$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft File: UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json) Hash identifier: qfRPv8+Uu1+lsgKhuFfzIhyutpuX7YwNkmsHUInsDuc= Subject key identifier: 22:85:E8:B7:42:E1:AB:09:33:6C:BF:8F:BE:77:08:89:91:21:CD:07 Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft Manifest number: 41 Signing time: Sun 19 Oct 2025 10:58:13 +0000 Manifest this update: Sun 19 Oct 2025 10:58:13 +0000 Manifest next update: Sun 26 Oct 2025 10:58:13 +0000 Files and hashes: 1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: jtr4QDxNSon5//ZpVf1uStn3nC9fPBlHT/dth16UGag=) 2: 99877EC2907F11F0BC6C6638C4F9AE02.roa (hash: o9b9ESFEEs1aF7CtI2I05ihVAB7xr51kgDbfpMmNTlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Oct 19 10:58:13 2025 GMT Not After : Oct 26 10:58:13 2025 GMT Subject: CN=68f4c445-0381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f7:65:5c:13:c2:e2:c8:bf:21:2f:7d:72:47: 0f:72:fa:a4:54:b1:c2:6e:9e:eb:10:8c:30:a4:32: 12:62:07:a5:da:d8:20:dd:15:c5:60:ee:da:72:ba: cb:da:41:ab:56:75:e1:66:e6:9a:51:d7:08:04:24: 1c:76:50:b8:f3:c1:dc:78:fb:ab:26:3b:e7:2a:ff: b6:4f:cb:4f:a8:cb:6b:13:3e:69:d2:ff:02:2f:ba: 62:75:70:22:3f:d6:67:e2:3d:0a:a6:39:3d:13:06: 9c:6c:8e:a0:77:04:f9:e4:62:c4:6e:4c:07:c1:91: 5f:cb:0a:ba:ad:3d:f5:5b:f6:e5:be:75:55:0a:6e: 03:f9:5c:c7:75:fb:f5:82:20:28:42:d8:11:81:2a: 08:a3:0f:3b:5d:bd:4a:f9:26:59:5e:ff:28:93:31: bb:1b:09:62:20:0b:cf:df:ca:9a:5b:f4:e1:80:c2: e2:25:c5:35:06:2c:0b:2c:74:f9:eb:05:18:e5:8e: c3:fb:4a:7b:92:7d:71:54:1e:51:a5:10:79:9b:f5: 7b:03:57:d3:bc:d6:6b:1f:ab:64:60:19:fd:3c:26: d5:41:1d:49:ae:95:3e:b2:f5:51:bc:af:76:a4:d3: e4:b7:46:4d:72:13:0e:bb:17:a1:4d:8e:33:27:66: ed:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:85:E8:B7:42:E1:AB:09:33:6C:BF:8F:BE:77:08:89:91:21:CD:07 X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b9:d0:41:2b:68:ea:c8:f3:8a:94:ef:77:0d:bd:5a:0a:0f: a6:2e:be:f4:fd:0b:6d:16:f4:b0:17:d5:90:59:92:c1:78:a3: 82:07:f1:43:76:2d:ff:3d:55:6b:54:74:76:80:fe:02:17:37: ad:44:20:10:d6:5e:3b:78:35:cc:b4:6e:29:b1:6d:4c:f7:ff: 23:e2:30:a8:38:5e:c9:25:dd:ec:fb:9c:dd:81:77:35:3c:b6: 2c:41:be:d9:6c:11:d5:58:35:15:cb:ed:5f:8b:55:d4:46:7f: 41:b1:9f:8d:6f:6d:fa:ab:08:59:28:7e:69:0c:c4:c2:67:a6: 0e:b8:bd:dd:35:ad:2f:76:fb:8b:d7:9b:95:77:e1:d8:5c:23: a4:92:d8:f5:ca:64:e6:44:54:f1:1e:78:da:ac:93:41:20:8c: 0e:bb:07:9b:ee:6d:09:4f:17:ec:19:5e:ef:5a:fe:44:d4:52: d0:8c:8a:ce:99:e4:89:d7:5e:5d:7c:d5:85:96:d4:65:46:c9: 96:e9:8b:fa:a7:cc:b6:65:18:be:78:85:87:7e:f1:b4:b2:a4: b1:c0:53:a7:d2:2a:11:98:c5:73:8f:52:78:1e:bb:70:1a:28: 9b:63:87:1a:3c:71:6a:d0:b8:56:bc:8b:46:ef:b2:62:ee:49: d6:3d:9b:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTNGRTExMC8GA1UEBRMoNTJBMUM0MjBEODI3QzE2Q0VBQTA0MjgzREQyOEI2NDBB MzE1NjM0RDAeFw0yNTEwMTkxMDU4MTNaFw0yNTEwMjYxMDU4MTNaMBgxFjAUBgNV BAMTDTY4ZjRjNDQ1LTAzODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW92VcE8LiyL8hL31yRw9y+qRUscJunusQjDCkMhJiB6Xa2CDdFcVg7tpyusva QatWdeFm5ppR1wgEJBx2ULjzwdx4+6smO+cq/7ZPy0+oy2sTPmnS/wIvumJ1cCI/ 1mfiPQqmOT0TBpxsjqB3BPnkYsRuTAfBkV/LCrqtPfVb9uW+dVUKbgP5XMd1+/WC IChC2BGBKgijDztdvUr5Jlle/yiTMbsbCWIgC8/fyppb9OGAwuIlxTUGLAssdPnr BRjljsP7SnuSfXFUHlGlEHmb9XsDV9O81msfq2RgGf08JtVBHUmulT6y9VG8r3ak 0+S3Rk1yEw67F6FNjjMnZu2VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIoXot0Lh qwkzbL+PvncIiZEhzQcwHwYDVR0jBBgwFoAUUqHEINgnwWzqoEKD3Si2QKMVY00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxM0ZFLzhEOEUyMkMyNTY0 MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVXFIRUlOZ253V3pxb0VLRDNTaTJRS01WWTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx M0ZFLzhEOEUyMkMyNTY0MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6 cW9FS0QzU2kyUUtNVlkwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJO50EEraOrI84qU73cNvVoKD6YuvvT9C20W9LAX1ZBZksF4o4IH8UN2 Lf89VWtUdHaA/gIXN61EIBDWXjt4Ncy0bimxbUz3/yPiMKg4Xskl3ez7nN2BdzU8 tixBvtlsEdVYNRXL7V+LVdRGf0Gxn41vbfqrCFkofmkMxMJnpg64vd01rS92+4vX m5V34dhcI6SS2PXKZOZEVPEeeNqsk0EgjA67B5vubQlPF+wZXu9a/kTUUtCMis6Z 5InXXl181YWW1GVGyZbpi/qnzLZlGL54hYd+8bSypLHAU6fSKhGYxXOPUngeu3Aa KJtjhxo8cWrQuFa8i0bvsmLuSdY9myQ= -----END CERTIFICATE-----Generated at Mon Oct 20 21:26:28 2025 by rpki-client