$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: dfjQUmz5tvGr08/SW6o3UgSgNa946c07/ETJ2kidBq0= Subject key identifier: 31:85:79:8B:87:7E:E6:60:FC:46:9D:7A:FC:71:92:22:B3:9C:EA:78 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0F91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0F7C Signing time: Fri 08 Aug 2025 17:45:58 +0000 Manifest this update: Fri 08 Aug 2025 17:45:57 +0000 Manifest next update: Fri 15 Aug 2025 17:45:57 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: wRnf3zU7KCVenqW0cHJj2hH4Z0GxkSSxTI75VHx9FgU=) 2: 164B42E2414111F0A098A82DC4F9AE02.roa (hash: dJHoDekjFkpD+HydVswBgGgsUVupPAujnF3OBVrSpKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3985 (0xf91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Aug 8 17:45:57 2025 GMT Not After : Aug 15 17:45:57 2025 GMT Subject: CN=689637d5-6b42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4e:00:35:5a:c5:1b:17:f4:8d:57:41:9e:53: 49:da:32:fc:18:be:ce:64:d3:44:e7:76:37:54:f9: f3:df:91:10:d1:8f:1f:d0:dd:47:95:61:2f:39:8c: 9b:06:eb:b1:67:b1:18:f2:b1:c8:b7:4e:1e:9d:f8: 57:8a:19:ef:1f:0d:6d:13:03:f0:87:f7:8b:0f:3d: 34:21:6c:f5:45:0c:38:aa:01:8d:5c:66:2b:ae:c9: 50:22:61:c6:7d:0f:d8:8f:60:80:41:43:16:32:a7: 28:04:8c:fa:d6:f9:e8:2e:11:6f:18:69:92:b3:54: 4f:44:74:c0:32:b0:f7:2c:5c:70:0c:23:50:16:34: 27:ba:24:e6:06:4b:6f:c6:c2:fd:97:41:26:91:b8: 51:a4:1e:3f:0d:bc:03:39:08:47:9d:40:e9:00:d2: a4:18:27:bd:f2:d7:f8:c8:40:fd:8a:60:06:9e:11: 59:e0:ce:40:58:48:fc:2d:8a:2f:4c:1f:fb:a0:22: ab:7c:d1:cc:16:9b:36:27:52:0b:46:b8:fa:76:5d: c2:02:8b:8f:ae:e9:f8:09:3c:88:ff:94:ed:31:f9: 80:28:06:ab:55:d9:7b:91:c0:a5:be:e1:3d:d4:89: a2:21:0f:5f:a3:93:2f:1e:4f:30:7a:50:9d:9f:42: 34:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:85:79:8B:87:7E:E6:60:FC:46:9D:7A:FC:71:92:22:B3:9C:EA:78 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:f5:b5:f8:39:16:d3:62:71:b2:22:4d:5c:fb:75:99:16:61: 70:1f:60:84:e4:c1:52:ec:18:76:c3:bd:78:22:db:ed:85:c7: e4:36:f0:54:72:fb:86:7a:98:d5:b2:8b:1c:4d:bd:9c:e9:0e: 84:9a:a1:69:b4:e8:c6:cc:d8:fe:48:db:31:1c:2a:9c:84:7d: b2:aa:d6:64:b8:be:42:d2:67:d6:74:e2:94:71:be:df:76:48: 6a:d7:03:ee:7e:a8:fe:49:6f:bc:c6:76:ed:31:a1:8e:3a:35: 84:6d:23:bb:c1:7b:4a:ef:67:db:7c:e2:ea:dc:2c:55:0c:db: f2:77:ed:49:05:2e:5f:9e:63:80:33:1c:52:96:1d:04:3e:c2: 0e:54:e5:1f:68:13:af:72:d6:2d:67:3e:26:01:42:18:d6:18: 65:89:8f:2c:ed:56:97:78:3b:72:f9:9f:8c:d7:a2:a9:d0:bf: 55:2f:ca:34:92:dc:74:b2:84:09:87:51:72:f9:34:2d:09:d4: 27:4c:1a:6b:e1:de:89:18:30:f1:65:fb:89:c1:3c:fa:fa:5a: 1a:74:1d:32:f5:02:f3:b2:fd:43:56:67:f6:5d:92:d7:f3:12: 18:1f:2a:33:dd:96:61:b9:8f:f3:01:96:4e:37:75:5a:02:1e: 8d:d8:a6:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUwODA4MTc0NTU3WhcNMjUwODE1MTc0NTU3WjAYMRYwFAYD VQQDEw02ODk2MzdkNS02YjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAok4ANVrFGxf0jVdBnlNJ2jL8GL7OZNNE53Y3VPnz35EQ0Y8f0N1HlWEvOYyb BuuxZ7EY8rHIt04enfhXihnvHw1tEwPwh/eLDz00IWz1RQw4qgGNXGYrrslQImHG fQ/Yj2CAQUMWMqcoBIz61vnoLhFvGGmSs1RPRHTAMrD3LFxwDCNQFjQnuiTmBktv xsL9l0EmkbhRpB4/DbwDOQhHnUDpANKkGCe98tf4yED9imAGnhFZ4M5AWEj8LYov TB/7oCKrfNHMFps2J1ILRrj6dl3CAouPrun4CTyI/5TtMfmAKAarVdl7kcClvuE9 1ImiIQ9fo5MvHk8welCdn0I0lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGFeYuH fuZg/EadevxxkiKznOp4MB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY9bX4ORbTYnGyIk1c+3WZFmFwH2CE5MFS7Bh2w714ItvthcfkNvBU cvuGepjVsoscTb2c6Q6EmqFptOjGzNj+SNsxHCqchH2yqtZkuL5C0mfWdOKUcb7f dkhq1wPufqj+SW+8xnbtMaGOOjWEbSO7wXtK72fbfOLq3CxVDNvyd+1JBS5fnmOA MxxSlh0EPsIOVOUfaBOvctYtZz4mAUIY1hhliY8s7VaXeDty+Z+M16Kp0L9VL8o0 ktx0soQJh1Fy+TQtCdQnTBpr4d6JGDDxZfuJwTz6+loadB0y9QLzsv1DVmf2XZLX 8xIYHyoz3ZZhuY/zAZZON3VaAh6N2Ka3 -----END CERTIFICATE-----Generated at Sat Aug 9 23:26:56 2025 by rpki-client