$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: DVABftg2aTT5rpskxucpvBvm0X8NSt6rTHYpOAVU23I= Subject key identifier: F1:0E:03:82:A8:92:58:27:02:FC:56:B9:42:AC:B5:9B:41:D2:C3:52 Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 03D5 Signing time: Mon 03 Nov 2025 00:33:57 +0000 Manifest this update: Mon 03 Nov 2025 00:33:57 +0000 Manifest next update: Mon 10 Nov 2025 00:33:57 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: tVKMDH8w7yVJUVWuI1zOrZnPl5BdgpYBIUvg0+DN44w=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: DNm/cKBnOwMLtVf8PNiul90A2LNN5D/9x28AaUpSyDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5, serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Nov 3 00:33:57 2025 GMT Not After : Nov 10 00:33:57 2025 GMT Subject: CN=6907f875-e2ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:be:1f:6c:16:5e:a8:7b:a8:1a:9d:b4:b8:fe: 26:7b:bd:e3:de:e0:c1:8a:2a:84:37:44:fc:91:d3: 9a:04:cf:8a:16:1e:af:65:97:24:e6:5d:71:a5:02: bf:fd:8f:c3:4d:35:be:76:71:0b:24:03:ee:72:5d: 95:2a:7f:e0:5e:a1:80:d5:08:1b:df:7c:7d:af:92: 41:00:7b:46:10:0d:bc:d9:41:39:95:c3:2b:2f:0b: 59:d1:4f:bd:f7:8d:91:f2:57:b8:31:2d:7f:d5:c4: d8:7b:fd:30:a4:c8:9e:dd:6e:39:ed:8c:95:b6:b8: 5c:04:0a:46:8b:66:73:09:0c:f6:5c:cd:1c:81:f9: 4d:c5:4c:17:6d:13:83:c7:58:2f:14:af:8b:7c:30: ef:09:fa:a3:38:25:cb:99:21:1d:ca:42:2a:b8:46: 29:fe:29:aa:f1:d8:90:37:89:0c:08:3a:87:30:2b: f8:fe:96:11:94:af:24:8f:7d:34:ab:83:a7:82:6a: a0:64:28:a5:c7:e0:a7:c1:46:9c:86:28:00:b6:f4: 13:c9:f6:ff:80:12:77:31:67:9e:ed:6a:25:3e:f0: ec:22:47:b3:2e:3a:7b:b5:44:57:d4:74:05:4c:2f: 18:67:2a:74:aa:a4:e2:af:5e:42:50:52:aa:f6:60: 9c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0E:03:82:A8:92:58:27:02:FC:56:B9:42:AC:B5:9B:41:D2:C3:52 X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:64:13:f0:b0:ca:ce:fd:31:86:20:09:05:5f:96:0c:8f:03: a3:69:a3:ad:07:4d:f8:2a:aa:ca:c6:b9:fc:a6:e4:2a:5e:6e: 79:4a:14:08:fc:10:79:a3:97:00:b9:80:e4:aa:72:fc:7e:9d: cf:13:c0:56:6d:9e:f7:a2:36:e3:b3:65:6e:05:0c:bf:38:33: fa:eb:35:32:6e:6a:1e:de:23:fe:ba:0a:69:a2:0d:eb:a0:c3: 8f:8f:49:22:11:d1:8a:ad:29:d7:95:27:3a:81:fa:4a:c2:b2: 29:a7:02:2e:86:14:ee:ef:93:d8:f5:be:35:61:63:a6:9b:9a: 9e:2e:cd:76:6c:1d:e7:4c:10:7d:4a:d1:06:20:d8:c3:9c:f7: 80:39:c8:9c:27:7b:04:a2:30:e7:e5:44:27:20:74:9d:17:6b: aa:4d:60:a6:a9:2a:4d:9f:b4:3d:ef:43:3f:e9:a2:9f:67:ad: 1a:3f:fb:73:14:8d:54:f7:4f:b0:20:a6:e7:98:fb:73:80:8c: 03:d3:c8:5c:1c:67:4b:91:fb:83:ed:d2:4e:73:f5:0d:4a:12: 8b:82:27:39:e8:a4:8c:21:ca:0d:f0:96:9b:7e:73:2b:d7:4c: 92:1b:f5:6d:2f:e9:50:f6:66:a2:77:ce:f0:f4:28:0f:2c:60: 2f:37:a3:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjUxMTAzMDAzMzU3WhcNMjUxMTEwMDAzMzU3WjAYMRYwFAYD VQQDEw02OTA3Zjg3NS1lMmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv74fbBZeqHuoGp20uP4me73j3uDBiiqEN0T8kdOaBM+KFh6vZZck5l1xpQK/ /Y/DTTW+dnELJAPucl2VKn/gXqGA1Qgb33x9r5JBAHtGEA282UE5lcMrLwtZ0U+9 942R8le4MS1/1cTYe/0wpMie3W457YyVtrhcBApGi2ZzCQz2XM0cgflNxUwXbROD x1gvFK+LfDDvCfqjOCXLmSEdykIquEYp/imq8diQN4kMCDqHMCv4/pYRlK8kj300 q4OngmqgZCilx+CnwUachigAtvQTyfb/gBJ3MWee7WolPvDsIkezLjp7tURX1HQF TC8YZyp0qqTir15CUFKq9mCcjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEOA4Ko klgnAvxWuUKstZtB0sNSMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALZBPwsMrO/TGGIAkFX5YMjwOjaaOtB034KqrKxrn8puQqXm55ShQI /BB5o5cAuYDkqnL8fp3PE8BWbZ73ojbjs2VuBQy/ODP66zUybmoe3iP+ugppog3r oMOPj0kiEdGKrSnXlSc6gfpKwrIppwIuhhTu75PY9b41YWOmm5qeLs12bB3nTBB9 StEGINjDnPeAOcicJ3sEojDn5UQnIHSdF2uqTWCmqSpNn7Q970M/6aKfZ60aP/tz FI1U90+wIKbnmPtzgIwD08hcHGdLkfuD7dJOc/UNShKLgic56KSMIcoN8JabfnMr 10ySG/VtL+lQ9maid87w9CgPLGAvN6OP -----END CERTIFICATE-----Generated at Tue Nov 4 16:32:42 2025 by rpki-client