$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: vmyySgKhhWP2fhD69uBrZwZu8/dnU/N7UcPhUBwrUV8= Subject key identifier: E2:70:C3:22:38:82:AD:DF:94:88:D3:FE:FE:6D:D3:88:3D:1E:2C:D0 Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0C1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0C15 Signing time: Fri 08 Aug 2025 18:57:20 +0000 Manifest this update: Fri 08 Aug 2025 18:57:20 +0000 Manifest next update: Fri 15 Aug 2025 18:57:19 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: 4PEsgbw7q/BFxqBpVmYAv+rlOhkULaEA579KlZ0W9a4=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Aug 8 18:57:20 2025 GMT Not After : Aug 15 18:57:19 2025 GMT Subject: CN=68964890-beb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6e:d8:9e:4d:cc:af:89:b4:2c:ef:87:43:e4: d3:41:3f:fb:b7:0e:34:4d:a8:6a:b5:70:c1:ca:20: 9c:e8:76:eb:d8:8a:fb:ba:e4:4d:64:ee:03:88:36: 9e:f6:dd:c1:a3:bc:80:48:af:1e:b6:8f:3f:b3:a7: 6b:99:45:06:b3:96:c6:d6:92:45:ca:3a:e4:46:25: 1b:8d:28:5b:40:a3:af:6e:fe:22:28:30:95:05:ab: 53:be:17:f8:e4:b6:66:63:79:80:2b:cd:fb:c3:fb: b9:0b:c4:43:a1:bf:81:ac:0d:10:e6:af:fd:a5:61: 0a:23:a6:11:86:a7:cd:f1:bd:02:9b:da:57:be:c9: 7e:cc:5b:6e:af:02:ed:e2:9c:37:5a:d9:c5:c5:cd: a0:cd:d0:64:82:7d:bb:38:53:38:97:48:62:56:4c: 87:df:5c:a3:25:de:18:59:7f:4b:05:13:db:0f:44: 60:a3:0f:36:24:e7:b0:45:b1:41:31:7a:3c:60:3e: b2:81:52:6b:f4:0e:51:95:9e:66:7b:66:bf:d3:48: 12:48:a1:47:45:ee:33:2d:a8:3e:a0:bd:2d:95:3e: 23:1e:ad:5b:ba:e2:65:31:0a:ae:52:25:9e:a7:93: f5:70:e7:1b:31:c7:cc:44:52:5f:3c:17:51:5e:01: 02:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:70:C3:22:38:82:AD:DF:94:88:D3:FE:FE:6D:D3:88:3D:1E:2C:D0 X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:df:2c:6c:9a:d3:79:21:31:75:22:46:49:85:58:4d:34:b7: e7:7a:80:a4:28:42:ef:38:53:2c:17:1f:90:fe:59:21:af:3f: 08:ca:26:55:ab:e1:c6:b8:22:d7:96:b2:2c:c9:55:49:f3:12: 68:cc:d4:f2:18:9d:d4:2c:54:bd:56:a8:64:56:54:b9:ed:fb: 26:f0:9c:70:51:97:03:f2:fa:92:8f:b9:b6:49:dd:9a:3d:4c: 55:f0:74:67:d3:d2:8a:54:23:7b:60:8a:28:15:87:9d:f9:6f: 66:15:a9:da:f1:14:73:df:35:fc:3a:db:19:87:c4:c2:36:36: f7:a4:f2:4f:0c:85:90:be:40:73:a7:95:a7:42:45:e8:3f:db: ab:53:50:bc:a4:2e:11:f1:3b:1e:e3:46:96:ba:d4:17:b3:43: 0b:f0:04:75:a0:91:e3:14:0e:ea:d6:cb:df:49:a5:21:25:71: 04:6f:64:59:b5:16:bc:52:a4:28:a8:54:f6:bf:43:39:c8:48: 07:54:cf:26:40:c1:cd:7e:54:3a:06:e4:e6:b3:1b:85:da:82: 85:58:a7:3a:a5:97:43:03:80:f9:79:bf:a8:bb:cf:b9:0f:04: 97:05:21:f8:ae:31:fe:6a:b5:40:9e:4a:05:61:c2:85:f8:f1: 95:50:db:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUwODA4MTg1NzIwWhcNMjUwODE1MTg1NzE5WjAYMRYwFAYD VQQDEw02ODk2NDg5MC1iZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv27Ynk3Mr4m0LO+HQ+TTQT/7tw40TahqtXDByiCc6Hbr2Ir7uuRNZO4DiDae 9t3Bo7yASK8eto8/s6drmUUGs5bG1pJFyjrkRiUbjShbQKOvbv4iKDCVBatTvhf4 5LZmY3mAK837w/u5C8RDob+BrA0Q5q/9pWEKI6YRhqfN8b0Cm9pXvsl+zFturwLt 4pw3WtnFxc2gzdBkgn27OFM4l0hiVkyH31yjJd4YWX9LBRPbD0Rgow82JOewRbFB MXo8YD6ygVJr9A5RlZ5me2a/00gSSKFHRe4zLag+oL0tlT4jHq1buuJlMQquUiWe p5P1cOcbMcfMRFJfPBdRXgEC9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJwwyI4 gq3flIjT/v5t04g9HizQMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC3yxsmtN5ITF1IkZJhVhNNLfneoCkKELvOFMsFx+Q/lkhrz8IyiZV q+HGuCLXlrIsyVVJ8xJozNTyGJ3ULFS9VqhkVlS57fsm8JxwUZcD8vqSj7m2Sd2a PUxV8HRn09KKVCN7YIooFYed+W9mFana8RRz3zX8OtsZh8TCNjb3pPJPDIWQvkBz p5WnQkXoP9urU1C8pC4R8Tse40aWutQXs0ML8AR1oJHjFA7q1svfSaUhJXEEb2RZ tRa8UqQoqFT2v0M5yEgHVM8mQMHNflQ6BuTmsxuF2oKFWKc6pZdDA4D5eb+ou8+5 DwSXBSH4rjH+arVAnkoFYcKF+PGVUNvW -----END CERTIFICATE-----Generated at Sun Aug 10 13:49:57 2025 by rpki-client