$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft File: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft (raw, json) Hash identifier: 5LQHjVlpV6ur5aOonePMBGwths3PeP6Btl2ujy7JAc8= Subject key identifier: DB:4C:83:AB:CD:1D:62:14:80:8D:6F:B9:57:03:C5:D1:9B:E7:A1:0A Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 01FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft Manifest number: 01F9 Signing time: Tue 05 Aug 2025 02:52:39 +0000 Manifest this update: Tue 05 Aug 2025 02:52:38 +0000 Manifest next update: Tue 12 Aug 2025 02:52:38 +0000 Files and hashes: 1: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl (hash: /DzjVqEdAqy1RYNhZ7U0a2Tx4v3Vaa9ZfbwpoqHDlr8=) 2: C248DFA26DBB11EDB3635D28C4F9AE02.roa (hash: gQzK7hVZPrZ6aKsXhdiMNjPzCoQYQhoW/DlG0FlsTCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 02:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4, serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: Aug 5 02:52:38 2025 GMT Not After : Aug 12 02:52:38 2025 GMT Subject: CN=689171f7-d0fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8d:05:aa:01:5b:db:c8:b6:49:47:3d:c0:5e: 2b:52:5f:e3:66:01:1d:70:a5:87:8f:d9:cc:6e:39: d4:d3:23:9e:45:96:03:2e:20:e8:95:7f:03:20:d4: 27:27:42:4e:d2:5c:df:db:85:65:b4:8b:4a:28:c0: 5c:e5:2a:82:f4:d6:f7:98:bf:ab:b0:b6:fb:db:04: de:b2:c9:0b:7c:2c:af:b8:6f:3a:5a:8e:cc:7d:fe: 4b:93:b9:d5:30:8f:a2:2e:5c:6c:79:c1:1e:cd:ae: 70:45:75:87:9b:94:80:b8:a4:8f:6c:e2:66:34:fb: ba:bd:68:54:10:64:8b:10:ac:25:78:4e:79:7d:2d: 0e:a0:52:3a:18:b9:21:70:ec:9a:d8:5d:c6:e5:85: 93:00:fa:2a:35:44:e3:70:4d:49:1e:44:bc:70:5a: 79:d4:e3:83:c1:dd:a1:63:1f:a0:42:c6:24:50:2e: 0b:97:13:9d:98:d1:d4:ff:1d:bd:39:d4:57:f5:ce: 35:47:66:b3:9f:94:5c:66:10:e7:77:7e:a9:dc:6a: 0f:c2:63:24:45:6a:97:07:2d:b0:2b:87:2c:f8:21: 91:4b:76:52:58:14:78:8f:78:55:89:f8:64:dc:68: ca:c3:a6:6d:8f:d9:44:5a:cd:25:42:c4:8b:4d:31: a8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4C:83:AB:CD:1D:62:14:80:8D:6F:B9:57:03:C5:D1:9B:E7:A1:0A X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:af:0d:5e:f7:9f:62:99:00:e9:fa:24:6c:5d:a6:d8:6f:c3: 4c:a2:83:c2:d5:32:68:a5:c1:19:18:2e:db:e2:5e:08:5e:1b: 16:c6:5e:fc:15:01:0d:05:de:ef:72:d1:c4:a4:da:7c:97:dc: 34:e4:c4:03:31:90:0e:de:94:91:3b:ee:59:5b:96:39:bd:38: 50:13:49:ee:57:25:80:be:5d:bf:2d:94:9f:49:3e:fa:1a:d1: ea:4d:77:9f:50:22:b0:fc:26:13:f6:af:1a:52:f3:41:3e:be: 55:60:90:41:2f:6e:0f:99:17:37:3b:66:c5:a4:4e:3c:45:a4: 34:41:bd:5a:28:ac:58:b9:a1:35:79:5e:61:3d:af:6e:25:13: d0:64:82:38:ea:c9:01:3a:1b:50:88:62:4c:b4:4c:51:83:d5: 75:ef:3f:12:eb:53:cd:32:2a:1f:15:aa:1c:94:f6:6e:88:1d: 7f:4c:ac:17:28:34:d2:a8:29:10:ef:bf:e0:f4:5d:1e:51:32: bb:46:45:0c:31:29:78:e5:f6:07:23:55:50:39:b6:85:e7:03: 03:5e:fb:f6:d3:e9:d4:53:84:0e:a0:b6:45:1e:d7:bf:94:73: e5:65:9c:5d:7f:05:16:22:8d:06:52:cb:ad:be:05:51:08:b7: bf:53:14:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjUwODA1MDI1MjM4WhcNMjUwODEyMDI1MjM4WjAYMRYwFAYD VQQDEw02ODkxNzFmNy1kMGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo0FqgFb28i2SUc9wF4rUl/jZgEdcKWHj9nMbjnU0yOeRZYDLiDolX8DINQn J0JO0lzf24VltItKKMBc5SqC9Nb3mL+rsLb72wTesskLfCyvuG86Wo7Mff5Lk7nV MI+iLlxsecEeza5wRXWHm5SAuKSPbOJmNPu6vWhUEGSLEKwleE55fS0OoFI6GLkh cOya2F3G5YWTAPoqNUTjcE1JHkS8cFp51OODwd2hYx+gQsYkUC4LlxOdmNHU/x29 OdRX9c41R2azn5RcZhDnd36p3GoPwmMkRWqXBy2wK4cs+CGRS3ZSWBR4j3hVifhk 3GjKw6Ztj9lEWs0lQsSLTTGozwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtMg6vN HWIUgI1vuVcDxdGb56EKMB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUJENC8wOEFENkQyMjZEQjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVF dUotbS1uaGZJUlVMNXZsNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkrw1e959imQDp+iRsXabYb8NMooPC1TJopcEZGC7b4l4IXhsWxl78 FQENBd7vctHEpNp8l9w05MQDMZAO3pSRO+5ZW5Y5vThQE0nuVyWAvl2/LZSfST76 GtHqTXefUCKw/CYT9q8aUvNBPr5VYJBBL24PmRc3O2bFpE48RaQ0Qb1aKKxYuaE1 eV5hPa9uJRPQZII46skBOhtQiGJMtExRg9V17z8S61PNMiofFaoclPZuiB1/TKwX KDTSqCkQ77/g9F0eUTK7RkUMMSl45fYHI1VQObaF5wMDXvv20+nUU4QOoLZFHte/ lHPlZZxdfwUWIo0GUsutvgVRCLe/UxS+ -----END CERTIFICATE-----Generated at Thu Aug 7 04:24:32 2025 by rpki-client