$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft File: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft (raw, json) Hash identifier: 1YGavmTLiiMubb6Gt70Aw53yaWuls68jP/q7ucOI1cI= Subject key identifier: 22:D2:9D:F3:AF:B6:A4:DF:09:B4:0D:FF:9C:9C:40:04:C7:0C:D1:9A Authority key identifier: 51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 Certificate issuer: /CN=A91A7761/serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Certificate serial: 062A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft Manifest number: 0608 Signing time: Fri 08 Aug 2025 23:22:22 +0000 Manifest this update: Fri 08 Aug 2025 23:22:22 +0000 Manifest next update: Fri 15 Aug 2025 23:22:21 +0000 Files and hashes: 1: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl (hash: NSLsRtfZGLMVP+YrA9txMGa34kV3fjXGic7j+DJak4w=) 2: C9BA671C3A2611F0908A2B20C4F9AE02.roa (hash: hAsOFqLGhlXPlJQqq8o+TJ1lqU96PHU1fRQ8ll9kM1c=) 3: F44E1EECCD8411EF88CD1464C4F9AE02.roa (hash: RAzhHtW1VH/eUjgZQiEsm0Ej6j+0F6PlwpjTpjOi8Jo=) 4: F4C73FCACD8411EF88CD1464C4F9AE02.roa (hash: EkzwfsPvhq1FP6pm5CT4LDCnqWr4szU6ESASOp0o6DU=) 5: 3FE8CD1051B111F0932E1173C4F9AE02.roa (hash: RB6HB76Hd37I1Qyua/UNLhe473Y5QaFhWKPCNvGT+Jc=) 6: DBF856463A3011F0B0C6F437C4F9AE02.roa (hash: 3y3NqdGA4Yb7KDxIbZnutCZORNmNgdB027E2G7UT98A=) 7: F559B7E2CD8411EF88CD1464C4F9AE02.roa (hash: 1YFs0Zqq59OdTTfQ9TRBhg+ye+627iyYVeuBlex3Kfk=) 8: 044C4ED6A26711ED8095F74DC4F9AE02.roa (hash: ehyJGIeBDK390bSFLx2HamOEcgKmw6zu6VhcLaVRD/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7761, serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Validity Not Before: Aug 8 23:22:22 2025 GMT Not After : Aug 15 23:22:21 2025 GMT Subject: CN=689686ae-ca2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c6:30:79:a3:f6:29:76:3e:d1:b7:f9:d6:2a: 82:15:72:9f:46:96:f4:45:c3:96:ce:17:d1:2a:f8: 13:45:dd:02:b1:f6:55:ce:9a:4f:39:a8:29:4d:5c: 15:33:0a:49:6d:7d:94:9a:32:98:16:63:55:67:f8: 49:0f:d5:7c:54:80:a7:26:4a:e8:89:4f:22:a9:7c: 7f:f2:af:69:17:f1:b4:68:fb:4b:a8:a0:0b:5a:b5: fe:34:a6:fe:c5:54:63:ab:f8:2a:8a:5d:27:2a:c2: a5:6d:a3:f7:af:c9:a1:42:42:d8:80:0e:73:eb:6c: 48:59:91:e2:03:d2:38:f4:ae:b7:3d:7a:6d:fc:74: 11:46:9b:89:ee:c3:96:e0:80:63:be:00:a2:4b:6b: 28:6d:e8:72:76:88:a3:8a:c2:7b:69:7c:6a:45:06: 1d:78:90:25:0b:a4:1a:a3:01:de:07:06:9c:d6:b1: 27:1f:e6:a2:d0:1d:19:50:53:ba:62:29:40:e5:3f: 6d:db:e5:cc:66:f6:4c:65:8d:54:89:75:50:bd:05: 4d:65:6b:a4:46:c8:ae:db:a6:15:69:ee:b7:81:ff: da:50:02:3f:b6:2c:ac:1e:fe:a6:77:d0:0e:02:78: 6a:ee:8f:a6:94:47:97:11:ad:4d:2f:37:09:4a:c6: ed:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D2:9D:F3:AF:B6:A4:DF:09:B4:0D:FF:9C:9C:40:04:C7:0C:D1:9A X509v3 Authority Key Identifier: keyid:51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:5c:25:fa:bb:ea:cf:10:f9:7a:34:4a:69:c5:a2:7e:45:1e: f2:e2:8e:a6:cb:70:55:33:23:b1:15:1a:b8:fe:d1:7f:e5:dd: 28:7c:ec:ea:14:32:b4:9b:45:8e:4c:b8:12:95:17:de:ce:59: 4a:8d:bb:72:d2:ee:6e:46:15:8e:af:c1:02:4c:47:65:64:ca: 08:66:45:4f:68:f0:04:a0:4d:12:a9:64:44:f2:16:fe:d3:75: 8a:50:2e:59:ce:d4:0f:0a:fd:f8:72:b0:49:27:82:f6:54:95: d6:9f:08:b6:c0:44:b4:22:5a:c4:34:7f:71:91:84:4d:e6:b8: 4f:8a:f0:bc:b8:62:75:24:6c:cf:3f:cb:0a:ce:1d:df:82:d6: a6:9a:a1:a1:d2:f8:b4:3e:5d:43:f8:09:ff:4c:79:9a:b6:de: 76:d0:c1:3c:ea:d7:18:9b:cb:34:26:0b:cd:d7:1a:07:e8:ae: 37:1d:9e:e2:3f:c8:c5:bd:8d:29:a6:b9:40:27:ee:ed:9c:d5: 4b:b2:e6:b1:87:f1:ad:35:22:57:f7:46:a4:51:c8:57:97:12: 12:98:af:23:20:1c:14:62:ed:3c:19:7d:14:d2:25:75:cc:de: 1a:af:84:d4:cb:ad:e1:8d:94:87:88:c4:ad:d1:c0:a6:73:f5: 19:1e:7c:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3NjExMTAvBgNVBAUTKDUxRDVDQzJENUU0MjhGQzk1NTE0OUY1NzYyMTE5MDRG MDVCQUYyMTEwHhcNMjUwODA4MjMyMjIyWhcNMjUwODE1MjMyMjIxWjAYMRYwFAYD VQQDEw02ODk2ODZhZS1jYTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysYweaP2KXY+0bf51iqCFXKfRpb0RcOWzhfRKvgTRd0CsfZVzppPOagpTVwV MwpJbX2UmjKYFmNVZ/hJD9V8VICnJkroiU8iqXx/8q9pF/G0aPtLqKALWrX+NKb+ xVRjq/gqil0nKsKlbaP3r8mhQkLYgA5z62xIWZHiA9I49K63PXpt/HQRRpuJ7sOW 4IBjvgCiS2sobehydoijisJ7aXxqRQYdeJAlC6QaowHeBwac1rEnH+ai0B0ZUFO6 YilA5T9t2+XMZvZMZY1UiXVQvQVNZWukRsiu26YVae63gf/aUAI/tiysHv6md9AO Anhq7o+mlEeXEa1NLzcJSsbtowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLSnfOv tqTfCbQN/5ycQATHDNGaMB8GA1UdIwQYMBaAFFHVzC1eQo/JVRSfV2IRkE8FuvIR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzc2MS8wRTRCOTE2OEJE MzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4bFZGSjlYWWhHUVR3VzY4 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VkWE1MVjVDajhsVkZKOVhZaEdRVHdXNjhoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzc2MS8wRTRCOTE2OEJEMzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4 bFZGSjlYWWhHUVR3VzY4aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByXCX6u+rPEPl6NEppxaJ+RR7y4o6my3BVMyOxFRq4/tF/5d0ofOzq FDK0m0WOTLgSlRfezllKjbty0u5uRhWOr8ECTEdlZMoIZkVPaPAEoE0SqWRE8hb+ 03WKUC5ZztQPCv34crBJJ4L2VJXWnwi2wES0IlrENH9xkYRN5rhPivC8uGJ1JGzP P8sKzh3fgtammqGh0vi0Pl1D+An/THmatt520ME86tcYm8s0JgvN1xoH6K43HZ7i P8jFvY0pprlAJ+7tnNVLsuaxh/GtNSJX90akUchXlxISmK8jIBwUYu08GX0U0iV1 zN4ar4TUy63hjZSHiMSt0cCmc/UZHnxa -----END CERTIFICATE-----Generated at Sun Aug 10 18:29:27 2025 by rpki-client