$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: CH2olAXPalvKP+QY3Jd1uneKzXVDD2o+BoOjo7DBaPE= Subject key identifier: 98:AD:A4:FB:1A:8E:5C:2F:BD:20:BE:70:13:83:D2:7C:F0:91:8A:8E Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0871 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 1FE0 Signing time: Tue 12 Aug 2025 16:39:55 +0000 Manifest this update: Tue 12 Aug 2025 16:39:55 +0000 Manifest next update: Tue 19 Aug 2025 16:39:55 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: L5ahEidkzax8UY3K/0GBFZL7u5uCYeZnL4wN/XZLr2c=) 2: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: hgO4m8NBFvCWTk/xZ7lTPgH3uo1aBC3KP8OdcPsjkbo=) 3: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: XzzXA6m5Sfbs0sLhTPVckgYHL3ZiipFrwRLSzgKZ33U=) 4: 172C2B96197711F0A993397AC4F9AE02.roa (hash: 8Qo70bxIag9X+h+p9rkvEiGVmiiK66r021Qwo1g6tkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 16:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2161 (0x871) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Aug 12 16:39:55 2025 GMT Not After : Aug 19 16:39:55 2025 GMT Subject: CN=689b6e5b-1ea4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:35:16:64:24:f5:ec:60:a9:63:c9:50:28:f4: 94:df:cb:4a:25:8a:d5:d2:7e:fa:f1:f9:a1:fc:7f: cd:3c:b8:34:0d:5b:dd:57:b8:76:6f:1c:78:dc:c4: da:f6:cf:f6:98:bd:2d:14:18:2d:40:8f:26:7d:5e: 45:52:3f:2e:f1:97:74:50:92:87:0e:ee:43:1b:86: df:46:a0:84:d2:d8:98:9d:a6:2e:b7:74:ec:f5:df: 67:8c:0c:43:e6:1e:25:0f:19:08:d5:93:1d:f8:ea: 0f:a2:00:e8:94:96:5d:e1:18:e9:4d:87:87:3c:41: ac:79:91:65:5d:03:e7:64:a9:42:f1:e7:bb:6f:c7: 51:7b:04:e0:29:44:0d:18:92:d4:dc:7f:db:cd:b4: e5:3c:b2:55:92:f7:12:23:a5:c5:b0:ff:d0:2c:20: dd:70:78:6d:32:27:08:a4:86:56:9f:ba:1a:b4:a1: 5a:cd:4f:7f:15:be:3c:32:2f:6f:e2:24:9d:58:5d: 95:ea:36:57:34:99:b8:c0:fc:07:2c:8a:d9:ca:9d: 86:ad:24:b9:22:f5:2a:a5:7c:5e:4d:1c:d8:68:9c: 5d:cc:f2:7f:5c:6e:fe:c1:23:51:85:73:bc:93:8d: 6f:ab:7e:5e:d3:93:87:ad:a3:de:c0:d0:e6:5a:1d: 1b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:AD:A4:FB:1A:8E:5C:2F:BD:20:BE:70:13:83:D2:7C:F0:91:8A:8E X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:bc:cc:86:b3:b8:ed:bf:4f:d0:63:14:d6:5c:3c:98:bd:77: 8b:a7:d8:f7:86:50:25:70:37:e3:d9:f7:ca:5c:02:39:91:91: c7:56:85:26:b5:3b:ba:1d:64:d1:64:83:0e:97:3c:34:9c:af: 15:18:c1:46:16:4e:bf:e7:1f:22:40:a2:f6:17:5d:70:ae:a4: 96:f9:51:d2:6a:22:e7:4d:f3:7f:8f:8c:95:4e:f1:fc:76:1d: 96:63:06:8e:00:d1:4a:7f:11:fc:95:23:5b:4e:6a:ba:91:ef: a1:d8:1a:87:79:60:16:50:52:5b:87:b4:12:37:90:9b:3b:58: d4:58:c4:5e:97:7f:79:24:11:4e:ab:b5:c9:09:26:22:85:5f: 15:87:a3:bd:a3:15:b0:a3:18:b3:84:41:ef:8d:44:ec:80:a5: a7:d4:f3:4f:7b:4e:64:7b:b1:63:68:ba:a7:57:d6:1e:1a:85: 3b:df:a5:99:89:57:f7:7f:ab:d3:19:fd:13:75:9c:ef:d6:ac: 2a:e6:3e:4f:2b:4b:31:8b:4f:86:27:5e:ee:d5:f4:73:d7:a5: dc:d4:9e:d6:1c:dc:b7:65:d2:15:b5:1a:9b:ea:11:9a:d2:a9: 3e:80:83:d4:4c:f7:0c:bb:31:d3:c4:54:29:73:cd:46:28:3c: 74:d5:cb:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjUwODEyMTYzOTU1WhcNMjUwODE5MTYzOTU1WjAYMRYwFAYD VQQDEw02ODliNmU1Yi0xZWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjUWZCT17GCpY8lQKPSU38tKJYrV0n768fmh/H/NPLg0DVvdV7h2bxx43MTa 9s/2mL0tFBgtQI8mfV5FUj8u8Zd0UJKHDu5DG4bfRqCE0tiYnaYut3Ts9d9njAxD 5h4lDxkI1ZMd+OoPogDolJZd4RjpTYeHPEGseZFlXQPnZKlC8ee7b8dRewTgKUQN GJLU3H/bzbTlPLJVkvcSI6XFsP/QLCDdcHhtMicIpIZWn7oatKFazU9/Fb48Mi9v 4iSdWF2V6jZXNJm4wPwHLIrZyp2GrSS5IvUqpXxeTRzYaJxdzPJ/XG7+wSNRhXO8 k41vq35e05OHraPewNDmWh0bawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJitpPsa jlwvvSC+cBOD0nzwkYqOMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVvMyGs7jtv0/QYxTWXDyYvXeLp9j3hlAlcDfj2ffKXAI5kZHHVoUm tTu6HWTRZIMOlzw0nK8VGMFGFk6/5x8iQKL2F11wrqSW+VHSaiLnTfN/j4yVTvH8 dh2WYwaOANFKfxH8lSNbTmq6ke+h2BqHeWAWUFJbh7QSN5CbO1jUWMRel395JBFO q7XJCSYihV8Vh6O9oxWwoxizhEHvjUTsgKWn1PNPe05ke7FjaLqnV9YeGoU736WZ iVf3f6vTGf0TdZzv1qwq5j5PK0sxi0+GJ17u1fRz16Xc1J7WHNy3ZdIVtRqb6hGa 0qk+gIPUTPcMuzHTxFQpc81GKDx01csr -----END CERTIFICATE-----Generated at Wed Aug 13 05:52:38 2025 by rpki-client