$ rpki-client -vvf rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft File: UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft (raw, json) Hash identifier: 2tE6uDM+/o2XKQDX9fcd9LppUCN/pkFY/4S4la6aCPc= Subject key identifier: F7:A8:DB:77:93:A7:CD:F2:33:D8:47:71:1C:DC:72:C4:1A:82:71:B2 Authority key identifier: 50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 Certificate issuer: /CN=A9157031/serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Certificate serial: 040D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft Manifest number: 0408 Signing time: Sun 03 Aug 2025 00:57:50 +0000 Manifest this update: Sun 03 Aug 2025 00:57:50 +0000 Manifest next update: Sun 10 Aug 2025 00:57:50 +0000 Files and hashes: 1: UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl (hash: aGK92pHf2EOvgO1A3ZmGyRbKAJ+gL9TZRa3zE/EuABE=) 2: 32D8FF34C99E11ED98E9BE5BC4F9AE02.roa (hash: 75eZM/Pn5fV11WrvJUnUrFhvKQhEtrEs1POmskjBp6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 00:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157031, serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Validity Not Before: Aug 3 00:57:50 2025 GMT Not After : Aug 10 00:57:50 2025 GMT Subject: CN=688eb40e-a8e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e8:94:79:47:cf:00:47:b8:7f:9f:e5:db:97: 27:87:2c:70:f6:36:77:9c:d4:7d:cb:7b:f9:72:92: ff:a2:7c:8c:1c:75:c9:d3:07:78:60:b1:cb:80:bb: 28:aa:55:b1:b7:0b:0b:9d:22:4d:bb:89:e7:47:e3: 85:51:a6:df:44:6c:4b:fe:a5:c1:dc:09:8f:8d:93: b0:69:73:62:3b:38:e9:c8:44:81:1b:1b:a1:2b:12: cf:f2:5e:e4:4b:82:d0:de:e5:8b:ae:8c:81:07:a3: 92:e3:70:d7:4a:5b:32:b3:b9:e1:f0:12:5f:44:7a: aa:1d:a5:80:ca:36:f0:50:89:2f:26:f0:2e:36:d2: a3:88:d2:4a:fa:a4:33:b0:57:b9:00:d9:f5:ed:cf: fe:65:d6:f8:de:86:51:b8:7d:e2:d6:fc:92:88:d5: b2:02:e6:88:8f:88:d9:15:06:c2:27:00:e9:8e:de: d8:7e:8b:13:b2:60:34:87:40:45:ea:e1:a9:89:45: 8d:10:83:d2:49:0a:7f:b6:1c:72:f4:6e:bc:df:47: b8:e4:d3:93:3f:f6:f3:73:87:30:84:44:42:92:6e: 29:01:f1:8b:12:5d:84:98:bf:c1:54:85:d1:d0:53: 78:1c:e7:3a:5f:21:4c:31:e4:56:20:40:99:0d:b6: 55:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A8:DB:77:93:A7:CD:F2:33:D8:47:71:1C:DC:72:C4:1A:82:71:B2 X509v3 Authority Key Identifier: keyid:50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:11:f1:1f:9e:cc:96:10:34:c5:36:59:cb:af:27:a7:2f:19: c9:fd:85:ed:56:fe:39:a6:ea:c2:ce:9d:73:56:32:6b:27:d5: 0a:d2:b9:75:03:d5:b8:bc:b7:1d:40:8d:f6:1f:10:1a:38:2f: 57:76:a8:93:dd:74:8b:51:4c:02:97:4b:b0:71:d6:cf:44:e4: 6b:ff:30:65:ce:04:c5:34:da:05:2b:21:75:eb:55:9a:ae:cb: ca:ce:71:4f:5a:dc:e1:c0:b7:f6:d0:4a:4e:d3:b9:d8:a1:c0: eb:7e:02:f0:db:9f:e6:b9:39:d6:f8:bd:61:41:a4:8e:e5:10: 1b:98:dc:78:77:49:bc:31:cb:23:a3:84:c1:39:1b:7e:7b:d0: c7:09:9a:e3:3d:9a:82:21:16:c2:4f:38:bc:d0:42:b3:d9:73: e0:b7:47:15:b5:79:83:11:0b:8b:1f:cf:0e:5e:24:2f:a1:e2: 81:ee:fe:eb:91:08:84:72:1d:47:88:d5:48:14:83:a3:9b:82: d8:da:52:3b:64:c3:b2:98:90:71:58:3d:69:93:0f:1b:5f:fb: c1:ef:e3:77:de:68:ce:b3:7c:b3:b1:6d:e3:f3:1e:1b:3b:9c: 52:71:45:99:3b:8f:88:c0:c2:78:37:fa:88:48:56:bb:44:ca: 36:08:e3:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwMzExMTAvBgNVBAUTKDUwRTUwRURBRjY0QTJDMjVCNzMxMjM5NjczRDkwNzBG NjE4MzAyNzkwHhcNMjUwODAzMDA1NzUwWhcNMjUwODEwMDA1NzUwWjAYMRYwFAYD VQQDEw02ODhlYjQwZS1hOGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+iUeUfPAEe4f5/l25cnhyxw9jZ3nNR9y3v5cpL/onyMHHXJ0wd4YLHLgLso qlWxtwsLnSJNu4nnR+OFUabfRGxL/qXB3AmPjZOwaXNiOzjpyESBGxuhKxLP8l7k S4LQ3uWLroyBB6OS43DXSlsys7nh8BJfRHqqHaWAyjbwUIkvJvAuNtKjiNJK+qQz sFe5ANn17c/+Zdb43oZRuH3i1vySiNWyAuaIj4jZFQbCJwDpjt7YfosTsmA0h0BF 6uGpiUWNEIPSSQp/thxy9G6830e45NOTP/bzc4cwhERCkm4pAfGLEl2EmL/BVIXR 0FN4HOc6XyFMMeRWIECZDbZVEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPeo23eT p83yM9hHcRzccsQagnGyMB8GA1UdIwQYMBaAFFDlDtr2SiwltzEjlnPZBw9hgwJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzAzMS83QTAwNEY3ODdF QzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xDVzNNU09XYzlrSEQyR0RB bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPVU8ydlpLTENXM01TT1djOWtIRDJHREFuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzAzMS83QTAwNEY3ODdFQzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xD VzNNU09XYzlrSEQyR0RBbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMEfEfnsyWEDTFNlnLryenLxnJ/YXtVv45purCzp1zVjJrJ9UK0rl1 A9W4vLcdQI32HxAaOC9XdqiT3XSLUUwCl0uwcdbPRORr/zBlzgTFNNoFKyF161Wa rsvKznFPWtzhwLf20EpO07nYocDrfgLw25/muTnW+L1hQaSO5RAbmNx4d0m8Mcsj o4TBORt+e9DHCZrjPZqCIRbCTzi80EKz2XPgt0cVtXmDEQuLH88OXiQvoeKB7v7r kQiEch1HiNVIFIOjm4LY2lI7ZMOymJBxWD1pkw8bX/vB7+N33mjOs3yzsW3j8x4b O5xScUWZO4+IwMJ4N/qISFa7RMo2CONM -----END CERTIFICATE-----Generated at Mon Aug 4 15:38:44 2025 by rpki-client