$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft File: UzSpQuM2kLKBJhu645cTXb6kE5c.mft (raw, json) Hash identifier: ueADTXOm6UZRvnKGpPzv6FnmhYxig9az5CpvWxtSPBU= Subject key identifier: 98:66:A4:C3:6D:E5:53:19:0A:EC:99:56:4C:87:E6:4C:CE:82:6C:27 Authority key identifier: 53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 Certificate issuer: /CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Certificate serial: 0882 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft Manifest number: 087B Signing time: Sat 18 Oct 2025 21:45:26 +0000 Manifest this update: Sat 18 Oct 2025 21:45:26 +0000 Manifest next update: Sat 25 Oct 2025 21:45:26 +0000 Files and hashes: 1: UzSpQuM2kLKBJhu645cTXb6kE5c.crl (hash: MjGpxYCT4wygS1yMiEL3xm4R8qT6lGmwpUa8475HltM=) 2: DF3136A2CFF011EAB2F1D086C4F9AE02.roa (hash: Us01OaqyY9hkYagplVuFKDaxQc/+mQDnpIsRSuf4AxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2178 (0x882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA022, serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Validity Not Before: Oct 18 21:45:26 2025 GMT Not After : Oct 25 21:45:26 2025 GMT Subject: CN=68f40a76-483d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:7a:72:d7:50:f9:bf:cd:b9:93:09:4b:89: d4:53:67:78:8f:03:b3:59:e5:f8:38:8a:00:0d:e6: ca:10:ba:32:d1:84:85:64:51:0f:c8:15:6b:6a:71: 9e:ab:8a:c3:40:77:c0:b9:57:5c:f7:7d:36:f6:68: a5:1a:9b:e9:4c:fb:38:89:5c:ee:7a:d1:31:39:5b: fb:8c:15:9f:fe:d1:73:ca:60:3d:a2:40:ea:19:99: b7:52:95:91:3a:70:a2:be:3c:e5:ef:d5:00:ad:f5: 13:30:34:b6:70:ad:7f:f7:6d:6c:e1:87:1f:8b:50: c3:6e:56:2f:3e:b0:d9:78:d1:ba:90:e9:63:2d:3f: 99:10:06:51:91:b4:3b:4d:dd:8c:ea:1e:72:40:ef: 88:07:99:08:74:65:bf:9f:27:7d:43:6d:58:2a:a6: b6:ba:d2:c1:37:44:15:9d:b2:32:5f:82:0b:1f:fe: f1:86:df:17:63:82:28:3d:e0:9e:51:45:b2:2b:b7: 63:7b:19:e6:91:0c:06:35:da:1d:63:f6:81:e2:a2: 8b:1a:8f:7b:65:e3:a0:7d:1d:1f:82:2f:4a:92:df: f6:00:e5:fd:fe:0a:90:f9:25:27:e7:f6:0a:01:7d: 67:a7:35:6d:7b:67:23:d8:d8:7d:b8:87:02:32:5b: 69:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:66:A4:C3:6D:E5:53:19:0A:EC:99:56:4C:87:E6:4C:CE:82:6C:27 X509v3 Authority Key Identifier: keyid:53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:48:25:4b:34:bf:19:eb:33:11:c1:48:c2:88:8c:e0:ea:b1: 08:05:93:2e:32:55:fd:f2:53:25:33:d5:2f:bd:d3:ac:a9:f8: 3d:d4:94:3c:d6:55:80:b1:65:0e:39:1f:08:a4:69:b5:b6:48: a9:c3:ad:fa:4b:99:9e:69:40:74:70:a3:9e:d4:11:f8:aa:35: 6b:84:73:ed:47:46:5f:8f:ed:b6:ba:19:6d:cd:5c:5a:d8:94: 8a:34:cc:57:55:99:7a:14:68:d9:66:cf:60:b2:1c:14:9a:fd: 09:2c:4c:dc:88:aa:da:6a:eb:51:9d:2b:ca:9e:6c:c9:68:bc: ba:1c:ad:65:c9:99:9f:bf:a5:71:07:a4:6c:00:83:40:b4:ab: a7:67:9e:81:17:c0:48:21:fc:ef:ff:83:e0:75:34:f8:eb:c3: 81:bb:e2:5f:d2:f1:5a:75:25:99:46:76:f4:b5:11:98:70:4a: e9:41:23:17:eb:d7:f8:0b:c8:6f:85:77:42:c5:18:2a:ae:c1: 23:9d:05:2e:10:22:53:31:9c:42:ff:ff:c0:56:f4:34:e7:5f: 0c:fc:47:5b:de:79:03:7b:86:25:f0:97:64:2e:fb:86:b2:ab: bb:b3:eb:25:e1:3e:4f:5c:5c:08:1f:21:fe:56:37:3e:aa:f5: e5:08:6d:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjIxMTAvBgNVBAUTKDUzMzRBOTQyRTMzNjkwQjI4MTI2MUJCQUUzOTcxMzVE QkVBNDEzOTcwHhcNMjUxMDE4MjE0NTI2WhcNMjUxMDI1MjE0NTI2WjAYMRYwFAYD VQQDEw02OGY0MGE3Ni00ODNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfl6ctdQ+b/NuZMJS4nUU2d4jwOzWeX4OIoADebKELoy0YSFZFEPyBVranGe q4rDQHfAuVdc93029milGpvpTPs4iVzuetExOVv7jBWf/tFzymA9okDqGZm3UpWR OnCivjzl79UArfUTMDS2cK1/921s4Ycfi1DDblYvPrDZeNG6kOljLT+ZEAZRkbQ7 Td2M6h5yQO+IB5kIdGW/nyd9Q21YKqa2utLBN0QVnbIyX4ILH/7xht8XY4IoPeCe UUWyK7djexnmkQwGNdodY/aB4qKLGo97ZeOgfR0fgi9Kkt/2AOX9/gqQ+SUn5/YK AX1npzVte2cj2Nh9uIcCMltpCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhmpMNt 5VMZCuyZVkyH5kzOgmwnMB8GA1UdIwQYMBaAFFM0qULjNpCygSYbuuOXE12+pBOX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMi85RDhEOTQ1OENG RUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtMS0JKaHU2NDVjVFhiNmtF NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6U3BRdU0ya0xLQkpodTY0NWNUWGI2a0U1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMi85RDhEOTQ1OENGRUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtM S0JKaHU2NDVjVFhiNmtFNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/SCVLNL8Z6zMRwUjCiIzg6rEIBZMuMlX98lMlM9UvvdOsqfg91JQ8 1lWAsWUOOR8IpGm1tkipw636S5meaUB0cKOe1BH4qjVrhHPtR0Zfj+22uhltzVxa 2JSKNMxXVZl6FGjZZs9gshwUmv0JLEzciKraautRnSvKnmzJaLy6HK1lyZmfv6Vx B6RsAINAtKunZ56BF8BIIfzv/4PgdTT468OBu+Jf0vFadSWZRnb0tRGYcErpQSMX 69f4C8hvhXdCxRgqrsEjnQUuECJTMZxC///AVvQ0518M/Edb3nkDe4Yl8JdkLvuG squ7s+sl4T5PXFwIHyH+Vjc+qvXlCG3H -----END CERTIFICATE-----Generated at Mon Oct 20 20:34:49 2025 by rpki-client