$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft File: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft (raw, json) Hash identifier: EHX7AWwYzJ/ut1O4xT/kQG8DrMCsiVDnraBPtsO45iA= Subject key identifier: 7E:2B:A5:47:22:24:E9:86:17:98:F7:9E:B3:6B:08:A6:30:84:37:70 Authority key identifier: 51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 Certificate issuer: /CN=A91A7761/serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft Manifest number: 0634 Signing time: Tue 04 Nov 2025 22:53:39 +0000 Manifest this update: Tue 04 Nov 2025 22:53:39 +0000 Manifest next update: Tue 11 Nov 2025 22:53:39 +0000 Files and hashes: 1: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl (hash: 27f4M9qRizzwvnb/cTm/hpXR2/+Wj6MBZI6GQW25qJo=) 2: C9BA671C3A2611F0908A2B20C4F9AE02.roa (hash: hAsOFqLGhlXPlJQqq8o+TJ1lqU96PHU1fRQ8ll9kM1c=) 3: F44E1EECCD8411EF88CD1464C4F9AE02.roa (hash: RAzhHtW1VH/eUjgZQiEsm0Ej6j+0F6PlwpjTpjOi8Jo=) 4: F4C73FCACD8411EF88CD1464C4F9AE02.roa (hash: EkzwfsPvhq1FP6pm5CT4LDCnqWr4szU6ESASOp0o6DU=) 5: 3FE8CD1051B111F0932E1173C4F9AE02.roa (hash: RB6HB76Hd37I1Qyua/UNLhe473Y5QaFhWKPCNvGT+Jc=) 6: DBF856463A3011F0B0C6F437C4F9AE02.roa (hash: 3y3NqdGA4Yb7KDxIbZnutCZORNmNgdB027E2G7UT98A=) 7: F559B7E2CD8411EF88CD1464C4F9AE02.roa (hash: 1YFs0Zqq59OdTTfQ9TRBhg+ye+627iyYVeuBlex3Kfk=) 8: 044C4ED6A26711ED8095F74DC4F9AE02.roa (hash: ehyJGIeBDK390bSFLx2HamOEcgKmw6zu6VhcLaVRD/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7761, serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Validity Not Before: Nov 4 22:53:39 2025 GMT Not After : Nov 11 22:53:39 2025 GMT Subject: CN=690a83f3-05a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ea:a2:83:c5:21:1d:1f:5b:92:ca:9f:3c:44: 86:d9:a4:7a:12:32:98:a9:a0:63:c7:94:04:3e:d0: 80:d9:c9:a4:ed:93:16:75:c8:a8:65:a0:d9:b3:33: b8:bb:45:01:65:d0:bc:bf:00:48:26:06:33:65:b1: 5c:ac:f1:64:4c:ac:70:78:22:4a:69:71:d7:29:cf: 8b:1e:ba:93:0d:f6:2a:39:a8:9d:94:f1:c2:8e:aa: e5:0d:58:38:40:ba:68:69:0c:b0:96:c0:d6:ce:87: 86:0f:8c:a1:77:c7:7c:b5:04:b0:b3:2d:22:3f:ce: 5b:3d:b1:2a:e8:05:d2:65:55:10:88:65:17:62:26: 2b:2c:f1:96:c7:70:a8:bb:ae:b4:f7:9d:8e:56:29: 03:6f:9b:32:41:31:5e:a4:39:50:ed:43:44:12:5c: 4f:a6:9e:42:58:2c:8e:23:b7:df:aa:ea:f4:4b:fa: 82:3f:12:b2:e3:76:f5:80:51:e2:68:11:44:44:0e: 19:c0:91:6e:c7:48:36:fe:99:c2:10:37:22:38:f6: c2:4b:19:bb:d9:a1:6c:9a:f7:74:7c:2e:36:5c:46: 6a:b6:36:4c:ff:51:0f:07:4f:68:25:11:8a:f3:93: 28:c2:bd:09:ef:59:8d:83:1f:1b:2f:9f:9e:2e:a8: e5:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2B:A5:47:22:24:E9:86:17:98:F7:9E:B3:6B:08:A6:30:84:37:70 X509v3 Authority Key Identifier: keyid:51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:bc:08:65:77:0d:d3:68:42:fd:33:f6:ad:e4:b8:da:5e:98: ac:3b:64:99:3a:d4:1f:8a:96:af:0b:cd:cd:90:ac:01:9b:87: 85:9a:84:36:ed:80:27:46:2b:82:4e:fe:37:e4:70:bd:db:02: 5b:a4:02:50:e0:e8:e3:56:53:ce:e3:ae:0e:7e:1c:19:6d:2a: a8:01:e8:79:60:0e:6e:c4:28:e8:55:43:c5:47:65:4c:e3:20: cd:ad:79:e1:fc:b9:b9:68:5d:a2:cf:64:4c:21:8e:0e:d2:0d: 94:b8:3c:5e:37:21:f2:70:ec:30:d5:21:5e:78:09:8c:6b:3e: 62:1c:aa:3b:fc:8c:90:4b:76:10:8b:f8:43:68:2d:22:db:38: b2:08:7e:0d:95:c0:03:cd:60:5c:c6:9e:12:5d:e1:c6:83:80: 7f:78:c4:2e:19:cb:33:61:c6:2a:60:ff:e7:21:4e:48:51:7e: a7:0c:f5:8a:1d:9f:87:6e:d1:2c:7b:47:44:85:96:1b:a8:51: 4a:f5:26:98:b6:1b:37:27:25:22:6f:0c:5d:f2:33:9c:e6:a7: db:b3:f9:bd:08:e4:47:57:e2:76:3a:5d:25:ec:3c:bf:6b:a9: 2b:3a:81:2d:17:9a:05:15:37:d1:9a:d2:00:74:33:6a:f2:94: c8:1a:0f:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3NjExMTAvBgNVBAUTKDUxRDVDQzJENUU0MjhGQzk1NTE0OUY1NzYyMTE5MDRG MDVCQUYyMTEwHhcNMjUxMTA0MjI1MzM5WhcNMjUxMTExMjI1MzM5WjAYMRYwFAYD VQQDEw02OTBhODNmMy0wNWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuqig8UhHR9bksqfPESG2aR6EjKYqaBjx5QEPtCA2cmk7ZMWdcioZaDZszO4 u0UBZdC8vwBIJgYzZbFcrPFkTKxweCJKaXHXKc+LHrqTDfYqOaidlPHCjqrlDVg4 QLpoaQywlsDWzoeGD4yhd8d8tQSwsy0iP85bPbEq6AXSZVUQiGUXYiYrLPGWx3Co u660952OVikDb5syQTFepDlQ7UNEElxPpp5CWCyOI7ffqur0S/qCPxKy43b1gFHi aBFERA4ZwJFux0g2/pnCEDciOPbCSxm72aFsmvd0fC42XEZqtjZM/1EPB09oJRGK 85Mowr0J71mNgx8bL5+eLqjljwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4rpUci JOmGF5j3nrNrCKYwhDdwMB8GA1UdIwQYMBaAFFHVzC1eQo/JVRSfV2IRkE8FuvIR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzc2MS8wRTRCOTE2OEJE MzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4bFZGSjlYWWhHUVR3VzY4 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VkWE1MVjVDajhsVkZKOVhZaEdRVHdXNjhoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzc2MS8wRTRCOTE2OEJEMzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4 bFZGSjlYWWhHUVR3VzY4aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFvAhldw3TaEL9M/at5LjaXpisO2SZOtQfipavC83NkKwBm4eFmoQ2 7YAnRiuCTv435HC92wJbpAJQ4OjjVlPO464OfhwZbSqoAeh5YA5uxCjoVUPFR2VM 4yDNrXnh/Lm5aF2iz2RMIY4O0g2UuDxeNyHycOww1SFeeAmMaz5iHKo7/IyQS3YQ i/hDaC0i2ziyCH4NlcADzWBcxp4SXeHGg4B/eMQuGcszYcYqYP/nIU5IUX6nDPWK HZ+HbtEse0dEhZYbqFFK9SaYths3JyUibwxd8jOc5qfbs/m9CORHV+J2Ol0l7Dy/ a6krOoEtF5oFFTfRmtIAdDNq8pTIGg/Y -----END CERTIFICATE-----Generated at Wed Nov 5 16:43:29 2025 by rpki-client