$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: bmMiH334WTDtSSDd1X4n7xcCXbR0tgC+os2QBt6e/lw= Subject key identifier: CC:2E:EB:B6:82:BD:72:F6:16:98:14:CA:37:99:DD:23:86:CC:40:83 Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 093E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 091A Signing time: Tue 22 Jul 2025 20:37:58 +0000 Manifest this update: Tue 22 Jul 2025 20:37:58 +0000 Manifest next update: Tue 29 Jul 2025 20:37:58 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: dgwi9VOJeALKU6sojN1625CEdm+hA7bzj68ZDULxHCA=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 20:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2366 (0x93e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Jul 22 20:37:58 2025 GMT Not After : Jul 29 20:37:58 2025 GMT Subject: CN=687ff6a6-c9cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b0:62:d3:b1:2e:31:52:02:c1:a4:29:36:a5: d9:86:a9:8f:56:cd:b7:3f:7e:cb:ec:85:eb:69:b7: 39:43:7f:4d:62:f8:bd:53:50:a3:7d:24:09:f4:7b: 1c:99:fc:fa:b7:ee:44:0f:03:3e:67:ab:3a:db:f8: 8a:67:8e:0f:0b:b9:0d:64:dc:38:ea:8d:42:10:51: 52:db:c9:63:d8:51:0f:19:3a:52:d5:34:e8:b6:7f: 75:dd:c5:c3:2a:90:ff:6c:31:4b:ba:28:c5:cc:ce: 5f:d6:2f:04:ec:11:bb:4f:6e:bc:01:df:22:b6:0a: 93:27:fb:20:aa:74:ab:b4:43:27:8d:26:8f:c5:85: e9:35:6e:c4:af:88:f3:f6:62:2d:77:8a:02:fa:a4: 36:07:00:e2:79:08:1f:8c:6a:be:2c:b9:62:66:f5: 8e:f5:4e:f0:d4:bf:26:cb:64:66:9e:d5:99:26:6d: 7d:5e:76:0d:4d:8b:0a:72:b3:80:eb:b7:58:8e:9b: 95:1e:2f:ab:9b:8c:61:1c:41:79:b7:6d:cb:0d:34: 63:b5:5d:a5:d0:66:4f:f8:f2:02:7c:7d:99:4f:75: 2b:e1:2f:70:62:f8:df:1a:da:d4:5e:7c:dc:83:43: 66:08:85:f7:ad:75:3f:3c:12:cd:4c:6a:dc:25:34: 36:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2E:EB:B6:82:BD:72:F6:16:98:14:CA:37:99:DD:23:86:CC:40:83 X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:14:e0:22:e8:32:07:64:1d:b4:fc:4c:12:75:13:6e:6d:fa: 14:1a:15:50:54:a0:57:fc:85:be:2a:b7:f7:d8:c3:d3:4f:6d: 3f:47:63:3c:3b:8d:8f:ef:71:69:b7:0d:6e:53:b8:b9:b9:51: 20:ec:46:52:4f:84:3e:ab:f7:b7:d4:b6:6c:66:6d:7e:05:9c: a9:0c:94:e4:86:09:45:39:4e:62:ec:6c:d1:67:3c:e1:bf:9f: 55:88:8e:1e:ae:fe:cd:e2:c7:d3:93:ac:69:b7:c1:f3:a0:38: 4e:c2:ec:8e:9c:46:6f:f5:3d:81:93:ce:b8:1d:d4:f2:e1:f1: 1e:17:85:44:03:dc:7e:19:ea:9d:17:76:6d:7c:d5:d7:ec:80: a8:7f:47:9c:7e:05:bc:b3:03:c7:92:ae:17:22:63:71:6b:85: 79:bc:cc:dc:b8:26:4f:51:8a:24:d0:cd:5f:7e:de:b4:ff:31: 87:94:41:29:e4:9b:95:4a:0e:06:c6:e6:62:1b:e2:6a:51:a0: 09:60:a9:54:ea:93:29:37:4b:49:7b:35:8e:f1:ad:79:d1:00: 2d:31:e6:50:a9:94:fa:49:6d:8d:e6:10:dc:6e:0a:93:d0:7b: 57:a2:07:08:f3:fe:06:7a:68:b6:72:e9:4b:9c:85:c1:84:00: 2c:aa:f5:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwNzIyMjAzNzU4WhcNMjUwNzI5MjAzNzU4WjAYMRYwFAYD VQQDEw02ODdmZjZhNi1jOWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLBi07EuMVICwaQpNqXZhqmPVs23P37L7IXrabc5Q39NYvi9U1CjfSQJ9Hsc mfz6t+5EDwM+Z6s62/iKZ44PC7kNZNw46o1CEFFS28lj2FEPGTpS1TTotn913cXD KpD/bDFLuijFzM5f1i8E7BG7T268Ad8itgqTJ/sgqnSrtEMnjSaPxYXpNW7Er4jz 9mItd4oC+qQ2BwDieQgfjGq+LLliZvWO9U7w1L8my2RmntWZJm19XnYNTYsKcrOA 67dYjpuVHi+rm4xhHEF5t23LDTRjtV2l0GZP+PICfH2ZT3Ur4S9wYvjfGtrUXnzc g0NmCIX3rXU/PBLNTGrcJTQ2WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwu67aC vXL2FpgUyjeZ3SOGzECDMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiFOAi6DIHZB20/EwSdRNubfoUGhVQVKBX/IW+Krf32MPTT20/R2M8 O42P73Fptw1uU7i5uVEg7EZST4Q+q/e31LZsZm1+BZypDJTkhglFOU5i7GzRZzzh v59ViI4erv7N4sfTk6xpt8HzoDhOwuyOnEZv9T2Bk864HdTy4fEeF4VEA9x+Geqd F3ZtfNXX7ICof0ecfgW8swPHkq4XImNxa4V5vMzcuCZPUYok0M1fft60/zGHlEEp 5JuVSg4GxuZiG+JqUaAJYKlU6pMpN0tJezWO8a150QAtMeZQqZT6SW2N5hDcbgqT 0HtXogcI8/4Gemi2culLnIXBhAAsqvU7 -----END CERTIFICATE-----Generated at Thu Jul 24 08:32:43 2025 by rpki-client