$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: JXsnvHyex34iP8EoWJynTqW2GjHJgz2r0VE2rcT5VBw= Subject key identifier: E7:C5:EE:AF:6C:D6:77:C2:4A:B6:C7:DA:20:5B:12:C9:B1:2B:D7:B5 Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 0434 Signing time: Mon 11 Aug 2025 00:30:40 +0000 Manifest this update: Mon 11 Aug 2025 00:30:40 +0000 Manifest next update: Mon 18 Aug 2025 00:30:40 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: Vk9izE4y2r8y6/oTFEpul2i05tQsRzy1CQJX4usJFWk=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: tjoX2rKURmmp0SIpilUWla3AD/nRXhfocceVz0iL1og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Aug 11 00:30:40 2025 GMT Not After : Aug 18 00:30:40 2025 GMT Subject: CN=689939b0-496f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a4:8f:8b:cb:ef:82:22:8a:fe:5f:a1:59:90: 2e:e5:7d:01:a1:e1:ac:94:4f:6e:c7:19:84:3b:f4: 77:7c:74:fb:13:0f:05:1d:ee:ae:32:be:9f:b3:10: 56:3a:17:cc:47:87:9b:55:5d:1f:51:e7:eb:7e:59: bf:6c:26:78:93:7e:2d:1b:d4:93:24:b8:a6:56:9b: 2b:67:54:86:c7:67:09:df:94:a3:4f:89:c9:b2:c0: bb:a4:ce:75:f4:c6:00:22:1b:2f:9e:fa:14:60:0c: 7e:2f:84:a9:d2:99:f2:95:6d:61:e3:c6:1d:47:0b: f7:09:be:91:6c:66:4e:a9:a5:63:d6:76:4a:a9:2b: fe:5e:b8:e2:40:0b:8b:32:44:24:d5:a2:f0:6c:6d: 62:04:c9:76:4e:e6:19:ec:8c:15:36:cd:99:69:39: 9b:5b:a8:fa:6e:b5:63:5f:63:9d:56:1b:eb:7b:b4: df:9f:84:ba:43:10:79:24:d9:9e:cb:42:6a:3a:43: 25:f5:3f:a6:81:4f:5c:39:ef:54:63:49:90:1b:ab: bc:e8:01:82:5e:12:cf:52:a6:52:46:44:88:47:00: 87:1c:72:7a:8f:c6:61:ed:87:b6:50:39:ec:ef:5b: bd:f9:bf:78:ab:72:ec:f2:07:bb:0f:bb:e9:ab:77: 62:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C5:EE:AF:6C:D6:77:C2:4A:B6:C7:DA:20:5B:12:C9:B1:2B:D7:B5 X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:90:e3:3a:4f:07:70:dc:81:e7:1e:f5:f6:29:26:57:e6:82: 2d:f9:c0:8c:74:6b:98:aa:61:c7:11:d8:7b:1d:32:f0:ee:a7: 79:f9:49:ca:84:05:27:8c:6f:db:8c:64:7c:12:4d:42:02:21: e3:59:06:f1:ad:56:95:20:e6:bc:fd:e1:be:f8:f9:40:d3:8b: aa:4c:23:dc:56:1f:6f:52:a1:13:ae:0d:6d:b4:55:32:bb:4f: a9:30:bc:e2:97:9c:4d:6e:ef:7d:e6:37:3b:15:1a:1b:81:98: ff:4d:18:d7:e9:54:65:07:f5:21:0c:58:96:1c:d6:dd:38:aa: 66:f3:19:98:d0:c9:89:4d:f9:d2:09:86:fb:9a:d4:7e:fe:1e: 8e:73:8c:af:ac:4b:46:8c:49:35:77:bb:0a:5a:c9:d5:f4:5e: 4c:f3:01:4c:b2:00:ad:c5:e1:8e:7c:fa:77:ae:3e:c7:6c:2e: 99:95:99:1e:54:9d:f9:4c:59:5e:ca:d3:b8:e0:b7:5c:31:1c: 21:68:c4:9c:9c:1e:6a:e9:02:da:00:11:50:c8:82:b8:50:36: 80:62:99:ab:27:b7:47:2f:d6:6b:6c:c8:da:37:ab:ee:b3:8c: 54:b4:7a:49:65:86:00:73:78:bc:23:d4:b9:f9:75:c4:0b:23: 1e:29:38:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjUwODExMDAzMDQwWhcNMjUwODE4MDAzMDQwWjAYMRYwFAYD VQQDEw02ODk5MzliMC00OTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6SPi8vvgiKK/l+hWZAu5X0BoeGslE9uxxmEO/R3fHT7Ew8FHe6uMr6fsxBW OhfMR4ebVV0fUefrflm/bCZ4k34tG9STJLimVpsrZ1SGx2cJ35SjT4nJssC7pM51 9MYAIhsvnvoUYAx+L4Sp0pnylW1h48YdRwv3Cb6RbGZOqaVj1nZKqSv+XrjiQAuL MkQk1aLwbG1iBMl2TuYZ7IwVNs2ZaTmbW6j6brVjX2OdVhvre7Tfn4S6QxB5JNme y0JqOkMl9T+mgU9cOe9UY0mQG6u86AGCXhLPUqZSRkSIRwCHHHJ6j8Zh7Ye2UDns 71u9+b94q3Ls8ge7D7vpq3diuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfF7q9s 1nfCSrbH2iBbEsmxK9e1MB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlkOM6Twdw3IHnHvX2KSZX5oIt+cCMdGuYqmHHEdh7HTLw7qd5+UnK hAUnjG/bjGR8Ek1CAiHjWQbxrVaVIOa8/eG++PlA04uqTCPcVh9vUqETrg1ttFUy u0+pMLzil5xNbu995jc7FRobgZj/TRjX6VRlB/UhDFiWHNbdOKpm8xmY0MmJTfnS CYb7mtR+/h6Oc4yvrEtGjEk1d7sKWsnV9F5M8wFMsgCtxeGOfPp3rj7HbC6ZlZke VJ35TFleytO44LdcMRwhaMScnB5q6QLaABFQyIK4UDaAYpmrJ7dHL9ZrbMjaN6vu s4xUtHpJZYYAc3i8I9S5+XXECyMeKTjr -----END CERTIFICATE-----Generated at Mon Aug 11 04:17:01 2025 by rpki-client