$ rpki-client -vvf rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft File: 25LUPJBhJQWzr0bpZKaMyfXzsq8.mft (raw, json) Hash identifier: sJBDGYFo4HKSL7jWm91/qgRQDlIuXUG/r3jb3O4ZT4I= Subject key identifier: AD:11:A6:D2:BC:EE:45:70:1F:01:34:C1:48:03:C6:10:88:7F:13:4E Authority key identifier: DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF Certificate issuer: /CN=A918213B/serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Certificate serial: 035B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft Manifest number: 0341 Signing time: Sat 09 Aug 2025 01:41:14 +0000 Manifest this update: Sat 09 Aug 2025 01:41:13 +0000 Manifest next update: Sat 16 Aug 2025 01:41:13 +0000 Files and hashes: 1: 25LUPJBhJQWzr0bpZKaMyfXzsq8.crl (hash: lAxnYp9MHCtlWgeEvMYcDBVHmee8UQ7qu1vEiajqTS4=) 2: 299F07F2E15611EFA15DF23DC4F9AE02.roa (hash: uLoocJ1ylZk3Az2/LGZ1XfgBgdwVH2sX978FuwcTqcE=) 3: 9ABE08C606F311F08407D351C4F9AE02.roa (hash: Oo/z3Tl848fDTqTqN7CA+y187n0AUvuUe1PsbRy+loY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918213B, serialNumber=DB92D43C90612505B3AF46E964A68CC9F5F3B2AF Validity Not Before: Aug 9 01:41:13 2025 GMT Not After : Aug 16 01:41:13 2025 GMT Subject: CN=6896a73a-43c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c3:a9:cc:c2:64:1c:b3:39:14:9a:99:ec:5e: ae:54:7f:a7:91:46:53:6f:54:32:16:5a:6d:d7:95: 0b:39:51:34:31:4b:0c:38:29:85:56:78:bf:67:43: 5c:77:eb:9c:f7:92:61:41:d0:6c:b7:77:a8:89:a8: 43:87:d9:f3:73:37:74:50:62:8e:ca:5f:56:4e:f2: 44:9c:d0:98:f7:11:e5:d3:98:25:ba:26:42:3a:1c: 18:37:9e:4d:3e:2a:db:3f:dd:8b:13:dd:f5:ec:a7: ef:51:91:14:35:aa:f2:14:50:45:e5:83:d4:15:2b: 0b:34:02:3c:6b:23:2c:0b:23:26:b4:af:95:c2:46: 6e:a0:d1:80:90:42:55:dc:7b:a4:bb:98:bb:bf:f8: ae:47:46:ee:db:66:78:ff:6b:70:ca:7a:91:8f:89: 99:dd:c6:7a:e2:14:cd:96:32:83:66:96:8e:73:9b: a8:ce:c9:bc:c9:51:45:d8:a5:7f:86:dd:ec:42:29: 82:a2:e7:01:72:d3:f4:00:69:7d:e9:3a:50:dd:5a: 90:5f:2d:5e:6c:5d:13:1b:b4:d5:94:3b:72:19:0d: c6:95:c1:e8:50:e2:cf:66:47:ee:bb:74:b0:13:64: 4b:eb:de:3a:e6:c2:1c:67:03:c9:44:d8:6f:36:73: 32:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:11:A6:D2:BC:EE:45:70:1F:01:34:C1:48:03:C6:10:88:7F:13:4E X509v3 Authority Key Identifier: keyid:DB:92:D4:3C:90:61:25:05:B3:AF:46:E9:64:A6:8C:C9:F5:F3:B2:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/25LUPJBhJQWzr0bpZKaMyfXzsq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918213B/07076FA0D9C911ECBE007F6AC4F9AE02/25LUPJBhJQWzr0bpZKaMyfXzsq8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:66:b0:2e:2d:be:2e:7f:91:06:65:8a:aa:01:20:12:89:ba: 1b:b7:73:b6:ba:92:57:1d:50:25:0d:b1:0f:5c:06:58:0f:9c: 15:a5:01:b6:0b:5e:f5:2f:be:57:ff:a0:2b:f9:b5:bf:7c:20: 17:e5:47:90:58:80:39:cd:83:72:5e:f1:a0:6f:c4:4e:27:a9: 25:e6:11:aa:99:f7:02:7b:f4:a4:29:9d:09:8f:48:2d:41:bf: be:73:ed:cd:f6:09:e2:0c:66:98:9c:0b:1d:17:b9:23:52:dd: a0:0c:52:7b:f5:2e:5f:5d:af:8a:1a:ce:ef:e4:43:3b:e0:0d: 48:a8:16:69:63:e4:68:77:ab:0e:94:dd:26:60:92:97:22:6c: ec:07:1e:4d:a5:a8:94:f1:ab:05:cf:ea:7a:76:43:ad:ba:50: 31:70:42:e9:db:f7:f0:25:dc:a7:c9:c2:0b:55:a9:63:22:8a: 4b:f4:70:ba:94:b7:b3:11:7c:98:af:04:6d:77:52:0c:2c:a0: 7d:31:68:e0:3f:ff:45:98:eb:bb:0c:77:12:76:8f:06:a1:b3: 65:3f:9a:af:e3:0c:a1:d9:ac:a8:ba:7d:90:ea:a7:ca:02:6e: d6:cb:de:91:6e:fa:b7:89:a8:72:66:9c:4e:60:19:5c:d6:0c: 94:8e:58:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIxM0IxMTAvBgNVBAUTKERCOTJENDNDOTA2MTI1MDVCM0FGNDZFOTY0QTY4Q0M5 RjVGM0IyQUYwHhcNMjUwODA5MDE0MTEzWhcNMjUwODE2MDE0MTEzWjAYMRYwFAYD VQQDEw02ODk2YTczYS00M2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cOpzMJkHLM5FJqZ7F6uVH+nkUZTb1QyFlpt15ULOVE0MUsMOCmFVni/Z0Nc d+uc95JhQdBst3eoiahDh9nzczd0UGKOyl9WTvJEnNCY9xHl05gluiZCOhwYN55N PirbP92LE9317KfvUZEUNaryFFBF5YPUFSsLNAI8ayMsCyMmtK+VwkZuoNGAkEJV 3Huku5i7v/iuR0bu22Z4/2twynqRj4mZ3cZ64hTNljKDZpaOc5uozsm8yVFF2KV/ ht3sQimCoucBctP0AGl96TpQ3VqQXy1ebF0TG7TVlDtyGQ3GlcHoUOLPZkfuu3Sw E2RL69465sIcZwPJRNhvNnMyQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK0RptK8 7kVwHwE0wUgDxhCIfxNOMB8GA1UdIwQYMBaAFNuS1DyQYSUFs69G6WSmjMn187Kv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjEzQi8wNzA3NkZBMEQ5 QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpRV3pyMGJwWkthTXlmWHpz cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI1TFVQSkJoSlFXenIwYnBaS2FNeWZYenNxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjEzQi8wNzA3NkZBMEQ5QzkxMUVDQkUwMDdGNkFDNEY5QUUwMi8yNUxVUEpCaEpR V3pyMGJwWkthTXlmWHpzcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/ZrAuLb4uf5EGZYqqASASibobt3O2upJXHVAlDbEPXAZYD5wVpQG2 C171L75X/6Ar+bW/fCAX5UeQWIA5zYNyXvGgb8ROJ6kl5hGqmfcCe/SkKZ0Jj0gt Qb++c+3N9gniDGaYnAsdF7kjUt2gDFJ79S5fXa+KGs7v5EM74A1IqBZpY+Rod6sO lN0mYJKXImzsBx5NpaiU8asFz+p6dkOtulAxcELp2/fwJdynycILValjIopL9HC6 lLezEXyYrwRtd1IMLKB9MWjgP/9FmOu7DHcSdo8GobNlP5qv4wyh2ayoun2Q6qfK Am7Wy96Rbvq3iahyZpxOYBlc1gyUjljq -----END CERTIFICATE-----Generated at Sun Aug 10 16:09:04 2025 by rpki-client