$ rpki-client -vvf rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft File: 7UHN-Ie33i9cIBvogU8ejfPQIB8.mft (raw, json) Hash identifier: zfozYlmdGC9dxO7+EICUyX1isCMqAfRv4VwebujUExY= Subject key identifier: 52:11:B9:46:C6:44:14:A9:AA:10:CF:45:FB:CB:ED:AD:01:E3:25:6E Authority key identifier: ED:41:CD:F8:87:B7:DE:2F:5C:20:1B:E8:81:4F:1E:8D:F3:D0:20:1F Certificate issuer: /CN=A916C832/serialNumber=ED41CDF887B7DE2F5C201BE8814F1E8DF3D0201F Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft Manifest number: 38 Signing time: Sat 09 Aug 2025 08:04:28 +0000 Manifest this update: Sat 09 Aug 2025 08:04:27 +0000 Manifest next update: Sat 16 Aug 2025 08:04:27 +0000 Files and hashes: 1: 7UHN-Ie33i9cIBvogU8ejfPQIB8.crl (hash: 8qMJ88VRVdQkf09EEG1VhXwTdSMEcnceRX7jmHhz3Cs=) 2: AA3FBE4A1E6111F093F53B75C4F9AE02.roa (hash: LSRr7TMpx9Qi1u09QfccXCZNggaDKCGxTg8r/GddSHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.crl rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C832, serialNumber=ED41CDF887B7DE2F5C201BE8814F1E8DF3D0201F Validity Not Before: Aug 9 08:04:27 2025 GMT Not After : Aug 16 08:04:27 2025 GMT Subject: CN=6897010b-7668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:17:a9:f8:8d:92:27:18:01:61:53:1f:b4:97: 15:5c:3d:02:f3:1c:b8:75:24:d1:56:ee:36:c1:d1: 87:51:24:10:a0:b9:c8:e3:c5:92:11:f7:e2:82:98: 08:50:1c:00:a9:97:b0:5d:56:ad:84:9e:fc:0c:d6: 38:43:60:cd:30:15:d8:f3:1f:38:90:42:b0:27:a6: cd:7e:62:2a:9a:3d:b7:ba:e3:fc:58:6e:ee:e6:9b: 0f:8a:51:23:ef:cb:61:8e:29:0e:0f:a6:78:8d:02: 29:d1:d4:54:09:2e:ae:a0:36:30:39:30:31:83:6e: d0:4e:4a:76:a7:15:99:5d:5c:4f:1a:ff:82:58:19: 41:12:bd:da:7f:df:a0:13:d4:2b:f7:e9:83:f6:e0: 3f:13:18:ca:9e:c6:fc:8e:3d:dd:91:fb:0f:08:09: b6:f1:17:45:3e:0b:f2:13:b7:1d:d3:e0:70:d8:c0: 49:d8:a9:96:3c:9c:35:89:81:e5:a6:5b:e7:01:8d: 25:67:f5:6c:e4:5d:77:4a:ee:c1:f9:40:6a:4a:ec: 9f:ce:f4:f5:b0:b3:d4:48:cc:f1:90:9d:8b:20:ba: ec:b8:bd:05:98:b2:96:c5:7a:31:52:c5:27:a7:03: 12:22:99:99:c8:6f:b1:8a:19:25:d6:d1:91:b6:27: 89:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:11:B9:46:C6:44:14:A9:AA:10:CF:45:FB:CB:ED:AD:01:E3:25:6E X509v3 Authority Key Identifier: keyid:ED:41:CD:F8:87:B7:DE:2F:5C:20:1B:E8:81:4F:1E:8D:F3:D0:20:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:c8:9f:20:2e:f9:4a:df:70:90:6d:5c:1c:f3:e3:84:6c:e2: 79:a4:a9:5f:ce:20:08:b7:2b:2c:68:50:b7:33:52:63:7a:46: 44:65:70:75:21:f1:75:77:3c:de:b0:24:a0:0e:64:41:77:4c: f4:e6:78:3b:2b:19:49:07:1a:c8:be:21:83:0e:0b:a8:60:f4: 97:98:1b:6c:8d:97:87:ff:15:bb:36:6c:0b:58:ef:19:69:52: ff:be:78:79:09:5d:a9:88:df:01:b8:67:ee:e8:03:62:1b:03: 24:98:29:5e:46:7e:81:ba:76:b1:aa:e1:62:a4:30:75:b8:55: e6:f0:59:84:ae:b3:61:74:41:d3:97:0d:dd:54:99:f3:7d:c9: 93:c0:52:13:2a:79:60:87:77:c1:4d:7d:32:ca:66:9c:08:0b: 7a:23:dd:20:e8:19:56:8b:27:23:b1:e4:b4:d1:bb:4e:6b:fa: c8:f3:3c:9a:39:7f:37:45:1e:51:81:c6:fe:35:a4:5b:17:7d: 9f:23:b3:ee:ad:30:6a:42:f1:fe:aa:99:6c:40:5b:69:a8:27: 69:2c:37:c9:92:fa:9f:1a:d4:4e:ec:49:40:c6:bf:59:1b:c3: 20:ab:59:bd:c6:ce:ef:0a:e4:b6:fb:62:37:4f:9a:12:f9:2b: 26:6f:15:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzgzMjExMC8GA1UEBRMoRUQ0MUNERjg4N0I3REUyRjVDMjAxQkU4ODE0RjFFOERG M0QwMjAxRjAeFw0yNTA4MDkwODA0MjdaFw0yNTA4MTYwODA0MjdaMBgxFjAUBgNV BAMTDTY4OTcwMTBiLTc2NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuF6n4jZInGAFhUx+0lxVcPQLzHLh1JNFW7jbB0YdRJBCgucjjxZIR9+KCmAhQ HACpl7BdVq2EnvwM1jhDYM0wFdjzHziQQrAnps1+YiqaPbe64/xYbu7mmw+KUSPv y2GOKQ4PpniNAinR1FQJLq6gNjA5MDGDbtBOSnanFZldXE8a/4JYGUESvdp/36AT 1Cv36YP24D8TGMqexvyOPd2R+w8ICbbxF0U+C/ITtx3T4HDYwEnYqZY8nDWJgeWm W+cBjSVn9WzkXXdK7sH5QGpK7J/O9PWws9RIzPGQnYsguuy4vQWYspbFejFSxSen AxIimZnIb7GKGSXW0ZG2J4mXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUhG5RsZE FKmqEM9F+8vtrQHjJW4wHwYDVR0jBBgwFoAU7UHN+Ie33i9cIBvogU8ejfPQIB8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDODMyLzVCNjE4MDYwMUU2 MTExRjA5MzRGNkY3NEM0RjlBRTAyLzdVSE4tSWUzM2k5Y0lCdm9nVThlamZQUUlC OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1VITi1JZTMzaTljSUJ2b2dVOGVqZlBRSUI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD ODMyLzVCNjE4MDYwMUU2MTExRjA5MzRGNkY3NEM0RjlBRTAyLzdVSE4tSWUzM2k5 Y0lCdm9nVThlamZQUUlCOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHnInyAu+UrfcJBtXBzz44Rs4nmkqV/OIAi3KyxoULczUmN6RkRlcHUh 8XV3PN6wJKAOZEF3TPTmeDsrGUkHGsi+IYMOC6hg9JeYG2yNl4f/Fbs2bAtY7xlp Uv++eHkJXamI3wG4Z+7oA2IbAySYKV5GfoG6drGq4WKkMHW4VebwWYSus2F0QdOX Dd1UmfN9yZPAUhMqeWCHd8FNfTLKZpwIC3oj3SDoGVaLJyOx5LTRu05r+sjzPJo5 fzdFHlGBxv41pFsXfZ8js+6tMGpC8f6qmWxAW2moJ2ksN8mS+p8a1E7sSUDGv1kb wyCrWb3Gzu8K5Lb7YjdPmhL5KyZvFfk= -----END CERTIFICATE-----Generated at Sun Aug 10 04:52:49 2025 by rpki-client