$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: CYQmFsqAgfImfCOcfxTm1yeIc4ycxmQ1ur7DdEA7Fqw= Subject key identifier: 5A:2C:B9:73:15:74:AE:40:79:FD:18:FD:08:95:A6:6A:7F:E7:92:99 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 01AA Signing time: Mon 03 Nov 2025 03:10:47 +0000 Manifest this update: Mon 03 Nov 2025 03:10:46 +0000 Manifest next update: Mon 10 Nov 2025 03:10:46 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: Y0IQxbMGpdJGWfcb91N6OzXPjHrN19mubqWtogtbH3I=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: 2h3iteWHWvj7eGZvRPLFqMA2o9nj7836hPNLX4DVTdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Nov 3 03:10:46 2025 GMT Not After : Nov 10 03:10:46 2025 GMT Subject: CN=69081d36-d2b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:8a:c2:60:ce:5f:82:9b:02:21:35:f7:d0:b2: 17:cf:21:d4:98:c8:58:c9:7e:80:62:b8:13:f5:20: 13:66:ea:3c:d9:91:8f:dc:e2:b0:54:33:6a:b9:7a: 5b:53:de:13:84:75:05:0c:08:11:a7:5c:be:6b:0b: 49:a6:95:77:38:fd:ac:61:b8:39:a6:29:2b:c0:66: 78:31:8b:72:79:cb:7b:66:dc:5d:cf:39:84:50:a8: 77:76:6c:66:90:71:d1:de:97:96:fe:63:4c:a3:3e: 50:59:06:55:e1:07:42:ed:69:ad:2f:9d:0e:b3:5c: 76:f3:e2:ac:04:45:05:c1:cd:27:38:e0:40:e3:4c: 60:4c:9f:6d:c1:ae:4a:21:f6:d6:78:53:b7:de:91: 96:11:13:f6:f9:21:67:db:71:88:3a:ca:12:0f:e0: 29:78:dc:4b:8b:80:37:24:6a:c4:d1:2e:64:62:aa: 39:50:84:9f:5f:52:b1:fb:71:9b:03:8a:96:15:89: 8b:55:c2:0b:1b:e1:fc:af:07:14:1c:be:be:2d:37: d3:b7:54:a2:d6:81:cc:06:4d:10:d6:c7:62:13:bc: 0f:fc:5e:08:00:70:71:db:05:42:27:76:2a:d8:36: 33:21:0e:af:9f:16:ab:0f:6b:88:06:9d:e8:93:8c: ba:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:2C:B9:73:15:74:AE:40:79:FD:18:FD:08:95:A6:6A:7F:E7:92:99 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:fb:88:cd:e8:20:35:48:8a:d0:b7:dd:1b:57:0c:1f:cb:f5: 46:9a:eb:27:1e:34:68:6b:42:99:5d:50:92:e7:f4:10:fa:70: dc:70:9f:44:ca:2e:04:4f:7c:4d:c7:73:14:4c:c6:25:30:4a: 08:46:ed:c1:ad:fc:25:a1:ad:ac:37:cf:b7:e6:aa:89:96:ca: de:56:2c:2a:ac:79:90:03:fb:93:d3:68:eb:d6:6f:67:6e:db: c0:a4:78:3a:11:9f:97:95:af:1c:b9:66:2c:83:a2:74:0f:9e: 61:3b:4d:5c:bb:00:14:f2:94:00:4c:ef:13:4d:a7:11:df:c1: ee:33:0b:9e:ed:62:ee:c3:bc:39:8c:26:24:24:d9:b1:6c:b2: 65:cf:cd:c6:63:b5:30:90:7d:a7:51:90:ec:73:da:a3:cb:cd: bc:4b:0e:ac:87:87:06:c3:71:56:38:8f:5d:6a:86:53:cc:ed: 79:ab:67:08:3e:71:0b:99:5d:41:6f:c9:b3:fb:af:a3:6c:d2: 53:ce:53:52:55:0c:2b:e4:fb:2e:b5:bf:e1:42:c3:e8:42:5b: 10:a0:59:e1:94:15:ab:1a:cc:18:f5:ce:52:3f:3f:03:30:3c: ca:dc:fb:b2:e2:50:59:44:4f:66:77:07:3e:9b:6f:6b:e4:43: f3:ea:0f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUxMTAzMDMxMDQ2WhcNMjUxMTEwMDMxMDQ2WjAYMRYwFAYD VQQDEw02OTA4MWQzNi1kMmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24rCYM5fgpsCITX30LIXzyHUmMhYyX6AYrgT9SATZuo82ZGP3OKwVDNquXpb U94ThHUFDAgRp1y+awtJppV3OP2sYbg5pikrwGZ4MYtyect7ZtxdzzmEUKh3dmxm kHHR3peW/mNMoz5QWQZV4QdC7WmtL50Os1x28+KsBEUFwc0nOOBA40xgTJ9twa5K IfbWeFO33pGWERP2+SFn23GIOsoSD+ApeNxLi4A3JGrE0S5kYqo5UISfX1Kx+3Gb A4qWFYmLVcILG+H8rwcUHL6+LTfTt1Si1oHMBk0Q1sdiE7wP/F4IAHBx2wVCJ3Yq 2DYzIQ6vnxarD2uIBp3ok4y6gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFosuXMV dK5Aef0Y/QiVpmp/55KZMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq+4jN6CA1SIrQt90bVwwfy/VGmusnHjRoa0KZXVCS5/QQ+nDccJ9E yi4ET3xNx3MUTMYlMEoIRu3Brfwloa2sN8+35qqJlsreViwqrHmQA/uT02jr1m9n btvApHg6EZ+Xla8cuWYsg6J0D55hO01cuwAU8pQATO8TTacR38HuMwue7WLuw7w5 jCYkJNmxbLJlz83GY7UwkH2nUZDsc9qjy828Sw6sh4cGw3FWOI9daoZTzO15q2cI PnELmV1Bb8mz+6+jbNJTzlNSVQwr5Psutb/hQsPoQlsQoFnhlBWrGswY9c5SPz8D MDzK3Puy4lBZRE9mdwc+m29r5EPz6g+g -----END CERTIFICATE-----Generated at Tue Nov 4 21:08:31 2025 by rpki-client