$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft File: UEMacUvIutzoUZ5LmRR-FR7fd5c.mft (raw, json) Hash identifier: KzQ6Zq2cVY/7h5f7UcAa5nC3LzPQsNjPbkrYn72viB4= Subject key identifier: 82:C9:EF:38:77:F7:84:65:14:73:2E:AA:9A:6C:D3:90:8D:80:99:5A Authority key identifier: 50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 Certificate issuer: /CN=A91DA289/serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft Manifest number: 066A Signing time: Sun 19 Oct 2025 00:06:36 +0000 Manifest this update: Sun 19 Oct 2025 00:06:35 +0000 Manifest next update: Sun 26 Oct 2025 00:06:35 +0000 Files and hashes: 1: UEMacUvIutzoUZ5LmRR-FR7fd5c.crl (hash: nhjPTaEFh3/BEPvHYN1Mk8KP0c758VIPuJCSG6mUL5g=) 2: 0BE0F63C9CBB11EBA4731E19C4F9AE02.roa (hash: ln0lvafoMsf2mDlhqtsb54uvMwde1qgk9VtDAAnL3YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA289, serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Validity Not Before: Oct 19 00:06:35 2025 GMT Not After : Oct 26 00:06:35 2025 GMT Subject: CN=68f42b8c-8d55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ae:28:ff:73:2e:11:3d:ec:25:18:87:00:5b: 55:91:da:dd:91:22:2b:4a:f7:bf:15:7f:81:85:65: eb:82:81:81:48:4a:df:49:c4:06:67:f8:a1:3b:79: 02:88:87:19:a6:ee:99:98:03:63:b7:de:43:b7:3e: 41:26:62:14:d0:cf:9c:18:9c:37:5c:25:95:af:54: c7:6f:c1:fa:58:16:ed:e8:e5:b0:5e:37:fd:ae:4e: cd:d4:40:ec:f3:5b:92:37:be:02:58:70:48:14:6e: be:ef:bd:2a:e3:54:d5:9d:a9:61:d0:61:f7:20:cc: 39:fa:d8:12:de:55:2e:8e:fc:65:57:f7:38:33:0b: f4:23:0c:ef:6c:84:81:3e:65:1d:a2:d7:16:36:6e: 9d:a5:52:99:26:b5:c7:98:1f:93:1a:cb:55:02:19: 8a:99:e6:15:0b:29:08:33:f9:e2:07:49:ad:da:d5: a2:9c:c5:d9:37:d8:50:1f:33:7d:33:a8:a1:ce:14: d5:17:be:ab:3b:61:82:78:cd:3c:7f:17:7b:e8:53: 19:c8:c7:1b:fe:b5:d9:e3:62:0b:4b:37:19:c5:30: ee:c4:06:35:23:ac:cc:6c:24:51:da:27:14:4e:3b: 31:95:e3:d2:cb:2b:c6:49:a4:5a:e3:63:e4:83:eb: 49:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C9:EF:38:77:F7:84:65:14:73:2E:AA:9A:6C:D3:90:8D:80:99:5A X509v3 Authority Key Identifier: keyid:50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:16:dc:ba:76:d6:76:0c:58:5d:6d:8e:12:c7:e2:95:b7:4f: 2e:10:61:09:fa:a4:79:7c:5b:04:4f:28:ba:bd:b5:d1:b9:f2: c5:88:00:e5:17:70:f8:2f:6d:7a:2c:a4:f6:88:86:1d:e4:5c: bc:a8:df:a8:12:77:21:42:c9:4d:7d:48:21:f6:2d:64:ea:9f: 21:1d:e6:55:3b:e4:b9:d8:9f:5b:41:f0:d4:6c:2e:9d:4d:1e: e7:05:ac:99:f8:12:02:45:0b:02:bd:06:97:9f:df:04:41:04: c0:a4:a2:31:6a:2f:83:a2:87:e6:65:25:22:14:80:0b:a8:50: 0c:76:69:38:2b:d0:0b:9b:1e:83:7d:ed:09:b2:f9:aa:04:d9: 59:f9:3f:5a:19:e4:59:e4:45:dd:85:f9:80:2d:cf:26:a6:e3: 53:e6:85:b6:30:a7:e1:99:db:5e:45:14:28:f0:19:77:29:a1: 99:34:47:ad:50:ba:24:88:d5:9f:f3:62:ae:91:e8:d3:4c:29: 39:aa:b2:4b:f8:64:b0:f9:29:e3:7f:20:20:19:82:2c:d3:d6: b6:a2:10:50:46:a5:ac:33:04:f0:11:bc:de:96:c9:0e:2a:85: 09:42:8b:19:b3:19:d6:f1:be:ff:f4:6d:8b:66:59:b5:45:fe: dd:3b:c6:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyODkxMTAvBgNVBAUTKDUwNDMxQTcxNEJDOEJBRENFODUxOUU0Qjk5MTQ3RTE1 MUVERjc3OTcwHhcNMjUxMDE5MDAwNjM1WhcNMjUxMDI2MDAwNjM1WjAYMRYwFAYD VQQDEw02OGY0MmI4Yy04ZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva4o/3MuET3sJRiHAFtVkdrdkSIrSve/FX+BhWXrgoGBSErfScQGZ/ihO3kC iIcZpu6ZmANjt95Dtz5BJmIU0M+cGJw3XCWVr1THb8H6WBbt6OWwXjf9rk7N1EDs 81uSN74CWHBIFG6+770q41TVnalh0GH3IMw5+tgS3lUujvxlV/c4Mwv0IwzvbISB PmUdotcWNm6dpVKZJrXHmB+TGstVAhmKmeYVCykIM/niB0mt2tWinMXZN9hQHzN9 M6ihzhTVF76rO2GCeM08fxd76FMZyMcb/rXZ42ILSzcZxTDuxAY1I6zMbCRR2icU TjsxlePSyyvGSaRa42Pkg+tJVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILJ7zh3 94RlFHMuqpps05CNgJlaMB8GA1UdIwQYMBaAFFBDGnFLyLrc6FGeS5kUfhUe33eX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI4OS9FMDFCMDU0NDlD QjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0em9VWjVMbVJSLUZSN2Zk NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VFTWFjVXZJdXR6b1VaNUxtUlItRlI3ZmQ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI4OS9FMDFCMDU0NDlDQjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0 em9VWjVMbVJSLUZSN2ZkNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKFty6dtZ2DFhdbY4Sx+KVt08uEGEJ+qR5fFsETyi6vbXRufLFiADl F3D4L216LKT2iIYd5Fy8qN+oEnchQslNfUgh9i1k6p8hHeZVO+S52J9bQfDUbC6d TR7nBayZ+BICRQsCvQaXn98EQQTApKIxai+DoofmZSUiFIALqFAMdmk4K9ALmx6D fe0JsvmqBNlZ+T9aGeRZ5EXdhfmALc8mpuNT5oW2MKfhmdteRRQo8Bl3KaGZNEet ULokiNWf82KukejTTCk5qrJL+GSw+SnjfyAgGYIs09a2ohBQRqWsMwTwEbzelskO KoUJQosZsxnW8b7/9G2LZlm1Rf7dO8bY -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:18 2025 by rpki-client