$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: SgRwsaIv9URqVnV/LVKN5cA05E4l75N9rnkpq7F49VI= Subject key identifier: C7:0D:A5:B0:F6:EB:B1:D6:C0:0E:29:5A:5F:82:26:15:4B:30:4B:50 Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: 0165 Signing time: Mon 11 Aug 2025 04:04:15 +0000 Manifest this update: Mon 11 Aug 2025 04:04:14 +0000 Manifest next update: Mon 18 Aug 2025 04:04:14 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: ODlOt+aEPzyC2J2qCCzSgYjGGdfwJRJIcFB1qVNX4SY=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: 33db+G2HmqK4GM+/q2Pot6yftpHMysN5n0HwgMWkack=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 04:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C, serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Validity Not Before: Aug 11 04:04:14 2025 GMT Not After : Aug 18 04:04:14 2025 GMT Subject: CN=68996bbf-bbd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4d:70:22:7a:88:47:75:c7:6e:0c:1c:f9:6a: ad:22:3f:3c:97:81:93:ce:dd:6b:d7:a0:61:c6:f5: 26:df:ef:4a:6d:7f:4f:af:d3:3d:8d:2e:85:93:a8: ea:45:b0:25:d1:20:16:b6:ad:1a:30:1a:e7:0c:11: e7:d7:59:89:75:f4:65:80:d9:0f:ab:59:d2:70:58: 06:26:1b:fb:32:73:d1:b8:66:58:a1:c1:37:81:e1: 2b:1c:2e:b2:de:9d:8a:ee:88:39:f6:02:f3:e3:7a: a0:df:59:ab:21:3c:ba:10:d7:bf:06:8f:37:9f:bd: 0d:03:ae:4f:b8:38:16:19:8f:8b:7f:64:dd:d4:de: bb:0f:ce:7a:f0:b4:87:6a:19:25:a7:6b:13:38:32: de:d3:99:66:af:14:da:cc:e8:1b:3f:ca:1c:ce:69: dd:22:07:7a:e4:06:07:f1:89:24:c3:a8:3c:da:b4: c7:e2:1b:54:e9:81:60:76:9b:6a:a6:05:bb:b6:c7: 54:58:d3:23:f7:fe:91:7a:3c:13:ff:77:99:7a:00: 80:0a:3f:bf:75:75:cd:75:85:c2:4b:5c:36:30:3d: cc:6c:8f:48:3d:89:df:bf:d0:20:b7:73:c9:b7:2d: 7d:21:f0:8a:3c:dc:ad:90:18:48:de:03:d0:93:19: 2b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0D:A5:B0:F6:EB:B1:D6:C0:0E:29:5A:5F:82:26:15:4B:30:4B:50 X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:7b:7e:88:16:97:f5:29:01:61:4b:3f:89:a0:37:4b:c9:f2: 17:79:ba:9e:51:fe:2b:ea:8e:f6:e9:84:0f:3d:3d:1a:00:78: 6f:97:11:2e:8d:37:7d:ca:f0:04:68:ca:79:fb:62:07:e0:0b: 9b:db:7c:c9:3f:8f:3e:b4:05:fe:96:1d:e9:3d:b0:12:f6:a6: 92:58:8e:c8:67:61:6b:fb:d2:7e:28:30:72:52:75:52:c5:34: 85:5f:a5:56:a7:7d:a7:44:5d:b2:28:4e:60:8f:23:b4:74:2c: 81:9d:f3:23:cb:39:2f:cc:cf:9a:18:4c:a7:05:84:b7:01:10: 91:3c:63:b1:db:9b:87:ca:d9:e6:31:df:b3:92:6e:c9:bf:6d: 95:c0:12:d9:d7:c8:7e:fc:ef:8f:aa:06:02:b3:7a:0a:e0:bb: 68:b9:b4:95:45:d0:3a:02:bb:0e:d1:39:75:2d:39:79:c3:a4: 40:d7:77:b9:d2:a9:68:69:96:b6:d3:d2:2f:73:96:3b:0e:e3: 7d:53:a8:4b:09:7c:cc:ee:83:81:be:82:15:8e:8b:e6:6f:07: 26:dc:0f:fa:72:5b:c6:a2:f3:63:28:45:72:75:21:17:31:1e: c8:0e:f4:41:b6:44:0c:61:4d:f9:24:ea:2b:58:66:46:10:3d: f3:82:3d:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjUwODExMDQwNDE0WhcNMjUwODE4MDQwNDE0WjAYMRYwFAYD VQQDEw02ODk5NmJiZi1iYmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArE1wInqIR3XHbgwc+WqtIj88l4GTzt1r16BhxvUm3+9KbX9Pr9M9jS6Fk6jq RbAl0SAWtq0aMBrnDBHn11mJdfRlgNkPq1nScFgGJhv7MnPRuGZYocE3geErHC6y 3p2K7og59gLz43qg31mrITy6ENe/Bo83n70NA65PuDgWGY+Lf2Td1N67D8568LSH ahklp2sTODLe05lmrxTazOgbP8oczmndIgd65AYH8Ykkw6g82rTH4htU6YFgdptq pgW7tsdUWNMj9/6RejwT/3eZegCACj+/dXXNdYXCS1w2MD3MbI9IPYnfv9Agt3PJ ty19IfCKPNytkBhI3gPQkxkrAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcNpbD2 67HWwA4pWl+CJhVLMEtQMB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHe36IFpf1KQFhSz+JoDdLyfIXebqeUf4r6o726YQPPT0aAHhvlxEu jTd9yvAEaMp5+2IH4Aub23zJP48+tAX+lh3pPbAS9qaSWI7IZ2Fr+9J+KDByUnVS xTSFX6VWp32nRF2yKE5gjyO0dCyBnfMjyzkvzM+aGEynBYS3ARCRPGOx25uHytnm Md+zkm7Jv22VwBLZ18h+/O+PqgYCs3oK4LtoubSVRdA6ArsO0Tl1LTl5w6RA13e5 0qloaZa209Ivc5Y7DuN9U6hLCXzM7oOBvoIVjovmbwcm3A/6clvGovNjKEVydSEX MR7IDvRBtkQMYU35JOorWGZGED3zgj0I -----END CERTIFICATE-----Generated at Tue Aug 12 18:59:35 2025 by rpki-client