$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft File: UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft (raw, json) Hash identifier: dQDe3OPGAE34Q6K2Oc8N4CQVC1mo3gintX62exnB5oo= Subject key identifier: 71:F8:46:E0:71:1E:F6:97:AA:63:D8:4E:46:59:ED:6A:86:00:DA:C1 Authority key identifier: 51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB Certificate issuer: /CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Certificate serial: 22AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft Manifest number: 2263 Signing time: Fri 08 Aug 2025 15:57:48 +0000 Manifest this update: Fri 08 Aug 2025 15:57:48 +0000 Manifest next update: Fri 15 Aug 2025 15:57:48 +0000 Files and hashes: 1: UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl (hash: JTtBYnyF01Uo6C0gR+0+w5WEPwEXBRCN/DdddIyomoU=) 2: 410B457E609811F0A70C2B32C4F9AE02.roa (hash: AJZwPASrCJ7F+xJTKr0sCmRQySB9T9a/QWn2vj0KBKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8878 (0x22ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA1C, serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Validity Not Before: Aug 8 15:57:48 2025 GMT Not After : Aug 15 15:57:48 2025 GMT Subject: CN=68961e7c-3887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f5:b8:ce:00:95:f5:55:1d:ce:87:90:cd:ff: aa:36:70:5a:0d:f1:5e:a8:7a:2d:94:ea:fd:39:d3: d7:3b:f8:97:9b:79:05:ad:75:47:1e:bf:9f:37:da: a8:71:21:6e:43:32:de:51:0d:c8:d3:93:b8:db:98: 08:09:79:b4:48:ba:91:d8:dc:98:e1:5f:8e:3a:c0: bb:f1:a5:cb:d7:10:95:94:41:5e:8d:5d:1d:a3:91: 9b:33:cd:01:87:bb:66:2f:b5:e9:b3:8e:d9:35:8e: 1e:45:dc:00:7c:8e:fe:79:dc:7f:97:73:bd:32:25: 68:bc:04:28:48:a5:9e:bf:56:21:f4:f9:c5:07:9f: 44:14:8a:8f:08:eb:26:0a:2d:ef:97:81:b4:e8:ee: ab:92:34:5d:22:18:70:18:5d:49:b4:09:7b:a3:ed: 74:df:d9:c1:c3:19:58:f7:67:21:dd:b3:6e:f6:f2: a9:eb:0e:99:2a:d2:66:94:fc:bc:05:43:65:40:97: 26:a3:a2:25:0a:bd:80:d3:ed:e2:57:a8:33:a0:ec: 73:8c:e8:61:33:7e:61:8c:47:fb:6e:bb:17:5c:31: ea:e4:2b:2d:27:d0:fe:dd:a9:0b:a4:f6:d7:fa:54: 6e:7c:4f:f8:c0:b1:56:1c:3c:02:80:48:cb:1e:bf: f6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F8:46:E0:71:1E:F6:97:AA:63:D8:4E:46:59:ED:6A:86:00:DA:C1 X509v3 Authority Key Identifier: keyid:51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:cf:32:d3:70:c2:70:ab:94:ab:ee:1d:b3:80:d3:40:c7:ba: e0:a7:97:6e:41:4a:cd:53:ef:08:6c:9b:0c:e8:9f:c1:8c:ef: eb:c9:81:47:49:34:9c:b7:e6:e9:42:7d:4a:04:6f:c9:5c:7b: 69:aa:59:e3:56:11:25:ae:9b:f2:3b:39:cd:9e:5c:9e:6e:dc: ec:68:48:d7:55:a9:8d:ee:72:37:e2:3b:81:56:da:0c:a0:b6: 60:01:42:d2:61:ce:47:df:ca:cd:6a:a9:89:a5:b6:bc:8b:ed: 55:25:30:74:3e:cd:90:13:ab:29:57:04:c3:ae:68:7b:01:09: 9b:a1:bd:1c:f3:6e:4a:ea:a8:79:36:59:d9:37:19:2e:ad:95: 60:7c:d8:41:9f:05:e1:fc:5f:8d:c8:cb:05:65:b1:d5:bf:30: cf:b8:9b:b9:83:02:9d:51:01:65:0a:17:f4:39:7a:45:c6:99: 01:31:ea:57:2a:1f:98:b1:56:a3:98:a7:6a:73:16:72:a9:4c: ac:d2:19:e6:eb:4e:67:84:07:9a:f8:c5:dc:ff:ef:9c:25:e0: 8f:ff:e7:fb:40:48:43:f9:60:4b:85:8b:73:9b:c3:45:ed:9e: 86:bf:ee:34:47:b4:db:46:3b:a8:54:d9:08:ba:c2:67:c4:db: 14:6f:8f:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMUMxMTAvBgNVBAUTKDUxQzI2MTFCNDYxREQ1MTE4MzVBNTE0MUY4QUVFNTAy RDNBMzlBRUIwHhcNMjUwODA4MTU1NzQ4WhcNMjUwODE1MTU1NzQ4WjAYMRYwFAYD VQQDEw02ODk2MWU3Yy0zODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvW4zgCV9VUdzoeQzf+qNnBaDfFeqHotlOr9OdPXO/iXm3kFrXVHHr+fN9qo cSFuQzLeUQ3I05O425gICXm0SLqR2NyY4V+OOsC78aXL1xCVlEFejV0do5GbM80B h7tmL7Xps47ZNY4eRdwAfI7+edx/l3O9MiVovAQoSKWev1Yh9PnFB59EFIqPCOsm Ci3vl4G06O6rkjRdIhhwGF1JtAl7o+1039nBwxlY92ch3bNu9vKp6w6ZKtJmlPy8 BUNlQJcmo6IlCr2A0+3iV6gzoOxzjOhhM35hjEf7brsXXDHq5CstJ9D+3akLpPbX +lRufE/4wLFWHDwCgEjLHr/2mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH4RuBx HvaXqmPYTkZZ7WqGANrBMB8GA1UdIwQYMBaAFFHCYRtGHdURg1pRQfiu5QLTo5rr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkExQy82M0IyMTRBMkM4 MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFSR0RXbEZCLUs3bEF0T2pt dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VjSmhHMFlkMVJHRFdsRkItSzdsQXRPam11cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkExQy82M0IyMTRBMkM4MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFS R0RXbEZCLUs3bEF0T2ptdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOzzLTcMJwq5Sr7h2zgNNAx7rgp5duQUrNU+8IbJsM6J/BjO/ryYFH STSct+bpQn1KBG/JXHtpqlnjVhElrpvyOznNnlyebtzsaEjXVamN7nI34juBVtoM oLZgAULSYc5H38rNaqmJpba8i+1VJTB0Ps2QE6spVwTDrmh7AQmbob0c825K6qh5 NlnZNxkurZVgfNhBnwXh/F+NyMsFZbHVvzDPuJu5gwKdUQFlChf0OXpFxpkBMepX Kh+YsVajmKdqcxZyqUys0hnm605nhAea+MXc/++cJeCP/+f7QEhD+WBLhYtzm8NF 7Z6Gv+40R7TbRjuoVNkIusJnxNsUb4/X -----END CERTIFICATE-----Generated at Sun Aug 10 13:57:20 2025 by rpki-client