$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: gmFrn6v0fnxqHrnvqeJFPD3BuiCdj0YbVZpTxWH5kSw= Subject key identifier: 7C:4D:80:81:00:99:FE:20:A8:D2:E5:50:A0:BD:72:D1:95:AC:15:C3 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3585 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 3509 Signing time: Fri 08 Aug 2025 14:24:38 +0000 Manifest this update: Fri 08 Aug 2025 14:24:38 +0000 Manifest next update: Fri 15 Aug 2025 14:24:38 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: IuF7GCQ3os8shII5HmIHjCZ2X8L5w+1kLEYBkQLl8/k=) 2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: KKCg2NooRoQGuF3KYpzz51c9C/45UUPObnLo2e5njhU=) 3: D0886954188811EC8E86754FC4F9AE02.roa (hash: yPv2xJqSMbxdqO3CUxzFvtSmE89AHilhOo/061TH8FU=) 4: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: nfNjfg1IXDDhMM0k16fT6xDTUZvLHRQ/C+xvVXQFUFE=) 5: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: iSQxLeiRN1fYoIns2yWqQhKW9w0d7Bh4Hi7g+FcoiAo=) 6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: GOobL3IcAmOzxEXI8Av9eECmrglVLT+e8Yk36aU9ns8=) 7: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: ZaxlSh3XWBv2fOJrVopMAyhJjHEvnP8TGG96c6iuXcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13701 (0x3585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Aug 8 14:24:38 2025 GMT Not After : Aug 15 14:24:38 2025 GMT Subject: CN=689608a6-75a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1a:35:30:7a:4e:5d:d7:ef:54:af:c3:b5:23: 41:7e:71:3c:59:29:61:37:e9:6f:d8:5c:db:e5:2c: 8f:7e:8f:ec:cc:08:2a:4b:a2:1e:d6:73:ae:b1:86: 64:c9:f8:f2:8b:e8:bc:66:90:9f:5e:5d:c0:73:0c: f4:5b:4a:3b:bf:f3:f8:85:1c:86:bc:b6:ef:8a:5c: 9b:0a:3d:4a:bb:70:bd:44:98:23:db:3a:97:a6:b6: 35:f6:57:ad:72:38:dc:45:74:7b:c1:7d:7e:fb:06: 7f:24:42:e1:a2:f4:eb:1c:dd:79:4b:ee:63:ca:78: 8d:5f:92:0c:b0:d3:38:3c:4c:0f:97:9e:c5:19:63: 9d:98:db:a6:83:3a:79:77:7b:8b:8a:d1:e8:03:85: b4:31:3b:25:6a:73:8d:51:4a:11:ed:5b:d5:a8:38: 13:cd:16:fe:74:9e:27:64:27:78:07:55:f2:fa:c7: a8:98:d5:20:18:b4:89:72:2d:79:aa:c9:e0:fc:f4: 1e:4f:2e:78:7c:10:3b:02:c8:8c:e6:ba:ee:78:25: 8a:22:3f:e3:1d:bf:38:6c:29:ad:21:91:b9:b9:04: 80:39:85:b7:4a:7f:ee:53:f6:58:8f:05:a7:bd:d3: 48:60:97:e1:9f:a2:23:4c:bf:79:ff:78:b6:f5:de: 0c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4D:80:81:00:99:FE:20:A8:D2:E5:50:A0:BD:72:D1:95:AC:15:C3 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:5a:2f:cc:a0:44:6b:80:2f:11:97:0f:02:94:07:3f:d3:43: ba:68:f0:d0:06:17:38:81:8a:a9:11:3b:50:38:fa:6f:79:ed: 59:93:87:40:20:7c:e5:ee:45:d3:64:ef:50:71:b2:ae:12:67: 69:11:f5:69:6a:0b:d8:f0:2f:af:d8:a6:04:77:c8:1c:b8:28: 52:1f:e9:83:23:6e:ed:80:82:bc:8d:17:8e:b7:05:88:1c:42: 63:1b:46:1b:0f:3c:70:c3:f7:20:42:34:a6:9d:08:89:31:f7: 80:0c:7c:65:3b:f5:c3:ff:30:29:be:e0:a6:68:0e:97:a1:55: 1d:b8:dc:83:08:bf:e0:52:1b:0f:d1:3b:a6:12:c2:21:55:36: b1:99:e7:51:3f:49:3a:a1:1f:f2:7b:38:1a:e1:f6:2e:55:c8: f4:82:9b:6e:c3:5b:e4:e9:f3:1c:71:6e:7b:08:88:d2:9c:48: b9:93:0c:f5:0e:93:c4:67:2b:d0:9f:ef:5b:a9:f2:a4:cf:09: 31:cc:0b:12:57:db:72:f8:e9:53:46:98:dd:bf:ed:e7:0d:9c: aa:77:df:ae:51:d1:e5:be:1a:99:ec:e9:66:43:af:99:4d:76: 96:cf:47:d6:aa:15:e3:51:8e:ed:85:e7:19:88:a5:ad:78:d7: 00:fc:a2:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUwODA4MTQyNDM4WhcNMjUwODE1MTQyNDM4WjAYMRYwFAYD VQQDEw02ODk2MDhhNi03NWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Bo1MHpOXdfvVK/DtSNBfnE8WSlhN+lv2Fzb5SyPfo/szAgqS6Ie1nOusYZk yfjyi+i8ZpCfXl3Acwz0W0o7v/P4hRyGvLbvilybCj1Ku3C9RJgj2zqXprY19let cjjcRXR7wX1++wZ/JELhovTrHN15S+5jyniNX5IMsNM4PEwPl57FGWOdmNumgzp5 d3uLitHoA4W0MTslanONUUoR7VvVqDgTzRb+dJ4nZCd4B1Xy+seomNUgGLSJci15 qsng/PQeTy54fBA7AsiM5rrueCWKIj/jHb84bCmtIZG5uQSAOYW3Sn/uU/ZYjwWn vdNIYJfhn6IjTL95/3i29d4MawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxNgIEA mf4gqNLlUKC9ctGVrBXDMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkWi/MoERrgC8Rlw8ClAc/00O6aPDQBhc4gYqpETtQOPpvee1Zk4dA IHzl7kXTZO9QcbKuEmdpEfVpagvY8C+v2KYEd8gcuChSH+mDI27tgIK8jReOtwWI HEJjG0YbDzxww/cgQjSmnQiJMfeADHxlO/XD/zApvuCmaA6XoVUduNyDCL/gUhsP 0TumEsIhVTaxmedRP0k6oR/yezga4fYuVcj0gptuw1vk6fMccW57CIjSnEi5kwz1 DpPEZyvQn+9bqfKkzwkxzAsSV9ty+OlTRpjdv+3nDZyqd9+uUdHlvhqZ7OlmQ6+Z TXaWz0fWqhXjUY7thecZiKWteNcA/KJF -----END CERTIFICATE-----Generated at Fri Aug 8 19:23:10 2025 by rpki-client