$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft File: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft (raw, json) Hash identifier: pFA4vEp1biu+ra9wkSi8Dp1ZyLHxic/MMZoP18A3rE8= Subject key identifier: 7D:3A:25:23:E0:59:BA:D2:7A:6F:10:8A:75:EE:23:7A:C0:58:11:43 Authority key identifier: B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 Certificate issuer: /CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Certificate serial: 0E7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft Manifest number: 0E74 Signing time: Tue 12 Aug 2025 17:51:28 +0000 Manifest this update: Tue 12 Aug 2025 17:51:27 +0000 Manifest next update: Tue 19 Aug 2025 17:51:27 +0000 Files and hashes: 1: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl (hash: uVpIJpY8unh9GXDePztZRRvfyQrBPyhAufHhSc4WTaE=) 2: BD22841E9E4911E9A136D25AC4F9AE02.roa (hash: Gdmjy4eOm23bZo0u+QNI+KYIouesOlIiUyP5E+hvG08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3710 (0xe7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1149, serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Validity Not Before: Aug 12 17:51:27 2025 GMT Not After : Aug 19 17:51:27 2025 GMT Subject: CN=689b7f20-7183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f8:3c:ed:fd:b1:39:96:24:7f:ab:b0:21:5f: 3f:85:18:e0:9b:04:d0:f2:28:2d:d9:b7:96:be:9d: 3b:60:81:f3:c9:5b:61:7c:15:cc:97:dc:f3:2c:07: 54:0d:0a:99:d6:cd:8e:71:7d:4e:f4:6e:75:25:0c: 63:3c:81:d0:44:69:98:e4:69:cd:97:a6:3b:96:cd: 1a:c6:c8:ae:1c:50:63:97:eb:15:e3:2f:e6:6d:b6: 94:36:0d:ce:39:30:80:eb:3a:91:0a:98:89:9d:1d: 5c:23:13:81:9d:01:5e:b3:c7:28:a4:64:1d:2f:7f: 8d:45:f7:12:f4:73:14:85:fc:b5:3f:81:43:fc:95: 73:0a:66:99:1d:cd:a5:48:b5:9b:fa:68:2f:7e:76: b2:48:b6:4e:7c:63:db:9e:04:83:40:f9:18:1d:97: cc:d1:ad:0b:41:47:68:b4:fa:c2:57:f3:7c:b2:59: d5:a0:35:e4:5a:7c:bf:86:31:45:85:46:6a:f9:12: a7:2b:ca:cb:df:b1:fd:4c:3c:ae:d0:94:55:d8:b6: d1:a7:99:94:b0:15:39:3b:e1:78:bd:55:52:2b:18: 55:68:6c:d8:bd:f0:2a:d5:0d:95:44:b3:ba:ae:2d: c1:8e:c3:24:c0:94:ba:8f:70:92:25:c7:9d:2f:1d: 02:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3A:25:23:E0:59:BA:D2:7A:6F:10:8A:75:EE:23:7A:C0:58:11:43 X509v3 Authority Key Identifier: keyid:B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:45:ea:5f:34:66:2d:11:13:61:00:fa:ec:49:47:fa:17:89: 08:d1:6c:f2:8e:48:b0:98:f2:a9:bb:55:aa:49:09:b6:58:6a: 13:6f:5c:ca:27:be:f0:1f:a9:e6:43:25:20:1f:26:7c:7e:bb: 04:bc:88:45:14:c2:a1:43:91:69:ce:b7:df:3f:ca:33:df:ba: ab:8b:0a:9c:00:45:77:e4:d2:5d:f0:91:5c:b5:65:87:f8:7b: 4b:91:72:bf:da:ef:ab:0c:c0:49:5d:87:80:d6:2c:72:8d:a2: be:ce:09:24:dc:87:5e:58:cd:12:c4:f6:7e:ad:ca:50:50:13: 4d:92:18:8b:98:79:cd:45:f0:4e:49:4a:5b:7a:32:af:a0:dd: 60:3b:8f:85:fa:c7:31:85:91:28:56:a6:fb:b5:be:16:0c:cd: 1c:1d:df:e7:65:ee:fb:85:84:8d:f4:76:38:de:62:e9:9a:ad: fe:0e:4c:8e:31:95:9a:ff:5d:03:75:89:48:b6:9d:2f:f1:ba: 8d:a0:99:eb:9a:6d:5b:ff:af:6d:28:14:f5:a7:29:35:0d:3b: c1:1f:98:64:3b:24:6a:85:dd:96:1c:e8:5e:ed:b7:c1:cc:eb: 3c:e0:8c:64:1c:e6:93:96:bb:c5:72:52:f2:90:d6:05:86:ac: cf:8f:5a:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExNDkxMTAvBgNVBAUTKEI4MzQwMUNGQkM0MDVDRkI1MkZEQTBGRUJENEEwMkI3 QjFDRTI3NjIwHhcNMjUwODEyMTc1MTI3WhcNMjUwODE5MTc1MTI3WjAYMRYwFAYD VQQDEw02ODliN2YyMC03MTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPg87f2xOZYkf6uwIV8/hRjgmwTQ8igt2beWvp07YIHzyVthfBXMl9zzLAdU DQqZ1s2OcX1O9G51JQxjPIHQRGmY5GnNl6Y7ls0axsiuHFBjl+sV4y/mbbaUNg3O OTCA6zqRCpiJnR1cIxOBnQFes8copGQdL3+NRfcS9HMUhfy1P4FD/JVzCmaZHc2l SLWb+mgvfnaySLZOfGPbngSDQPkYHZfM0a0LQUdotPrCV/N8slnVoDXkWny/hjFF hUZq+RKnK8rL37H9TDyu0JRV2LbRp5mUsBU5O+F4vVVSKxhVaGzYvfAq1Q2VRLO6 ri3BjsMkwJS6j3CSJcedLx0CAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH06JSPg WbrSem8QinXuI3rAWBFDMB8GA1UdIwQYMBaAFLg0Ac+8QFz7Uv2g/r1KArexzidi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTE0OS8yNEJCMjRDRTlF NDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQdFNfYUQtdlVvQ3Q3SE9K MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VEUUJ6N3hBWFB0U19hRC12VW9DdDdIT0oySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTE0OS8yNEJCMjRDRTlFNDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQ dFNfYUQtdlVvQ3Q3SE9KMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnRepfNGYtERNhAPrsSUf6F4kI0WzyjkiwmPKpu1WqSQm2WGoTb1zK J77wH6nmQyUgHyZ8frsEvIhFFMKhQ5FpzrffP8oz37qriwqcAEV35NJd8JFctWWH +HtLkXK/2u+rDMBJXYeA1ixyjaK+zgkk3IdeWM0SxPZ+rcpQUBNNkhiLmHnNRfBO SUpbejKvoN1gO4+F+scxhZEoVqb7tb4WDM0cHd/nZe77hYSN9HY43mLpmq3+DkyO MZWa/10DdYlItp0v8bqNoJnrmm1b/69tKBT1pyk1DTvBH5hkOyRqhd2WHOhe7bfB zOs84IxkHOaTlrvFclLykNYFhqzPj1q0 -----END CERTIFICATE-----Generated at Wed Aug 13 00:30:24 2025 by rpki-client