$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft File: UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft (raw, json) Hash identifier: Qt9/gxmtkjhFhgmYEGOFWKd4kAmnbtp92rxEb5FwvM4= Subject key identifier: 0D:07:E7:CC:FD:D7:C7:D3:E3:C2:93:28:DD:DF:86:81:E0:D3:84:61 Authority key identifier: 50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74 Certificate issuer: /CN=A91AF2D9/serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft Manifest number: E1 Signing time: Mon 03 Nov 2025 05:31:37 +0000 Manifest this update: Mon 03 Nov 2025 05:31:37 +0000 Manifest next update: Mon 10 Nov 2025 05:31:37 +0000 Files and hashes: 1: UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl (hash: 9POZGog2D5FRCmP0XCWjCYQzZczXIN64PZO6Fw3MrDM=) 2: D48472829E9011EF84D96F7DC4F9AE02.roa (hash: nCdw/pdOq9y5TEkGVX9N7sYIIziw8hJRZc9PdeGmDU0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2D9, serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74 Validity Not Before: Nov 3 05:31:37 2025 GMT Not After : Nov 10 05:31:37 2025 GMT Subject: CN=69083e39-a59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6f:37:20:10:7c:0e:1c:b4:1f:68:70:f2:ad: 4a:d5:c5:6e:71:db:bd:98:e7:22:5e:6a:f4:1b:f8: 0f:fe:e7:03:ad:fd:c8:32:e6:5e:5b:54:df:54:c9: b3:23:b0:f4:dd:1d:f5:63:d2:66:58:1b:32:b8:58: 31:08:fb:a2:d6:ad:19:c2:46:f6:aa:bf:c9:33:e5: 9a:b3:43:3a:54:21:f6:d2:e8:c3:1b:9d:8d:ab:d5: eb:d5:45:31:84:9a:52:83:12:70:64:01:a6:64:d6: 7f:ae:ab:02:12:ea:c3:81:e2:d9:60:c7:cb:c6:a4: 40:06:64:c6:74:13:54:13:bd:16:e0:cb:5e:67:51: 95:c8:9b:43:24:9c:e9:09:b0:e2:f3:2d:73:a9:ab: 4a:e8:0d:19:b3:3b:4c:71:81:fc:66:28:21:98:c3: 33:d0:b9:24:f8:10:52:57:27:bd:4d:63:e4:ce:2d: b6:54:4d:e8:7e:63:d0:1d:ea:73:84:49:ec:b0:c8: e9:12:dd:e7:18:0e:9f:ad:7e:34:ef:8b:6e:c6:f6: 38:03:9c:6e:97:c2:2f:84:b3:8e:04:e2:4c:ea:31: 2d:89:c9:af:ec:3a:f6:24:f8:0f:45:24:3e:a1:6a: 01:a5:15:65:8f:00:1d:03:67:5e:4c:78:2a:0c:c7: 03:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:07:E7:CC:FD:D7:C7:D3:E3:C2:93:28:DD:DF:86:81:E0:D3:84:61 X509v3 Authority Key Identifier: keyid:50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:9d:32:b5:d0:b6:b5:17:b5:b1:04:fc:cc:72:e7:18:d5:b7: 95:49:2c:5a:e3:17:3a:83:73:06:f6:8a:bf:45:54:f7:f6:42: d0:cf:7a:e9:7b:62:7d:fc:63:e2:b3:2f:b2:d8:c7:d5:47:e8: a0:f6:55:59:72:ff:80:c3:cf:da:7f:f6:ae:6d:ba:66:c3:af: ee:87:68:a6:90:b5:c3:a8:4c:06:c8:9d:08:11:70:6b:08:13: 41:8f:0a:73:60:8c:19:73:6c:ce:dd:df:96:fc:f3:9e:bd:08: 6d:b2:27:0a:06:07:83:d1:1f:d2:db:ba:ed:fd:d2:41:f4:1b: 41:e0:ae:dc:8a:40:a7:dc:f4:8e:22:19:80:fe:e7:a2:e1:99: 3c:94:c4:54:86:b7:65:cf:a5:6c:c7:f6:bc:d5:aa:eb:a5:e7: 8e:78:8e:3d:05:70:ea:d4:68:0c:b4:e3:f4:67:96:04:9a:0b: f8:05:c2:01:a7:f3:e2:b6:2c:52:fc:7b:0f:11:c3:ac:c7:1d: b6:20:a5:4c:8d:72:61:37:33:23:07:52:5f:de:38:f5:df:13: e1:68:38:b0:61:58:13:8e:28:4e:1c:58:09:e5:a3:83:76:cb: 4d:fd:67:93:a7:f3:10:85:f1:a8:ff:81:93:30:6e:15:89:ec: 71:be:9d:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyRDkxMTAvBgNVBAUTKDUwRDI0MDQyQTRBNjVFRUU2N0E3RUE0RDNGQzQ4OTQ0 M0EzOUFBNzQwHhcNMjUxMTAzMDUzMTM3WhcNMjUxMTEwMDUzMTM3WjAYMRYwFAYD VQQDEw02OTA4M2UzOS1hNTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1m83IBB8Dhy0H2hw8q1K1cVucdu9mOciXmr0G/gP/ucDrf3IMuZeW1TfVMmz I7D03R31Y9JmWBsyuFgxCPui1q0Zwkb2qr/JM+Was0M6VCH20ujDG52Nq9Xr1UUx hJpSgxJwZAGmZNZ/rqsCEurDgeLZYMfLxqRABmTGdBNUE70W4MteZ1GVyJtDJJzp CbDi8y1zqatK6A0ZsztMcYH8ZighmMMz0Lkk+BBSVye9TWPkzi22VE3ofmPQHepz hEnssMjpEt3nGA6frX4074tuxvY4A5xul8IvhLOOBOJM6jEticmv7Dr2JPgPRSQ+ oWoBpRVljwAdA2deTHgqDMcDPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0H58z9 18fT48KTKN3fhoHg04RhMB8GA1UdIwQYMBaAFFDSQEKkpl7uZ6fqTT/EiUQ6Oap0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJEOS9BOTlDMTYyODY3 QUExMUVGOEY0OThBMjdDNEY5QUUwMi9VTkpBUXFTbVh1NW5wLXBOUDhTSlJEbzVx blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VOSkFRcVNtWHU1bnAtcE5QOFNKUkRvNXFuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjJEOS9BOTlDMTYyODY3QUExMUVGOEY0OThBMjdDNEY5QUUwMi9VTkpBUXFTbVh1 NW5wLXBOUDhTSlJEbzVxblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5nTK10La1F7WxBPzMcucY1beVSSxa4xc6g3MG9oq/RVT39kLQz3rp e2J9/GPisy+y2MfVR+ig9lVZcv+Aw8/af/aubbpmw6/uh2imkLXDqEwGyJ0IEXBr CBNBjwpzYIwZc2zO3d+W/POevQhtsicKBgeD0R/S27rt/dJB9BtB4K7cikCn3PSO IhmA/uei4Zk8lMRUhrdlz6Vsx/a81arrpeeOeI49BXDq1GgMtOP0Z5YEmgv4BcIB p/PitixS/HsPEcOsxx22IKVMjXJhNzMjB1Jf3jj13xPhaDiwYVgTjihOHFgJ5aOD dstN/WeTp/MQhfGo/4GTMG4Viexxvp0n -----END CERTIFICATE-----Generated at Tue Nov 4 21:19:12 2025 by rpki-client