$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: GcrZBFLAEbnBmyV/RskRWUrgVL9XdSDLsS169E2Z9qM= Subject key identifier: EE:79:41:87:69:76:D7:3D:63:5B:4F:1B:89:7A:BA:9F:0F:44:35:92 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: B6 Signing time: Sat 09 Aug 2025 06:27:01 +0000 Manifest this update: Sat 09 Aug 2025 06:27:00 +0000 Manifest next update: Sat 16 Aug 2025 06:27:00 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: 6r3bND/SEkJX1qbyAd+NvfYxbit6WHRCTpxnxca0gkc=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: IIflfQCAxW1X5tnyPUSdNiUWUvRyGX/zn4vbskdXfXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Aug 9 06:27:00 2025 GMT Not After : Aug 16 06:27:00 2025 GMT Subject: CN=6896ea34-c463 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e3:ad:13:1b:cc:81:c3:13:07:24:07:22:c3: 0e:3c:64:97:18:ea:07:f7:03:00:2c:41:c9:d8:49: 02:74:d6:e3:a3:3e:26:b4:bd:55:45:13:a2:05:04: 5b:9b:53:0d:0e:37:9d:1d:b9:8d:d0:d9:8b:dc:5c: d9:19:fe:f4:90:36:3a:ac:9b:ff:9c:19:c9:e7:09: cc:9e:59:53:96:e9:a8:cb:5f:15:44:2e:b6:cc:48: 98:59:50:d8:b4:82:bd:51:ad:0b:c6:9a:2b:66:f1: 94:d8:bd:39:2f:22:68:1a:a0:ec:73:82:b7:f3:e6: 30:c0:55:42:c0:a7:0b:de:89:b9:37:39:35:ee:56: 00:38:77:58:33:92:5e:9b:56:23:82:2a:f2:59:e1: c0:0e:fe:c2:bf:93:5f:65:9e:7c:a0:54:ab:b5:eb: e7:c8:b4:75:4c:f9:e8:92:a3:79:bb:be:ff:ff:59: c5:dd:8d:33:56:96:71:b3:1d:7c:34:82:42:d9:0f: 19:eb:0a:3d:85:04:e6:e6:43:f1:23:fd:43:40:55: da:82:60:f9:e2:ba:14:f2:0d:75:ce:35:69:b6:af: 1a:39:9f:58:f6:7a:b0:9d:32:fa:40:9f:a3:c3:23: fe:6a:c0:ec:f2:52:43:82:cb:f4:b7:ca:7d:e4:95: 77:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:79:41:87:69:76:D7:3D:63:5B:4F:1B:89:7A:BA:9F:0F:44:35:92 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:0d:53:4f:05:b2:f7:5d:73:48:6d:81:ef:0a:94:ed:e5:1d: 3b:50:e5:d3:11:b5:b8:4f:97:f4:13:c5:30:86:36:11:00:89: be:d6:54:b4:3e:f5:3b:12:36:13:a6:8a:d3:27:7e:dc:e1:94: db:50:25:27:2d:9c:75:94:d3:b5:3b:40:7e:a5:44:ae:93:f3: 20:69:0f:03:45:9a:30:7a:a7:eb:ca:94:93:e3:e3:5b:2d:8c: 5a:b2:d5:9d:72:84:32:86:35:8a:23:20:81:01:e4:6c:27:38: 3e:a5:17:1c:28:68:23:97:28:52:18:0d:00:39:2c:fa:5f:1a: 20:21:b5:86:8a:c5:d3:b1:20:e0:2c:59:2a:e3:07:e6:61:d5: 20:1f:f0:3f:db:c8:b0:4f:bb:88:7d:d4:4e:8b:cf:08:78:9d: d0:9e:d3:6a:5b:20:41:d5:4e:68:b1:37:09:81:2c:0b:d0:8b: 76:31:6a:6a:5b:61:a0:4a:c1:a0:e0:47:58:60:7c:c5:cb:04: e5:77:7b:e2:d1:28:65:ef:c1:29:50:19:af:56:c9:81:5a:da: f3:05:e5:e8:b9:a0:eb:28:51:97:b4:c3:52:a5:90:0f:db:89: bc:c1:84:d5:d9:11:82:17:ce:42:75:2c:6d:e5:0b:dc:78:0f: 73:68:9b:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUwODA5MDYyNzAwWhcNMjUwODE2MDYyNzAwWjAYMRYwFAYD VQQDEw02ODk2ZWEzNC1jNDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuOtExvMgcMTByQHIsMOPGSXGOoH9wMALEHJ2EkCdNbjoz4mtL1VRROiBQRb m1MNDjedHbmN0NmL3FzZGf70kDY6rJv/nBnJ5wnMnllTlumoy18VRC62zEiYWVDY tIK9Ua0LxporZvGU2L05LyJoGqDsc4K38+YwwFVCwKcL3om5Nzk17lYAOHdYM5Je m1YjgiryWeHADv7Cv5NfZZ58oFSrtevnyLR1TPnokqN5u77//1nF3Y0zVpZxsx18 NIJC2Q8Z6wo9hQTm5kPxI/1DQFXagmD54roU8g11zjVptq8aOZ9Y9nqwnTL6QJ+j wyP+asDs8lJDgsv0t8p95JV30wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO55QYdp dtc9Y1tPG4l6up8PRDWSMB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDDVNPBbL3XXNIbYHvCpTt5R07UOXTEbW4T5f0E8UwhjYRAIm+1lS0 PvU7EjYTporTJ37c4ZTbUCUnLZx1lNO1O0B+pUSuk/MgaQ8DRZoweqfrypST4+Nb LYxastWdcoQyhjWKIyCBAeRsJzg+pRccKGgjlyhSGA0AOSz6XxogIbWGisXTsSDg LFkq4wfmYdUgH/A/28iwT7uIfdROi88IeJ3QntNqWyBB1U5osTcJgSwL0It2MWpq W2GgSsGg4EdYYHzFywTld3vi0Shl78EpUBmvVsmBWtrzBeXouaDrKFGXtMNSpZAP 24m8wYTV2RGCF85CdSxt5QvceA9zaJsr -----END CERTIFICATE-----Generated at Sun Aug 10 19:59:15 2025 by rpki-client