$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: 8meBJqGDJIxZdtkUg6ADH44ludrpAfCc/DcytN6N8QQ= Subject key identifier: 28:6B:5F:E0:48:B9:42:2B:6C:57:3D:B9:D2:B8:B6:4B:30:07:8C:E4 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 0137 Signing time: Sat 19 Jul 2025 04:43:46 +0000 Manifest this update: Sat 19 Jul 2025 04:43:45 +0000 Manifest next update: Sat 26 Jul 2025 04:43:45 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: hp74dKac3n1H/ry+2SmjOU83afSV6h6XJGxR2bmOpDw=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Jul 19 04:43:45 2025 GMT Not After : Jul 26 04:43:45 2025 GMT Subject: CN=687b2281-1353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:65:9a:51:9e:2a:ae:0f:f6:20:a6:a8:f7:29: da:06:6b:49:7a:b9:b8:c5:9c:24:1f:10:12:2d:0c: df:65:b4:6f:26:94:91:17:ef:36:ee:e4:4d:70:25: 13:b2:be:4c:a5:9e:1b:e6:f3:5b:08:fc:b3:27:d3: ae:03:2a:5f:86:2e:2c:06:44:bd:f1:46:8a:75:eb: 5a:38:0c:95:31:c1:86:bb:4f:91:23:c9:53:bf:0c: 80:d7:95:bc:90:cc:cb:5b:65:ea:9d:15:02:74:95: 1a:3d:f3:06:e2:2d:ea:df:a2:94:ae:54:b5:97:b2: 98:c2:9f:64:33:27:f8:23:f5:b9:5b:1e:af:35:de: 4a:cc:85:19:a1:e8:14:65:c2:5c:f2:e5:f7:8d:42: 4b:f2:80:b1:c7:42:54:75:f1:b0:e4:a2:88:93:88: 5c:7e:bd:6e:61:ec:ab:65:4b:84:76:f7:8b:8b:97: bf:98:6b:6e:ea:55:e7:ef:3e:c8:a0:29:be:8d:10: db:26:01:3e:75:e0:3a:85:6f:15:df:76:07:fa:d2: fb:ba:ee:23:07:9c:c5:3c:d1:ce:b9:28:c6:11:31: 8a:8f:d6:37:4b:76:c6:b4:e9:c2:e7:d1:0c:ec:9d: ff:69:70:89:a7:43:df:9f:6e:d2:7d:22:2d:a2:82: f8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6B:5F:E0:48:B9:42:2B:6C:57:3D:B9:D2:B8:B6:4B:30:07:8C:E4 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:59:0c:c0:b5:75:74:03:20:5f:bf:8b:cf:23:91:75:de:ab: 82:24:c9:40:c4:1a:9f:3b:34:cd:5d:1d:08:87:d4:be:90:e3: 17:ec:c4:b5:80:92:05:5b:03:b9:2f:3e:fe:d3:73:58:d7:6f: aa:19:aa:e6:11:90:dc:7e:7c:e9:9a:b6:ed:49:8f:56:ff:89: 90:f9:fc:84:72:5c:1f:57:18:76:16:31:75:6f:4f:3b:ba:b8: 84:03:13:6f:8d:d8:d9:df:e0:cd:1b:43:83:e4:6e:98:e4:b8: 53:6d:84:59:20:b0:e7:15:98:3b:74:49:cb:60:7c:e9:fa:76: aa:59:82:e4:b4:c3:db:45:45:4f:0a:20:60:7d:c1:a0:1a:73: 78:6b:19:db:aa:c5:4c:3a:0e:80:d0:9a:fb:dc:7f:ad:dc:2f: e4:49:4c:d4:26:98:a6:08:3b:87:c3:2c:5f:a5:31:b7:82:1c: b0:6a:ed:49:35:8b:1b:9d:9e:cd:68:a3:c2:9d:4f:cc:16:1a: 12:1c:75:e3:f5:10:d0:68:00:bb:8b:dc:2b:2f:b7:a0:59:e1: 70:08:e5:6e:d9:56:24:00:b3:2b:47:70:7e:35:9f:2a:b4:84: 49:eb:b6:c2:ee:b9:20:28:02:48:6b:2a:fe:01:15:ee:6a:b4: a0:a4:8b:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwNzE5MDQ0MzQ1WhcNMjUwNzI2MDQ0MzQ1WjAYMRYwFAYD VQQDEw02ODdiMjI4MS0xMzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mWaUZ4qrg/2IKao9ynaBmtJerm4xZwkHxASLQzfZbRvJpSRF+827uRNcCUT sr5MpZ4b5vNbCPyzJ9OuAypfhi4sBkS98UaKdetaOAyVMcGGu0+RI8lTvwyA15W8 kMzLW2XqnRUCdJUaPfMG4i3q36KUrlS1l7KYwp9kMyf4I/W5Wx6vNd5KzIUZoegU ZcJc8uX3jUJL8oCxx0JUdfGw5KKIk4hcfr1uYeyrZUuEdveLi5e/mGtu6lXn7z7I oCm+jRDbJgE+deA6hW8V33YH+tL7uu4jB5zFPNHOuSjGETGKj9Y3S3bGtOnC59EM 7J3/aXCJp0Pfn27SfSItooL4cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChrX+BI uUIrbFc9udK4tkswB4zkMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsWQzAtXV0AyBfv4vPI5F13quCJMlAxBqfOzTNXR0Ih9S+kOMX7MS1 gJIFWwO5Lz7+03NY12+qGarmEZDcfnzpmrbtSY9W/4mQ+fyEclwfVxh2FjF1b087 uriEAxNvjdjZ3+DNG0OD5G6Y5LhTbYRZILDnFZg7dEnLYHzp+naqWYLktMPbRUVP CiBgfcGgGnN4axnbqsVMOg6A0Jr73H+t3C/kSUzUJpimCDuHwyxfpTG3ghywau1J NYsbnZ7NaKPCnU/MFhoSHHXj9RDQaAC7i9wrL7egWeFwCOVu2VYkALMrR3B+NZ8q tIRJ67bC7rkgKAJIayr+ARXuarSgpIsT -----END CERTIFICATE-----Generated at Sun Jul 20 07:44:01 2025 by rpki-client