$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: jZmHFOyPMIgVzBosnVrEWo4x3rOOk2f5C3Byzno9SfE= Subject key identifier: CA:9B:42:C8:52:FC:F9:F4:89:0B:3E:3C:F5:BE:B7:AD:50:D9:E7:15 Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 046A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 045F Signing time: Wed 05 Nov 2025 00:18:11 +0000 Manifest this update: Wed 05 Nov 2025 00:18:10 +0000 Manifest next update: Wed 12 Nov 2025 00:18:10 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: QBq0igKWsekV2qp7zBCyudrxinp23jzAePu1Z7013xQ=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: tjoX2rKURmmp0SIpilUWla3AD/nRXhfocceVz0iL1og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1130 (0x46a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Nov 5 00:18:10 2025 GMT Not After : Nov 12 00:18:10 2025 GMT Subject: CN=690a97c2-a220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:33:b6:9e:e3:22:59:c1:11:25:4a:09:7d:35: 9a:e0:c5:ed:c6:b3:d2:5d:84:0d:3e:7a:ff:71:ad: 5d:9e:7a:98:4a:73:7c:ae:19:d4:78:54:cc:93:d0: 14:43:24:52:ee:c5:16:e9:db:c9:cf:79:18:2a:df: a6:bb:56:1c:a4:79:f2:ba:ee:c9:8f:02:db:1c:90: 2e:ad:17:16:98:a0:08:62:4a:97:02:36:38:b8:33: f2:dd:7e:2b:c2:92:46:7c:23:a4:33:4a:21:da:7a: 69:bd:55:ef:a2:b1:ad:6b:79:19:28:21:07:36:80: b9:5d:9f:49:56:cc:52:d5:b8:48:2e:55:a9:d0:9a: 40:b8:2f:0f:6d:ca:79:d2:d1:e3:ea:6b:e9:72:49: 6c:32:29:4b:2f:02:58:32:8f:74:1b:aa:7d:3d:d4: a5:ac:ef:c1:94:f6:ef:ca:12:db:88:d1:5d:20:c9: 37:84:2e:9f:35:07:74:3f:bc:e2:7c:0f:94:a1:e9: 38:6d:39:60:8c:90:25:72:b1:40:d8:5b:dd:a8:1e: aa:2d:0f:03:fe:be:ff:be:58:b7:7e:59:3a:c6:86: 55:34:19:1e:67:00:e0:99:22:96:69:9f:92:62:db: 29:df:41:ad:97:96:88:b6:b6:c8:b5:20:75:0f:49: 37:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:9B:42:C8:52:FC:F9:F4:89:0B:3E:3C:F5:BE:B7:AD:50:D9:E7:15 X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:a2:c3:ef:81:36:57:54:e2:f5:6e:c1:6f:ac:66:e9:3e:26: ae:0c:94:c1:16:36:2d:8f:92:13:f8:48:8a:27:cb:da:1e:4e: 40:ad:95:fc:c9:37:fe:2a:05:02:95:5d:a0:55:0f:08:42:7e: 85:98:7b:0b:b7:89:46:27:ef:99:b9:94:9f:e1:c3:96:ad:ea: ac:6e:b9:78:39:8a:6b:08:45:7b:6d:d1:b1:aa:4e:f5:53:ed: c6:e0:1a:c5:59:bb:0d:7d:97:a7:65:cc:1b:78:f1:90:73:2f: 41:f2:a7:09:c4:8e:84:8e:c6:ad:8b:87:fe:32:e0:b6:34:de: df:c7:2b:67:b1:51:1a:20:20:89:91:f6:0e:61:ce:52:a0:ae: 32:c2:eb:ee:94:e7:28:44:a0:99:3d:54:dd:2a:65:7b:cf:cc: a8:d8:42:b7:13:42:1f:d6:85:a5:ab:26:63:46:32:c7:5b:95: b9:69:1b:2d:e2:3e:5c:60:e5:f0:a0:36:29:a4:83:fe:d0:88: 3e:2c:a7:8f:d7:46:4a:ef:86:2e:c7:64:34:fc:65:97:02:60: 5f:5d:27:bc:e4:b3:c4:65:70:96:b3:c0:34:33:37:0a:68:7c: 37:f2:e9:a2:31:e6:50:6c:18:0e:91:10:cb:25:f5:88:29:7d: e0:56:63:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjUxMTA1MDAxODEwWhcNMjUxMTEyMDAxODEwWjAYMRYwFAYD VQQDEw02OTBhOTdjMi1hMjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszO2nuMiWcERJUoJfTWa4MXtxrPSXYQNPnr/ca1dnnqYSnN8rhnUeFTMk9AU QyRS7sUW6dvJz3kYKt+mu1YcpHnyuu7JjwLbHJAurRcWmKAIYkqXAjY4uDPy3X4r wpJGfCOkM0oh2nppvVXvorGta3kZKCEHNoC5XZ9JVsxS1bhILlWp0JpAuC8Pbcp5 0tHj6mvpcklsMilLLwJYMo90G6p9PdSlrO/BlPbvyhLbiNFdIMk3hC6fNQd0P7zi fA+Uoek4bTlgjJAlcrFA2FvdqB6qLQ8D/r7/vli3flk6xoZVNBkeZwDgmSKWaZ+S Ytsp30Gtl5aItrbItSB1D0k3ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqbQshS /Pn0iQs+PPW+t61Q2ecVMB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8osPvgTZXVOL1bsFvrGbpPiauDJTBFjYtj5IT+EiKJ8vaHk5ArZX8 yTf+KgUClV2gVQ8IQn6FmHsLt4lGJ++ZuZSf4cOWreqsbrl4OYprCEV7bdGxqk71 U+3G4BrFWbsNfZenZcwbePGQcy9B8qcJxI6Ejsati4f+MuC2NN7fxytnsVEaICCJ kfYOYc5SoK4ywuvulOcoRKCZPVTdKmV7z8yo2EK3E0If1oWlqyZjRjLHW5W5aRst 4j5cYOXwoDYppIP+0Ig+LKeP10ZK74Yux2Q0/GWXAmBfXSe85LPEZXCWs8A0MzcK aHw38umiMeZQbBgOkRDLJfWIKX3gVmPD -----END CERTIFICATE-----Generated at Wed Nov 5 11:47:50 2025 by rpki-client