$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft File: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft (raw, json) Hash identifier: CPtAYLHv7IVHFQy0qovpaGeLFUevuIDZH8tCRXkwAls= Subject key identifier: DD:1F:71:5B:D2:BC:B8:8E:A3:E8:81:BC:4C:10:7C:D9:B9:8F:3E:4D Authority key identifier: B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 Certificate issuer: /CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Certificate serial: 0EAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft Manifest number: 0EA0 Signing time: Tue 04 Nov 2025 17:46:44 +0000 Manifest this update: Tue 04 Nov 2025 17:46:44 +0000 Manifest next update: Tue 11 Nov 2025 17:46:44 +0000 Files and hashes: 1: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl (hash: SQAAeH1nm/4WVo6RBJfJn2ZANgdIaglBxUAM7EeH4tQ=) 2: BD22841E9E4911E9A136D25AC4F9AE02.roa (hash: Gdmjy4eOm23bZo0u+QNI+KYIouesOlIiUyP5E+hvG08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3754 (0xeaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1149, serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Validity Not Before: Nov 4 17:46:44 2025 GMT Not After : Nov 11 17:46:44 2025 GMT Subject: CN=690a3c04-a0fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:80:ad:30:b6:ca:98:b7:e7:d6:4b:55:35:5d: ff:96:f5:73:a8:da:21:f8:cb:24:1c:b1:a3:30:73: 69:23:12:a4:9a:76:d3:64:a4:23:b3:ca:36:c6:56: df:e1:48:d7:58:11:16:38:82:8c:94:d7:c8:f7:60: 16:d7:90:63:bc:3a:28:40:96:89:35:69:13:4d:63: e8:b1:11:d6:5a:ec:7c:3a:30:e1:e7:92:7c:f9:cc: 02:aa:fe:61:a1:f9:89:c1:a1:2f:5b:c8:36:b4:1f: 42:a2:ab:bd:3d:f5:27:d8:ed:ea:3b:d0:6c:2e:81: 3e:03:18:08:39:17:1f:c8:33:fa:96:c3:20:04:9d: 22:ed:e4:32:62:5b:75:8d:cc:73:ed:e2:5e:87:e6: 8e:c9:72:2b:09:32:32:72:9a:d8:a5:b1:35:5a:32: f4:45:8f:d5:5d:2a:ff:56:56:95:f3:2d:4e:3a:33: 08:0d:42:0d:a4:55:74:82:b0:c6:fd:f1:76:a0:60: 37:17:03:0c:4b:2c:a8:f3:74:c7:88:76:55:2b:82: c8:3f:02:a0:c4:f6:f5:6f:0e:58:4f:ee:be:0a:68: 2a:ed:87:21:02:b2:67:67:49:05:4b:53:54:5e:94: 76:68:f9:03:f7:fa:7e:76:31:79:03:67:96:24:5f: 5d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1F:71:5B:D2:BC:B8:8E:A3:E8:81:BC:4C:10:7C:D9:B9:8F:3E:4D X509v3 Authority Key Identifier: keyid:B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:c3:68:d6:87:02:e1:5f:d7:96:16:64:e6:fe:a2:65:31:89: 06:91:8a:e5:f0:cd:63:82:ba:1a:ce:bf:90:58:7f:c6:cb:62: 6e:80:6c:d8:5f:18:bb:d2:f7:2d:83:10:2e:0c:c3:76:08:58: 6f:59:7c:eb:bc:d1:eb:4b:32:ca:73:89:3e:ba:07:66:45:a4: 39:5d:0c:2b:66:dd:e8:a3:a4:e0:42:63:f5:59:b6:83:05:3f: 70:73:8e:d6:0f:4c:b9:6c:0e:38:d6:0c:a9:e0:20:b3:39:2b: ad:6f:e9:b4:fc:d8:13:c8:03:8c:fe:22:c9:12:a1:cc:cd:12: 9b:a2:f0:40:00:e4:60:a9:5d:f8:f3:0b:4c:d3:c4:cb:0f:55: 6f:9f:8e:7b:16:b8:69:77:62:67:7b:95:2a:8e:37:58:12:b6: b5:6b:8f:02:ad:85:20:37:b7:01:a6:c0:ef:4b:c4:56:ce:47: a1:88:b8:28:1a:4c:ce:b8:b6:3f:cc:2b:d7:2c:ab:0e:7b:0a: f4:46:66:e8:7a:b5:ca:1c:c5:bd:d1:b9:15:ef:8b:b9:62:a0: fb:33:70:96:79:12:29:6e:36:75:09:8c:e1:c4:b3:0f:e6:12: 9a:62:e2:43:70:80:5a:93:14:b6:5f:6a:d0:3e:ec:0f:bc:fb: 74:37:a1:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExNDkxMTAvBgNVBAUTKEI4MzQwMUNGQkM0MDVDRkI1MkZEQTBGRUJENEEwMkI3 QjFDRTI3NjIwHhcNMjUxMTA0MTc0NjQ0WhcNMjUxMTExMTc0NjQ0WjAYMRYwFAYD VQQDEw02OTBhM2MwNC1hMGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44CtMLbKmLfn1ktVNV3/lvVzqNoh+MskHLGjMHNpIxKkmnbTZKQjs8o2xlbf 4UjXWBEWOIKMlNfI92AW15BjvDooQJaJNWkTTWPosRHWWux8OjDh55J8+cwCqv5h ofmJwaEvW8g2tB9Coqu9PfUn2O3qO9BsLoE+AxgIORcfyDP6lsMgBJ0i7eQyYlt1 jcxz7eJeh+aOyXIrCTIycprYpbE1WjL0RY/VXSr/VlaV8y1OOjMIDUINpFV0grDG /fF2oGA3FwMMSyyo83THiHZVK4LIPwKgxPb1bw5YT+6+Cmgq7YchArJnZ0kFS1NU XpR2aPkD9/p+djF5A2eWJF9d3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0fcVvS vLiOo+iBvEwQfNm5jz5NMB8GA1UdIwQYMBaAFLg0Ac+8QFz7Uv2g/r1KArexzidi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTE0OS8yNEJCMjRDRTlF NDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQdFNfYUQtdlVvQ3Q3SE9K MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VEUUJ6N3hBWFB0U19hRC12VW9DdDdIT0oySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTE0OS8yNEJCMjRDRTlFNDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQ dFNfYUQtdlVvQ3Q3SE9KMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjw2jWhwLhX9eWFmTm/qJlMYkGkYrl8M1jgroazr+QWH/Gy2JugGzY Xxi70vctgxAuDMN2CFhvWXzrvNHrSzLKc4k+ugdmRaQ5XQwrZt3oo6TgQmP1WbaD BT9wc47WD0y5bA441gyp4CCzOSutb+m0/NgTyAOM/iLJEqHMzRKbovBAAORgqV34 8wtM08TLD1Vvn457Frhpd2Jne5UqjjdYEra1a48CrYUgN7cBpsDvS8RWzkehiLgo GkzOuLY/zCvXLKsOewr0RmboerXKHMW90bkV74u5YqD7M3CWeRIpbjZ1CYzhxLMP 5hKaYuJDcIBakxS2X2rQPuwPvPt0N6Ek -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:03 2025 by rpki-client