$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: OEnj0yjzvhT9ovVL5X8+V5EGiyUCHzpJ8Wtdl9lS2Kk= Subject key identifier: B1:86:00:7B:9B:94:08:24:20:C8:57:5B:00:23:A9:1D:12:94:6F:AB Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 03AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 03A2 Signing time: Mon 21 Jul 2025 01:04:34 +0000 Manifest this update: Mon 21 Jul 2025 01:04:33 +0000 Manifest next update: Mon 28 Jul 2025 01:04:33 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: TkCpXR0M9wNNiWh1e4ZtWrByqybPGdrPCK0/RUYANHc=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: 3ujH7nfRItY8BxT80xm2zxGd128K9q6N1aAV7Q13w4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:04:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 938 (0x3aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF, serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: Jul 21 01:04:33 2025 GMT Not After : Jul 28 01:04:33 2025 GMT Subject: CN=687d9221-4158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2a:03:eb:b0:ea:b6:c1:a0:7a:12:ee:cd:6e: ab:20:de:48:a0:a8:e5:85:7d:48:f3:31:87:98:1c: 00:21:d4:1f:51:95:f7:8c:5a:2a:05:cb:66:6f:6e: 3a:c8:ba:51:30:e7:ee:b5:74:26:ae:a8:39:7a:39: 50:a5:95:d0:36:c0:86:8a:b1:29:5b:e2:27:f4:70: bc:95:aa:6a:d2:15:c3:86:fc:ae:31:5c:6c:a5:3b: 4c:c0:35:c3:82:57:44:7c:43:f1:58:df:44:b3:c8: c3:d7:e2:b0:b4:05:63:c7:06:aa:8e:0b:c5:36:5a: 3e:44:e4:eb:f5:9c:15:91:fa:08:94:c8:63:a5:22: e8:f1:45:56:23:11:85:f4:8f:79:63:54:ea:52:de: c7:e9:4e:a2:68:bc:14:9e:c3:b8:7e:03:7f:c2:a9: 33:7d:ef:c3:2c:86:2b:f7:55:7b:17:37:00:98:7a: d8:f5:20:b1:c1:81:b2:fe:24:fe:7f:74:b3:b4:39: 8b:20:87:a5:b8:98:67:bd:dc:0d:68:ac:55:aa:29: be:6d:97:f7:1a:bb:8b:d5:4d:b4:33:7f:1c:28:b7: 69:38:09:7e:31:c5:d3:f4:7a:5b:30:c3:e3:73:e9: 1c:1c:d2:2b:68:ba:5b:d3:bb:d7:b5:ac:67:dd:6e: 06:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:86:00:7B:9B:94:08:24:20:C8:57:5B:00:23:A9:1D:12:94:6F:AB X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e4:08:db:41:6d:50:73:a4:58:d1:9a:c9:ae:70:8a:f6:b9: 08:a3:7f:50:bf:4f:34:1f:de:9f:2a:ac:96:e8:c9:17:42:17: c1:20:d8:60:fd:54:5c:c8:43:2c:e7:1d:7d:3b:06:b0:d1:98: 01:80:9b:2e:3a:09:ca:1b:19:f0:a6:c2:a3:41:e4:40:4c:56: 9a:f3:d3:8b:f9:bb:8a:0f:2d:1c:29:2e:1d:0f:59:74:a3:7e: 79:87:cb:f3:16:76:74:a8:3c:7f:cf:6d:a0:7c:22:25:f3:3f: 14:3a:01:82:dd:f1:9a:95:fa:df:38:bd:51:47:5d:68:e0:82: e2:e2:03:9b:c9:9e:a8:56:fc:ea:44:aa:7c:a7:3f:ee:a6:1e: a7:db:92:16:fe:9c:d7:f6:6e:a2:af:6e:cb:ad:46:5a:dc:27: 4b:50:af:95:0c:a8:e1:0d:a5:33:ed:62:41:6a:15:82:ce:79: bc:76:2f:a9:1a:a1:85:7f:c7:80:10:2a:b2:14:36:02:65:f3: 42:22:b7:cb:3e:07:6e:26:b0:3d:a2:08:21:ec:28:bc:9d:dd: 73:0a:80:1a:06:7c:92:24:3a:8e:10:c1:d4:b1:26:7d:85:84: 54:ec:4f:a6:d7:70:b5:d9:bb:13:c5:13:64:cc:98:67:6b:ea: 05:26:7a:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjUwNzIxMDEwNDMzWhcNMjUwNzI4MDEwNDMzWjAYMRYwFAYD VQQDEw02ODdkOTIyMS00MTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoCoD67DqtsGgehLuzW6rIN5IoKjlhX1I8zGHmBwAIdQfUZX3jFoqBctmb246 yLpRMOfutXQmrqg5ejlQpZXQNsCGirEpW+In9HC8lapq0hXDhvyuMVxspTtMwDXD gldEfEPxWN9Es8jD1+KwtAVjxwaqjgvFNlo+ROTr9ZwVkfoIlMhjpSLo8UVWIxGF 9I95Y1TqUt7H6U6iaLwUnsO4fgN/wqkzfe/DLIYr91V7FzcAmHrY9SCxwYGy/iT+ f3SztDmLIIeluJhnvdwNaKxVqim+bZf3GruL1U20M38cKLdpOAl+McXT9HpbMMPj c+kcHNIraLpb07vXtaxn3W4GZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGGAHub lAgkIMhXWwAjqR0SlG+rMB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK5AjbQW1Qc6RY0ZrJrnCK9rkIo39Qv080H96fKqyW6MkXQhfBINhg /VRcyEMs5x19Owaw0ZgBgJsuOgnKGxnwpsKjQeRATFaa89OL+buKDy0cKS4dD1l0 o355h8vzFnZ0qDx/z22gfCIl8z8UOgGC3fGalfrfOL1RR11o4ILi4gObyZ6oVvzq RKp8pz/uph6n25IW/pzX9m6ir27LrUZa3CdLUK+VDKjhDaUz7WJBahWCznm8di+p GqGFf8eAECqyFDYCZfNCIrfLPgduJrA9oggh7Ci8nd1zCoAaBnySJDqOEMHUsSZ9 hYRU7E+m13C12bsTxRNkzJhna+oFJnqW -----END CERTIFICATE-----Generated at Mon Jul 21 06:58:41 2025 by rpki-client