$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: wLmtMxn987ORmkHDYJf5O2Le+HwQ78XDCp7t2Gee3yQ= Subject key identifier: 6F:A0:94:15:76:EB:33:38:05:E0:BB:EE:33:0F:35:52:09:3F:61:CA Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0894 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 2026 Signing time: Mon 20 Oct 2025 16:54:18 +0000 Manifest this update: Mon 20 Oct 2025 16:54:17 +0000 Manifest next update: Mon 27 Oct 2025 16:54:17 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: kLlesf65HEtQMcKL5fOOoZJpAgjiFOq6Mkx5pl0BYsE=) 2: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: hgO4m8NBFvCWTk/xZ7lTPgH3uo1aBC3KP8OdcPsjkbo=) 3: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: XzzXA6m5Sfbs0sLhTPVckgYHL3ZiipFrwRLSzgKZ33U=) 4: 172C2B96197711F0A993397AC4F9AE02.roa (hash: 8Qo70bxIag9X+h+p9rkvEiGVmiiK66r021Qwo1g6tkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2196 (0x894) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Oct 20 16:54:17 2025 GMT Not After : Oct 27 16:54:17 2025 GMT Subject: CN=68f6693a-ec0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4d:d5:a4:1c:10:47:b3:b8:02:2c:d8:84:fe: 1f:6f:53:2b:a5:83:84:bf:d9:4b:0a:bf:f9:b9:74: c5:e2:6c:87:a1:2a:dd:32:ba:8b:46:d5:de:13:16: 09:ad:28:f9:a9:5e:35:54:c7:3e:6b:f3:4c:bd:72: e0:8e:4c:f9:e8:35:4e:a5:a6:64:bb:a0:ed:e3:24: 2c:bf:24:07:6b:d9:5f:af:f5:1e:7c:20:9c:de:48: 7c:a1:5d:6d:61:60:f9:e2:c2:76:eb:4d:73:84:1e: c6:2d:48:e9:fd:c5:9e:f1:88:97:c0:e2:24:c5:54: 91:3c:c1:8a:a7:dd:9f:e2:16:a0:48:df:cc:ee:c9: 88:12:43:95:c3:a2:a2:f2:fc:1c:b7:37:78:32:05: 58:4c:c8:0e:6f:69:d2:86:ee:e7:68:a4:13:9c:a3: 46:30:aa:76:70:1c:fa:04:b9:4b:25:87:83:a6:33: 73:c8:2e:67:8e:5b:9a:8a:a2:64:b7:f8:a4:25:6a: 26:89:30:78:f4:5e:92:b1:d7:c2:d8:4b:d6:35:12: 0b:26:da:71:4e:6c:6d:97:17:d0:a3:77:1f:f9:9b: 6f:73:72:9f:ed:c1:c8:8f:eb:1b:14:74:ef:dc:72: 1e:cb:20:9a:c6:a1:e1:b6:2b:49:89:2a:f2:d8:38: 93:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:A0:94:15:76:EB:33:38:05:E0:BB:EE:33:0F:35:52:09:3F:61:CA X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:68:2b:32:2f:c8:46:06:80:42:56:f9:12:4f:f6:14:f7:0a: 59:37:81:e7:57:ba:10:1e:2c:2e:38:14:1e:6f:63:fa:4b:a2: 33:5f:7d:04:73:d8:6f:31:7f:24:34:b2:a4:f7:cd:1e:0e:aa: 76:94:f5:82:f9:be:74:4b:1e:86:ff:a9:ec:d5:43:9d:8b:3d: e3:bf:d0:52:7f:fd:a2:95:e8:bc:46:51:91:07:cf:c5:58:9d: bd:45:3e:ab:f7:f7:79:f9:42:75:1b:34:e9:ca:b9:fe:64:4d: d1:1c:00:1c:58:50:36:e6:26:4a:8f:00:f8:f8:f8:92:c9:e4: 92:d0:4f:9f:ba:a3:52:9e:2f:8d:0b:4e:b0:9d:75:3b:43:7f: c0:ca:c5:76:cf:5b:6e:eb:c6:1b:51:f0:ee:06:f3:2a:3f:5b: 47:f9:c3:8b:6c:29:96:25:17:02:4e:70:1a:9e:1e:21:97:cb: 33:61:7e:f4:07:5b:cd:09:a1:a0:4b:b9:da:a4:c2:fa:80:27: b7:2b:d6:db:10:c1:be:7a:b7:23:57:22:a0:b6:7d:06:5f:88: fd:a3:5b:75:04:1c:a6:11:ea:23:07:73:c6:03:89:05:2b:9a: f3:d7:8d:06:7b:20:f8:19:ee:b3:58:95:fa:f1:5c:0d:0e:4f: 19:d9:a0:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjUxMDIwMTY1NDE3WhcNMjUxMDI3MTY1NDE3WjAYMRYwFAYD VQQDEw02OGY2NjkzYS1lYzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1U3VpBwQR7O4AizYhP4fb1MrpYOEv9lLCr/5uXTF4myHoSrdMrqLRtXeExYJ rSj5qV41VMc+a/NMvXLgjkz56DVOpaZku6Dt4yQsvyQHa9lfr/UefCCc3kh8oV1t YWD54sJ2601zhB7GLUjp/cWe8YiXwOIkxVSRPMGKp92f4hagSN/M7smIEkOVw6Ki 8vwctzd4MgVYTMgOb2nShu7naKQTnKNGMKp2cBz6BLlLJYeDpjNzyC5njluaiqJk t/ikJWomiTB49F6SsdfC2EvWNRILJtpxTmxtlxfQo3cf+Ztvc3Kf7cHIj+sbFHTv 3HIeyyCaxqHhtitJiSry2DiTnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+glBV2 6zM4BeC77jMPNVIJP2HKMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmaCsyL8hGBoBCVvkST/YU9wpZN4HnV7oQHiwuOBQeb2P6S6IzX30E c9hvMX8kNLKk980eDqp2lPWC+b50Sx6G/6ns1UOdiz3jv9BSf/2ilei8RlGRB8/F WJ29RT6r9/d5+UJ1GzTpyrn+ZE3RHAAcWFA25iZKjwD4+PiSyeSS0E+fuqNSni+N C06wnXU7Q3/AysV2z1tu68YbUfDuBvMqP1tH+cOLbCmWJRcCTnAanh4hl8szYX70 B1vNCaGgS7napML6gCe3K9bbEMG+ercjVyKgtn0GX4j9o1t1BBymEeojB3PGA4kF K5rz140GeyD4Ge6zWJX68VwNDk8Z2aDu -----END CERTIFICATE-----Generated at Tue Oct 21 04:49:48 2025 by rpki-client