$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: V1HHedFSsWmwwpNU5mr2lUfe0dxyOPh7THzy/6quuTY= Subject key identifier: CE:CE:C1:6A:F7:9B:A7:57:BA:4B:1E:56:A6:34:2F:79:B3:51:E9:D4 Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 038C Signing time: Mon 11 Aug 2025 01:01:10 +0000 Manifest this update: Mon 11 Aug 2025 01:01:10 +0000 Manifest next update: Mon 18 Aug 2025 01:01:10 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: OA1zkhJdTN1gXT3EyJHt8+k784aXr0PjiIdDikzrwck=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fCg3LsUh16wFnDfXkxVhThF2ZOUkgckgr+TaTcI9RIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Aug 11 01:01:10 2025 GMT Not After : Aug 18 01:01:10 2025 GMT Subject: CN=689940d6-cf2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:61:d0:d9:7e:d4:3b:c1:cf:75:5a:c0:2f:ca: 91:be:d4:4d:58:c8:ad:20:47:fb:68:84:5f:72:22: 5f:d6:26:41:a8:a9:4d:df:c0:44:3d:75:dd:49:77: bc:82:ad:25:8a:34:6f:2b:63:1e:ce:38:21:12:3a: d1:22:a5:8d:1d:d1:ba:6a:41:40:09:84:2a:10:89: c1:96:71:49:5b:b5:d6:a8:77:38:e4:ed:d4:d2:28: e8:e6:c0:d9:5a:04:6c:3b:63:f3:9a:6a:47:a9:06: 14:ea:73:1a:a9:3e:46:6c:a2:5c:ee:9c:a9:e9:85: 64:e9:c4:6d:d1:ef:cc:4b:54:cd:f1:b9:9a:fa:f3: 10:78:be:46:82:fd:68:46:6c:40:bf:23:05:bc:db: 38:2f:b8:56:49:62:bc:95:f6:74:6c:a4:3e:d0:07: 7e:f1:81:9b:f4:b0:ad:53:43:af:64:50:02:9b:46: 0a:88:cb:4d:29:23:c5:27:38:81:9d:49:e6:ce:fb: 83:d1:90:5d:c9:f3:aa:48:f1:d5:8d:9a:1f:c6:8f: 43:eb:bd:e8:4d:3b:cd:0e:22:18:b1:ca:68:29:13: 1a:25:78:f1:d6:82:ef:3d:d0:e5:06:58:d6:d8:12: 9e:ca:a5:8e:3e:11:64:28:d7:b0:a3:8b:5b:28:c9: 64:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:CE:C1:6A:F7:9B:A7:57:BA:4B:1E:56:A6:34:2F:79:B3:51:E9:D4 X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:b0:13:db:75:e3:d8:48:54:8d:72:26:e0:da:7a:c0:a9:d6: 60:c1:9d:d8:d4:50:af:56:f8:3a:2f:1e:52:7f:1a:18:7a:54: 10:9e:4d:72:85:ec:64:20:47:17:a4:35:79:ec:a0:8d:69:12: ce:56:5a:1e:2d:3d:f1:3f:d5:1b:f7:17:0b:5a:d0:6b:3e:47: 48:ce:01:68:70:08:57:6f:d7:91:46:4d:eb:6b:77:46:9b:73: e1:cb:cc:14:fa:69:61:bd:bb:9f:ab:e5:0c:b9:ff:36:0e:48: 2f:52:2e:39:79:8b:16:29:0e:c8:08:51:1e:bf:46:b9:cf:fa: a0:1d:72:ea:fa:3a:26:33:29:58:6a:2e:b5:2f:ac:28:a2:16: 85:a9:aa:b2:8e:bc:cd:3b:f7:84:7e:0f:cf:d0:4f:03:f3:fa: 53:07:31:9e:82:f6:e4:5f:8a:28:5b:02:1e:cf:d4:52:1f:74: 33:36:33:a6:50:6d:ec:77:b4:d1:5d:30:68:6c:dd:74:e1:ca: 1e:52:46:9b:0f:51:8c:6c:3e:5b:85:d5:51:12:9e:bf:dd:a7: 3e:00:33:e5:4a:28:5f:2b:68:0f:da:fd:b7:52:9c:be:16:53: 6d:70:98:d8:23:5b:c7:c6:c2:cc:31:9b:23:b7:f7:4b:35:d1: d1:f0:ce:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjUwODExMDEwMTEwWhcNMjUwODE4MDEwMTEwWjAYMRYwFAYD VQQDEw02ODk5NDBkNi1jZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGHQ2X7UO8HPdVrAL8qRvtRNWMitIEf7aIRfciJf1iZBqKlN38BEPXXdSXe8 gq0lijRvK2MezjghEjrRIqWNHdG6akFACYQqEInBlnFJW7XWqHc45O3U0ijo5sDZ WgRsO2PzmmpHqQYU6nMaqT5GbKJc7pyp6YVk6cRt0e/MS1TN8bma+vMQeL5Ggv1o RmxAvyMFvNs4L7hWSWK8lfZ0bKQ+0Ad+8YGb9LCtU0OvZFACm0YKiMtNKSPFJziB nUnmzvuD0ZBdyfOqSPHVjZofxo9D673oTTvNDiIYscpoKRMaJXjx1oLvPdDlBljW 2BKeyqWOPhFkKNewo4tbKMlkOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7OwWr3 m6dXukseVqY0L3mzUenUMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgsBPbdePYSFSNcibg2nrAqdZgwZ3Y1FCvVvg6Lx5SfxoYelQQnk1y hexkIEcXpDV57KCNaRLOVloeLT3xP9Ub9xcLWtBrPkdIzgFocAhXb9eRRk3ra3dG m3Phy8wU+mlhvbufq+UMuf82DkgvUi45eYsWKQ7ICFEev0a5z/qgHXLq+jomMylY ai61L6woohaFqaqyjrzNO/eEfg/P0E8D8/pTBzGegvbkX4ooWwIez9RSH3QzNjOm UG3sd7TRXTBobN104coeUkabD1GMbD5bhdVREp6/3ac+ADPlSihfK2gP2v23Upy+ FlNtcJjYI1vHxsLMMZsjt/dLNdHR8M7R -----END CERTIFICATE-----Generated at Mon Aug 11 07:27:26 2025 by rpki-client