$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft File: UMP9EvajMVgZtSurzBmPsNv9QTo.mft (raw, json) Hash identifier: AMIuy6IvJRo1+LmP3lQRADVxkR2pxdyeUE/6GezxCbA= Subject key identifier: 3B:ED:5D:67:A3:48:63:4E:FB:0B:12:1D:6C:1D:FA:E0:56:B5:D3:FD Authority key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A Certificate issuer: /CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Certificate serial: 0423 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft Manifest number: 041E Signing time: Sun 19 Oct 2025 02:17:04 +0000 Manifest this update: Sun 19 Oct 2025 02:17:04 +0000 Manifest next update: Sun 26 Oct 2025 02:17:04 +0000 Files and hashes: 1: UMP9EvajMVgZtSurzBmPsNv9QTo.crl (hash: lXaGF6dXtwf1k1qNku3iS+vWAHn2S7prKEMAo4Z6Vdo=) 2: 296C190484AD11EC9C3F837CC4F9AE02.roa (hash: /RxOlV3ierU9U8XUpOrcDZ1BfZBiiZXrWx/RXW8pGyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1059 (0x423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE616, serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Validity Not Before: Oct 19 02:17:04 2025 GMT Not After : Oct 26 02:17:04 2025 GMT Subject: CN=68f44a20-24b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:55:d0:74:a4:0d:c6:68:b9:5c:66:f6:7e:27: 33:c1:67:a9:e2:07:79:59:07:e5:82:94:a3:16:3a: b4:4d:aa:0e:57:1b:e5:a3:1b:0b:41:ac:63:5a:d1: 8b:33:30:82:08:78:ff:6f:78:b4:9f:39:11:d9:4d: 16:8d:bf:df:19:aa:f7:cc:f3:94:12:e7:75:ab:19: 5d:35:04:e6:40:cd:ba:98:d9:25:49:32:44:c3:80: fb:e3:1e:42:57:b4:e5:ec:2b:bd:7b:fb:23:e3:9c: 54:3a:f8:0c:9d:1b:9c:72:99:47:f3:0e:13:d0:fb: 0d:b8:b4:ae:77:74:84:14:3f:78:55:0e:94:16:5c: 80:47:e3:07:b4:ba:95:19:73:31:03:b8:a1:f3:ad: bd:65:40:4c:a8:c1:50:26:2b:c7:c1:1f:de:8a:40: 07:95:6b:29:e9:09:74:4c:44:b0:83:2c:9d:65:10: 1b:b9:2c:99:68:58:4d:57:54:24:42:ae:1d:1f:91: 27:1d:9d:f3:35:93:cb:42:51:ba:04:03:10:06:b2: ad:75:6f:ca:c5:d6:ba:f6:8d:67:d0:20:13:51:19: 2f:33:f4:1e:0f:ac:0f:4e:75:f6:47:fc:de:e6:3e: 00:c7:25:24:28:2f:8b:b0:92:dd:df:29:d4:2e:6a: f6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:ED:5D:67:A3:48:63:4E:FB:0B:12:1D:6C:1D:FA:E0:56:B5:D3:FD X509v3 Authority Key Identifier: keyid:50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:86:0b:d7:e9:cb:fa:f7:6d:6c:bc:70:c6:37:e8:00:19:02: ff:7c:88:4a:ed:d0:85:94:e6:a8:d8:a9:24:aa:50:85:9a:8a: ac:d3:c4:3e:d5:47:49:e2:75:90:7e:8e:78:d7:03:4c:c3:47: 50:65:5d:a8:7a:d8:28:97:19:9a:29:9d:29:44:5e:49:bb:87: 56:89:10:f0:b1:b0:d0:f8:48:65:e0:9e:43:ee:da:96:fa:d2: 58:3e:49:c0:93:fc:ad:63:fb:3e:cf:c9:aa:bf:e8:04:ca:bd: c6:83:e1:64:d8:91:ec:dc:31:6c:34:6f:ad:73:fb:18:a6:9d: 47:e9:01:66:f0:c3:5e:4d:df:59:85:0c:60:68:7b:18:1d:ce: 6c:cf:f7:7f:4a:ce:97:66:c4:4d:6c:26:1e:05:15:a0:63:b7: 25:4c:31:c9:89:36:88:68:c7:63:d3:d9:43:20:86:f0:61:02: cc:68:cd:50:d6:3d:4a:e8:24:7a:49:08:ef:28:c3:88:c4:18: 04:25:b9:5e:ea:dd:d0:44:9b:fc:f4:fe:16:2f:ea:ce:0c:93: 31:48:18:e8:e3:29:6f:e3:8e:09:a9:ec:72:b4:8b:07:97:77: de:09:33:54:a9:5f:b5:ca:9a:0f:f4:6d:c7:e1:2d:70:60:6f: f7:6c:8e:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJBQkNDMTk4RkIw REJGRDQxM0EwHhcNMjUxMDE5MDIxNzA0WhcNMjUxMDI2MDIxNzA0WjAYMRYwFAYD VQQDEw02OGY0NGEyMC0yNGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3lXQdKQNxmi5XGb2ficzwWep4gd5WQflgpSjFjq0TaoOVxvloxsLQaxjWtGL MzCCCHj/b3i0nzkR2U0Wjb/fGar3zPOUEud1qxldNQTmQM26mNklSTJEw4D74x5C V7Tl7Cu9e/sj45xUOvgMnRuccplH8w4T0PsNuLSud3SEFD94VQ6UFlyAR+MHtLqV GXMxA7ih8629ZUBMqMFQJivHwR/eikAHlWsp6Ql0TESwgyydZRAbuSyZaFhNV1Qk Qq4dH5EnHZ3zNZPLQlG6BAMQBrKtdW/Kxda69o1n0CATURkvM/QeD6wPTnX2R/ze 5j4AxyUkKC+LsJLd3ynULmr2YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvtXWej SGNO+wsSHWwd+uBWtdP9MB8GA1UdIwQYMBaAFFDD/RL2ozFYGbUrq8wZj7Db/UE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYxNi9BN0U0MjkxNjg0 QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1WZ1p0U3VyekJtUHNOdjlR VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNUDlFdmFqTVZnWnRTdXJ6Qm1Qc052OVFUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYxNi9BN0U0MjkxNjg0QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1W Z1p0U3VyekJtUHNOdjlRVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKhgvX6cv6921svHDGN+gAGQL/fIhK7dCFlOao2KkkqlCFmoqs08Q+ 1UdJ4nWQfo541wNMw0dQZV2oetgolxmaKZ0pRF5Ju4dWiRDwsbDQ+Ehl4J5D7tqW +tJYPknAk/ytY/s+z8mqv+gEyr3Gg+Fk2JHs3DFsNG+tc/sYpp1H6QFm8MNeTd9Z hQxgaHsYHc5sz/d/Ss6XZsRNbCYeBRWgY7clTDHJiTaIaMdj09lDIIbwYQLMaM1Q 1j1K6CR6SQjvKMOIxBgEJble6t3QRJv89P4WL+rODJMxSBjo4ylv444JqexytIsH l3feCTNUqV+1ypoP9G3H4S1wYG/3bI4F -----END CERTIFICATE-----Generated at Sun Oct 19 23:21:49 2025 by rpki-client