$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: O29VStVKv9tXzYBJuJJrClcycLy5fe6ho6lxLelOmrY= Subject key identifier: DE:2D:81:45:06:6E:1C:3F:5D:54:81:5C:82:E1:98:FD:84:FA:03:53 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 228E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 225C Signing time: Tue 12 Aug 2025 15:56:12 +0000 Manifest this update: Tue 12 Aug 2025 15:56:11 +0000 Manifest next update: Tue 19 Aug 2025 15:56:11 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: 5Pl+Vhxp5dF8ISafm6CKHkCAOPu/acoGpIGhRU37TLE=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 15:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8846 (0x228e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Aug 12 15:56:11 2025 GMT Not After : Aug 19 15:56:11 2025 GMT Subject: CN=689b641c-cc33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:12:b7:f9:09:46:54:78:cb:6f:2c:84:c7:a8: c1:b1:70:ad:b5:85:06:b0:3d:80:4d:fb:36:0c:30: e1:f4:65:c3:ed:76:94:d3:f7:0b:4b:fa:cc:08:8c: 94:07:1f:d1:2a:ee:d6:f4:c4:2c:82:27:a0:5f:08: f8:c3:5c:e3:5c:8b:ea:cf:ba:b3:d8:f6:d1:0a:cd: 8d:95:27:88:1b:9a:6a:51:62:0b:18:02:c1:38:fb: 7f:cf:2b:0d:b3:57:a8:ea:d7:d8:c2:ab:f8:e0:c0: 25:b4:96:70:29:d2:bf:53:1f:1c:0d:12:10:61:44: 4e:ac:58:b6:12:6e:8b:17:da:99:bd:8c:6e:a5:f9: 01:3a:c4:8f:1f:72:4a:a6:89:cd:59:07:40:e5:20: df:f4:78:79:e6:eb:21:76:82:28:fb:14:20:e6:eb: 2c:cd:67:08:dc:2c:9e:86:ca:2c:b1:35:4b:de:11: 92:fc:19:11:44:24:08:4b:d2:80:f2:24:89:c4:0a: e9:a1:15:a0:91:94:c0:51:84:75:4c:bd:4d:c0:cb: 22:ab:c2:87:c0:a1:0c:4f:f4:0b:8a:7f:de:90:91: 01:28:50:66:72:b4:96:95:37:c6:64:a8:c9:98:59: 8f:eb:13:33:13:2d:72:af:71:8b:2b:13:a5:e1:08: 78:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2D:81:45:06:6E:1C:3F:5D:54:81:5C:82:E1:98:FD:84:FA:03:53 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:b0:5a:af:40:92:95:2c:ff:d3:72:c0:fd:15:3d:e0:25:4f: 4e:6a:18:36:ed:31:62:69:68:d4:71:42:31:46:87:d8:38:43: f6:45:fd:41:67:ff:b3:1a:cd:e3:6f:cb:34:ed:ac:ed:c3:54: ed:af:6c:a2:0f:f5:23:a7:30:a4:11:5d:91:7d:5e:d7:0b:5f: 3f:06:01:46:ab:3c:c0:a9:1b:4b:1b:bd:e5:5c:ed:ce:c3:e9: 8a:7c:f8:65:f1:02:94:94:53:1d:da:b1:e5:65:dc:d9:ce:2e: 63:ce:06:16:f9:df:c5:02:59:3c:24:dc:2b:c7:7c:e6:3d:a4: a0:d4:6d:62:1e:b3:18:bf:4e:da:51:9c:f2:fa:78:b7:2b:e0: 5e:cc:07:08:a0:fc:ac:c2:71:2a:f9:a7:16:8b:07:69:37:f1: d6:a4:14:d9:b5:b3:d7:38:09:c8:ff:fa:3d:f3:65:94:3b:d9: d2:8d:3a:bc:6c:6b:8f:be:7a:1f:05:e2:8a:68:2c:78:67:d3: 2b:e9:2b:3f:34:11:3c:84:d6:5a:3e:a4:13:0c:7a:e1:37:e6: 58:f3:50:ad:df:ea:f8:dc:3b:dc:4a:df:20:ba:c7:29:ab:59: 1a:49:ec:0d:3c:06:e6:5f:5c:ff:11:01:58:e7:46:d6:02:00: 31:12:60:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUwODEyMTU1NjExWhcNMjUwODE5MTU1NjExWjAYMRYwFAYD VQQDEw02ODliNjQxYy1jYzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BK3+QlGVHjLbyyEx6jBsXCttYUGsD2ATfs2DDDh9GXD7XaU0/cLS/rMCIyU Bx/RKu7W9MQsgiegXwj4w1zjXIvqz7qz2PbRCs2NlSeIG5pqUWILGALBOPt/zysN s1eo6tfYwqv44MAltJZwKdK/Ux8cDRIQYUROrFi2Em6LF9qZvYxupfkBOsSPH3JK ponNWQdA5SDf9Hh55ushdoIo+xQg5usszWcI3CyehsossTVL3hGS/BkRRCQIS9KA 8iSJxArpoRWgkZTAUYR1TL1NwMsiq8KHwKEMT/QLin/ekJEBKFBmcrSWlTfGZKjJ mFmP6xMzEy1yr3GLKxOl4Qh4ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4tgUUG bhw/XVSBXILhmP2E+gNTMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHsFqvQJKVLP/TcsD9FT3gJU9Oahg27TFiaWjUcUIxRofYOEP2Rf1B Z/+zGs3jb8s07aztw1Ttr2yiD/UjpzCkEV2RfV7XC18/BgFGqzzAqRtLG73lXO3O w+mKfPhl8QKUlFMd2rHlZdzZzi5jzgYW+d/FAlk8JNwrx3zmPaSg1G1iHrMYv07a UZzy+ni3K+BezAcIoPyswnEq+acWiwdpN/HWpBTZtbPXOAnI//o982WUO9nSjTq8 bGuPvnofBeKKaCx4Z9Mr6Ss/NBE8hNZaPqQTDHrhN+ZY81Ct3+r43DvcSt8guscp q1kaSewNPAbmX1z/EQFY50bWAgAxEmDw -----END CERTIFICATE-----Generated at Wed Aug 13 05:58:21 2025 by rpki-client