$ rpki-client -vvf rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft File: rUk9yaPSQDSDYoWHBR93lRWJFnk.mft (raw, json) Hash identifier: Rmj1WxwOYDC8u0k50tIcnpAyhOcsQAdW8FtMj7eEU0w= Subject key identifier: 86:89:E5:8F:51:0D:DE:B5:11:EF:76:04:AC:6A:46:2E:95:A9:75:5E Authority key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 Certificate issuer: /CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679 Certificate serial: 0276 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft Manifest number: 0273 Signing time: Thu 07 Aug 2025 02:20:17 +0000 Manifest this update: Thu 07 Aug 2025 02:20:17 +0000 Manifest next update: Thu 14 Aug 2025 02:20:17 +0000 Files and hashes: 1: rUk9yaPSQDSDYoWHBR93lRWJFnk.crl (hash: hdAxFfKPuT3ud94v5QvgouqX3AmhA2gA4cZmfGuuwkE=) 2: 8275E1721C5311EDA75CF137C4F9AE02.roa (hash: ylAjtSurS2AriNqYAWDXwI4mJ+u3ceX6ZX3mIJq8z+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 630 (0x276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B418, serialNumber=AD493DC9A3D2403483628587051F779515891679 Validity Not Before: Aug 7 02:20:17 2025 GMT Not After : Aug 14 02:20:17 2025 GMT Subject: CN=68940d61-10a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:a0:74:9f:2c:5b:07:9b:75:fc:15:c6:60: 7b:7f:8f:de:c8:9b:eb:85:3f:bf:9d:ca:4a:08:fb: 79:57:61:98:10:f9:06:17:4d:2b:12:cf:f0:4e:b1: 0a:c7:23:c2:a1:a3:94:1a:40:0c:92:2f:7b:fe:e8: a8:30:fb:00:f0:fe:c7:35:67:84:5b:11:7d:0f:cc: 75:94:97:b2:b7:67:ac:6a:82:cf:18:e3:52:18:b1: 09:fe:ea:7b:63:c0:b4:da:71:cd:0b:ce:69:24:38: e0:d9:1d:ef:3b:46:15:ec:88:33:06:34:b1:63:06: 86:c3:db:c3:3a:1b:fe:58:75:ee:96:9c:73:9f:9f: 79:2b:fb:84:a1:7e:65:5d:38:6c:ab:a1:9d:dd:28: 75:8c:2a:2e:08:2c:7b:79:48:d1:6a:0c:7a:2a:a2: 6d:f9:f9:14:24:11:7e:d5:f1:76:c2:b7:46:e3:fb: 70:03:40:92:c1:c9:90:70:1f:17:14:fa:c7:42:3f: 95:1c:4b:97:e1:e3:1f:4c:89:87:ac:25:3a:03:3d: 9f:98:6b:43:15:52:42:9b:aa:ad:37:29:91:e1:c5: dd:a3:a5:8a:73:fc:10:de:af:43:f4:0d:6c:40:ed: 55:b0:9c:3c:3a:c5:57:a7:a7:6d:0e:50:96:6b:2b: 51:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:89:E5:8F:51:0D:DE:B5:11:EF:76:04:AC:6A:46:2E:95:A9:75:5E X509v3 Authority Key Identifier: keyid:AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:5a:fe:41:79:36:f3:9a:c8:ea:f6:93:db:e1:62:71:6b:91: bd:49:6b:6d:9b:11:08:0f:6b:b7:45:c0:f2:33:80:d1:c5:92: 15:31:90:a9:9d:28:15:89:4a:de:4e:9c:f6:3f:31:80:1f:c9: 40:34:bd:1e:45:46:fd:a9:f9:63:7f:00:33:7a:9f:9b:a4:cf: d0:d6:56:7e:c5:2e:76:60:fc:bb:4e:9a:81:99:9c:6c:0b:0d: 9f:7d:b1:1d:34:29:d2:3c:3e:53:6f:b2:58:e3:ee:aa:aa:67: 59:e4:85:c4:c6:24:b3:5b:70:8a:ab:5f:df:2c:41:ad:cd:ff: b9:33:07:b1:02:06:10:b2:b4:7c:01:9c:f9:30:b3:9b:6e:7e: b4:f4:3e:6b:74:b2:eb:c4:10:a1:90:d6:ad:b1:b2:f0:3d:ba: 92:a3:45:98:cb:6e:f4:9e:8b:a3:8f:ce:e8:d3:d3:06:af:2a: 6d:51:92:aa:2e:da:e7:48:f7:ec:8f:bc:7a:89:01:21:30:65: 16:f4:37:ca:aa:da:59:c6:01:c7:7a:4d:ee:5f:25:0f:67:32: 34:80:31:41:07:4f:39:7b:e7:75:42:e2:d2:3e:08:9e:05:d6: 84:e2:3d:5e:9f:7c:7a:5a:39:b2:76:84:1a:e6:0f:59:42:8a: cb:5c:21:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4NzA1MUY3Nzk1 MTU4OTE2NzkwHhcNMjUwODA3MDIyMDE3WhcNMjUwODE0MDIyMDE3WjAYMRYwFAYD VQQDEw02ODk0MGQ2MS0xMGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZGgdJ8sWwebdfwVxmB7f4/eyJvrhT+/ncpKCPt5V2GYEPkGF00rEs/wTrEK xyPCoaOUGkAMki97/uioMPsA8P7HNWeEWxF9D8x1lJeyt2esaoLPGONSGLEJ/up7 Y8C02nHNC85pJDjg2R3vO0YV7IgzBjSxYwaGw9vDOhv+WHXulpxzn595K/uEoX5l XThsq6Gd3Sh1jCouCCx7eUjRagx6KqJt+fkUJBF+1fF2wrdG4/twA0CSwcmQcB8X FPrHQj+VHEuX4eMfTImHrCU6Az2fmGtDFVJCm6qtNymR4cXdo6WKc/wQ3q9D9A1s QO1VsJw8OsVXp6dtDlCWaytRKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaJ5Y9R Dd61Ee92BKxqRi6VqXVeMB8GA1UdIwQYMBaAFK1JPcmj0kA0g2KFhwUfd5UViRZ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQxOC9BRDBEQzQ4MDFD NEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FEU0RZb1dIQlI5M2xSV0pG bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVazl5YVBTUURTRFlvV0hCUjkzbFJXSkZuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FE U0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWWv5BeTbzmsjq9pPb4WJxa5G9SWttmxEID2u3RcDyM4DRxZIVMZCp nSgViUreTpz2PzGAH8lANL0eRUb9qfljfwAzep+bpM/Q1lZ+xS52YPy7TpqBmZxs Cw2ffbEdNCnSPD5Tb7JY4+6qqmdZ5IXExiSzW3CKq1/fLEGtzf+5MwexAgYQsrR8 AZz5MLObbn609D5rdLLrxBChkNatsbLwPbqSo0WYy270noujj87o09MGryptUZKq LtrnSPfsj7x6iQEhMGUW9DfKqtpZxgHHek3uXyUPZzI0gDFBB085e+d1QuLSPgie BdaE4j1en3x6WjmydoQa5g9ZQorLXCFP -----END CERTIFICATE-----Generated at Sat Aug 9 01:19:36 2025 by rpki-client