$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft (raw, json) Hash identifier: z9+U/XYSDxCnZqN5WGRTGlA+nBN6lAuIHlBVgR17KkU= Subject key identifier: C0:72:0E:B4:79:89:2F:46:72:F9:A8:CF:E3:F5:50:70:EB:D9:3D:4C Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 09FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft Manifest number: 09F8 Signing time: Tue 12 Aug 2025 20:07:33 +0000 Manifest this update: Tue 12 Aug 2025 20:07:32 +0000 Manifest next update: Tue 19 Aug 2025 20:07:32 +0000 Files and hashes: 1: UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl (hash: 5rG/mf9F2yInz+X7YtluOI09r+qYMWmgiazy71wZj2A=) 2: 21028CF67EF811EAAD47CD30C4F9AE02.roa (hash: +gB8ZHO5MMKVGP2yT3GNNhFPo53EwfTpImIrJ+ySljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:07:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2559 (0x9ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Aug 12 20:07:32 2025 GMT Not After : Aug 19 20:07:32 2025 GMT Subject: CN=689b9f04-59d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:36:f4:67:87:e0:2b:ab:89:07:ec:b1:4a:31: c4:2d:e6:ec:d2:72:fd:84:2b:00:d5:f3:91:6b:75: 72:30:b3:e9:6d:db:7d:4d:23:91:50:69:da:c8:b7: 7c:15:b9:b0:e7:7a:c3:a0:f3:e7:25:a3:74:ee:22: 75:30:06:3e:05:65:d1:97:6a:36:dd:77:82:62:19: 3d:cf:40:25:29:2e:e9:d5:ea:a1:3d:f1:65:f7:9c: 22:2f:24:52:d3:d6:b0:f8:2e:23:9e:fd:f2:e6:fb: bf:3c:cc:2b:c0:95:0f:a7:80:7f:ff:de:43:50:4c: 61:7a:3c:31:70:f7:34:33:75:dd:0c:1d:fe:40:b3: 79:20:ca:4c:38:a8:a2:a5:7c:d1:d6:08:90:03:37: c4:f2:83:29:ec:ad:1f:2e:45:5e:5a:0f:8d:b0:22: 2d:9b:92:48:58:e0:04:f7:83:87:56:83:39:f8:61: 41:52:67:d8:a8:04:a2:34:c8:dd:f5:2b:95:e6:70: 11:bb:c8:7f:08:8b:41:73:5c:4f:28:e5:2c:09:27: 72:10:fd:aa:18:b4:6b:27:2d:d4:e2:6a:e4:ea:46: f3:7a:a8:0d:a8:fa:0a:eb:63:f9:65:db:51:03:3f: 1d:e7:43:06:fa:cb:49:45:73:ef:66:6d:c4:01:69: 85:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:72:0E:B4:79:89:2F:46:72:F9:A8:CF:E3:F5:50:70:EB:D9:3D:4C X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:63:4d:13:5f:61:08:58:6a:fe:8f:c8:06:64:24:ae:32:13: 4d:28:9e:9b:c4:07:c7:10:c1:3f:e9:53:27:aa:3f:1f:55:f3: f4:1b:dc:ef:bc:34:8f:bb:c5:6b:e8:51:58:bd:29:06:c1:c1: c2:49:eb:b9:2a:3c:22:b4:d4:23:31:05:90:b7:0a:63:59:08: ac:dd:29:34:a6:b3:ca:00:e1:98:19:54:6d:96:fc:68:e3:92: 7d:8d:2d:b7:68:2e:ab:4c:2a:d1:ba:16:bc:9e:cd:2c:fd:23: 80:83:03:92:cc:0d:ad:2f:dd:bd:df:b7:a0:e0:46:5e:f8:de: a2:6a:ff:4f:ab:b0:73:c6:f6:da:8f:41:09:de:9a:e6:bc:9a: 5f:93:eb:33:b8:fe:44:ef:19:ca:63:d6:38:ed:98:0e:77:47: 85:8c:32:a2:61:4e:47:44:17:78:a9:4c:65:ad:08:e4:52:51: 5f:a0:7f:a6:dd:50:1e:06:11:1c:74:3b:0a:04:98:e0:3d:67: eb:1e:7b:6b:4e:df:ee:65:65:42:97:a8:71:dc:1e:81:95:ec: d4:a2:05:48:57:4c:41:42:85:f1:ce:5b:58:79:e5:07:ae:0a: 37:bb:d9:5d:19:9a:b5:3c:c6:0d:72:19:81:02:01:11:d1:ee: f9:04:48:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjUwODEyMjAwNzMyWhcNMjUwODE5MjAwNzMyWjAYMRYwFAYD VQQDEw02ODliOWYwNC01OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Tb0Z4fgK6uJB+yxSjHELebs0nL9hCsA1fORa3VyMLPpbdt9TSORUGnayLd8 Fbmw53rDoPPnJaN07iJ1MAY+BWXRl2o23XeCYhk9z0AlKS7p1eqhPfFl95wiLyRS 09aw+C4jnv3y5vu/PMwrwJUPp4B//95DUExhejwxcPc0M3XdDB3+QLN5IMpMOKii pXzR1giQAzfE8oMp7K0fLkVeWg+NsCItm5JIWOAE94OHVoM5+GFBUmfYqASiNMjd 9SuV5nARu8h/CItBc1xPKOUsCSdyEP2qGLRrJy3U4mrk6kbzeqgNqPoK62P5ZdtR Az8d50MG+stJRXPvZm3EAWmF+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMByDrR5 iS9Gcvmoz+P1UHDr2T1MMB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQ aW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+Y00TX2EIWGr+j8gGZCSuMhNNKJ6bxAfHEME/6VMnqj8fVfP0G9zv vDSPu8Vr6FFYvSkGwcHCSeu5KjwitNQjMQWQtwpjWQis3Sk0prPKAOGYGVRtlvxo 45J9jS23aC6rTCrRuha8ns0s/SOAgwOSzA2tL92937eg4EZe+N6iav9Pq7Bzxvba j0EJ3prmvJpfk+szuP5E7xnKY9Y47ZgOd0eFjDKiYU5HRBd4qUxlrQjkUlFfoH+m 3VAeBhEcdDsKBJjgPWfrHntrTt/uZWVCl6hx3B6BlezUogVIV0xBQoXxzltYeeUH rgo3u9ldGZq1PMYNchmBAgER0e75BEi6 -----END CERTIFICATE-----Generated at Wed Aug 13 05:55:17 2025 by rpki-client