$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft File: UyaKJzal_1VLlAcD83T8NXkijDA.mft (raw, json) Hash identifier: dOBmOpLxFqOL48cWIpXsyHuFCNBJHsJGBk3MaAIOOi8= Subject key identifier: 6D:C5:00:07:83:50:13:83:75:ED:00:77:FD:E4:CF:60:08:1D:A0:10 Authority key identifier: 53:26:8A:27:36:A5:FF:55:4B:94:07:03:F3:74:FC:35:79:22:8C:30 Certificate issuer: /CN=A91DCBAD/serialNumber=53268A2736A5FF554B940703F374FC3579228C30 Certificate serial: 0A54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft Manifest number: 0A4B Signing time: Fri 08 Aug 2025 20:02:18 +0000 Manifest this update: Fri 08 Aug 2025 20:02:17 +0000 Manifest next update: Fri 15 Aug 2025 20:02:17 +0000 Files and hashes: 1: UyaKJzal_1VLlAcD83T8NXkijDA.crl (hash: bct2LCboWek2Dto4ZmbvZ5DlBZivT7i4OkTMyBkVA0o=) 2: CF072592709211EAB1D2FA0FC4F9AE02.roa (hash: qgPwBHuJNODFhkIhrJVb9VAEuenY+/fH1u9JlBx0mT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.crl rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2644 (0xa54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCBAD, serialNumber=53268A2736A5FF554B940703F374FC3579228C30 Validity Not Before: Aug 8 20:02:17 2025 GMT Not After : Aug 15 20:02:17 2025 GMT Subject: CN=689657c9-fba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b6:24:f5:8b:ea:6f:51:ec:6c:14:bd:09:ce: 46:56:9b:36:22:bb:0e:6c:84:24:87:f3:03:5b:a6: a2:c8:c4:95:80:6f:33:d0:a5:6d:52:07:0b:4b:f4: a1:d7:98:55:e7:a3:91:1d:b3:3d:c3:15:ea:f3:1f: c6:0d:d2:51:bb:b1:5c:82:3e:89:02:a7:d4:0a:94: c1:f9:d7:8c:ea:0b:5e:dc:79:32:20:04:09:18:87: d3:13:ed:4b:e8:cb:a6:00:2e:16:0a:01:e1:5b:2d: a7:3f:45:f2:94:4f:d7:4f:44:85:80:55:d4:71:18: 62:f2:6b:9c:ed:e4:26:2b:fc:2a:7f:23:c6:4a:a7: d6:c1:ce:ec:8d:35:e2:0b:27:dc:88:43:c4:85:2e: 2f:36:56:b9:39:fe:2b:e0:aa:e6:1d:e4:c2:45:43: 7b:9d:e2:33:35:5a:ab:74:f7:db:2d:1c:52:95:d7: 1b:ad:e2:b9:e4:f3:d6:90:43:dc:3f:ea:e2:b5:f0: ec:b1:05:4f:38:fb:43:3a:57:70:81:6b:f3:7f:95: 3b:b5:8e:bd:b1:a3:f1:c2:06:1c:87:f3:80:8e:23: 4b:42:72:83:f6:b8:58:67:f1:42:95:62:3e:e6:b9: 0f:63:67:45:58:e5:0a:3e:63:8f:9c:25:e7:32:c1: b3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C5:00:07:83:50:13:83:75:ED:00:77:FD:E4:CF:60:08:1D:A0:10 X509v3 Authority Key Identifier: keyid:53:26:8A:27:36:A5:FF:55:4B:94:07:03:F3:74:FC:35:79:22:8C:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:99:66:8b:fb:ca:f2:f3:dd:86:18:a5:3c:45:eb:d7:87:5e: fe:13:54:e3:25:c6:d6:44:84:41:81:8a:17:1c:8d:f1:c5:97: ae:ea:ca:a1:e4:47:e1:4a:5d:4f:1f:28:7a:b4:68:0d:c6:cc: e7:81:1b:62:08:a5:9f:82:1f:2f:9b:fc:8b:20:3a:9e:03:91: 83:05:8a:e8:21:6e:d4:02:22:9d:50:bb:6c:a7:f0:fd:2f:90: e9:c0:a6:06:a0:22:8e:b5:4c:7a:e7:3c:69:cc:e9:a2:93:0a: b5:c2:3b:d2:64:86:ed:13:3a:e3:93:0b:34:e3:95:10:82:a4: 7f:c4:10:e8:b8:ff:0e:c2:fb:b2:94:29:f1:36:8d:dd:73:f4: 92:6d:2d:60:63:f8:0b:21:33:a8:05:8a:60:78:c4:ef:25:5b: 6d:ad:ab:18:2d:f5:1c:29:cf:3a:ac:e3:85:b2:70:9d:6b:e9: 87:61:cb:88:df:5c:39:c0:85:5b:45:3e:f8:55:9c:d5:38:08: 18:c5:f7:16:d3:eb:92:22:53:b2:e2:d4:b9:e5:19:7d:5f:25: 02:12:87:4d:d5:87:b9:f7:83:56:55:ce:99:73:dd:9e:72:50: df:7f:e2:69:b7:f6:70:ae:26:dc:24:04:36:9a:c6:93:89:a5: 20:ef:4a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCQUQxMTAvBgNVBAUTKDUzMjY4QTI3MzZBNUZGNTU0Qjk0MDcwM0YzNzRGQzM1 NzkyMjhDMzAwHhcNMjUwODA4MjAwMjE3WhcNMjUwODE1MjAwMjE3WjAYMRYwFAYD VQQDEw02ODk2NTdjOS1mYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrYk9Yvqb1HsbBS9Cc5GVps2IrsObIQkh/MDW6aiyMSVgG8z0KVtUgcLS/Sh 15hV56ORHbM9wxXq8x/GDdJRu7Fcgj6JAqfUCpTB+deM6gte3HkyIAQJGIfTE+1L 6MumAC4WCgHhWy2nP0XylE/XT0SFgFXUcRhi8muc7eQmK/wqfyPGSqfWwc7sjTXi CyfciEPEhS4vNla5Of4r4KrmHeTCRUN7neIzNVqrdPfbLRxSldcbreK55PPWkEPc P+ritfDssQVPOPtDOldwgWvzf5U7tY69saPxwgYch/OAjiNLQnKD9rhYZ/FClWI+ 5rkPY2dFWOUKPmOPnCXnMsGzkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3FAAeD UBODde0Ad/3kz2AIHaAQMB8GA1UdIwQYMBaAFFMmiic2pf9VS5QHA/N0/DV5Ioww MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0JBRC8zNjU5RTdBRTcw OTExMUVBOEE5QjRFMERDNEY5QUUwMi9VeWFLSnphbF8xVkxsQWNEODNUOE5Ya2lq REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5YUtKemFsXzFWTGxBY0Q4M1Q4TlhraWpEQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0JBRC8zNjU5RTdBRTcwOTExMUVBOEE5QjRFMERDNEY5QUUwMi9VeWFLSnphbF8x VkxsQWNEODNUOE5Ya2lqREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGmWaL+8ry892GGKU8RevXh17+E1TjJcbWRIRBgYoXHI3xxZeu6sqh 5EfhSl1PHyh6tGgNxszngRtiCKWfgh8vm/yLIDqeA5GDBYroIW7UAiKdULtsp/D9 L5DpwKYGoCKOtUx65zxpzOmikwq1wjvSZIbtEzrjkws045UQgqR/xBDouP8Owvuy lCnxNo3dc/SSbS1gY/gLITOoBYpgeMTvJVttrasYLfUcKc86rOOFsnCda+mHYcuI 31w5wIVbRT74VZzVOAgYxfcW0+uSIlOy4tS55Rl9XyUCEodN1Ye594NWVc6Zc92e clDff+Jpt/ZwribcJAQ2msaTiaUg70ox -----END CERTIFICATE-----Generated at Sun Aug 10 18:53:24 2025 by rpki-client