$ rpki-client -vvf rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft File: UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft (raw, json) Hash identifier: Nzbdv9b1RSgtJq7IaDlYFXdkUtFoOe4Ea7uN6r3n1bc= Subject key identifier: CC:C5:31:71:C2:7E:1B:EE:D8:D2:3A:82:E6:78:CB:FD:84:E0:5D:6F Authority key identifier: 51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 Certificate issuer: /CN=A91383BF/serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft Manifest number: E7 Signing time: Sat 09 Aug 2025 05:49:39 +0000 Manifest this update: Sat 09 Aug 2025 05:49:38 +0000 Manifest next update: Sat 16 Aug 2025 05:49:38 +0000 Files and hashes: 1: UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl (hash: UqMGspy4hic9+vui+COQbcZ63HKDXEMzfdT8NkOrXCs=) 2: C23053B019A911EF97366417C4F9AE02.roa (hash: YYki0NriwMd0PqjU0EOE6kz16/qKzKdVDNbbepKT0IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383BF, serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Validity Not Before: Aug 9 05:49:38 2025 GMT Not After : Aug 16 05:49:38 2025 GMT Subject: CN=6896e173-0951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b0:73:db:6b:10:a5:e5:7f:b0:ea:a4:d7:c4: 9a:83:6f:7c:ea:a6:0a:58:76:33:b5:35:48:ee:73: d5:2d:9b:5e:3b:98:b9:1a:e1:f6:d5:30:b5:01:2d: 68:14:17:b6:34:7e:c1:07:c5:ef:87:7b:59:eb:9f: 97:27:67:71:6d:7b:5b:0a:ca:5a:b1:78:46:cc:2e: 1e:4d:48:e2:6c:18:0a:fb:06:a1:87:88:52:87:3d: 32:a1:a7:6f:a4:5a:a0:a2:6a:e3:52:1b:c3:20:31: 6e:78:3d:1b:f5:d2:57:e4:48:df:55:50:21:8c:21: 3a:54:fa:b1:58:3f:11:ef:73:9f:73:40:6e:5f:58: fe:81:6b:50:04:73:1e:15:b9:b4:0b:ed:a7:22:a2: 9f:3c:df:e9:2b:e2:18:3b:97:92:0b:a6:a1:fa:2e: 40:82:9d:88:e9:a4:a9:33:3e:9f:96:db:0a:d7:3f: 0e:5d:92:cf:67:e5:7c:47:d5:76:2c:b8:52:ab:17: c6:bd:eb:e3:8c:68:07:e8:45:4f:97:c2:91:ac:74: 63:eb:1d:7d:e2:7a:24:52:75:c8:fc:33:23:27:dc: 16:52:18:f9:00:0f:17:6d:45:80:99:eb:d4:8c:dd: 0f:3c:de:af:24:b7:f5:a7:14:bf:66:f1:96:c2:a4: 5e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C5:31:71:C2:7E:1B:EE:D8:D2:3A:82:E6:78:CB:FD:84:E0:5D:6F X509v3 Authority Key Identifier: keyid:51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:e5:6b:60:3e:9c:51:dd:08:b0:c0:f0:87:75:0b:0c:e1:b6: a1:1a:85:ea:20:b0:90:b5:ed:db:80:a5:9b:28:44:af:59:1d: a6:3c:41:fe:2b:07:97:21:81:9c:ef:27:c0:e4:6b:eb:44:bf: a8:a3:36:ea:25:df:de:a7:9a:50:49:40:b1:b7:68:79:13:31: 9d:f6:56:12:ad:d7:0d:f8:32:5a:c5:25:be:8b:8d:03:52:86: c7:be:25:5d:0b:78:4a:de:07:ef:5e:3c:8c:6a:06:00:95:89: f5:76:b6:57:4f:81:fd:0a:41:e8:76:13:62:f9:b0:5f:f4:13: 87:4b:a4:94:9e:1b:1b:ac:3c:cc:1e:d8:60:c1:ce:3c:51:de: 34:ea:3d:09:9d:cf:1c:ce:13:d2:9a:d5:55:d8:df:63:39:1f: c7:a3:b3:46:41:01:5f:ef:e2:cf:9d:22:6b:17:1a:fd:63:2f: b1:da:c0:d6:5a:44:04:d8:c3:7e:d6:c9:c3:95:33:90:34:75: 7d:a5:d2:a5:43:b4:1e:84:2c:2a:8d:91:c1:b8:13:ad:f3:be: 4c:7b:8f:9a:0b:ee:c6:3b:e6:96:de:ac:64:f1:20:9c:66:18: b6:c4:fd:95:63:d6:85:ba:ef:32:52:2b:f9:4d:93:be:90:ff: 65:8e:9d:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzQkYxMTAvBgNVBAUTKDUxQTQ4MjU4RDRDRDZFMDFEMjQ1OEM1QjkyMTZFRkE0 NTIxMEI2MjMwHhcNMjUwODA5MDU0OTM4WhcNMjUwODE2MDU0OTM4WjAYMRYwFAYD VQQDEw02ODk2ZTE3My0wOTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrBz22sQpeV/sOqk18Sag2986qYKWHYztTVI7nPVLZteO5i5GuH21TC1AS1o FBe2NH7BB8Xvh3tZ65+XJ2dxbXtbCspasXhGzC4eTUjibBgK+wahh4hShz0yoadv pFqgomrjUhvDIDFueD0b9dJX5EjfVVAhjCE6VPqxWD8R73Ofc0BuX1j+gWtQBHMe Fbm0C+2nIqKfPN/pK+IYO5eSC6ah+i5Agp2I6aSpMz6fltsK1z8OXZLPZ+V8R9V2 LLhSqxfGvevjjGgH6EVPl8KRrHRj6x194nokUnXI/DMjJ9wWUhj5AA8XbUWAmevU jN0PPN6vJLf1pxS/ZvGWwqRe3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzFMXHC fhvu2NI6guZ4y/2E4F1vMB8GA1UdIwQYMBaAFFGkgljUzW4B0kWMW5IW76RSELYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNCRi9GNjdDNjFFQTE5 ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJnSFNSWXhia2hidnBGSVF0 aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhU0NXTlROYmdIU1JZeGJraGJ2cEZJUXRpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODNCRi9GNjdDNjFFQTE5ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJn SFNSWXhia2hidnBGSVF0aU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE5WtgPpxR3QiwwPCHdQsM4bahGoXqILCQte3bgKWbKESvWR2mPEH+ KweXIYGc7yfA5GvrRL+oozbqJd/ep5pQSUCxt2h5EzGd9lYSrdcN+DJaxSW+i40D UobHviVdC3hK3gfvXjyMagYAlYn1drZXT4H9CkHodhNi+bBf9BOHS6SUnhsbrDzM Hthgwc48Ud406j0Jnc8czhPSmtVV2N9jOR/Ho7NGQQFf7+LPnSJrFxr9Yy+x2sDW WkQE2MN+1snDlTOQNHV9pdKlQ7QehCwqjZHBuBOt875Me4+aC+7GO+aW3qxk8SCc Zhi2xP2VY9aFuu8yUiv5TZO+kP9ljp2f -----END CERTIFICATE-----Generated at Mon Aug 11 01:48:53 2025 by rpki-client