$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: TOji81FAVbhuz+rmXy5xo4Ng/fmIb9Q8qQ8txcGiDUA= Subject key identifier: 59:ED:31:7A:BF:C7:9A:1B:C0:75:3D:5C:0B:4C:14:56:C2:1C:65:A9 Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 05D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 05D3 Signing time: Mon 04 Aug 2025 23:27:56 +0000 Manifest this update: Mon 04 Aug 2025 23:27:56 +0000 Manifest next update: Mon 11 Aug 2025 23:27:56 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: NvVqC+mMIjN9SekbOQ2el2ZT56EPgSk69kYj/mCo410=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: mwVl4hNEaIqbBNWJudlbCJK/THwSQhv97GiC3rtYAeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1497 (0x5d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Aug 4 23:27:56 2025 GMT Not After : Aug 11 23:27:56 2025 GMT Subject: CN=689141fc-04db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:2c:40:63:0d:a4:71:16:d0:83:f0:98:37: dd:c5:db:95:98:a8:4d:ee:b8:cc:4d:fe:c8:6a:46: a2:cb:d1:5c:d4:8b:ae:80:18:30:77:bc:39:35:bd: 29:ff:0f:b3:d7:76:33:af:84:15:af:fe:f1:cd:14: 95:35:d6:79:ec:05:72:19:d0:40:b0:c7:68:29:47: 98:92:fa:d9:ae:3b:70:d7:49:a6:38:a9:77:44:0f: 40:78:62:03:d1:a6:ae:98:74:cd:ad:c4:f8:fb:20: 56:9b:40:f3:59:5a:d5:20:e3:a3:f9:c7:07:7b:74: 0a:e3:04:e3:d7:ec:eb:19:5f:8f:c7:78:75:b7:f6: 40:b3:2b:4d:60:fc:85:00:0c:3f:07:55:0f:e9:77: 4a:31:a8:50:17:56:9a:70:30:c2:2b:8c:64:41:c3: ef:dd:93:22:f3:84:78:34:6d:6e:1f:b2:22:a2:5d: 7e:5c:9b:c3:fe:ec:af:a8:57:04:87:59:b8:ce:ba: f7:16:c7:a8:a9:ea:19:79:3b:22:54:02:8a:e9:35: c5:16:87:d3:e0:7e:c4:9c:cc:23:7a:85:8a:3e:1f: 67:f2:a7:96:a7:48:c4:b4:37:da:cb:2c:35:60:7b: 0e:a6:8f:14:73:a5:d9:0c:87:da:c8:0c:f9:da:87: 3c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:ED:31:7A:BF:C7:9A:1B:C0:75:3D:5C:0B:4C:14:56:C2:1C:65:A9 X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:29:3a:f0:15:18:28:07:4b:10:1d:a7:27:df:0d:96:a8:3e: 1b:9d:5b:ef:d8:31:92:05:96:b6:5f:2e:0a:ad:a7:6f:0a:48: 79:46:f2:ce:be:8b:67:1f:be:5b:ad:4a:6b:3f:db:db:2d:1e: c0:08:93:69:47:18:40:5d:d4:0b:75:79:48:e9:ec:da:33:14: cb:cb:6f:ae:31:11:d1:e5:dc:bc:54:08:d5:73:f2:d3:c1:10: a5:9f:39:bf:1d:29:5c:43:df:1b:43:0b:42:dc:fb:76:e5:97: 29:9a:47:4a:81:e0:4b:cd:93:fd:a2:7c:34:5f:3b:2c:57:2e: 98:2a:6c:d1:68:94:e9:16:ee:d2:3c:2c:35:2c:e9:30:dc:9f: 86:56:09:1a:34:b6:87:aa:08:47:9d:4d:d7:01:1d:81:a5:65: 07:6a:59:7a:27:c9:cb:93:6e:a3:77:52:8f:ec:e6:be:1b:17: f6:07:06:e7:12:a6:4a:59:22:35:44:7c:38:bc:92:04:2c:33: fe:4b:5d:4e:dd:46:d8:23:a9:24:d2:36:c1:25:77:53:0c:f6: 52:00:e0:1a:12:ab:49:d2:df:d1:12:36:e5:b8:3b:67:78:e4: 59:41:67:2f:92:54:60:c2:3d:3e:c9:f1:96:fc:87:10:33:fc: d0:f3:0e:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjUwODA0MjMyNzU2WhcNMjUwODExMjMyNzU2WjAYMRYwFAYD VQQDEw02ODkxNDFmYy0wNGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwa8sQGMNpHEW0IPwmDfdxduVmKhN7rjMTf7Iakaiy9Fc1IuugBgwd7w5Nb0p /w+z13Yzr4QVr/7xzRSVNdZ57AVyGdBAsMdoKUeYkvrZrjtw10mmOKl3RA9AeGID 0aaumHTNrcT4+yBWm0DzWVrVIOOj+ccHe3QK4wTj1+zrGV+Px3h1t/ZAsytNYPyF AAw/B1UP6XdKMahQF1aacDDCK4xkQcPv3ZMi84R4NG1uH7Iiol1+XJvD/uyvqFcE h1m4zrr3FseoqeoZeTsiVAKK6TXFFofT4H7EnMwjeoWKPh9n8qeWp0jEtDfayyw1 YHsOpo8Uc6XZDIfayAz52oc8EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFntMXq/ x5obwHU9XAtMFFbCHGWpMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgKTrwFRgoB0sQHacn3w2WqD4bnVvv2DGSBZa2Xy4KradvCkh5RvLO votnH75brUprP9vbLR7ACJNpRxhAXdQLdXlI6ezaMxTLy2+uMRHR5dy8VAjVc/LT wRClnzm/HSlcQ98bQwtC3Pt25ZcpmkdKgeBLzZP9onw0XzssVy6YKmzRaJTpFu7S PCw1LOkw3J+GVgkaNLaHqghHnU3XAR2BpWUHall6J8nLk26jd1KP7Oa+Gxf2Bwbn EqZKWSI1RHw4vJIELDP+S11O3UbYI6kk0jbBJXdTDPZSAOAaEqtJ0t/REjbluDtn eORZQWcvklRgwj0+yfGW/IcQM/zQ8w6G -----END CERTIFICATE-----Generated at Wed Aug 6 06:00:55 2025 by rpki-client