$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: CdJsBhdm2Sq8tYbCd4A+FhDkAgSCljcXuncvX8i+muE= Subject key identifier: 92:2B:0C:7A:26:B2:EB:3C:2F:D7:3A:26:34:9F:A1:DC:71:11:D1:13 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 0126 Signing time: Sat 09 Aug 2025 05:09:06 +0000 Manifest this update: Sat 09 Aug 2025 05:09:06 +0000 Manifest next update: Sat 16 Aug 2025 05:09:06 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: RkJxaqi7b/smrzsst5G8Yb77DHdypiPM+bqSLazKOYI=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: BVkUXHmaunafReC96ZYpGOgVThUwi3Y9iPZ+tZjaqqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Aug 9 05:09:06 2025 GMT Not After : Aug 16 05:09:06 2025 GMT Subject: CN=6896d7f2-85c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:24:61:79:c8:cb:95:ed:fe:27:50:86:7c:e6: 55:0d:f4:40:ea:67:22:9b:7d:ec:5c:1b:17:5e:4b: 26:9f:91:85:41:50:7f:e1:1e:af:b9:b0:5a:b3:47: 55:8e:29:e7:a6:97:90:c1:63:97:a2:00:3f:2b:57: d7:f7:70:4d:2d:b6:08:dc:de:a9:d7:7f:f2:67:e4: ab:42:3d:58:d2:f5:c8:45:19:64:d1:7e:38:93:20: 5e:c1:e3:29:4b:e2:b6:33:18:78:66:94:91:56:5e: fc:5a:c5:a3:e9:41:99:23:f8:ae:df:63:b1:4d:5b: 13:86:4f:4b:a5:4f:1e:3c:d8:dc:9b:0d:bc:01:7a: 2e:26:0d:e3:41:02:3f:5d:3e:44:b2:b9:ec:59:2a: 54:f8:29:01:32:89:c5:8c:ef:54:c5:ce:77:11:31: be:03:c7:f3:4a:e7:e9:b5:16:ff:e3:16:ff:55:a3: dd:23:0e:b9:14:d1:e1:94:bd:00:8c:6f:27:34:4e: 1e:f1:88:bf:93:e2:bb:14:df:60:95:c4:5d:da:29: 15:a0:b0:60:03:fd:95:73:dc:d9:5a:e4:91:9d:f3: 19:cf:bc:ce:8e:4a:9a:a3:a9:3f:cb:81:a7:79:e5: 90:85:b4:92:4e:bf:80:f2:38:8b:0c:20:1c:31:75: ea:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2B:0C:7A:26:B2:EB:3C:2F:D7:3A:26:34:9F:A1:DC:71:11:D1:13 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:cb:7c:33:c3:a1:bd:97:7f:ef:64:e8:9a:a5:8b:90:fa:52: 1c:5a:30:b2:78:c0:9a:d9:ed:22:a2:7d:78:3a:13:ee:d3:af: 37:64:e1:72:48:ba:3c:e2:32:92:59:11:86:11:18:ce:75:76: ac:85:fb:bb:cd:9e:77:6d:54:e4:8d:2b:78:7d:71:1c:b5:59: d8:9b:56:2c:26:70:66:7e:cd:af:bb:2c:9d:cb:7a:ea:01:32: 5d:65:7e:82:4d:6b:21:b0:63:b4:f3:59:e7:22:89:ee:df:af: 8b:d3:63:cb:8e:a4:04:fd:d4:9d:0f:6a:ba:39:80:d9:67:c3: 35:98:bd:a7:43:f0:cf:fa:c6:db:18:38:ce:2a:74:b8:65:43: c9:77:be:19:f5:70:8e:a3:d4:0c:54:74:9d:99:37:25:5e:c8: b4:7d:00:93:a0:75:12:5c:46:8f:31:52:bc:fb:2a:56:4c:94: 9b:2f:5f:2b:9b:11:51:1f:8b:f8:33:62:f7:fc:64:26:99:a3: f5:ba:ed:6d:84:80:f0:66:8a:bb:bf:80:0b:82:ae:54:2e:ea: 6a:9a:fc:62:ca:cb:62:08:cb:88:f1:b0:71:47:38:c8:e0:16: e8:7e:b5:aa:a8:ec:8f:b3:11:02:55:35:07:ee:cf:f3:2a:c7: 70:17:32:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjUwODA5MDUwOTA2WhcNMjUwODE2MDUwOTA2WjAYMRYwFAYD VQQDEw02ODk2ZDdmMi04NWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSRhecjLle3+J1CGfOZVDfRA6mcim33sXBsXXksmn5GFQVB/4R6vubBas0dV jinnppeQwWOXogA/K1fX93BNLbYI3N6p13/yZ+SrQj1Y0vXIRRlk0X44kyBeweMp S+K2Mxh4ZpSRVl78WsWj6UGZI/iu32OxTVsThk9LpU8ePNjcmw28AXouJg3jQQI/ XT5EsrnsWSpU+CkBMonFjO9Uxc53ETG+A8fzSufptRb/4xb/VaPdIw65FNHhlL0A jG8nNE4e8Yi/k+K7FN9glcRd2ikVoLBgA/2Vc9zZWuSRnfMZz7zOjkqao6k/y4Gn eeWQhbSSTr+A8jiLDCAcMXXqQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIrDHom sus8L9c6JjSfodxxEdETMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCey3wzw6G9l3/vZOiapYuQ+lIcWjCyeMCa2e0ion14OhPu0683ZOFy SLo84jKSWRGGERjOdXashfu7zZ53bVTkjSt4fXEctVnYm1YsJnBmfs2vuyydy3rq ATJdZX6CTWshsGO081nnIonu36+L02PLjqQE/dSdD2q6OYDZZ8M1mL2nQ/DP+sbb GDjOKnS4ZUPJd74Z9XCOo9QMVHSdmTclXsi0fQCToHUSXEaPMVK8+ypWTJSbL18r mxFRH4v4M2L3/GQmmaP1uu1thIDwZoq7v4ALgq5ULupqmvxiystiCMuI8bBxRzjI 4BbofrWqqOyPsxECVTUH7s/zKsdwFzKf -----END CERTIFICATE-----Generated at Mon Aug 11 04:26:37 2025 by rpki-client