$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft (raw, json) Hash identifier: y76RR/DsX6JkgACbQowGiayFrVqXTL7CnwVdDJII/F0= Subject key identifier: F2:61:78:FC:69:C7:16:55:CA:8C:DE:8D:A6:FA:9E:3B:AD:13:5D:FB Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 0A2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft Manifest number: 0A23 Signing time: Tue 04 Nov 2025 19:51:19 +0000 Manifest this update: Tue 04 Nov 2025 19:51:19 +0000 Manifest next update: Tue 11 Nov 2025 19:51:19 +0000 Files and hashes: 1: UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl (hash: PrQVxewx/JRowAceHlwSPbv/Yoh3mTcv8YqNOjISxAA=) 2: 21028CF67EF811EAAD47CD30C4F9AE02.roa (hash: +gB8ZHO5MMKVGP2yT3GNNhFPo53EwfTpImIrJ+ySljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2602 (0xa2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Nov 4 19:51:19 2025 GMT Not After : Nov 11 19:51:19 2025 GMT Subject: CN=690a5937-6e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:59:3c:be:ff:cf:0e:94:88:64:d3:f9:5a:65: 87:e1:bd:16:10:69:18:e6:83:95:b8:4b:3e:f6:6a: 45:04:40:a2:df:32:f3:ed:4c:e3:dc:78:52:aa:d8: be:8d:7d:c7:c1:d1:63:ee:d5:4f:47:1f:c5:36:c9: 67:8f:88:25:de:8a:f6:f2:50:6d:69:db:41:cd:6a: 21:1f:77:57:b8:74:bb:5e:1f:a2:78:11:62:9e:db: d2:2e:5f:c0:10:93:ee:e6:8f:a0:5d:c1:6f:4b:8b: d5:a7:18:4a:57:d2:4e:d0:9c:76:35:0d:08:01:9f: d8:28:05:11:de:f4:85:d1:d5:2d:29:19:44:b5:a4: ec:21:b6:7f:29:56:5c:4d:49:61:fd:28:b9:ab:a8: 5d:91:18:1a:09:0f:df:7a:e7:81:c2:15:c4:b5:56: 25:50:2d:6d:b8:3b:77:94:3d:c5:be:28:9d:be:53: 40:c5:24:1b:a1:e4:ee:c8:4b:ed:b7:66:86:41:ac: d6:09:58:2d:fb:87:65:8e:36:17:9f:2a:60:91:a3: 26:c5:c3:bd:20:ff:73:8b:ba:a5:39:70:12:dc:c5: be:6a:86:af:dc:eb:29:02:cf:8e:b6:22:c1:56:ae: 9e:bc:77:5d:b6:0f:02:6b:f1:ca:cd:87:36:7e:9e: 83:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:61:78:FC:69:C7:16:55:CA:8C:DE:8D:A6:FA:9E:3B:AD:13:5D:FB X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:a1:eb:1c:d8:10:07:f0:48:15:5b:74:b4:9d:06:54:b0:97: f0:7a:b0:61:b4:ee:4e:11:83:e5:67:2a:87:18:94:08:ff:0c: 76:a4:c8:f4:68:71:3f:6d:a2:5c:36:2e:43:22:da:41:86:de: 30:a9:33:0c:d2:d7:cf:c6:af:09:7b:a0:6a:07:5b:63:8c:64: bf:2d:66:1d:df:51:ea:61:ff:85:4d:0d:f9:bb:ea:06:00:9c: 5d:fe:a9:85:64:36:0a:13:8a:0c:8d:e5:c4:37:5a:20:92:ba: a1:00:2d:d2:5f:79:69:c4:cb:a4:c3:49:79:87:ae:b0:46:31: 23:fc:39:8d:cb:bb:8a:56:ed:07:e0:25:20:ec:10:a0:5b:91: 99:e6:33:62:4c:e2:b1:6f:01:cb:93:44:b1:dc:a1:08:b6:d7: 16:8f:33:97:28:c5:22:02:37:63:48:00:cf:ff:ba:51:dc:a0: 9d:bd:8f:f2:9f:2c:b0:ea:99:a0:47:ef:49:a8:45:3b:2e:a9: 16:58:81:d2:f2:8b:02:35:d6:a7:59:b4:48:14:4a:5a:2f:c0: f2:d6:8c:f9:da:b5:3b:ac:33:e0:35:59:ce:20:ae:97:d4:0f: f9:83:d5:3e:1e:40:fe:a5:d7:14:a6:53:b9:14:25:28:7b:24: 9b:46:f1:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjUxMTA0MTk1MTE5WhcNMjUxMTExMTk1MTE5WjAYMRYwFAYD VQQDEw02OTBhNTkzNy02ZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlk8vv/PDpSIZNP5WmWH4b0WEGkY5oOVuEs+9mpFBECi3zLz7Uzj3HhSqti+ jX3HwdFj7tVPRx/FNslnj4gl3or28lBtadtBzWohH3dXuHS7Xh+ieBFintvSLl/A EJPu5o+gXcFvS4vVpxhKV9JO0Jx2NQ0IAZ/YKAUR3vSF0dUtKRlEtaTsIbZ/KVZc TUlh/Si5q6hdkRgaCQ/feueBwhXEtVYlUC1tuDt3lD3FviidvlNAxSQboeTuyEvt t2aGQazWCVgt+4dljjYXnypgkaMmxcO9IP9zi7qlOXAS3MW+aoav3OspAs+OtiLB Vq6evHddtg8Ca/HKzYc2fp6DMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJhePxp xxZVyozejab6njutE137MB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQ aW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzoesc2BAH8EgVW3S0nQZUsJfwerBhtO5OEYPlZyqHGJQI/wx2pMj0 aHE/baJcNi5DItpBht4wqTMM0tfPxq8Je6BqB1tjjGS/LWYd31HqYf+FTQ35u+oG AJxd/qmFZDYKE4oMjeXEN1ogkrqhAC3SX3lpxMukw0l5h66wRjEj/DmNy7uKVu0H 4CUg7BCgW5GZ5jNiTOKxbwHLk0Sx3KEIttcWjzOXKMUiAjdjSADP/7pR3KCdvY/y nyyw6pmgR+9JqEU7LqkWWIHS8osCNdanWbRIFEpaL8Dy1oz52rU7rDPgNVnOIK6X 1A/5g9U+HkD+pdcUplO5FCUoeySbRvGf -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:11 2025 by rpki-client