$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: UrVBJoqtYRxbLlD2T+ZfMWZ524zr0bifFSxPxHIbBz0= Subject key identifier: 45:A1:EA:BB:78:E2:FA:E3:CC:BF:CB:F8:C4:39:33:3A:30:CC:D9:4C Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 04D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04B8 Signing time: Tue 05 Aug 2025 00:27:15 +0000 Manifest this update: Tue 05 Aug 2025 00:27:15 +0000 Manifest next update: Tue 12 Aug 2025 00:27:15 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: RTRk3C5cCbAqPgKfufdZHtoGl7MTs97Lz82i38Z3J7I=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1233 (0x4d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Aug 5 00:27:15 2025 GMT Not After : Aug 12 00:27:15 2025 GMT Subject: CN=68914fe3-4617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:95:af:5b:28:30:88:96:db:cf:cb:73:97:e2: a5:f0:8b:0f:85:df:ad:23:48:90:bd:de:eb:87:37: 79:04:43:5f:4b:8f:99:fd:b1:64:68:d5:f3:67:50: f7:bd:40:9b:5e:fd:a2:d9:e2:21:36:48:3a:fe:01: 50:48:97:76:31:e7:44:cf:7b:58:27:81:86:fc:81: 1a:a0:57:7c:f3:75:e9:fd:f3:05:f9:80:60:13:a6: c9:a7:f0:5a:4c:0a:da:0a:22:d5:e6:fc:9d:7f:fe: 86:e5:02:4d:84:55:85:05:ae:b8:35:7f:68:ba:ab: 2f:aa:3b:f9:15:73:6f:f2:b4:f7:99:10:15:ce:98: fa:4e:75:6c:38:df:63:4a:8d:e7:4a:d8:96:f5:a1: 01:1d:e3:91:46:ae:53:04:e8:5c:bb:04:5e:da:7f: 55:7b:d8:41:4b:90:5a:59:cb:1f:15:22:7d:4d:1c: 22:76:d1:7a:68:6d:89:f5:63:9b:51:fe:9d:4a:8f: 6c:a6:e8:9a:98:0c:10:0f:c9:a7:7d:23:e1:f0:67: fc:05:d5:bc:4a:73:4c:61:c5:9c:0d:6d:96:41:40: f4:3c:e8:53:ab:fa:57:64:54:ac:a2:9f:84:7d:2b: 00:a8:ff:9d:39:49:fd:b8:55:b4:39:99:65:3b:09: db:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A1:EA:BB:78:E2:FA:E3:CC:BF:CB:F8:C4:39:33:3A:30:CC:D9:4C X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:6c:63:ab:a8:c6:42:e1:b5:bf:77:d6:a9:94:48:4c:d1:2e: f0:a0:92:01:f9:1b:cf:ea:69:69:eb:80:69:21:4e:a2:a6:75: 49:7a:ac:f9:30:b1:2f:91:f6:79:f9:70:e4:25:4f:48:59:66: 64:09:b3:5e:4d:ce:19:a5:89:a4:c1:7d:67:3b:4c:38:af:37: 91:f4:f1:7a:35:bb:a1:cf:2f:dc:92:86:a8:b1:99:93:42:36: 21:0c:4d:9f:cb:fd:94:0d:0e:05:77:2d:74:6f:ef:a0:8f:b4: 6e:d2:03:75:90:87:57:65:55:9c:b4:77:69:a7:b2:5c:d7:e1: de:05:45:5d:37:01:aa:88:7d:63:7d:34:bb:f4:a3:1c:82:09: bf:22:7b:20:20:76:c9:f7:87:b8:f8:38:d1:c9:90:3c:68:48: 08:34:b1:4a:c5:83:db:cb:b0:a3:04:d9:09:56:1a:bb:a7:b5: ec:fe:68:29:f5:6a:ba:f3:10:f9:7e:15:18:8d:fc:d1:5d:71: 01:dd:8c:65:e6:35:ab:78:23:0b:da:cd:2f:21:3b:2c:a0:6f: 37:95:ab:ef:6d:46:c8:b4:e7:90:24:42:a4:6a:eb:c4:b8:e4: 4f:d3:68:9d:e8:ac:96:2b:06:cc:90:f2:54:1d:42:d1:d6:6b: 52:c2:00:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUwODA1MDAyNzE1WhcNMjUwODEyMDAyNzE1WjAYMRYwFAYD VQQDEw02ODkxNGZlMy00NjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpWvWygwiJbbz8tzl+Kl8IsPhd+tI0iQvd7rhzd5BENfS4+Z/bFkaNXzZ1D3 vUCbXv2i2eIhNkg6/gFQSJd2MedEz3tYJ4GG/IEaoFd883Xp/fMF+YBgE6bJp/Ba TAraCiLV5vydf/6G5QJNhFWFBa64NX9ouqsvqjv5FXNv8rT3mRAVzpj6TnVsON9j So3nStiW9aEBHeORRq5TBOhcuwRe2n9Ve9hBS5BaWcsfFSJ9TRwidtF6aG2J9WOb Uf6dSo9spuiamAwQD8mnfSPh8Gf8BdW8SnNMYcWcDW2WQUD0POhTq/pXZFSsop+E fSsAqP+dOUn9uFW0OZllOwnbbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWh6rt4 4vrjzL/L+MQ5MzowzNlMMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQbGOrqMZC4bW/d9aplEhM0S7woJIB+RvP6mlp64BpIU6ipnVJeqz5 MLEvkfZ5+XDkJU9IWWZkCbNeTc4ZpYmkwX1nO0w4rzeR9PF6Nbuhzy/ckoaosZmT QjYhDE2fy/2UDQ4Fdy10b++gj7Ru0gN1kIdXZVWctHdpp7Jc1+HeBUVdNwGqiH1j fTS79KMcggm/InsgIHbJ94e4+DjRyZA8aEgINLFKxYPby7CjBNkJVhq7p7Xs/mgp 9Wq68xD5fhUYjfzRXXEB3Yxl5jWreCML2s0vITssoG83lavvbUbItOeQJEKkauvE uORP02id6KyWKwbMkPJUHULR1mtSwgB4 -----END CERTIFICATE-----Generated at Wed Aug 6 14:19:24 2025 by rpki-client