$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft File: UgupTND7nnwUDfvAzFi5PPVMIvM.mft (raw, json) Hash identifier: IvD0VtjZRNX+yqGleS+/tMsEE9dB0QX3nOgpX7I7jZ8= Subject key identifier: 38:54:B9:07:11:59:64:2E:0D:59:45:D1:15:15:2B:B1:FA:FF:BF:70 Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft Manifest number: D2 Signing time: Sun 19 Oct 2025 08:44:50 +0000 Manifest this update: Sun 19 Oct 2025 08:44:49 +0000 Manifest next update: Sun 26 Oct 2025 08:44:49 +0000 Files and hashes: 1: UgupTND7nnwUDfvAzFi5PPVMIvM.crl (hash: ygSomGFK9wvloIMwEj0bx6QQNKLgDkh816Rh6bnPRnY=) 2: D79D112E6C7F11EF92105459C4F9AE02.roa (hash: taSipunEH/A4JKib1d15PbUF8sLm4qJrajeTCDOlA48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: Oct 19 08:44:49 2025 GMT Not After : Oct 26 08:44:49 2025 GMT Subject: CN=68f4a502-7f00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:54:a3:db:da:58:94:b9:76:17:de:92:ce:35: 38:c7:16:11:b9:26:9c:6b:91:b5:95:9e:e6:b8:7b: 1e:1a:92:c9:92:73:e6:51:56:d7:85:6e:ab:d2:6d: 9b:56:48:8e:81:1b:79:70:34:b7:00:c3:27:a2:1a: a3:9a:d5:19:ef:c7:82:c9:d2:d8:bb:cf:69:75:fe: 9e:9f:f2:9e:98:ca:17:eb:68:8c:02:80:5e:10:73: c2:6d:20:88:4f:3d:a6:6f:78:81:aa:74:d3:3d:02: 04:fd:10:49:a3:ce:b6:f5:d7:36:fa:a0:38:78:2a: ac:8a:0a:59:2e:7b:ea:40:87:38:d5:a6:84:f3:00: 37:45:08:2e:e4:4f:2b:11:52:dc:c6:6e:3f:a7:c4: 3a:aa:8e:e3:8f:3f:57:48:a2:8d:fd:7c:61:61:c9: 2f:19:05:dd:f9:38:70:53:d1:58:09:45:f7:04:09: 19:de:c2:06:f7:74:ba:14:6b:ac:02:98:b4:15:fb: 53:22:e3:fd:ff:7d:30:99:29:16:71:85:40:67:f9: d7:72:d0:8b:be:d9:94:df:c9:81:3b:fd:8a:9d:6f: a4:5e:b4:05:a0:e3:6b:9a:c4:42:9e:7c:b0:4b:da: 9f:74:d8:f2:0c:72:12:3b:e6:e2:5f:c3:09:8f:e4: b7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:54:B9:07:11:59:64:2E:0D:59:45:D1:15:15:2B:B1:FA:FF:BF:70 X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:10:26:79:dd:e1:35:8f:a2:ea:84:28:25:0d:20:c3:e3:82: df:a7:49:69:37:cc:39:e4:75:35:13:c2:13:a1:5d:10:38:c2: 95:a4:dd:a6:a2:b6:ed:06:41:74:2d:ca:73:c8:ab:7b:9e:37: b6:aa:3a:b0:66:0c:59:de:bc:89:80:c9:24:f1:65:23:5e:5b: 7b:1b:c4:ac:ca:c6:63:92:e5:97:dd:90:50:fa:1c:87:4f:fd: e2:35:6a:85:1f:a8:7c:ee:89:24:02:2c:ed:de:5e:87:ae:c8: 01:c9:fa:83:0b:da:78:b1:ef:37:bb:6c:ec:75:14:fb:08:20: 45:32:05:82:31:a3:f2:5b:bd:11:25:f1:76:d2:3e:2f:6b:8f: d1:39:36:42:b4:c3:e8:f5:7f:dd:f6:8e:32:79:cf:f4:3e:e4: 55:f0:d0:34:37:2a:f4:17:0b:30:23:9f:03:3a:cb:a0:0b:6d: 91:0d:07:a4:30:ce:0b:4b:9f:2e:da:26:04:bb:87:c3:48:7e: 62:61:21:d5:49:40:e3:36:1a:39:83:8c:24:0f:ed:df:a3:34: a3:cd:7a:26:da:cb:24:2e:6d:a6:56:0b:da:0c:7d:99:f7:c4: 86:ec:43:30:d0:e5:b7:ed:ae:ad:4e:b4:72:68:f8:8f:ca:b8: 55:0d:c1:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDUyMEJBOTRDRDBGQjlFN0MxNDBERkJDMENDNThCOTND RjU0QzIyRjMwHhcNMjUxMDE5MDg0NDQ5WhcNMjUxMDI2MDg0NDQ5WjAYMRYwFAYD VQQDEw02OGY0YTUwMi03ZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlSj29pYlLl2F96SzjU4xxYRuSaca5G1lZ7muHseGpLJknPmUVbXhW6r0m2b VkiOgRt5cDS3AMMnohqjmtUZ78eCydLYu89pdf6en/KemMoX62iMAoBeEHPCbSCI Tz2mb3iBqnTTPQIE/RBJo8629dc2+qA4eCqsigpZLnvqQIc41aaE8wA3RQgu5E8r EVLcxm4/p8Q6qo7jjz9XSKKN/XxhYckvGQXd+ThwU9FYCUX3BAkZ3sIG93S6FGus Api0FftTIuP9/30wmSkWcYVAZ/nXctCLvtmU38mBO/2KnW+kXrQFoONrmsRCnnyw S9qfdNjyDHISO+biX8MJj+S3WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhUuQcR WWQuDVlF0RUVK7H6/79wMB8GA1UdIwQYMBaAFFILqUzQ+558FA37wMxYuTz1TCLz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8xQ0Y2Q0Q3NDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25ud1VEZnZBekZpNVBQVk1J dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8xQ0Y2Q0Q3NDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25u d1VEZnZBekZpNVBQVk1Jdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClECZ53eE1j6LqhCglDSDD44Lfp0lpN8w55HU1E8IToV0QOMKVpN2m orbtBkF0LcpzyKt7nje2qjqwZgxZ3ryJgMkk8WUjXlt7G8SsysZjkuWX3ZBQ+hyH T/3iNWqFH6h87okkAizt3l6HrsgByfqDC9p4se83u2zsdRT7CCBFMgWCMaPyW70R JfF20j4va4/ROTZCtMPo9X/d9o4yec/0PuRV8NA0Nyr0FwswI58DOsugC22RDQek MM4LS58u2iYEu4fDSH5iYSHVSUDjNho5g4wkD+3fozSjzXom2sskLm2mVgvaDH2Z 98SG7EMw0OW37a6tTrRyaPiPyrhVDcFv -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:22 2025 by rpki-client