$ rpki-client -vvf rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft File: uEHIC-gYxhquhBeUDKPmnMFB348.mft (raw, json) Hash identifier: xDRTy88j65yYIPfQNKm/4h03j+a7MVNb6kiaM53rddc= Subject key identifier: 60:EA:9D:49:1C:EF:B3:2D:53:F3:3D:30:1B:A2:33:82:F8:FF:EC:28 Authority key identifier: B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F Certificate issuer: /CN=A91859A3/serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Certificate serial: 0FD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft Manifest number: 0FC4 Signing time: Sat 18 Oct 2025 18:05:16 +0000 Manifest this update: Sat 18 Oct 2025 18:05:16 +0000 Manifest next update: Sat 25 Oct 2025 18:05:16 +0000 Files and hashes: 1: uEHIC-gYxhquhBeUDKPmnMFB348.crl (hash: Tehr+R8ENSbDQhq4zLPcT8lPkLjRba4pGUxCX0IdsjM=) 2: FB45F610638211E9A58B4C45C4F9AE02.roa (hash: IofhJ7EiHeyM1r1MV+JctpkNg1pbQMhCCkdpR4fk3JY=) 3: 65EADA381A8011ECAD1E4B30C4F9AE02.roa (hash: WDBmQN8GrovE0YfJl6NcfDbYlw4MdWA6w33AFuBSc4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4050 (0xfd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859A3, serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Validity Not Before: Oct 18 18:05:16 2025 GMT Not After : Oct 25 18:05:16 2025 GMT Subject: CN=68f3d6dc-dc49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:02:04:ba:81:e3:b8:38:5f:5a:aa:0b:34:93: f1:16:b7:cf:e8:a4:d4:9d:c8:23:f2:03:c4:d8:b1: d5:d7:f7:36:f4:9b:3d:77:4a:b6:27:2b:9c:4c:74: 83:77:fb:35:c8:a7:a1:be:26:ec:74:98:38:2a:d7: b2:eb:1a:1e:99:4a:93:eb:fa:14:df:05:37:39:98: c4:1b:38:51:75:2b:a2:ab:11:c0:37:c4:f5:83:f0: 4c:8c:40:f2:a2:f5:43:12:eb:cb:57:62:f1:62:d0: c0:6c:cc:cb:f0:06:08:01:9b:ea:45:69:0e:c5:75: b4:c4:e9:29:e5:89:d5:59:6a:f3:76:8a:c9:2b:a1: 51:c6:b1:1c:7c:78:dd:b0:88:5c:04:a5:98:89:17: 08:8e:c0:5f:d0:c6:6e:79:d3:59:9b:9c:ae:9b:8f: c2:b9:9e:d6:4d:54:ef:5f:aa:d5:cb:cc:e5:8c:b8: d0:c2:33:a8:e1:00:51:35:ba:1e:dd:b7:c2:a3:62: 37:9b:da:71:00:12:22:c2:36:ba:b4:6b:69:ba:56: 8c:ea:78:88:f0:d5:9c:c1:06:37:99:3b:5a:75:bb: 70:dd:05:dc:bd:20:9f:03:32:55:13:6c:27:ad:df: 57:23:9c:f1:16:1d:df:37:b4:e8:07:5d:34:2b:3f: 87:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:EA:9D:49:1C:EF:B3:2D:53:F3:3D:30:1B:A2:33:82:F8:FF:EC:28 X509v3 Authority Key Identifier: keyid:B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:63:ff:29:98:fb:fb:ce:5e:56:64:eb:de:8d:d3:58:8c:94: 60:36:5d:c2:a8:9b:73:97:1d:31:96:20:b4:79:05:d9:1d:5c: 21:8a:9c:9a:4e:6c:53:4f:cb:cc:50:97:05:e6:3e:2d:bd:c0: 11:76:78:47:a0:a9:da:56:49:53:a5:47:bd:4c:d9:8a:71:e0: 85:2f:61:2b:94:fc:68:ee:dd:0e:f6:1b:02:42:b1:72:62:4a: 1d:f7:69:19:bf:f9:b6:cb:1a:9f:77:4f:be:0c:be:bd:80:d1: 61:d6:b7:23:53:95:bf:56:4b:37:f4:36:d1:cc:80:dd:2a:77: 3d:04:74:65:15:56:eb:a3:b5:f2:ee:57:e8:5d:92:33:af:a6: 10:1d:ea:55:b8:b2:94:75:47:8a:b0:e0:ea:e0:29:f1:f1:02: a8:cb:72:52:30:82:7f:1d:2d:66:79:4d:e7:de:89:94:13:b1: db:27:fe:0f:d1:3f:43:18:f3:b7:c1:bc:c8:fb:36:9f:e5:f0: 59:99:27:67:5c:b1:f1:ea:8e:72:32:3c:22:37:9e:01:32:fb: 8f:b6:c7:60:51:80:af:e7:18:e0:f2:5e:f2:47:ca:b6:c6:7c: 11:d5:5d:17:d2:46:bb:0e:91:36:9b:e2:c2:7d:b6:48:9d:24: 00:3d:30:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QTMxMTAvBgNVBAUTKEI4NDFDODBCRTgxOEM2MUFBRTg0MTc5NDBDQTNFNjlD QzE0MURGOEYwHhcNMjUxMDE4MTgwNTE2WhcNMjUxMDI1MTgwNTE2WjAYMRYwFAYD VQQDEw02OGYzZDZkYy1kYzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AIEuoHjuDhfWqoLNJPxFrfP6KTUncgj8gPE2LHV1/c29Js9d0q2JyucTHSD d/s1yKehvibsdJg4Ktey6xoemUqT6/oU3wU3OZjEGzhRdSuiqxHAN8T1g/BMjEDy ovVDEuvLV2LxYtDAbMzL8AYIAZvqRWkOxXW0xOkp5YnVWWrzdorJK6FRxrEcfHjd sIhcBKWYiRcIjsBf0MZuedNZm5yum4/CuZ7WTVTvX6rVy8zljLjQwjOo4QBRNboe 3bfCo2I3m9pxABIiwja6tGtpulaM6niI8NWcwQY3mTtadbtw3QXcvSCfAzJVE2wn rd9XI5zxFh3fN7ToB100Kz+HFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDqnUkc 77MtU/M9MBuiM4L4/+woMB8GA1UdIwQYMBaAFLhByAvoGMYaroQXlAyj5pzBQd+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlBMy83NjQzNUZFRTYz ODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXhocXVoQmVVREtQbW5NRkIz NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VFSElDLWdZeGhxdWhCZVVES1Btbk1GQjM0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlBMy83NjQzNUZFRTYzODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXho cXVoQmVVREtQbW5NRkIzNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKY/8pmPv7zl5WZOvejdNYjJRgNl3CqJtzlx0xliC0eQXZHVwhipya TmxTT8vMUJcF5j4tvcARdnhHoKnaVklTpUe9TNmKceCFL2ErlPxo7t0O9hsCQrFy Ykod92kZv/m2yxqfd0++DL69gNFh1rcjU5W/Vks39DbRzIDdKnc9BHRlFVbro7Xy 7lfoXZIzr6YQHepVuLKUdUeKsODq4Cnx8QKoy3JSMIJ/HS1meU3n3omUE7HbJ/4P 0T9DGPO3wbzI+zaf5fBZmSdnXLHx6o5yMjwiN54BMvuPtsdgUYCv5xjg8l7yR8q2 xnwR1V0X0ka7DpE2m+LCfbZInSQAPTBU -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:56 2025 by rpki-client