$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft File: UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft (raw, json) Hash identifier: HnPOBsKXJ/bnuKRPtrJIVRrUJw+wgQzVMa+C32Gv000= Subject key identifier: FE:DA:A3:7A:E1:5B:9D:5D:9C:E4:02:F9:D9:03:FA:76:17:DA:43:86 Authority key identifier: 50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74 Certificate issuer: /CN=A91AF2D9/serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft Manifest number: B2 Signing time: Tue 05 Aug 2025 06:36:17 +0000 Manifest this update: Tue 05 Aug 2025 06:36:16 +0000 Manifest next update: Tue 12 Aug 2025 06:36:16 +0000 Files and hashes: 1: UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl (hash: Drauw0WEl4F5qhAUpT6ST/vcw3p4AmURER1/jcsFe2U=) 2: D48472829E9011EF84D96F7DC4F9AE02.roa (hash: DWOCYh9U3Wi0CtHFM/de9pIBC9zRoaOkBAZXQGO2U2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2D9, serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74 Validity Not Before: Aug 5 06:36:16 2025 GMT Not After : Aug 12 06:36:16 2025 GMT Subject: CN=6891a660-4013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5a:51:17:fb:f6:3c:95:b7:e1:e4:59:67:84: 49:67:0d:ef:fc:d7:ed:a5:2e:a2:fe:db:00:c8:be: 06:54:6b:bf:c1:38:d8:b6:f6:8d:ed:ad:cf:07:dd: 83:a2:05:6a:eb:bb:45:b0:21:d8:d3:da:2e:f9:3c: ed:d0:28:5c:be:ae:00:52:35:45:d8:ab:2b:1e:13: c8:53:df:29:67:26:35:31:5a:ab:59:46:72:16:b9: 93:39:ff:4e:30:c2:6e:50:09:64:28:dc:58:4f:5c: e0:2b:bc:21:2c:63:f0:4b:84:95:33:a9:34:18:dc: 02:ff:a6:f2:d2:8e:bf:82:a5:ea:a3:da:c7:4e:e3: e1:43:a4:a5:d7:db:6b:34:86:e1:a2:63:99:4c:99: e8:98:22:e8:00:24:5c:38:e6:39:69:7d:36:86:9d: 76:5a:9e:ba:08:b6:a7:3f:68:45:ce:f8:b4:f5:19: 80:d1:bf:a0:fe:50:9c:75:09:0f:62:6a:c0:a5:a8: 58:49:11:85:ae:8d:e9:6d:19:35:c1:18:b0:53:be: ae:84:e5:4e:0d:98:e3:c2:ca:51:e6:4f:5f:fc:a6: 11:55:0c:88:53:89:ae:ab:4e:ca:df:4a:95:9a:23: b1:44:16:0d:5e:f8:3c:e2:2d:27:c3:93:9d:83:fa: 1a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:DA:A3:7A:E1:5B:9D:5D:9C:E4:02:F9:D9:03:FA:76:17:DA:43:86 X509v3 Authority Key Identifier: keyid:50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:fb:36:17:d7:22:d0:13:e2:f5:60:20:c9:56:f5:ad:29:ac: 14:6b:50:56:fa:8e:49:8b:f5:8e:ff:a2:0b:d0:de:fe:f7:99: 2b:d4:82:f0:16:ee:90:4a:bb:db:fc:98:44:b2:1a:09:44:ec: 52:ea:75:37:9a:1d:0d:80:59:65:3f:cd:01:af:f1:50:33:6e: bd:7f:d8:06:c3:51:54:54:b9:5c:2e:75:da:5d:b5:b9:18:b0: a9:4a:01:34:d2:3d:cd:67:4a:0e:b4:e4:e9:0e:81:1d:df:dd: fe:f1:c8:2b:2e:a9:90:54:18:3b:71:8c:32:5b:2a:7f:d3:aa: 2a:10:01:71:38:b1:8b:ab:b2:c5:54:50:0b:43:9f:e3:ad:99: c3:93:48:36:2f:d9:38:8a:dd:30:54:1c:24:d0:2d:e3:c8:78: 22:09:35:e6:b5:ac:72:00:9c:ad:4d:0a:18:3b:33:f6:d7:e3: b1:ed:13:99:7d:32:f3:a0:8d:c5:c0:5f:b6:5b:f0:5d:19:6c: b6:6c:12:38:88:49:92:78:09:9e:0b:6d:86:95:69:48:77:da: 69:a7:e8:dd:9f:4b:94:c3:4c:b0:b8:7b:59:ca:e5:e6:70:d6: b0:0b:5c:23:01:64:c8:05:4e:91:b4:48:b1:4e:c1:74:46:b8: da:ee:1a:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyRDkxMTAvBgNVBAUTKDUwRDI0MDQyQTRBNjVFRUU2N0E3RUE0RDNGQzQ4OTQ0 M0EzOUFBNzQwHhcNMjUwODA1MDYzNjE2WhcNMjUwODEyMDYzNjE2WjAYMRYwFAYD VQQDEw02ODkxYTY2MC00MDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1pRF/v2PJW34eRZZ4RJZw3v/NftpS6i/tsAyL4GVGu/wTjYtvaN7a3PB92D ogVq67tFsCHY09ou+Tzt0Chcvq4AUjVF2KsrHhPIU98pZyY1MVqrWUZyFrmTOf9O MMJuUAlkKNxYT1zgK7whLGPwS4SVM6k0GNwC/6by0o6/gqXqo9rHTuPhQ6Sl19tr NIbhomOZTJnomCLoACRcOOY5aX02hp12Wp66CLanP2hFzvi09RmA0b+g/lCcdQkP YmrApahYSRGFro3pbRk1wRiwU76uhOVODZjjwspR5k9f/KYRVQyIU4muq07K30qV miOxRBYNXvg84i0nw5Odg/oaNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7ao3rh W51dnOQC+dkD+nYX2kOGMB8GA1UdIwQYMBaAFFDSQEKkpl7uZ6fqTT/EiUQ6Oap0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJEOS9BOTlDMTYyODY3 QUExMUVGOEY0OThBMjdDNEY5QUUwMi9VTkpBUXFTbVh1NW5wLXBOUDhTSlJEbzVx blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VOSkFRcVNtWHU1bnAtcE5QOFNKUkRvNXFuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjJEOS9BOTlDMTYyODY3QUExMUVGOEY0OThBMjdDNEY5QUUwMi9VTkpBUXFTbVh1 NW5wLXBOUDhTSlJEbzVxblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj+zYX1yLQE+L1YCDJVvWtKawUa1BW+o5Ji/WO/6IL0N7+95kr1ILw Fu6QSrvb/JhEshoJROxS6nU3mh0NgFllP80Br/FQM269f9gGw1FUVLlcLnXaXbW5 GLCpSgE00j3NZ0oOtOTpDoEd393+8cgrLqmQVBg7cYwyWyp/06oqEAFxOLGLq7LF VFALQ5/jrZnDk0g2L9k4it0wVBwk0C3jyHgiCTXmtaxyAJytTQoYOzP21+Ox7ROZ fTLzoI3FwF+2W/BdGWy2bBI4iEmSeAmeC22GlWlId9ppp+jdn0uUw0ywuHtZyuXm cNawC1wjAWTIBU6RtEixTsF0Rrja7hrK -----END CERTIFICATE-----Generated at Wed Aug 6 13:23:44 2025 by rpki-client