$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: 7t5n0dMS8R1AwIZf4kmB0pNv9z5xoE9cDrmWgcDuW1M= Subject key identifier: CC:A1:AF:99:91:39:A3:B0:F2:2B:5E:61:4A:84:31:F0:D3:AF:CA:5B Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 0947 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 0923 Signing time: Fri 08 Aug 2025 20:43:16 +0000 Manifest this update: Fri 08 Aug 2025 20:43:15 +0000 Manifest next update: Fri 15 Aug 2025 20:43:15 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: vV//sUWYw9lI2JVyaJndjYClBRn//H/O9jWE7Gu8EFc=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2375 (0x947) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Aug 8 20:43:15 2025 GMT Not After : Aug 15 20:43:15 2025 GMT Subject: CN=68966163-26bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cf:e1:92:b1:77:60:c6:09:86:15:43:82:7a: 6e:8b:04:74:7a:ca:88:f4:a2:77:f2:d9:14:9f:d5: 4b:35:f1:52:9c:ab:23:32:bb:c6:60:ce:7c:89:a1: 96:59:75:ba:2a:a2:34:f7:1c:16:67:4c:5b:1c:8a: 08:38:1a:97:04:b1:57:6c:59:64:ba:da:9e:f7:43: d1:09:18:d9:46:46:37:98:03:fa:86:d1:14:7d:54: a8:a5:ff:6f:b7:b7:db:1c:4b:6f:86:20:b3:b4:b5: e0:ce:19:6a:80:cb:5f:ec:f2:ee:31:cb:76:69:82: 1a:60:31:82:60:d8:ad:49:80:91:6a:ec:33:7d:86: f9:ce:10:d4:25:e7:54:31:d1:a0:c6:a9:51:05:1f: dd:11:45:b6:56:7b:a8:c6:41:3e:ff:fd:a3:41:7b: 28:dd:93:9d:35:e6:01:a5:7f:22:73:00:7c:5b:ef: 6e:27:bc:58:fe:bc:7f:ab:ca:19:cf:0c:a2:d5:47: 8d:48:ef:7d:ef:8b:87:be:df:c1:38:36:6a:ca:0b: 49:53:db:9c:e3:4a:53:62:2d:f7:b6:a5:7f:ab:c6: 6d:ff:e7:6d:73:10:d9:c7:89:0c:1c:26:e2:fa:f4: 09:56:fc:f5:9c:42:e8:79:83:0f:6b:ca:52:7d:58: 2e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A1:AF:99:91:39:A3:B0:F2:2B:5E:61:4A:84:31:F0:D3:AF:CA:5B X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:05:0c:6b:bc:5c:21:26:24:20:7c:b8:8b:9f:dc:76:f0:9c: 8c:f6:57:0f:b0:d0:8d:39:1b:dc:cb:2a:2f:3e:28:0c:53:d6: e7:ad:51:13:64:2f:e4:53:ac:24:a0:d3:a2:02:e4:22:f1:e7: e3:fe:13:3c:61:5c:d2:72:d3:e4:8b:6a:e8:7d:49:44:6f:97: 25:25:ba:57:fc:bc:59:32:4d:a0:63:58:81:52:83:65:cb:c0: 94:66:31:25:ed:5c:fa:c4:63:77:8e:01:0a:56:ec:a4:02:5b: 04:ce:c9:d5:c0:11:56:54:f0:77:fc:1a:10:e3:c3:f6:4b:96: 0d:71:1b:7b:cf:ff:0d:f0:81:87:bc:69:14:d0:1a:cb:e3:f0: b8:d9:8f:ad:8d:60:a3:8d:89:bd:b8:f0:5a:9d:68:bf:91:94: 53:e1:59:fa:ec:66:f2:72:db:c3:7e:d8:8f:a4:75:51:5d:61: 4a:15:04:f5:93:9b:dd:3a:d3:1a:20:61:39:bc:97:ea:fe:4c: 92:d7:22:92:c0:e4:da:67:66:7f:48:2d:48:37:47:3b:71:6e: f4:00:e3:72:41:3b:77:73:45:b0:0b:f5:c9:d3:15:80:78:51: e1:94:70:78:59:09:86:58:b3:17:0f:c5:85:b7:90:5a:58:fe: 04:3b:3d:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwODA4MjA0MzE1WhcNMjUwODE1MjA0MzE1WjAYMRYwFAYD VQQDEw02ODk2NjE2My0yNmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss/hkrF3YMYJhhVDgnpuiwR0esqI9KJ38tkUn9VLNfFSnKsjMrvGYM58iaGW WXW6KqI09xwWZ0xbHIoIOBqXBLFXbFlkutqe90PRCRjZRkY3mAP6htEUfVSopf9v t7fbHEtvhiCztLXgzhlqgMtf7PLuMct2aYIaYDGCYNitSYCRauwzfYb5zhDUJedU MdGgxqlRBR/dEUW2VnuoxkE+//2jQXso3ZOdNeYBpX8icwB8W+9uJ7xY/rx/q8oZ zwyi1UeNSO9974uHvt/BODZqygtJU9uc40pTYi33tqV/q8Zt/+dtcxDZx4kMHCbi +vQJVvz1nELoeYMPa8pSfVguLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyhr5mR OaOw8iteYUqEMfDTr8pbMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDABQxrvFwhJiQgfLiLn9x28JyM9lcPsNCNORvcyyovPigMU9bnrVET ZC/kU6wkoNOiAuQi8efj/hM8YVzSctPki2rofUlEb5clJbpX/LxZMk2gY1iBUoNl y8CUZjEl7Vz6xGN3jgEKVuykAlsEzsnVwBFWVPB3/BoQ48P2S5YNcRt7z/8N8IGH vGkU0BrL4/C42Y+tjWCjjYm9uPBanWi/kZRT4Vn67GbyctvDftiPpHVRXWFKFQT1 k5vdOtMaIGE5vJfq/kyS1yKSwOTaZ2Z/SC1IN0c7cW70AONyQTt3c0WwC/XJ0xWA eFHhlHB4WQmGWLMXD8WFt5BaWP4EOz10 -----END CERTIFICATE-----Generated at Sun Aug 10 18:51:51 2025 by rpki-client