$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: DSKJGj6vPHRdnP0llI2im4/yF41Pj9klqc2cg8f4xMo= Subject key identifier: 08:B0:98:37:CB:A7:F7:EC:61:DA:E6:68:F4:5B:A7:66:19:F5:E6:0C Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 0661 Signing time: Sun 10 Aug 2025 22:37:45 +0000 Manifest this update: Sun 10 Aug 2025 22:37:45 +0000 Manifest next update: Sun 17 Aug 2025 22:37:45 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: Z1Q/d9LBz3J2A/HnMWtJjJ/LGsj6bhPSOHU7ztyuDnA=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Aug 10 22:37:45 2025 GMT Not After : Aug 17 22:37:45 2025 GMT Subject: CN=68991f39-523c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:b5:07:5a:a9:00:5b:72:ad:c1:1f:a8:79: e1:6a:30:99:4e:f2:28:7a:b3:ed:3f:85:44:90:75: e2:8d:96:17:b2:6a:9f:ef:8b:19:46:e1:91:bd:2f: 6a:88:20:c3:b1:3c:71:f3:40:ab:d7:18:93:1f:b9: d1:e6:28:7c:aa:b5:12:cc:92:c4:5d:50:75:18:35: 71:24:c8:1c:c4:27:0c:0d:26:5b:a7:05:7c:69:be: 28:d4:02:56:ab:07:3b:af:65:0f:ba:c5:4e:5e:47: 32:8e:4d:e4:df:da:04:27:40:2b:b8:5b:67:80:4e: 7d:3b:8c:2b:fc:56:c5:26:d4:2a:b7:7d:43:49:f5: 27:ee:1f:47:23:29:79:fc:99:90:fe:ae:90:71:7d: 1d:87:a0:b6:86:d8:35:ac:35:f4:cd:13:78:7d:82: aa:53:16:f1:cb:c4:e8:b2:e1:68:64:a5:9d:87:42: 07:c3:21:a2:a1:f4:9c:93:bc:ff:75:35:63:b4:f1: 3a:0b:64:49:8d:c0:04:e3:41:0f:f4:1b:49:66:c7: fe:9a:b0:14:d6:d1:12:fd:12:50:fd:be:40:5e:7e: ef:c3:34:f0:0f:81:02:72:2b:be:cf:5a:ac:40:d2: f6:90:70:77:32:bf:2d:12:e3:b7:f1:a7:1e:77:c0: e1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B0:98:37:CB:A7:F7:EC:61:DA:E6:68:F4:5B:A7:66:19:F5:E6:0C X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:76:19:0d:b5:83:06:70:bb:f8:80:1a:04:47:6c:f7:e4:d1: 93:d0:aa:24:28:60:4e:77:16:22:3b:2f:63:e6:26:65:93:e7: 79:96:82:f7:3b:25:59:d1:7a:76:22:a0:eb:52:21:39:1b:6a: 28:f8:58:2b:4a:26:a9:73:50:4d:d7:e5:67:5a:a2:b8:39:4f: 91:d1:16:0a:81:75:c8:f1:5c:b9:22:d1:04:15:66:88:e7:19: 98:b4:b8:d2:29:0a:ed:b6:40:a8:bd:1c:4d:3d:8a:09:b3:a3: dc:0f:49:1e:fb:d2:f3:6f:b1:36:83:7b:10:e5:fc:95:62:62: 84:f8:7d:db:31:e7:34:45:8f:af:aa:40:ba:50:7d:33:1d:e5: 99:43:2d:10:c6:b1:38:d6:01:30:38:1d:3a:5d:58:cf:73:27: 8e:ce:dd:b0:d3:36:85:70:71:3d:89:1d:6e:93:ad:1a:ce:83: e6:0b:b4:92:b8:b9:b9:4c:1d:ac:88:27:15:df:d7:c5:7b:ac: 54:37:b8:a7:f8:2b:d8:f2:e8:27:9a:61:04:b1:19:c9:71:d8: d1:9d:af:81:88:dc:7d:49:6b:dc:ec:bb:58:fb:db:f4:49:28: 6d:59:6e:d2:8f:41:bb:3e:48:ff:73:d2:6a:62:43:f3:6e:f0: 0e:27:43:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUwODEwMjIzNzQ1WhcNMjUwODE3MjIzNzQ1WjAYMRYwFAYD VQQDEw02ODk5MWYzOS01MjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPC1B1qpAFtyrcEfqHnhajCZTvIoerPtP4VEkHXijZYXsmqf74sZRuGRvS9q iCDDsTxx80Cr1xiTH7nR5ih8qrUSzJLEXVB1GDVxJMgcxCcMDSZbpwV8ab4o1AJW qwc7r2UPusVOXkcyjk3k39oEJ0AruFtngE59O4wr/FbFJtQqt31DSfUn7h9HIyl5 /JmQ/q6QcX0dh6C2htg1rDX0zRN4fYKqUxbxy8TosuFoZKWdh0IHwyGiofSck7z/ dTVjtPE6C2RJjcAE40EP9BtJZsf+mrAU1tES/RJQ/b5AXn7vwzTwD4ECciu+z1qs QNL2kHB3Mr8tEuO38aced8Dh9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAiwmDfL p/fsYdrmaPRbp2YZ9eYMMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrdhkNtYMGcLv4gBoER2z35NGT0KokKGBOdxYiOy9j5iZlk+d5loL3 OyVZ0Xp2IqDrUiE5G2oo+FgrSiapc1BN1+VnWqK4OU+R0RYKgXXI8Vy5ItEEFWaI 5xmYtLjSKQrttkCovRxNPYoJs6PcD0ke+9Lzb7E2g3sQ5fyVYmKE+H3bMec0RY+v qkC6UH0zHeWZQy0QxrE41gEwOB06XVjPcyeOzt2w0zaFcHE9iR1uk60azoPmC7SS uLm5TB2siCcV39fFe6xUN7in+CvY8ugnmmEEsRnJcdjRna+BiNx9SWvc7LtY+9v0 SShtWW7Sj0G7Pkj/c9JqYkPzbvAOJ0NS -----END CERTIFICATE-----Generated at Mon Aug 11 12:53:45 2025 by rpki-client