$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: Fzo2Nn5gFDrVi37S9voniEYpDzUxZKxCOFVP674BgtM= Subject key identifier: 6F:66:BA:97:C2:3D:DA:DA:CA:DC:65:A6:F0:76:CD:CB:BF:0E:1B:A1 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 0183 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 0180 Signing time: Mon 11 Aug 2025 03:44:30 +0000 Manifest this update: Mon 11 Aug 2025 03:44:29 +0000 Manifest next update: Mon 18 Aug 2025 03:44:29 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: lL0EfqL9k2wlx+RQCIrBWAsHV1eZhCgYTsl1UKnJbv0=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: 2h3iteWHWvj7eGZvRPLFqMA2o9nj7836hPNLX4DVTdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Aug 11 03:44:29 2025 GMT Not After : Aug 18 03:44:29 2025 GMT Subject: CN=6899671d-8c03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9e:ab:62:57:4a:d5:07:f7:96:75:34:38:99: b6:2d:84:36:ab:75:0b:5e:f6:75:48:51:f9:05:df: fe:0b:fd:0b:e5:c0:80:3d:e6:7b:d9:38:0d:78:0e: d0:c0:37:bc:16:12:13:bd:99:a5:6a:09:25:f4:18: 20:b7:70:00:e1:bc:58:59:aa:27:14:fe:cd:bf:6a: 5a:70:78:fe:a6:2d:37:e9:5f:7a:75:5e:bc:f7:a0: 03:1c:7a:75:b3:a3:f4:45:98:3e:5f:0e:de:f0:df: 29:df:93:a5:79:36:32:fe:d4:e3:0b:08:c1:8e:01: d1:ef:52:87:60:b3:d9:07:da:2b:10:c2:99:0f:3a: 91:51:01:75:82:71:30:0b:76:32:34:ec:42:fb:67: cd:d2:42:a9:2d:3f:ff:d7:13:f8:99:25:97:b1:2a: 0f:59:6a:7d:ae:d1:af:35:e0:b0:1e:f2:e9:e8:b3: 93:31:94:e7:21:dd:13:97:30:f8:06:c9:71:ed:aa: f5:b4:a2:45:aa:c4:df:3e:d3:37:c7:12:13:3a:ab: 40:c0:16:1c:87:7c:fc:51:b7:bc:ba:92:9a:d7:c3: 12:be:22:bd:8d:96:88:ae:1b:15:d7:f4:a3:d9:89: 2b:14:10:07:7e:a1:4d:0c:b6:a1:ee:f9:f2:08:72: 27:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:66:BA:97:C2:3D:DA:DA:CA:DC:65:A6:F0:76:CD:CB:BF:0E:1B:A1 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:3d:b9:ff:81:f3:a7:3b:0a:5a:fb:fa:2a:e2:b9:a4:2e:51: 93:4d:5c:de:57:97:9f:c8:29:fe:d9:5e:c4:e7:e9:56:12:7f: f4:d1:9e:84:82:a0:ec:61:43:4f:4e:f5:3d:e2:a1:0e:40:d1: 20:41:47:9b:58:0d:db:3e:bf:7e:c3:7b:6a:13:50:ea:be:78: c6:d8:2a:3d:73:f6:aa:c5:72:7a:2b:63:e9:e0:b5:94:f7:ff: 7a:f9:bc:2d:e6:be:9c:8e:2a:15:81:75:51:45:3b:01:76:e3: 81:ca:03:ed:09:e3:7a:85:49:1d:3f:bc:39:40:5e:f6:71:31: ad:cf:d5:58:a7:c3:7a:bf:3c:ab:2d:72:2d:02:53:32:42:39: a4:65:cf:bd:b8:b4:0c:a4:07:53:a2:a8:f2:e1:48:79:7f:e6: 3a:20:a6:00:d0:4c:fa:57:77:0d:c5:7d:69:39:50:a4:21:86: 3e:f8:c3:57:03:07:ed:6f:3a:2c:c1:8e:35:67:53:2f:cc:68: 64:46:55:a6:cc:b2:09:9c:64:89:36:0e:bf:2a:63:03:a8:a1: 41:49:f7:09:93:e2:fa:59:54:28:62:fe:4f:e4:91:78:39:ec: 00:33:c4:fc:ee:a7:3a:e4:82:0d:d3:53:f4:16:4b:4e:31:54: 25:15:d0:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUwODExMDM0NDI5WhcNMjUwODE4MDM0NDI5WjAYMRYwFAYD VQQDEw02ODk5NjcxZC04YzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZ6rYldK1Qf3lnU0OJm2LYQ2q3ULXvZ1SFH5Bd/+C/0L5cCAPeZ72TgNeA7Q wDe8FhITvZmlagkl9Bggt3AA4bxYWaonFP7Nv2pacHj+pi036V96dV6896ADHHp1 s6P0RZg+Xw7e8N8p35OleTYy/tTjCwjBjgHR71KHYLPZB9orEMKZDzqRUQF1gnEw C3YyNOxC+2fN0kKpLT//1xP4mSWXsSoPWWp9rtGvNeCwHvLp6LOTMZTnId0TlzD4 Bslx7ar1tKJFqsTfPtM3xxITOqtAwBYch3z8Ube8upKa18MSviK9jZaIrhsV1/Sj 2YkrFBAHfqFNDLah7vnyCHInjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9mupfC PdraytxlpvB2zcu/DhuhMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0Pbn/gfOnOwpa+/oq4rmkLlGTTVzeV5efyCn+2V7E5+lWEn/00Z6E gqDsYUNPTvU94qEOQNEgQUebWA3bPr9+w3tqE1DqvnjG2Co9c/aqxXJ6K2Pp4LWU 9/96+bwt5r6cjioVgXVRRTsBduOBygPtCeN6hUkdP7w5QF72cTGtz9VYp8N6vzyr LXItAlMyQjmkZc+9uLQMpAdToqjy4Uh5f+Y6IKYA0Ez6V3cNxX1pOVCkIYY++MNX AwftbzoswY41Z1MvzGhkRlWmzLIJnGSJNg6/KmMDqKFBSfcJk+L6WVQoYv5P5JF4 OewAM8T87qc65IIN01P0FktOMVQlFdDZ -----END CERTIFICATE-----Generated at Wed Aug 13 02:10:30 2025 by rpki-client