa:f8:36:7a: d5:97:92:d7:e0:57:ff:b4:7b:3e:e4:60:1a:45:11: 02:b6:ec:50:33:9b:7d:6c:5b:fd:3d:e1:be:ea:1a: 75:df:50:20:a3:d0:27:39:5c:45:0e:72:f4:cf:4d: 51:c0:d9:1a:df:e7:3f:e2:96:cf:03:35:fd:b6:e4: b7:0f:99:69:bd:49:ae:30:15:0f:ce:fd:a2:16:c1: d3:26:d0:58:e1:5e:56:38:0c:a1:7a:a5:e7:e7:6e: 74:b4:2d:fa:67:af:cd:71:94:51:67:54:ba:8a:2a: 7c:d3:ea:95:d6:e7:72:97:fd:23:35:f4:e7:be:f8: 47:3a:be:d1:47:7a:5f:fc:cf:58:04:e1:db:fe:ed: 33:c5:50:97:54:97:1b:12:77:09:2f:0e:c7:8a:93: a4:86:49:70:13:5e:6b:db:90:4b:a3:5f:66:8c:67: 20:ad:30:d5:99:b1:cb:96:67:f7:ab:f8:d1:c5:52: 04:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A1:43:B4:BC:D5:84:29:E4:F8:0D:B6:35:55:54:92:D5:CE:0B:11 X509v3 Authority Key Identifier: keyid:50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:09:ee:14:d6:1f:f3:92:7e:1b:f7:e3:84:48:6f:70:16:f3: 85:86:67:80:20:86:4a:73:5e:8c:0c:d3:b2:5d:9a:28:b6:ac: 5f:3e:f2:83:b2:30:a3:51:e5:f8:f9:04:4b:51:34:ee:59:67: 27:0d:62:08:85:28:53:5a:d2:9f:7f:53:01:d6:80:13:73:c8: 00:88:92:ca:87:e1:9b:de:3b:c0:b0:b0:e6:a4:8d:1f:24:8f: 92:0b:a9:f8:63:85:38:89:f7:5c:3c:64:0c:df:65:8e:f1:da: 4f:72:12:f6:ea:11:9a:f3:dd:65:e9:3f:b8:bc:17:dc:be:52: a8:dc:0c:0a:44:18:0f:1f:35:c6:70:44:94:7b:6e:16:8b:ba: 74:5a:a4:8d:d3:b4:e2:56:61:5a:f2:db:89:f4:c3:4e:6d:15: 65:7b:fa:8d:30:1a:48:f3:5e:04:1d:84:9b:dd:09:ce:fa:6f: 30:8a:4c:ee:03:3b:91:be:eb:3a:0b:ce:b7:b8:68:e1:98:a5: 5e:cb:11:b1:fc:ce:e8:ab:de:83:d2:0e:5b:c7:77:61:17:0c: dc:f2:6b:9b:00:7a:f1:38:83:29:f5:04:c3:ca:73:17:f9:3b: 72:7b:bf:c8:64:ac:25:b2:8a:03:6e:41:48:91:64:2e:9b:e2: ff:b1:ea:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNENjUxMTAvBgNVBAUTKDUwMDhCRTA0MUY5OTk3QjI1OUQyNTg0NDgzQTUzQTBE RkYwQjE3OEMwHhcNMjUxMTA1MDIxNTI4WhcNMjUxMTEyMDIxNTI4WjAYMRYwFAYD VQQDEw02OTBhYjM0MC0yNmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ehjGg+g0LZbA3eVmSbgIsx7Mg8iOYMz5fhZoLmOFQKbW6b9I3jNnLwfzlDA l/wWSfiN6bCwi7AUwQmCzbxooOdjoYchCfr4NnrVl5LX4Ff/tHs+5GAaRRECtuxQ M5t9bFv9PeG+6hp131Ago9AnOVxFDnL0z01RwNka3+c/4pbPAzX9tuS3D5lpvUmu MBUPzv2iFsHTJtBY4V5WOAyheqXn5250tC36Z6/NcZRRZ1S6iip80+qV1udyl/0j NfTnvvhHOr7RR3pf/M9YBOHb/u0zxVCXVJcbEncJLw7HipOkhklwE15r25BLo19m jGcgrTDVmbHLlmf3q/jRxVIE7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKhQ7S8 1YQp5PgNtjVVVJLVzgsRMB8GA1UdIwQYMBaAFFAIvgQfmZeyWdJYRIOlOg3/CxeM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Q2NS9FQTFFNjJENjdD NzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3SlowbGhFZzZVNkRmOExG NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBaS1CQi1abDdKWjBsaEVnNlU2RGY4TEY0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Q2NS9FQTFFNjJENjdDNzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3 SlowbGhFZzZVNkRmOExGNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/Ce4U1h/zkn4b9+OESG9wFvOFhmeAIIZKc16MDNOyXZootqxfPvKD sjCjUeX4+QRLUTTuWWcnDWIIhShTWtKff1MB1oATc8gAiJLKh+Gb3jvAsLDmpI0f JI+SC6n4Y4U4ifdcPGQM32WO8dpPchL26hGa891l6T+4vBfcvlKo3AwKRBgPHzXG cESUe24Wi7p0WqSN07TiVmFa8tuJ9MNObRVle/qNMBpI814EHYSb3QnO+m8wikzu AzuRvus6C863uGjhmKVeyxGx/M7oq96D0g5bx3dhFwzc8mubAHrxOIMp9QTDynMX +Ttye7/IZKwlsooDbkFIkWQum+L/seq3 -----END CERTIFICATE-----Generated at Wed Nov 5 12:25:20 2025 by rpki-client