$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: YuZlvWX+xCmwHgdioMHr8MJhBU8JMENucMBxw5vgr8U= Subject key identifier: A9:A3:D2:61:32:B8:94:8A:D5:1A:45:70:CD:92:69:D1:B1:AA:CA:D7 Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0C49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0C42 Signing time: Tue 04 Nov 2025 18:45:06 +0000 Manifest this update: Tue 04 Nov 2025 18:45:05 +0000 Manifest next update: Tue 11 Nov 2025 18:45:05 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: sDuaQmTrCgULyLO1QMTbgULADcRNgzCUnPaOJJTkJW8=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:45:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Nov 4 18:45:05 2025 GMT Not After : Nov 11 18:45:05 2025 GMT Subject: CN=690a49b1-5dfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:50:77:f0:a9:00:8d:e5:41:67:6a:69:e6:fa: c7:d7:a6:76:1b:0f:c2:aa:82:51:28:90:1d:77:2d: b8:77:d2:4e:ca:51:c1:04:3c:d0:10:29:d3:c1:64: b3:7b:33:fe:5b:25:35:7f:20:7c:db:28:82:2f:0e: 8f:c7:05:65:2b:a2:48:f3:9d:30:76:6e:b5:71:ee: b5:7e:57:09:e8:2c:4e:e8:4c:af:25:3c:91:b5:bb: da:69:72:28:96:d9:a2:76:8e:df:a8:7e:e6:54:48: 17:b8:2f:3d:3c:89:89:b1:91:70:ed:ac:ac:b2:17: 41:78:97:45:97:df:20:59:43:df:28:e6:c6:5c:43: 4b:ed:a8:a5:3f:48:b9:cb:6c:67:37:55:e6:83:91: 33:33:1d:a5:c3:1f:83:f5:00:c4:14:86:57:25:f1: 3e:fd:4e:5b:50:fb:8b:75:f2:2c:f5:ad:cd:b6:dc: c6:e9:e2:79:1d:38:15:ed:af:90:2c:ba:f4:04:46: 9a:70:66:6c:f6:c7:88:b5:9c:fa:41:1d:2a:9a:12: 7a:a4:46:e8:ac:a1:25:af:34:8c:40:0a:d5:42:79: e4:c7:27:da:2f:32:dd:d0:45:74:ec:44:ee:e1:bd: f2:da:df:ef:94:30:7a:41:41:68:06:da:07:d9:7d: 69:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A3:D2:61:32:B8:94:8A:D5:1A:45:70:CD:92:69:D1:B1:AA:CA:D7 X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:24:a6:33:a1:07:63:7f:08:b9:60:39:3b:ed:03:07:53:1c: 1e:c0:9d:17:46:bf:a7:39:2d:f6:38:95:32:aa:e9:2e:ce:b6: 09:56:37:21:dc:0f:b5:b7:05:41:6c:8e:64:29:8d:d1:9a:db: ae:2f:5b:e0:69:63:c9:8b:cd:8b:8e:bc:42:6e:bb:a0:19:ed: 77:8a:25:0f:05:e8:f0:f9:0d:c7:e5:da:9f:bb:63:e7:c9:52: 93:63:c4:88:02:a0:b4:e9:5c:75:fa:17:3d:be:f4:a9:2d:0d: f3:01:8b:66:28:40:6b:b6:7b:9c:19:93:d3:71:13:c1:ca:01: 41:65:77:f5:1f:e1:ca:29:c7:ce:2b:9b:0f:08:6c:85:88:60: f8:f4:bf:72:e8:99:0d:e6:3f:dd:4c:14:a8:19:be:43:fb:e4: 64:f4:9f:50:43:21:d0:6e:f5:44:78:e5:f3:8a:66:e5:59:9b: 1f:54:27:49:80:69:82:c3:95:31:74:9b:5b:24:f5:7e:b4:64: 97:1c:09:ea:09:7c:f1:8c:ce:fd:9a:78:9f:6f:d0:db:66:d4: 55:a7:2b:11:a7:2b:3c:2f:e0:24:46:90:28:03:03:df:73:07: 13:10:01:4f:c2:12:b9:5f:f6:e8:e7:b7:64:25:eb:22:d0:f0: f8:c8:d1:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUxMTA0MTg0NTA1WhcNMjUxMTExMTg0NTA1WjAYMRYwFAYD VQQDEw02OTBhNDliMS01ZGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFB38KkAjeVBZ2pp5vrH16Z2Gw/CqoJRKJAddy24d9JOylHBBDzQECnTwWSz ezP+WyU1fyB82yiCLw6PxwVlK6JI850wdm61ce61flcJ6CxO6EyvJTyRtbvaaXIo ltmido7fqH7mVEgXuC89PImJsZFw7aysshdBeJdFl98gWUPfKObGXENL7ailP0i5 y2xnN1Xmg5EzMx2lwx+D9QDEFIZXJfE+/U5bUPuLdfIs9a3NttzG6eJ5HTgV7a+Q LLr0BEaacGZs9seItZz6QR0qmhJ6pEborKElrzSMQArVQnnkxyfaLzLd0EV07ETu 4b3y2t/vlDB6QUFoBtoH2X1pBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmj0mEy uJSK1RpFcM2SadGxqsrXMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXJKYzoQdjfwi5YDk77QMHUxwewJ0XRr+nOS32OJUyqukuzrYJVjch 3A+1twVBbI5kKY3RmtuuL1vgaWPJi82LjrxCbrugGe13iiUPBejw+Q3H5dqfu2Pn yVKTY8SIAqC06Vx1+hc9vvSpLQ3zAYtmKEBrtnucGZPTcRPBygFBZXf1H+HKKcfO K5sPCGyFiGD49L9y6JkN5j/dTBSoGb5D++Rk9J9QQyHQbvVEeOXzimblWZsfVCdJ gGmCw5UxdJtbJPV+tGSXHAnqCXzxjM79mnifb9DbZtRVpysRpys8L+AkRpAoAwPf cwcTEAFPwhK5X/bo57dkJesi0PD4yNEL -----END CERTIFICATE-----Generated at Wed Nov 5 05:24:37 2025 by rpki-client