$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: BjkbzcxivUHK/qRUmRyw3v+QeLi7OPgp/pUp30Z/9Ww= Subject key identifier: B0:B7:87:24:7A:56:55:88:DA:57:6D:BC:1C:3B:E2:2A:82:D3:B0:69 Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 03AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 03AA Signing time: Sat 09 Aug 2025 01:16:27 +0000 Manifest this update: Sat 09 Aug 2025 01:16:27 +0000 Manifest next update: Sat 16 Aug 2025 01:16:26 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: yfcfzrjtadNZE1PhfZQI8/1zKuRNjf+hIHxORZhOyR0=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: DNm/cKBnOwMLtVf8PNiul90A2LNN5D/9x28AaUpSyDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 942 (0x3ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5, serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Aug 9 01:16:27 2025 GMT Not After : Aug 16 01:16:26 2025 GMT Subject: CN=6896a16b-310e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:20:94:c4:42:b4:4d:1c:d7:fe:1b:5a:c0:57: 74:78:45:18:33:16:e6:17:42:67:d0:46:71:5d:9d: f4:59:9f:18:29:d6:69:e1:f0:80:46:52:b0:ef:f5: 5d:1d:c2:c0:22:59:b9:35:aa:70:33:2a:52:9e:db: 2c:7a:6d:ec:e5:f2:59:a6:2b:97:0d:d8:6f:ed:43: 04:5f:69:ef:20:ad:3a:a9:2f:a6:ea:27:2a:54:d5: 93:07:be:fd:de:4e:e6:f9:87:4c:6f:77:c6:16:5e: fc:c4:3e:19:2d:e4:b5:75:04:07:f4:4c:c4:a4:61: b0:81:fe:e3:46:95:c6:d7:5a:b2:0b:d9:37:a6:8f: 6e:22:cd:44:27:b5:ff:91:28:98:e5:a0:cf:65:16: e6:f1:3b:d3:29:78:d9:ca:2d:bd:4d:22:1d:d3:ec: a8:25:1f:4d:a0:ea:ab:91:7c:36:8c:47:ee:8b:79: fe:1e:31:3c:0d:7e:d1:ce:98:ed:5d:6f:7f:cb:2b: 2a:27:ae:87:0a:c4:ec:f8:e0:a4:23:58:25:7d:f3: f1:67:36:11:52:d7:43:36:c2:75:90:2e:84:67:73: 1c:ce:5c:d1:ef:9e:7b:2c:b4:17:77:d3:6e:9b:02: d3:10:a9:f5:95:64:ba:97:b1:ca:e6:55:ec:3e:c8: d5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B7:87:24:7A:56:55:88:DA:57:6D:BC:1C:3B:E2:2A:82:D3:B0:69 X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:04:be:25:25:f6:f1:be:11:c9:87:d1:cf:38:67:2e:37:63: 4a:65:47:e3:6c:8f:17:38:25:0a:71:13:a9:69:44:aa:75:65: 81:fc:06:97:bf:68:c5:88:bf:93:c3:c6:cc:90:18:a3:17:34: 98:24:2d:aa:25:9b:d2:e1:43:db:30:d8:ba:6e:5a:25:d8:9b: 58:a2:89:b0:8e:c8:52:0f:f3:a2:f4:ac:90:76:9c:12:21:64: 79:3d:99:7e:a5:a7:d5:6e:e6:12:ff:93:2d:18:dc:65:b7:d7: b2:bc:50:c1:da:0e:32:6b:6b:ba:45:ff:b8:ba:bd:fa:af:f5: be:29:9d:38:12:cf:6f:5a:ee:2b:80:75:ea:9c:5d:d5:f9:90: 5c:f3:9b:0a:2f:2d:fd:23:10:50:57:6c:9b:c9:17:af:74:e5: 8b:04:83:05:3a:7e:6e:b7:69:f5:a4:54:27:70:5e:32:5d:69: e8:0e:15:8b:73:b3:bd:61:0c:d9:e1:b8:cf:e9:7e:2a:ae:7b: 77:9e:a3:14:23:e7:75:77:5d:7e:b1:b6:1b:95:46:a3:57:b2: f1:91:a7:ba:8b:5d:22:3f:49:e6:37:ca:e8:6b:b6:0d:e7:71: 93:08:2e:c7:6d:17:f5:79:9e:b6:eb:bf:e4:70:8e:62:e4:5d: a6:82:c7:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjUwODA5MDExNjI3WhcNMjUwODE2MDExNjI2WjAYMRYwFAYD VQQDEw02ODk2YTE2Yi0zMTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9iCUxEK0TRzX/htawFd0eEUYMxbmF0Jn0EZxXZ30WZ8YKdZp4fCARlKw7/Vd HcLAIlm5NapwMypSntssem3s5fJZpiuXDdhv7UMEX2nvIK06qS+m6icqVNWTB779 3k7m+YdMb3fGFl78xD4ZLeS1dQQH9EzEpGGwgf7jRpXG11qyC9k3po9uIs1EJ7X/ kSiY5aDPZRbm8TvTKXjZyi29TSId0+yoJR9NoOqrkXw2jEfui3n+HjE8DX7Rzpjt XW9/yysqJ66HCsTs+OCkI1glffPxZzYRUtdDNsJ1kC6EZ3MczlzR7557LLQXd9Nu mwLTEKn1lWS6l7HK5lXsPsjVNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLC3hyR6 VlWI2ldtvBw74iqC07BpMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7BL4lJfbxvhHJh9HPOGcuN2NKZUfjbI8XOCUKcROpaUSqdWWB/AaX v2jFiL+Tw8bMkBijFzSYJC2qJZvS4UPbMNi6blol2JtYoomwjshSD/Oi9KyQdpwS IWR5PZl+pafVbuYS/5MtGNxlt9eyvFDB2g4ya2u6Rf+4ur36r/W+KZ04Es9vWu4r gHXqnF3V+ZBc85sKLy39IxBQV2ybyRevdOWLBIMFOn5ut2n1pFQncF4yXWnoDhWL c7O9YQzZ4bjP6X4qrnt3nqMUI+d1d11+sbYblUajV7Lxkae6i10iP0nmN8roa7YN 53GTCC7HbRf1eZ6267/kcI5i5F2mgscZ -----END CERTIFICATE-----Generated at Sat Aug 9 05:36:54 2025 by rpki-client