$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: QEwJ2r84vTgBblZjIK336jmrqeu0fE+W6K/r9HPC8MA= Subject key identifier: E1:39:68:D2:01:FB:0C:21:FE:02:72:1C:3B:F0:F2:50:73:FD:6F:8A Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 02EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 02E9 Signing time: Sat 09 Aug 2025 01:50:13 +0000 Manifest this update: Sat 09 Aug 2025 01:50:13 +0000 Manifest next update: Sat 16 Aug 2025 01:50:13 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: zwp4rXuERGpMLUR2cC8zQb45fIh5on4PGHBjahb1+Zs=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 747 (0x2eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: Aug 9 01:50:13 2025 GMT Not After : Aug 16 01:50:13 2025 GMT Subject: CN=6896a955-e5bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9a:33:95:a0:15:6e:2d:ae:d5:bc:7a:c8:f6: 0e:f3:75:1c:30:ab:dc:d5:97:e2:ee:03:29:9c:93: c2:cb:65:a5:b4:65:01:c2:6d:c5:fa:6d:63:77:a9: 19:b6:f5:82:1a:40:1c:b4:8c:d6:48:db:87:98:22: d6:c6:28:bf:f4:25:e0:64:a1:0f:31:20:95:5d:69: 90:8b:f7:10:76:f6:d8:9e:d5:60:60:32:25:a9:eb: 00:94:16:0a:49:fc:ec:de:38:54:2b:da:04:20:fe: c4:52:17:09:b4:29:5d:07:93:51:40:63:bd:94:86: 48:47:e6:0f:92:46:92:9d:ce:0b:62:b1:a8:1d:cd: b5:41:74:87:50:b6:0d:e6:c7:04:60:cb:62:a4:14: 6f:e1:2c:c0:d4:a4:b4:84:c6:13:72:51:d4:76:75: 15:c4:97:02:4e:d4:9b:52:e7:fe:ad:79:cf:fe:d0: 70:a2:16:31:02:b2:1f:7d:6c:dc:e0:8d:62:91:90: a0:9e:01:81:d0:00:b0:24:ae:22:ef:20:26:b0:51: 53:b6:9c:d0:01:b7:6f:f2:1a:15:d5:51:6b:bd:6a: 16:61:6d:0f:95:07:a0:af:ad:70:e5:04:f2:49:a9: 7c:11:b5:4a:2d:4e:e8:e5:78:65:89:05:ce:a6:ad: 8c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:39:68:D2:01:FB:0C:21:FE:02:72:1C:3B:F0:F2:50:73:FD:6F:8A X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:57:8c:d9:b5:9c:d5:ac:7c:d0:66:01:cd:34:b7:95:09:7c: ab:06:23:7f:f3:74:d8:51:41:07:89:83:bd:b3:3b:23:cb:db: 24:20:75:28:27:c0:48:62:99:67:b1:ee:38:7c:77:83:8f:d8: 08:74:7a:c5:b7:70:49:8d:4a:d7:cc:7a:b3:9f:3b:00:4a:bc: 63:0d:72:21:ed:05:8e:62:9e:80:30:ab:5e:df:e6:56:1a:11: f2:53:a6:45:56:b4:17:1c:f2:a7:99:20:9d:4a:da:1a:f3:85: 3c:72:bf:d5:a9:13:6e:bc:58:e0:a2:a3:5c:9f:54:bb:35:2e: 47:a2:f7:9e:53:66:3b:3d:4a:7b:5a:c2:ee:ad:09:86:bc:ea: 00:98:68:c7:6b:4c:f6:4b:4b:e3:31:80:46:57:12:10:a1:fa: 42:76:d3:99:83:a3:e9:53:24:20:f7:77:10:c3:3e:28:c5:77: 07:4d:ca:d4:68:64:af:ca:25:1f:4b:9e:b7:2c:99:6d:55:63: 61:a1:4b:43:27:f8:78:04:50:93:2a:63:ff:38:29:a4:af:2a: 73:36:51:9c:30:42:44:2d:fc:24:54:e2:f2:0f:d5:2c:ce:62: ea:43:38:ea:ab:3f:0d:fb:ae:a5:95:dc:11:8a:60:c1:b3:f3: f9:f4:f2:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjUwODA5MDE1MDEzWhcNMjUwODE2MDE1MDEzWjAYMRYwFAYD VQQDEw02ODk2YTk1NS1lNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5ozlaAVbi2u1bx6yPYO83UcMKvc1Zfi7gMpnJPCy2WltGUBwm3F+m1jd6kZ tvWCGkActIzWSNuHmCLWxii/9CXgZKEPMSCVXWmQi/cQdvbYntVgYDIlqesAlBYK Sfzs3jhUK9oEIP7EUhcJtCldB5NRQGO9lIZIR+YPkkaSnc4LYrGoHc21QXSHULYN 5scEYMtipBRv4SzA1KS0hMYTclHUdnUVxJcCTtSbUuf+rXnP/tBwohYxArIffWzc 4I1ikZCgngGB0ACwJK4i7yAmsFFTtpzQAbdv8hoV1VFrvWoWYW0PlQegr61w5QTy Sal8EbVKLU7o5XhliQXOpq2MnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOE5aNIB +wwh/gJyHDvw8lBz/W+KMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8V4zZtZzVrHzQZgHNNLeVCXyrBiN/83TYUUEHiYO9szsjy9skIHUo J8BIYplnse44fHeDj9gIdHrFt3BJjUrXzHqznzsASrxjDXIh7QWOYp6AMKte3+ZW GhHyU6ZFVrQXHPKnmSCdStoa84U8cr/VqRNuvFjgoqNcn1S7NS5HoveeU2Y7PUp7 WsLurQmGvOoAmGjHa0z2S0vjMYBGVxIQofpCdtOZg6PpUyQg93cQwz4oxXcHTcrU aGSvyiUfS563LJltVWNhoUtDJ/h4BFCTKmP/OCmkrypzNlGcMEJELfwkVOLyD9Us zmLqQzjqqz8N+66lldwRimDBs/P59PL5 -----END CERTIFICATE-----Generated at Sun Aug 10 21:16:40 2025 by rpki-client