$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: 8S2o6jLRvenIAH3ly5eL/CzeG4zGdrhHtD+PEFFoZro= Subject key identifier: 63:21:B1:50:9E:60:F7:71:95:52:73:0C:7F:5B:B4:DC:6C:1B:60:1C Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 1036 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 102E Signing time: Tue 04 Nov 2025 15:47:50 +0000 Manifest this update: Tue 04 Nov 2025 15:47:49 +0000 Manifest next update: Tue 11 Nov 2025 15:47:49 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: Q/T8ODxVDOV/rJEyqy52lDdPbfT6e6XGTqfAn03c2HQ=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: IX9d9TIKewpWNDigl1ZdHd+4/uZo37EA6gD3nX3eWyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4150 (0x1036) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: Nov 4 15:47:49 2025 GMT Not After : Nov 11 15:47:49 2025 GMT Subject: CN=690a2025-19ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c3:64:ab:08:1f:fe:69:32:a3:d3:69:cc:4d: aa:57:34:a9:c3:44:2d:5e:f7:12:c3:01:6d:c4:bc: b8:1d:ff:f7:c4:bc:97:01:7d:04:25:27:93:00:22: 6f:84:d4:54:c5:6f:7d:01:6d:db:37:3a:71:03:a5: b6:3f:93:4c:07:0a:2d:9d:85:5f:d9:05:36:02:e1: 79:4d:2e:62:75:b0:e9:6a:8c:30:10:ff:f4:4c:1b: b7:36:34:c2:59:03:be:a3:11:a3:c8:9e:ae:49:8b: ec:f0:cc:03:8d:ba:b5:d1:63:82:66:a5:76:ee:5c: c9:de:a1:c6:13:bb:80:62:c9:97:b6:45:a9:77:a5: c0:48:f3:b6:36:cd:52:d2:92:21:09:4c:c9:bc:10: 4f:3f:82:2a:6f:4e:c5:c2:ae:d3:4f:08:06:ba:27: c4:a2:3e:20:5a:50:1d:d4:fa:4c:00:6a:f9:42:3a: 5f:ea:ad:69:f0:6a:0a:d7:5e:2d:5e:c5:12:78:cf: d5:57:d6:8f:d4:86:c7:58:df:e2:e7:99:5f:16:72: 54:05:bd:20:50:ef:a8:6a:74:f0:62:53:e0:18:49: 17:da:3f:e2:14:47:b9:7b:91:26:bd:e4:6a:95:06: 85:3e:8b:15:e0:08:e9:1f:1c:c1:11:b2:bb:f4:56: 47:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:21:B1:50:9E:60:F7:71:95:52:73:0C:7F:5B:B4:DC:6C:1B:60:1C X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:d0:9d:9a:92:1e:70:04:a2:ab:e8:d5:86:fc:84:26:bb:f7: 73:00:2f:44:06:15:2c:e5:74:58:73:19:59:31:f0:b8:10:c3: 2e:3c:e0:7f:68:47:4c:f7:c6:fd:00:23:25:98:a2:cd:7d:bd: 08:b9:aa:d1:9e:34:a3:78:f0:66:ab:ed:13:81:5e:2c:ea:73: b7:f1:7d:ff:10:10:99:8c:3b:4d:d8:fa:e8:73:72:6d:7d:34: 28:4f:e0:31:7e:17:04:d8:4e:cf:d2:85:54:62:9c:fe:eb:80: 13:4a:7d:74:71:29:b8:ee:83:cb:0f:54:ed:cd:a4:d3:c4:4f: 8d:2b:6c:36:b9:b3:e0:7f:41:c7:28:9e:42:88:b1:ad:f2:16: e0:f1:f5:e3:1b:4e:3d:03:44:79:49:39:27:da:a1:90:ed:9e: 10:56:4d:85:72:b1:60:48:3b:80:dc:26:ce:59:9c:2a:2e:e0: c4:e9:56:da:06:be:18:c1:d8:3d:63:fe:f8:e4:e8:ec:08:82: 93:70:9a:ae:ca:79:03:89:7e:8a:ac:0d:4a:0e:b3:ee:da:f3: 4e:70:8d:64:5f:55:d5:d6:7e:09:4b:f7:e7:6f:02:9b:c7:c0: f1:42:e5:5c:a8:16:18:6f:71:79:b9:aa:49:c4:13:c4:ac:9b: c0:a2:d7:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjUxMTA0MTU0NzQ5WhcNMjUxMTExMTU0NzQ5WjAYMRYwFAYD VQQDEw02OTBhMjAyNS0xOWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcNkqwgf/mkyo9NpzE2qVzSpw0QtXvcSwwFtxLy4Hf/3xLyXAX0EJSeTACJv hNRUxW99AW3bNzpxA6W2P5NMBwotnYVf2QU2AuF5TS5idbDpaowwEP/0TBu3NjTC WQO+oxGjyJ6uSYvs8MwDjbq10WOCZqV27lzJ3qHGE7uAYsmXtkWpd6XASPO2Ns1S 0pIhCUzJvBBPP4Iqb07Fwq7TTwgGuifEoj4gWlAd1PpMAGr5Qjpf6q1p8GoK114t XsUSeM/VV9aP1IbHWN/i55lfFnJUBb0gUO+oanTwYlPgGEkX2j/iFEe5e5EmveRq lQaFPosV4AjpHxzBEbK79FZHQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMhsVCe YPdxlVJzDH9btNxsG2AcMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL0J2akh5wBKKr6NWG/IQmu/dzAC9EBhUs5XRYcxlZMfC4EMMuPOB/ aEdM98b9ACMlmKLNfb0IuarRnjSjePBmq+0TgV4s6nO38X3/EBCZjDtN2Proc3Jt fTQoT+AxfhcE2E7P0oVUYpz+64ATSn10cSm47oPLD1TtzaTTxE+NK2w2ubPgf0HH KJ5CiLGt8hbg8fXjG049A0R5STkn2qGQ7Z4QVk2FcrFgSDuA3CbOWZwqLuDE6Vba Br4Ywdg9Y/745OjsCIKTcJquynkDiX6KrA1KDrPu2vNOcI1kX1XV1n4JS/fnbwKb x8DxQuVcqBYYb3F5uapJxBPErJvAotc5 -----END CERTIFICATE-----Generated at Tue Nov 4 21:30:59 2025 by rpki-client