$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: WUCCLwoAdJ2WrNntb/5vZ4V6gDT5HbblLosuzV0gvb8= Subject key identifier: 7F:9D:65:2A:43:65:8F:F1:13:A9:43:B9:A9:CC:A8:C0:70:B3:63:8A Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 0568 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 055E Signing time: Fri 08 Aug 2025 23:49:13 +0000 Manifest this update: Fri 08 Aug 2025 23:49:12 +0000 Manifest next update: Fri 15 Aug 2025 23:49:12 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: CA28TVIY5APjc8apqyw6svR1GSUrOlt/GNBA0r0xugo=) 2: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: bYFWsdvkvj/YP0lWqT722iQHX6ldCjoCu3l/f+mKfk8=) 3: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: CWQZ2s8MFSjBmURLoXYowyPCs3y0c7wnZAfg2tROfa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1384 (0x568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251, serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: Aug 8 23:49:12 2025 GMT Not After : Aug 15 23:49:12 2025 GMT Subject: CN=68968cf8-3ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d6:d0:f8:18:e1:76:85:c1:58:19:2e:2e:3e: 5d:e0:b1:e4:a8:91:50:df:5f:63:ee:a8:49:44:bc: e4:32:36:f5:78:d7:d3:04:3b:aa:34:38:1a:44:cc: 14:e0:56:96:df:53:35:54:65:9a:64:b0:72:f1:a3: fb:ac:66:31:b3:7c:ce:d1:5a:d2:a3:ea:16:30:03: 5c:6d:f4:85:fe:d1:fc:fa:b5:9c:66:43:4c:60:98: 54:fc:ae:be:e0:4b:49:b0:c8:40:b3:05:ac:fe:e9: b3:ec:b3:fc:9f:9b:23:a5:e2:a7:57:6a:1c:71:de: ec:9e:c8:83:e0:7f:6f:c8:19:0c:1a:bf:6b:41:36: 7a:34:b7:84:87:00:86:49:2c:f4:1b:fa:88:34:8f: b4:eb:6c:23:5a:39:50:02:3c:ee:20:b8:24:72:53: f0:35:34:45:1b:ce:5a:d7:cd:e3:c3:d6:d5:9f:07: e7:26:88:b0:6f:a2:bc:d7:4f:bf:c0:fd:cd:4f:b1: df:dc:1e:6a:ce:c8:54:c6:c4:98:75:53:60:48:b8: 0c:b1:21:2d:64:2d:bf:c0:16:e0:44:17:b5:96:74: 9e:90:76:cd:77:15:3e:e1:80:d6:68:34:c4:ec:5f: 61:20:ee:90:7d:74:f7:a8:ad:a8:ed:4f:3c:b8:b9: 41:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:9D:65:2A:43:65:8F:F1:13:A9:43:B9:A9:CC:A8:C0:70:B3:63:8A X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:75:6f:fb:07:9a:e4:8a:50:8e:4b:83:3a:61:e7:92:c7:c9: 0b:91:45:54:c4:0a:96:2d:9f:4f:55:cc:b5:90:05:bb:e8:f5: 7c:21:b7:ec:45:48:4e:37:3d:39:2a:27:53:13:65:0e:bc:b6: ea:5b:75:d6:79:bd:00:2b:2e:91:04:e0:73:18:d3:31:d7:e0: 63:47:1c:9c:14:4b:44:57:46:f8:73:a8:27:c6:23:a6:4e:ee: e4:45:73:6d:d5:a2:29:8e:3f:bd:2b:9e:19:ce:8d:0f:2f:92: 0a:41:15:9c:8a:6c:a3:24:d3:7a:e9:ed:df:5b:c9:45:a9:bb: ff:cc:8b:d6:03:d5:8d:7c:5a:92:ba:48:99:71:15:d2:1c:12: 85:2a:68:41:91:e2:44:ef:02:94:aa:00:86:6c:bb:ec:b4:19: 4e:fd:8c:9e:ff:52:75:53:14:e5:f7:d5:1f:89:0f:56:fb:da: d0:15:91:5f:96:d1:43:09:65:dd:72:07:37:8a:c7:9b:a5:57: 0a:b1:07:dc:5a:ca:dc:78:0c:42:38:f1:bc:52:b3:36:36:73: c5:fe:dc:e7:96:a1:dd:8a:a0:a6:93:f7:17:60:50:8d:a7:5e: 01:ea:87:de:b8:ed:7a:29:07:7d:87:3a:2e:1e:2d:27:80:8f: d6:21:d4:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjUwODA4MjM0OTEyWhcNMjUwODE1MjM0OTEyWjAYMRYwFAYD VQQDEw02ODk2OGNmOC0zZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydbQ+BjhdoXBWBkuLj5d4LHkqJFQ319j7qhJRLzkMjb1eNfTBDuqNDgaRMwU 4FaW31M1VGWaZLBy8aP7rGYxs3zO0VrSo+oWMANcbfSF/tH8+rWcZkNMYJhU/K6+ 4EtJsMhAswWs/umz7LP8n5sjpeKnV2occd7snsiD4H9vyBkMGr9rQTZ6NLeEhwCG SSz0G/qINI+062wjWjlQAjzuILgkclPwNTRFG85a183jw9bVnwfnJoiwb6K810+/ wP3NT7Hf3B5qzshUxsSYdVNgSLgMsSEtZC2/wBbgRBe1lnSekHbNdxU+4YDWaDTE 7F9hIO6QfXT3qK2o7U88uLlBFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+dZSpD ZY/xE6lDuanMqMBws2OKMB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABdW/7B5rkilCOS4M6YeeSx8kLkUVUxAqWLZ9PVcy1kAW76PV8Ibfs RUhONz05KidTE2UOvLbqW3XWeb0AKy6RBOBzGNMx1+BjRxycFEtEV0b4c6gnxiOm Tu7kRXNt1aIpjj+9K54Zzo0PL5IKQRWcimyjJNN66e3fW8lFqbv/zIvWA9WNfFqS ukiZcRXSHBKFKmhBkeJE7wKUqgCGbLvstBlO/Yye/1J1UxTl99UfiQ9W+9rQFZFf ltFDCWXdcgc3isebpVcKsQfcWsrceAxCOPG8UrM2NnPF/tznlqHdiqCmk/cXYFCN p14B6ofeuO16KQd9hzouHi0ngI/WIdSO -----END CERTIFICATE-----Generated at Sun Aug 10 14:00:29 2025 by rpki-client