$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.mft File: u4g-aByWIiVDBg6XnT6Chuq2iok.mft (raw, json) Hash identifier: 2ZaA3fFF4Mlu4DGH9ORh/KhRUOfxy5TfXurMJ9KCiig= Subject key identifier: E2:C8:9A:CE:3E:CD:AA:F9:F6:E3:7A:18:6B:5B:E5:65:B0:D0:7B:F6 Authority key identifier: BB:88:3E:68:1C:96:22:25:43:06:0E:97:9D:3E:82:86:EA:B6:8A:89 Certificate issuer: /CN=A91A4413/serialNumber=BB883E681C96222543060E979D3E8286EAB68A89 Certificate serial: 0293 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4g-aByWIiVDBg6XnT6Chuq2iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.mft Manifest number: 028F Signing time: Wed 05 Nov 2025 01:40:14 +0000 Manifest this update: Wed 05 Nov 2025 01:40:14 +0000 Manifest next update: Wed 12 Nov 2025 01:40:14 +0000 Files and hashes: 1: u4g-aByWIiVDBg6XnT6Chuq2iok.crl (hash: cW+yx0EpYd6q4U75e34pBnFuGVURLdcpkebVhFAkmuw=) 2: 3D3C7DC8236A11ED8018D62BC4F9AE02.roa (hash: ulvwJEE9TrSCR3alPiPFyCbLR3kKPVNTCzyUzxRhzpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.crl rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4g-aByWIiVDBg6XnT6Chuq2iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4413, serialNumber=BB883E681C96222543060E979D3E8286EAB68A89 Validity Not Before: Nov 5 01:40:14 2025 GMT Not After : Nov 12 01:40:14 2025 GMT Subject: CN=690aaafe-9251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:50:2e:be:17:cd:f6:53:e2:6c:9c:1e:3e:29: 37:7a:47:aa:30:5e:85:b9:96:a4:4d:f6:ef:0a:e0: 38:9a:01:f4:d7:5d:ba:53:cc:cf:f1:b0:b1:c7:11: 9a:dd:ae:32:b8:7a:62:1f:17:7f:c3:c9:f0:19:0f: 64:a2:35:11:7c:dd:cc:a0:54:31:45:34:8e:2f:0f: 3e:40:8b:21:05:f3:4d:c5:69:87:4c:8e:a6:e5:bd: 49:2e:4a:b4:77:9b:c0:a8:fb:a2:ca:41:22:83:6d: 8d:93:10:19:02:dd:c4:66:d0:6c:c1:c3:1f:4b:7a: f0:ca:35:29:e6:b3:e7:f2:60:e2:fe:24:5a:26:06: ae:ff:2a:21:28:27:48:39:d8:a2:92:c2:f6:ab:e6: 22:f8:2f:70:c0:f9:f1:9a:ae:41:cc:39:db:54:e2: 5f:d0:0b:66:41:55:fd:fa:15:5b:ce:25:48:89:3d: 2e:fd:e1:29:61:9f:04:85:79:d2:36:12:a1:a4:ef: 69:5b:8c:8b:d1:0f:e1:d3:0c:13:25:3b:2b:56:4f: 01:b2:1e:55:aa:9b:db:53:6f:0d:27:07:58:ad:67: 54:6f:8f:8c:a3:2e:01:f7:cc:d1:17:a1:5b:22:7a: ce:a8:8a:ea:86:7a:49:e1:3a:14:7b:12:2d:94:f9: f5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C8:9A:CE:3E:CD:AA:F9:F6:E3:7A:18:6B:5B:E5:65:B0:D0:7B:F6 X509v3 Authority Key Identifier: keyid:BB:88:3E:68:1C:96:22:25:43:06:0E:97:9D:3E:82:86:EA:B6:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4g-aByWIiVDBg6XnT6Chuq2iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:75:7e:d9:0a:c3:fe:a4:6e:0c:d0:9c:22:24:12:15:45:dd: bb:ed:c9:e1:c8:ab:d0:c6:c5:38:f3:ac:62:aa:d3:39:27:ef: 0a:bf:e6:ea:b9:1e:f8:0d:9a:10:ec:a0:b6:f1:f8:2d:28:4f: 9a:12:b2:59:39:0a:ba:a7:4d:7c:c1:ed:86:81:2f:80:59:ef: 86:4b:aa:39:56:5e:b6:e5:bc:53:36:3b:00:00:68:37:37:6d: 39:04:95:b8:a5:2b:f8:c1:84:b8:b9:6d:a9:b3:8c:3f:cb:8e: af:70:57:36:13:01:67:09:03:44:c0:ea:2d:ca:14:26:d8:5c: 45:0d:40:65:fe:d6:ef:e8:0c:eb:98:f9:87:46:ba:e4:a6:13: 07:3f:33:70:38:f4:b4:0d:f0:05:f3:d8:a3:2d:ea:46:76:21: 96:c9:e9:1a:90:04:cf:8f:8f:77:ca:b6:f6:68:41:ea:5d:5a: f6:3e:43:29:c4:92:e8:43:28:ca:de:df:9b:6c:7a:92:16:8e: e0:11:6f:4f:0e:1c:f8:16:fd:71:eb:79:43:0d:45:01:53:96: 23:b7:87:7b:32:27:94:a0:f3:6c:c3:17:14:39:31:30:1e:1c: 34:6b:76:17:95:f6:e6:15:90:d0:68:cf:e0:84:fe:0e:4a:70: 1e:a9:82:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MTMxMTAvBgNVBAUTKEJCODgzRTY4MUM5NjIyMjU0MzA2MEU5NzlEM0U4Mjg2 RUFCNjhBODkwHhcNMjUxMTA1MDE0MDE0WhcNMjUxMTEyMDE0MDE0WjAYMRYwFAYD VQQDEw02OTBhYWFmZS05MjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVAuvhfN9lPibJwePik3ekeqMF6FuZakTfbvCuA4mgH01126U8zP8bCxxxGa 3a4yuHpiHxd/w8nwGQ9kojURfN3MoFQxRTSOLw8+QIshBfNNxWmHTI6m5b1JLkq0 d5vAqPuiykEig22NkxAZAt3EZtBswcMfS3rwyjUp5rPn8mDi/iRaJgau/yohKCdI OdiiksL2q+Yi+C9wwPnxmq5BzDnbVOJf0AtmQVX9+hVbziVIiT0u/eEpYZ8EhXnS NhKhpO9pW4yL0Q/h0wwTJTsrVk8Bsh5VqpvbU28NJwdYrWdUb4+Moy4B98zRF6Fb InrOqIrqhnpJ4ToUexItlPn1wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLIms4+ zar59uN6GGtb5WWw0Hv2MB8GA1UdIwQYMBaAFLuIPmgcliIlQwYOl50+gobqtoqJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQxMy8yMDAwMkMxMjIz NjcxMUVEOTdDMkVGMjdDNEY5QUUwMi91NGctYUJ5V0lpVkRCZzZYblQ2Q2h1cTJp b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U0Zy1hQnlXSWlWREJnNlhuVDZDaHVxMmlvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQxMy8yMDAwMkMxMjIzNjcxMUVEOTdDMkVGMjdDNEY5QUUwMi91NGctYUJ5V0lp VkRCZzZYblQ2Q2h1cTJpb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkdX7ZCsP+pG4M0JwiJBIVRd277cnhyKvQxsU486xiqtM5J+8Kv+bq uR74DZoQ7KC28fgtKE+aErJZOQq6p018we2GgS+AWe+GS6o5Vl625bxTNjsAAGg3 N205BJW4pSv4wYS4uW2ps4w/y46vcFc2EwFnCQNEwOotyhQm2FxFDUBl/tbv6Azr mPmHRrrkphMHPzNwOPS0DfAF89ijLepGdiGWyekakATPj493yrb2aEHqXVr2PkMp xJLoQyjK3t+bbHqSFo7gEW9PDhz4Fv1x63lDDUUBU5Yjt4d7MieUoPNswxcUOTEw Hhw0a3YXlfbmFZDQaM/ghP4OSnAeqYIf -----END CERTIFICATE-----Generated at Wed Nov 5 16:42:25 2025 by rpki-client