$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: sPcNf7nrcymM+3HVWAWVMCa3vbRac6+cPpZvpFTKiLo= Subject key identifier: 0A:A5:47:4A:9F:47:9F:05:41:28:3A:53:BF:34:B1:74:B6:5D:65:9B Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 01FB Signing time: Mon 11 Aug 2025 02:32:42 +0000 Manifest this update: Mon 11 Aug 2025 02:32:41 +0000 Manifest next update: Mon 18 Aug 2025 02:32:41 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: bmdKC0rfvJ+ytjOc5kl+wg6r8VvAgg23IXEkCBSI/iw=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: MO9P1WGnI9RODyxLdTa3D8Yco4aTU5+oDDX9VBwpv+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Aug 11 02:32:41 2025 GMT Not After : Aug 18 02:32:41 2025 GMT Subject: CN=68995649-cbfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2d:26:9a:a1:1f:24:20:3a:b5:e2:7d:ef:a7: 9a:2e:02:c7:f5:a5:de:12:79:22:ba:ff:7e:fe:e0: 16:87:86:b9:88:bf:f2:e7:d9:14:7a:0e:40:6a:50: 29:ba:e7:d6:7b:94:c4:1f:01:6a:0c:47:3b:d1:67: 1d:42:36:ba:01:eb:5b:8f:b8:97:5a:62:b8:94:63: 1f:46:f0:ad:bc:0f:99:40:88:8b:bc:0b:76:12:87: b6:9f:76:f5:af:e9:d1:ca:37:45:71:5e:3f:f7:dc: 97:0a:34:8c:3d:b3:2f:84:d6:a4:bc:d6:aa:4f:3a: ea:c4:65:60:92:43:2b:0a:b9:f1:bf:8c:5e:9f:ff: 26:23:9f:3c:9c:4f:91:24:0d:a3:3d:13:01:9a:f8: de:3d:2d:f9:19:8c:a7:06:62:b7:84:b4:28:c9:c2: 95:82:3d:6d:d5:f0:72:ee:05:42:31:be:3f:0e:7e: ce:4d:8a:55:93:d0:dc:cb:ba:25:97:31:8e:88:ab: de:00:1b:2e:bf:50:1c:27:9e:5d:57:a3:27:24:eb: 4d:13:79:49:23:d1:06:54:df:c1:b6:73:7a:68:07: 76:95:a4:b8:53:4f:fa:17:fa:d6:a8:70:df:07:ae: 48:6c:ce:e0:5b:1b:98:6d:3c:b1:6f:e8:49:1d:89: 4b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:A5:47:4A:9F:47:9F:05:41:28:3A:53:BF:34:B1:74:B6:5D:65:9B X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:4c:15:41:69:73:31:f6:b2:d9:fb:3e:29:c9:ae:54:ee:3d: ec:2c:67:12:9c:33:57:31:7d:b9:ab:e4:58:4e:67:a9:dd:48: 7a:41:58:95:55:0e:7e:8d:e9:b3:44:a8:97:8d:98:48:14:37: f3:39:9c:e1:01:34:a9:17:a0:17:91:ba:fb:51:e3:ad:08:b9: 17:e7:e2:b7:5c:1e:60:8d:2f:7d:08:bd:01:16:e9:df:67:14: eb:41:49:0d:9a:8d:6c:da:b2:39:89:89:2f:2d:89:19:03:ff: ec:73:e5:9c:3a:12:fe:06:55:42:26:31:cd:5c:1f:6e:05:4e: 13:5f:6b:63:6c:42:80:de:8a:12:d4:0e:d1:89:52:39:bb:07: 52:8b:e5:f6:68:81:99:7e:da:93:b2:28:78:bd:24:3b:9e:46: 90:db:cd:e0:55:29:1c:5c:75:76:ee:c3:6e:3b:22:05:1b:c8: cf:37:2a:50:c2:4c:18:44:a6:83:54:c2:23:44:1f:68:da:60: fb:c4:7e:28:fe:5b:9e:af:f6:74:1a:d1:a0:9c:e9:c3:c8:be: 37:e1:f1:1a:ef:49:d5:0a:94:0d:59:36:7a:34:80:aa:6a:bd: 1c:ae:25:6a:57:9d:01:81:91:62:ab:78:1a:36:5f:37:89:79: da:62:0b:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUwODExMDIzMjQxWhcNMjUwODE4MDIzMjQxWjAYMRYwFAYD VQQDEw02ODk5NTY0OS1jYmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy0mmqEfJCA6teJ976eaLgLH9aXeEnkiuv9+/uAWh4a5iL/y59kUeg5AalAp uufWe5TEHwFqDEc70WcdQja6Aetbj7iXWmK4lGMfRvCtvA+ZQIiLvAt2Eoe2n3b1 r+nRyjdFcV4/99yXCjSMPbMvhNakvNaqTzrqxGVgkkMrCrnxv4xen/8mI588nE+R JA2jPRMBmvjePS35GYynBmK3hLQoycKVgj1t1fBy7gVCMb4/Dn7OTYpVk9Dcy7ol lzGOiKveABsuv1AcJ55dV6MnJOtNE3lJI9EGVN/BtnN6aAd2laS4U0/6F/rWqHDf B65IbM7gWxuYbTyxb+hJHYlLsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqlR0qf R58FQSg6U780sXS2XWWbMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZTBVBaXMx9rLZ+z4pya5U7j3sLGcSnDNXMX25q+RYTmep3Uh6QViV VQ5+jemzRKiXjZhIFDfzOZzhATSpF6AXkbr7UeOtCLkX5+K3XB5gjS99CL0BFunf ZxTrQUkNmo1s2rI5iYkvLYkZA//sc+WcOhL+BlVCJjHNXB9uBU4TX2tjbEKA3ooS 1A7RiVI5uwdSi+X2aIGZftqTsih4vSQ7nkaQ283gVSkcXHV27sNuOyIFG8jPNypQ wkwYRKaDVMIjRB9o2mD7xH4o/luer/Z0GtGgnOnDyL434fEa70nVCpQNWTZ6NICq ar0criVqV50BgZFiq3gaNl83iXnaYgtf -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:27 2025 by rpki-client