$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: 2qcqm+2R5BfXdCbtNBpqo5PogWJShv6zLlUOsRWHljg= Subject key identifier: 69:26:9A:75:E6:19:54:11:B5:37:F1:CB:2F:BD:9C:1D:C8:4B:AA:CA Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 01FB Signing time: Wed 13 Aug 2025 02:50:57 +0000 Manifest this update: Wed 13 Aug 2025 02:50:56 +0000 Manifest next update: Wed 20 Aug 2025 02:50:56 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: SuMFTNi/YvhrUeiYQnIT70WNI53swZ49Wj6QSncxFBQ=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Aug 13 02:50:56 2025 GMT Not After : Aug 20 02:50:56 2025 GMT Subject: CN=689bfd90-bbd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:70:9e:46:75:68:b9:c4:ce:16:8f:fb:80:cc: 49:33:2e:07:8f:53:63:6a:9e:2b:e7:a1:b5:10:59: ff:5e:2b:26:ac:60:c3:9d:6a:43:23:0d:a6:72:5e: 5c:77:c9:6f:fc:2e:cf:61:21:9a:74:6c:54:c0:e1: 25:e6:de:c2:ac:bf:fe:29:de:ed:64:c0:97:d1:c5: c8:69:9f:e9:39:8f:df:c5:ad:13:ee:04:32:b0:92: 9d:d3:a9:6f:38:43:f3:e6:af:ac:6b:c0:a6:e6:fd: c0:d6:3d:58:47:7b:e5:83:a6:92:f1:2e:d9:b9:c7: 37:9d:96:d9:d7:90:92:b5:cd:ff:07:65:14:5a:5a: 33:97:3a:2c:b3:a8:ca:7b:bd:8c:9c:cf:1e:cc:8d: 70:9f:01:33:bb:77:da:38:14:ad:f1:d2:9e:47:92: 98:01:39:1c:62:da:c3:66:6b:34:a9:48:ba:7e:3c: 78:a2:ad:f4:32:11:eb:e2:68:88:46:6c:51:49:9a: a2:90:ad:de:50:a5:d1:c6:33:33:14:0c:5f:17:b6: da:e5:9c:e2:c1:87:d6:f6:fe:c0:93:a5:fe:11:e2: 65:6f:fb:57:bb:70:ea:af:08:78:dc:48:ec:f4:b2: 1a:60:a3:05:ae:64:c5:24:cf:92:d8:2c:8f:64:16: 94:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:26:9A:75:E6:19:54:11:B5:37:F1:CB:2F:BD:9C:1D:C8:4B:AA:CA X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:03:eb:16:63:c1:41:20:a8:ad:f5:67:ca:df:4f:93:44:db: 04:21:86:ed:82:03:5e:ef:e1:97:fa:08:b1:3f:25:7e:ad:04: 6d:bc:87:d3:91:68:5e:88:f7:1e:79:bf:fa:c9:73:c7:64:2c: 36:b0:51:26:d3:67:1b:0f:b3:3d:c2:00:9e:77:43:7e:8b:43: 40:94:df:d6:ed:cc:95:1e:29:7e:0e:e2:f7:22:4d:34:c4:43: f3:99:f2:33:8d:68:1c:13:47:50:61:dd:e3:64:3b:2a:35:9d: 62:eb:43:36:1e:56:80:c9:4f:9d:1e:a0:89:09:0a:d0:70:87: 3f:7d:b4:ab:dd:8c:8f:46:b4:e1:87:e3:60:19:2d:db:8c:90: 40:27:35:b9:4d:39:12:61:39:2d:4e:18:2f:9d:72:0e:ef:ce: 0a:9f:5b:f4:f6:e5:5f:f0:6d:32:74:ee:2a:51:cc:68:b2:2b: 0e:1c:e6:fc:38:83:40:86:0f:bb:0f:73:b4:ab:98:5a:9e:21: 10:bc:c0:b7:03:bb:1a:c9:de:3d:90:61:7a:63:a0:a4:a5:31: d3:28:04:65:75:f0:ef:ca:54:1f:f4:d5:fd:4e:54:82:07:e7: 1b:f6:3c:02:52:89:af:5a:12:5b:70:c0:0d:9b:8c:8a:ee:a5: 98:fa:0f:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUwODEzMDI1MDU2WhcNMjUwODIwMDI1MDU2WjAYMRYwFAYD VQQDEw02ODliZmQ5MC1iYmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3CeRnVoucTOFo/7gMxJMy4Hj1Njap4r56G1EFn/XismrGDDnWpDIw2mcl5c d8lv/C7PYSGadGxUwOEl5t7CrL/+Kd7tZMCX0cXIaZ/pOY/fxa0T7gQysJKd06lv OEPz5q+sa8Cm5v3A1j1YR3vlg6aS8S7Zucc3nZbZ15CStc3/B2UUWlozlzoss6jK e72MnM8ezI1wnwEzu3faOBSt8dKeR5KYATkcYtrDZms0qUi6fjx4oq30MhHr4miI RmxRSZqikK3eUKXRxjMzFAxfF7ba5ZziwYfW9v7Ak6X+EeJlb/tXu3Dqrwh43Ejs 9LIaYKMFrmTFJM+S2CyPZBaUsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkmmnXm GVQRtTfxyy+9nB3IS6rKMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPA+sWY8FBIKit9WfK30+TRNsEIYbtggNe7+GX+gixPyV+rQRtvIfT kWheiPceeb/6yXPHZCw2sFEm02cbD7M9wgCed0N+i0NAlN/W7cyVHil+DuL3Ik00 xEPzmfIzjWgcE0dQYd3jZDsqNZ1i60M2HlaAyU+dHqCJCQrQcIc/fbSr3YyPRrTh h+NgGS3bjJBAJzW5TTkSYTktThgvnXIO784Kn1v09uVf8G0ydO4qUcxosisOHOb8 OINAhg+7D3O0q5haniEQvMC3A7sayd49kGF6Y6CkpTHTKARldfDvylQf9NX9TlSC B+cb9jwCUomvWhJbcMANm4yK7qWY+g/v -----END CERTIFICATE-----Generated at Wed Aug 13 05:31:45 2025 by rpki-client