$ rpki-client -vvf rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft File: UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft (raw, json) Hash identifier: fdwUfarAGxJKhSoMovvTwRqs4Y4tr1nojH1qf8xN/UY= Subject key identifier: 4E:93:F7:A3:CA:44:9D:8F:7D:7D:EF:EE:0E:42:6D:6A:84:D4:64:2D Authority key identifier: 50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 Certificate issuer: /CN=A913318E/serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft Manifest number: 0127 Signing time: Sun 19 Oct 2025 07:32:16 +0000 Manifest this update: Sun 19 Oct 2025 07:32:15 +0000 Manifest next update: Sun 26 Oct 2025 07:32:15 +0000 Files and hashes: 1: UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl (hash: y0ANlxjirZBNk/gL5SoB7SQqNNQUGbTXYFDqYKOM/+I=) 2: 6EAE50E8EBFA11EEA937307AC4F9AE02.roa (hash: n4jE/JU888DErTDFi7j6yPAf5IRm3HLfX3pJFCp7TIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913318E, serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Validity Not Before: Oct 19 07:32:15 2025 GMT Not After : Oct 26 07:32:15 2025 GMT Subject: CN=68f493ff-5f8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:98:66:61:4d:4b:4b:d2:02:05:b4:01:5c:ef: 91:de:c1:5f:f3:a9:ea:85:02:49:4d:1b:b9:c8:29: 10:35:90:e3:9a:e0:aa:54:2e:65:0d:b2:3d:62:73: a7:3a:90:b8:0b:4b:cd:99:07:f8:a6:9c:c5:b0:7c: eb:e3:53:a9:db:79:27:d3:e5:34:65:3b:ab:89:95: 76:79:98:cf:d6:9e:77:04:b9:31:95:ce:e5:3d:12: 22:73:4b:11:f4:53:95:64:45:ed:be:7e:18:af:cb: 68:7f:a8:56:17:a7:d1:63:54:2b:6b:ed:5a:6e:6b: ce:1a:7a:e1:4e:bd:04:a6:a2:32:3d:c0:9e:9c:7a: 91:72:9f:cd:9d:00:a5:28:5d:54:49:eb:cb:3d:26: 2a:8c:32:e5:dd:ef:b0:d7:24:e2:49:01:cb:c9:ec: fc:36:bb:43:07:34:1d:4d:76:a6:b2:98:78:4b:9a: 77:e4:66:03:f0:68:34:e4:73:e4:89:12:76:05:18: eb:b3:df:b6:94:66:e8:e1:c5:69:3a:fe:1e:61:d7: 1e:bf:8b:17:62:17:a3:f1:26:9f:e1:01:07:3f:8b: 25:13:38:a9:7c:53:b5:1a:3f:93:c0:5d:3e:24:55: 18:0e:15:7c:13:89:0b:33:78:a8:a4:9a:f1:08:8a: 8f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:93:F7:A3:CA:44:9D:8F:7D:7D:EF:EE:0E:42:6D:6A:84:D4:64:2D X509v3 Authority Key Identifier: keyid:50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:64:b2:8f:40:9b:0f:a4:7c:fa:fd:a9:09:83:43:7f:27:06: 92:c4:7e:b0:d5:4d:5f:3d:6b:4c:4b:bd:1e:58:82:aa:64:8f: 64:af:2c:1d:49:fa:f4:4c:ab:5b:0f:bf:e6:04:56:48:da:19: ae:15:44:64:22:f1:9f:fc:67:3b:96:3c:e7:67:4c:87:08:c0: 0a:4d:26:2f:f4:c3:20:e7:46:a5:68:9c:e4:e5:0f:57:a7:f7: 85:42:41:40:5c:89:88:6d:5f:45:74:c9:5e:0e:12:1f:80:ae: 40:e8:7d:56:c7:75:13:59:c0:12:20:c3:55:20:85:3e:ef:63: 57:ed:66:ff:32:31:6d:90:e9:eb:26:ff:d1:f9:8b:61:10:ab: 74:d7:ed:68:36:77:df:14:1e:fc:a4:2c:1d:01:be:a4:bc:c9: c1:20:a4:00:d4:91:1f:69:ac:2e:a6:3c:02:a9:2c:e6:40:15: 92:9d:44:04:d8:82:f2:31:6a:dd:51:4e:d2:f3:4b:27:9f:e6: ef:49:92:2b:10:b9:c6:22:49:2f:f7:d3:d6:a3:09:24:76:6d: e5:9e:d3:94:78:47:b6:b2:cb:84:4b:81:ae:b2:f2:ad:4d:c2: f0:d1:a7:60:e0:4a:cb:b3:ae:9f:94:07:3d:d1:55:e7:cd:1a: cc:2a:1c:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzMxOEUxMTAvBgNVBAUTKDUwMEY5MjAwRUI4NkRDNUZEMDZEQjc4NkMwQ0VBNDUy RDBDRTcyMzAwHhcNMjUxMDE5MDczMjE1WhcNMjUxMDI2MDczMjE1WjAYMRYwFAYD VQQDEw02OGY0OTNmZi01ZjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5hmYU1LS9ICBbQBXO+R3sFf86nqhQJJTRu5yCkQNZDjmuCqVC5lDbI9YnOn OpC4C0vNmQf4ppzFsHzr41Op23kn0+U0ZTuriZV2eZjP1p53BLkxlc7lPRIic0sR 9FOVZEXtvn4Yr8tof6hWF6fRY1Qra+1abmvOGnrhTr0EpqIyPcCenHqRcp/NnQCl KF1USevLPSYqjDLl3e+w1yTiSQHLyez8NrtDBzQdTXamsph4S5p35GYD8Gg05HPk iRJ2BRjrs9+2lGbo4cVpOv4eYdcev4sXYhej8Saf4QEHP4slEzipfFO1Gj+TwF0+ JFUYDhV8E4kLM3iopJrxCIqPAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6T96PK RJ2PfX3v7g5CbWqE1GQtMB8GA1UdIwQYMBaAFFAPkgDrhtxf0G23hsDOpFLQznIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzE4RS82QTkwQUY4NEVC RjkxMUVFOURBNzlCNzdDNEY5QUUwMi9VQS1TQU91RzNGX1FiYmVHd002a1V0RE9j akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBLVNBT3VHM0ZfUWJiZUd3TTZrVXRET2NqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzE4RS82QTkwQUY4NEVCRjkxMUVFOURBNzlCNzdDNEY5QUUwMi9VQS1TQU91RzNG X1FiYmVHd002a1V0RE9jakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZZLKPQJsPpHz6/akJg0N/JwaSxH6w1U1fPWtMS70eWIKqZI9krywd Sfr0TKtbD7/mBFZI2hmuFURkIvGf/Gc7ljznZ0yHCMAKTSYv9MMg50alaJzk5Q9X p/eFQkFAXImIbV9FdMleDhIfgK5A6H1Wx3UTWcASIMNVIIU+72NX7Wb/MjFtkOnr Jv/R+YthEKt01+1oNnffFB78pCwdAb6kvMnBIKQA1JEfaawupjwCqSzmQBWSnUQE 2ILyMWrdUU7S80snn+bvSZIrELnGIkkv99PWowkkdm3lntOUeEe2ssuES4GusvKt TcLw0adg4ErLs66flAc90VXnzRrMKhxY -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:56 2025 by rpki-client