$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: e4JASBHG3gwUfVt6D3X8C9VjCYlXts8AD4r+ESWysfU= Subject key identifier: AA:DA:2B:A5:4C:4B:0F:AA:31:19:B5:D1:8A:A9:95:12:38:39:E2:9C Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 065F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 065C Signing time: Fri 08 Aug 2025 22:58:33 +0000 Manifest this update: Fri 08 Aug 2025 22:58:33 +0000 Manifest next update: Fri 15 Aug 2025 22:58:33 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: M5XOT8UwFTJ81qx9lKa0OZ/HUzQ4bIsnVYXOS9cn874=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: hzbXrtnctw9RaO4u4LO+M5su44TkMPAo6wV59Ue+QJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1631 (0x65f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Aug 8 22:58:33 2025 GMT Not After : Aug 15 22:58:33 2025 GMT Subject: CN=68968119-b68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2c:94:9a:71:10:84:ff:e0:c1:dc:66:dd:8c: ba:42:84:a6:f1:69:ef:d0:73:4e:b7:d0:5a:b6:d8: 16:56:2a:f4:8f:f5:ff:0c:46:b3:b5:70:b4:f9:f6: 9c:a7:66:5d:4a:a5:c4:26:e8:2e:1b:fa:51:c8:93: 9f:04:0d:88:3b:d3:33:49:3c:b3:b9:e4:ca:f1:93: 44:d8:10:d0:23:cf:13:be:81:c2:d1:41:3d:25:14: 43:a3:40:6a:2e:0f:86:59:c1:b9:20:f9:ea:fa:ec: 14:83:f7:47:ea:92:a5:af:3d:ad:7a:be:19:7f:f7: 53:52:c7:90:f2:50:62:c0:18:d2:8e:90:6d:91:7d: 63:5f:11:09:fe:ee:8e:2c:b2:75:ea:fb:7b:8e:be: 42:8d:2a:af:2f:4a:ac:7a:5c:6b:43:2d:19:6c:e9: 4c:ac:3c:bc:19:73:9c:73:76:90:c6:e5:95:2c:d0: eb:13:1d:bc:1e:ae:12:d1:a2:28:db:61:8a:6d:6d: 4d:98:4d:97:1a:16:c0:30:5a:f1:ef:d7:99:99:44: fb:af:b2:b7:38:c6:86:41:70:27:89:10:a4:99:61: 38:31:db:99:c6:e1:50:c5:6b:60:3f:c7:18:f6:75: 47:0c:9d:b6:25:25:4e:40:02:d4:9c:a8:83:08:96: 40:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:DA:2B:A5:4C:4B:0F:AA:31:19:B5:D1:8A:A9:95:12:38:39:E2:9C X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e1:e1:b3:ab:ec:92:07:2d:a1:7a:3e:3f:40:3a:f3:f0:fd: 08:33:0f:63:a0:24:34:65:37:17:c8:8b:ab:61:34:a6:e2:5a: 2e:15:30:54:2d:10:d3:a1:f2:49:ef:39:16:29:03:72:71:59: df:ac:3d:6f:ea:89:f7:58:6e:39:5b:81:33:5b:c2:fa:af:b5: b7:32:b2:52:12:5b:5b:47:59:31:68:42:b4:65:95:44:ee:1b: 06:be:03:b2:bf:cd:2f:e8:3e:48:d7:f2:bc:3c:03:d9:ff:09: 65:ec:83:20:22:c3:68:85:ec:4a:57:7c:bd:61:eb:67:e2:86: db:71:85:57:0a:3e:a0:96:54:46:6c:90:0f:97:ee:f9:fa:7b: b5:58:e9:71:43:f5:51:38:41:f8:28:d6:d5:60:5c:72:b5:a0: 7e:fb:ca:51:fb:7d:db:98:04:e6:89:c5:d5:5c:2b:43:19:62: 0d:cf:a7:89:3f:45:d0:53:10:8d:74:ba:9b:42:99:9a:fb:48: ab:e1:29:d8:90:1c:ac:92:38:c4:90:f4:18:a0:94:2d:4f:4d: f7:62:36:75:fa:08:55:39:78:fb:a8:65:cc:58:81:05:cd:09: 70:f5:4e:9f:f4:2d:dc:67:45:12:0e:5e:b2:5f:b2:8f:61:77: 07:99:0b:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUwODA4MjI1ODMzWhcNMjUwODE1MjI1ODMzWjAYMRYwFAYD VQQDEw02ODk2ODExOS1iNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziyUmnEQhP/gwdxm3Yy6QoSm8Wnv0HNOt9BattgWVir0j/X/DEaztXC0+fac p2ZdSqXEJuguG/pRyJOfBA2IO9MzSTyzueTK8ZNE2BDQI88TvoHC0UE9JRRDo0Bq Lg+GWcG5IPnq+uwUg/dH6pKlrz2ter4Zf/dTUseQ8lBiwBjSjpBtkX1jXxEJ/u6O LLJ16vt7jr5CjSqvL0qselxrQy0ZbOlMrDy8GXOcc3aQxuWVLNDrEx28Hq4S0aIo 22GKbW1NmE2XGhbAMFrx79eZmUT7r7K3OMaGQXAniRCkmWE4MduZxuFQxWtgP8cY 9nVHDJ22JSVOQALUnKiDCJZAywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKraK6VM Sw+qMRm10YqplRI4OeKcMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS4eGzq+ySBy2hej4/QDrz8P0IMw9joCQ0ZTcXyIurYTSm4louFTBU LRDTofJJ7zkWKQNycVnfrD1v6on3WG45W4EzW8L6r7W3MrJSEltbR1kxaEK0ZZVE 7hsGvgOyv80v6D5I1/K8PAPZ/wll7IMgIsNohexKV3y9Yetn4obbcYVXCj6gllRG bJAPl+75+nu1WOlxQ/VROEH4KNbVYFxytaB++8pR+33bmATmicXVXCtDGWINz6eJ P0XQUxCNdLqbQpma+0ir4SnYkByskjjEkPQYoJQtT033YjZ1+ghVOXj7qGXMWIEF zQlw9U6f9C3cZ0USDl6yX7KPYXcHmQu9 -----END CERTIFICATE-----Generated at Sat Aug 9 15:14:55 2025 by rpki-client