$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: Gf1lkTErAD6ij0NzlENqAR65qMDoG+h3DHtd4GAEHQw= Subject key identifier: E6:3D:C7:94:4F:BF:4B:5E:47:D7:78:A2:33:52:FE:B2:5E:18:D6:EA Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 01A3 Signing time: Sun 19 Oct 2025 05:47:51 +0000 Manifest this update: Sun 19 Oct 2025 05:47:51 +0000 Manifest next update: Sun 26 Oct 2025 05:47:51 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: uU474DcmesJPJXZweSAJDhI9HhGWgITL5+xneEA0eg4=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: 2h3iteWHWvj7eGZvRPLFqMA2o9nj7836hPNLX4DVTdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:47:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Oct 19 05:47:51 2025 GMT Not After : Oct 26 05:47:51 2025 GMT Subject: CN=68f47b87-fb4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6e:7a:d9:ea:95:8d:da:bf:88:85:b8:7e:8f: f2:85:9d:92:2b:4f:ad:fd:49:76:7a:9e:01:59:b6: 01:52:5c:a8:e4:df:54:b4:02:03:89:00:58:e6:85: f9:1c:3e:b7:47:4a:50:98:0c:f5:1a:3e:75:ae:ee: d0:42:c5:e1:4a:c4:77:7d:37:d2:1d:1e:ce:fa:09: 2a:ee:fb:c1:b1:a6:98:67:3e:4a:5e:6b:ff:6f:df: db:53:47:22:69:a8:5c:88:c1:4b:66:cf:50:1a:cb: 2e:14:65:60:3b:b3:44:68:b2:41:2f:25:d8:02:19: db:6d:8b:83:e7:e1:2d:a6:a5:c0:23:b9:20:38:91: ba:d4:a6:47:77:be:d9:a2:2d:02:06:a7:9c:d6:c2: 13:2e:99:0e:a4:3a:af:aa:3e:83:7a:be:64:66:82: 2b:d1:bb:19:3f:6d:62:1a:8d:ea:fd:26:c6:d6:79: db:10:44:00:f6:53:a8:7a:aa:18:be:b7:40:32:46: 61:ae:99:ff:d1:8f:10:57:05:1f:23:f9:69:ca:be: 90:aa:b9:30:2f:6a:08:df:72:fe:53:8d:b6:f3:57: a1:db:57:1f:53:ad:9d:31:9f:a5:55:71:c1:b6:28: 00:ba:b1:09:43:49:1c:42:d2:e7:80:c4:66:c4:85: c5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3D:C7:94:4F:BF:4B:5E:47:D7:78:A2:33:52:FE:B2:5E:18:D6:EA X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:e8:2b:d7:46:80:21:44:12:57:17:c6:4b:a0:1f:c9:8f:7c: 65:b9:46:1b:ac:63:7e:e9:11:f5:1a:ea:f5:53:45:46:8d:c9: 3e:2b:f7:b6:4b:dc:09:b2:5a:61:54:f3:52:cc:23:de:43:5c: b8:7d:4a:4f:38:21:4f:c9:4b:af:60:fb:f1:ef:e5:f3:57:8d: e9:5c:09:79:1c:4a:55:70:93:8a:8e:4e:11:d6:cc:29:b1:1d: 66:e0:34:aa:0e:95:fc:32:d8:7a:aa:98:14:c1:8b:f9:e5:eb: 98:32:70:d2:b3:52:aa:14:22:73:fc:bd:16:25:f8:06:50:8b: c3:b9:73:01:24:9c:3f:3d:d3:6b:19:3c:a9:41:91:05:69:93: f5:34:3d:c9:fc:87:aa:c8:ec:fb:78:bd:8e:c1:6f:14:f6:90: 7e:16:45:ca:23:8a:80:d7:65:24:fd:d1:94:8b:70:89:81:21: ec:4e:39:ed:fe:08:a4:e3:fb:27:e4:ff:8b:c2:b7:f8:46:1f: 7f:4d:b0:fe:d6:2d:eb:75:b5:d8:8a:1d:d6:ac:9f:71:4a:57: 0f:e6:46:20:2b:34:d4:7f:96:d3:42:1b:a5:23:fd:74:dd:d1: 5f:1f:b0:99:04:57:37:5d:07:0f:c9:6b:19:a7:10:63:60:ce: bc:8f:27:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUxMDE5MDU0NzUxWhcNMjUxMDI2MDU0NzUxWjAYMRYwFAYD VQQDEw02OGY0N2I4Ny1mYjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2562eqVjdq/iIW4fo/yhZ2SK0+t/Ul2ep4BWbYBUlyo5N9UtAIDiQBY5oX5 HD63R0pQmAz1Gj51ru7QQsXhSsR3fTfSHR7O+gkq7vvBsaaYZz5KXmv/b9/bU0ci aahciMFLZs9QGssuFGVgO7NEaLJBLyXYAhnbbYuD5+EtpqXAI7kgOJG61KZHd77Z oi0CBqec1sITLpkOpDqvqj6Der5kZoIr0bsZP21iGo3q/SbG1nnbEEQA9lOoeqoY vrdAMkZhrpn/0Y8QVwUfI/lpyr6QqrkwL2oI33L+U42281eh21cfU62dMZ+lVXHB tigAurEJQ0kcQtLngMRmxIXFKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOY9x5RP v0teR9d4ojNS/rJeGNbqMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG6CvXRoAhRBJXF8ZLoB/Jj3xluUYbrGN+6RH1Gur1U0VGjck+K/e2 S9wJslphVPNSzCPeQ1y4fUpPOCFPyUuvYPvx7+XzV43pXAl5HEpVcJOKjk4R1swp sR1m4DSqDpX8Mth6qpgUwYv55euYMnDSs1KqFCJz/L0WJfgGUIvDuXMBJJw/PdNr GTypQZEFaZP1ND3J/IeqyOz7eL2OwW8U9pB+FkXKI4qA12Uk/dGUi3CJgSHsTjnt /gik4/sn5P+Lwrf4Rh9/TbD+1i3rdbXYih3WrJ9xSlcP5kYgKzTUf5bTQhulI/10 3dFfH7CZBFc3XQcPyWsZpxBjYM68jyf9 -----END CERTIFICATE-----Generated at Tue Oct 21 00:38:57 2025 by rpki-client