$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft File: UtXW_72oj1ReUbr5n32s4ZPAblc.mft (raw, json) Hash identifier: GLWlbAz7eUCMqswHuBjk+8cK7i+Nl4/GV2c30dW/Isw= Subject key identifier: F5:82:BC:72:DD:08:2D:B0:72:28:DB:ED:23:28:A3:82:8F:D6:52:6F Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 0828 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft Manifest number: 0821 Signing time: Tue 04 Nov 2025 20:56:35 +0000 Manifest this update: Tue 04 Nov 2025 20:56:34 +0000 Manifest next update: Tue 11 Nov 2025 20:56:34 +0000 Files and hashes: 1: UtXW_72oj1ReUbr5n32s4ZPAblc.crl (hash: SWP5uYn2pFWjd1X4li3d7//+Nfsw0xqiJClVThvmDAE=) 2: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (hash: X3Zxmzy65RFAr4wRuSkQChvufHFA8zifcOkEqKI8dKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:56:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2088 (0x828) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6, serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: Nov 4 20:56:34 2025 GMT Not After : Nov 11 20:56:34 2025 GMT Subject: CN=690a6883-601a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:42:98:6f:1f:c6:47:a3:1d:84:31:0d:b0:ea: 3d:24:ee:bb:3f:89:8e:4f:bb:9a:46:a1:57:89:38: 26:10:e6:f7:e0:0d:24:31:1a:e3:24:d2:9e:47:0f: be:fb:bb:b7:6f:09:1f:cb:f4:23:ae:48:98:94:bd: 47:91:85:c6:d0:08:47:9d:a5:40:37:e7:f5:f3:e8: 32:75:c6:f9:5e:01:41:3b:db:a3:a0:e4:e3:4e:e1: 0b:5c:53:c8:33:55:fe:28:91:cc:8c:90:4c:3b:89: 8e:bb:41:a3:53:60:ee:76:e8:62:ba:64:ca:dc:f9: 44:b4:60:56:51:81:7c:e4:b0:28:91:e3:60:11:4d: b9:01:28:df:94:97:62:06:1d:d0:9e:3f:9b:e4:4f: d2:a4:b3:21:39:40:7c:6b:bc:4c:7a:3b:0c:ee:28: 01:c0:e6:f9:87:8a:aa:0e:04:39:24:b6:c9:9c:cc: ae:08:7c:af:fa:99:50:2a:b1:0c:b6:bb:9d:84:75: 87:42:cc:55:35:56:67:89:e0:a8:e5:95:d6:5e:f6: 5e:6b:be:8c:1d:1c:be:c6:19:c0:44:7f:b1:7a:f5: 67:18:05:1d:af:c4:67:24:12:82:b4:25:35:67:20: f2:c7:23:6d:1c:6b:69:65:b2:63:0b:00:ad:d5:52: 11:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:82:BC:72:DD:08:2D:B0:72:28:DB:ED:23:28:A3:82:8F:D6:52:6F X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f5:cb:c4:49:87:5a:2f:48:6d:ac:c8:68:cb:f5:d4:62:b9: 6b:d2:c2:33:23:50:21:e3:54:08:1b:bf:c8:71:f7:a7:28:3d: 7a:f1:a5:0c:8b:7f:9c:b7:22:32:a3:56:fd:74:b1:57:b6:57: 43:1d:7e:83:2f:37:b5:75:52:d7:ba:7e:ac:45:4b:34:18:b3: 39:4a:83:c8:41:4b:1a:7e:ab:bc:dc:20:73:7a:e4:35:ae:f2: a0:10:b6:82:5d:8d:7c:7a:f3:96:a5:b6:51:6c:0d:d8:db:1d: 0b:25:34:7b:2f:8e:02:17:5d:44:fe:f6:34:ce:c3:01:6d:76: 8f:ae:36:49:e9:07:b7:f6:37:36:9e:fb:36:d1:a4:73:16:f4: fa:33:67:72:13:37:2c:77:2f:bd:e3:1b:2a:93:ea:04:d9:85: 1e:16:fb:2c:e3:45:2e:08:15:92:23:79:e3:a4:0c:59:67:ef: 67:b4:98:49:64:6c:d5:75:d9:be:43:a0:89:35:a8:58:9a:39: 48:50:09:f0:01:68:5c:99:7d:61:8c:de:b3:b0:55:2d:8e:31: 73:5a:b1:63:8d:07:96:3b:ff:ac:a2:e1:35:d2:2f:52:ce:dd: c5:2e:21:81:c7:c4:bb:4e:dd:c1:75:32:70:af:11:91:a3:7a: 9c:e8:a0:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjUxMTA0MjA1NjM0WhcNMjUxMTExMjA1NjM0WjAYMRYwFAYD VQQDEw02OTBhNjg4My02MDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EKYbx/GR6MdhDENsOo9JO67P4mOT7uaRqFXiTgmEOb34A0kMRrjJNKeRw++ +7u3bwkfy/QjrkiYlL1HkYXG0AhHnaVAN+f18+gydcb5XgFBO9ujoOTjTuELXFPI M1X+KJHMjJBMO4mOu0GjU2DuduhiumTK3PlEtGBWUYF85LAokeNgEU25ASjflJdi Bh3Qnj+b5E/SpLMhOUB8a7xMejsM7igBwOb5h4qqDgQ5JLbJnMyuCHyv+plQKrEM trudhHWHQsxVNVZnieCo5ZXWXvZea76MHRy+xhnARH+xevVnGAUdr8RnJBKCtCU1 ZyDyxyNtHGtpZbJjCwCt1VIRcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWCvHLd CC2wcijb7SMoo4KP1lJvMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdGNi9FRDkzQ0VFOEYyQjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2ox UmVVYnI1bjMyczRaUEFibGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK9cvESYdaL0htrMhoy/XUYrlr0sIzI1Ah41QIG7/IcfenKD168aUM i3+ctyIyo1b9dLFXtldDHX6DLze1dVLXun6sRUs0GLM5SoPIQUsafqu83CBzeuQ1 rvKgELaCXY18evOWpbZRbA3Y2x0LJTR7L44CF11E/vY0zsMBbXaPrjZJ6Qe39jc2 nvs20aRzFvT6M2dyEzcsdy+94xsqk+oE2YUeFvss40UuCBWSI3njpAxZZ+9ntJhJ ZGzVddm+Q6CJNahYmjlIUAnwAWhcmX1hjN6zsFUtjjFzWrFjjQeWO/+souE10i9S zt3FLiGBx8S7Tt3BdTJwrxGRo3qc6KAo -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:45 2025 by rpki-client