$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: y+rhDmB4ObxoonPCzMNN7pO5pauLKOEZ5NUpFrPsYcg= Subject key identifier: 72:1C:23:0E:97:E3:33:DF:96:5C:47:1B:AA:91:49:F2:A1:55:EE:9E Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01DE Signing time: Mon 11 Aug 2025 02:56:36 +0000 Manifest this update: Mon 11 Aug 2025 02:56:36 +0000 Manifest next update: Mon 18 Aug 2025 02:56:36 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: ilJMSNXjD9fjc1eRaAGH47p8hXv9eAkBUL9TgMumgUU=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Aug 11 02:56:36 2025 GMT Not After : Aug 18 02:56:36 2025 GMT Subject: CN=68995be4-79fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:68:a8:92:51:c1:88:3a:3a:0f:f5:f8:de:6e: 25:c6:bf:5d:60:e7:1d:6e:7c:7a:31:fd:47:5a:50: 8a:16:3a:22:79:a8:a2:27:20:63:10:3c:79:05:73: 11:a8:69:b3:c7:9d:4a:8b:0b:fb:45:47:a1:85:0c: 11:be:8e:f4:3e:f8:10:0f:ad:3c:62:66:79:59:1c: f9:7f:e8:5d:cd:06:17:28:1f:35:61:df:61:92:ff: 74:c2:73:84:82:be:4f:1d:5e:6b:53:69:75:c8:14: 4c:61:4d:af:19:b6:66:f9:a6:4c:a8:fb:ce:f9:e8: cd:77:06:6f:06:7e:3b:34:ef:46:b3:16:97:5c:d3: d8:f1:84:41:f5:e0:16:0f:01:ee:22:5e:bf:b8:51: 2b:cc:49:df:b9:98:45:27:f4:b0:6b:41:61:9a:92: 81:73:23:3c:51:ee:b8:6e:9c:3e:79:30:b5:91:be: 8d:20:0d:6d:54:14:20:47:51:0e:6a:03:f2:f8:c6: 6c:52:76:f9:a8:89:df:4c:93:a0:f9:59:bc:c1:88: 09:47:bc:28:bd:15:86:8f:c6:5f:f5:f6:d9:b5:f4: a2:04:de:38:9d:e0:11:85:af:a7:67:45:37:08:58: 2f:ff:7e:e1:bd:ad:14:61:b4:6c:d6:13:49:46:75: f7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1C:23:0E:97:E3:33:DF:96:5C:47:1B:AA:91:49:F2:A1:55:EE:9E X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:93:cb:df:e0:c5:59:37:c4:9b:59:85:17:08:d1:e2:9c:f7: 32:30:14:cd:32:15:de:5e:0b:f5:af:64:e0:27:f9:2a:e4:80: 63:db:7b:3a:46:2b:e5:b3:0e:5b:db:08:74:ab:19:d5:5f:81: 22:42:0d:4d:aa:c0:06:dd:6b:97:3c:21:9f:ad:e3:08:d9:7f: ae:e9:56:4d:a6:55:56:fe:88:e7:c2:70:4d:77:93:65:2f:a9: 74:8c:97:86:bb:11:b9:76:85:89:62:b5:e5:a3:42:02:60:0b: 6d:09:0f:91:30:0d:0b:49:a4:77:f3:1e:c9:3c:e6:b8:b6:f8: eb:ac:54:a6:0d:da:c7:9d:0f:5f:68:91:e2:c4:13:17:4e:1e: ee:05:ef:f1:81:77:35:c5:05:b4:f5:bf:18:79:18:76:52:cf: 82:03:fc:da:02:c1:76:92:c9:d3:42:9e:07:4c:54:96:e9:9f: 8f:0a:e5:58:b4:9f:fb:7c:da:4b:48:0e:df:8f:58:43:9a:6e: 79:cc:1f:95:64:e3:b3:ad:cd:19:31:c4:b8:52:76:50:47:45: 29:7a:40:0a:9a:08:57:df:e8:76:27:a7:00:83:4d:70:f6:74: 15:a3:4f:4d:e9:8c:06:1c:6a:5a:25:62:94:af:26:fd:4c:2f: 95:d1:71:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwODExMDI1NjM2WhcNMjUwODE4MDI1NjM2WjAYMRYwFAYD VQQDEw02ODk5NWJlNC03OWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2ioklHBiDo6D/X43m4lxr9dYOcdbnx6Mf1HWlCKFjoieaiiJyBjEDx5BXMR qGmzx51Kiwv7RUehhQwRvo70PvgQD608YmZ5WRz5f+hdzQYXKB81Yd9hkv90wnOE gr5PHV5rU2l1yBRMYU2vGbZm+aZMqPvO+ejNdwZvBn47NO9GsxaXXNPY8YRB9eAW DwHuIl6/uFErzEnfuZhFJ/Swa0FhmpKBcyM8Ue64bpw+eTC1kb6NIA1tVBQgR1EO agPy+MZsUnb5qInfTJOg+Vm8wYgJR7wovRWGj8Zf9fbZtfSiBN44neARha+nZ0U3 CFgv/37hva0UYbRs1hNJRnX3vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIcIw6X 4zPfllxHG6qRSfKhVe6eMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlk8vf4MVZN8SbWYUXCNHinPcyMBTNMhXeXgv1r2TgJ/kq5IBj23s6 Rivlsw5b2wh0qxnVX4EiQg1NqsAG3WuXPCGfreMI2X+u6VZNplVW/ojnwnBNd5Nl L6l0jJeGuxG5doWJYrXlo0ICYAttCQ+RMA0LSaR38x7JPOa4tvjrrFSmDdrHnQ9f aJHixBMXTh7uBe/xgXc1xQW09b8YeRh2Us+CA/zaAsF2ksnTQp4HTFSW6Z+PCuVY tJ/7fNpLSA7fj1hDmm55zB+VZOOzrc0ZMcS4UnZQR0UpekAKmghX3+h2J6cAg01w 9nQVo09N6YwGHGpaJWKUryb9TC+V0XFv -----END CERTIFICATE-----Generated at Mon Aug 11 04:20:42 2025 by rpki-client