$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft File: u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft (raw, json) Hash identifier: TlOtLmC2cbntWJg0u2nWFcg1obldCeRwTR+EPX5VdME= Subject key identifier: 53:3C:C4:4C:31:A7:55:6B:B3:2B:9C:4E:2E:61:BE:D0:60:29:00:54 Authority key identifier: BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 Certificate issuer: /CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Certificate serial: 06AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft Manifest number: 06AA Signing time: Sun 20 Jul 2025 22:16:54 +0000 Manifest this update: Sun 20 Jul 2025 22:16:54 +0000 Manifest next update: Sun 27 Jul 2025 22:16:54 +0000 Files and hashes: 1: u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl (hash: +xR4iWxKIRBZ1YzSOVCrSnr31B6htQVl2WKDloKaH4A=) 2: 58B04DD46F3C11EB924C4E2AC4F9AE02.roa (hash: hT6PiTq4VuebMVKql1Edg2h7UOqDcrvg8gjAvmzNu5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3E3, serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Validity Not Before: Jul 20 22:16:54 2025 GMT Not After : Jul 27 22:16:54 2025 GMT Subject: CN=687d6ad6-cc26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:67:f4:17:0b:39:80:e9:77:31:ed:c7:a6:fb: 96:30:08:9d:a5:7e:2f:a4:e0:ec:38:0b:73:f2:bb: b6:e9:dd:24:b9:ee:bb:95:22:b0:7f:06:c5:5b:58: f2:e9:dc:1b:0a:2a:ef:39:c5:a5:74:c5:99:dd:55: 89:cb:07:b5:64:f1:07:29:7a:1b:1c:74:04:53:8a: c6:00:a1:ea:f7:95:7b:e5:12:5f:e2:05:d2:98:64: 11:e1:27:49:ba:b6:50:08:73:8c:49:44:07:db:18: dd:19:c0:43:bf:bb:1c:60:ba:d2:18:67:b8:a5:c1: 40:c5:03:33:87:cc:d1:cc:fc:73:29:a9:41:34:d1: 67:ee:8b:aa:1d:fa:ff:8a:bc:fb:2e:b7:3d:22:45: 05:68:73:c6:2e:0a:3d:0d:b4:67:ed:d9:ac:46:a2: fe:6c:f7:ef:59:95:9c:e0:1e:dd:b5:5f:e4:16:31: ba:6f:14:12:21:44:30:ab:f0:29:5f:2e:90:99:33: c5:cb:01:7b:ca:45:2b:bf:03:79:e1:38:8a:c7:a3: 5b:f6:b4:7b:12:a3:58:7b:3d:c7:58:49:2a:19:99: 61:df:a2:15:d7:17:94:1f:2d:2a:0a:48:96:da:6f: a4:12:8c:63:1e:09:ba:52:ff:80:60:71:03:07:94: 68:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3C:C4:4C:31:A7:55:6B:B3:2B:9C:4E:2E:61:BE:D0:60:29:00:54 X509v3 Authority Key Identifier: keyid:BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:60:3f:48:86:36:b2:be:9c:b2:85:87:0a:c5:fb:83:e1:6a: 3d:60:9d:ec:36:c5:9b:57:62:c8:c4:56:ad:82:b6:c5:69:60: ee:68:01:35:24:b5:b5:90:5c:c3:0e:2f:1d:9b:0a:61:94:0c: 2e:fc:3b:a5:81:e0:5f:d0:06:5a:16:c2:41:4f:88:6c:b6:8a: da:0c:fc:71:d5:e7:cf:0a:af:a2:eb:87:32:35:60:a3:5b:c7: b0:12:e3:7d:f0:d6:d8:0e:ec:e4:99:d4:88:33:0b:38:4e:5e: 3c:65:d0:a3:aa:c8:e1:7a:46:d6:2c:ff:c4:32:2f:55:ae:98: 86:45:be:20:f6:6b:bf:c4:31:3b:a4:42:66:93:ed:4c:9b:41: 21:b2:0a:de:39:75:7f:c1:7d:f5:6b:0d:9a:df:94:cd:fd:f7: 73:10:cf:77:28:eb:7e:2d:17:6b:74:83:f5:4c:4f:de:f4:ef: 8b:53:19:37:0e:a3:cc:78:47:9b:e6:39:0d:6c:d7:64:65:40: 50:90:19:8a:63:49:06:de:62:39:61:3a:22:d3:62:71:b4:7d: a4:56:e8:65:b0:10:3f:84:10:db:97:d8:29:23:1d:2a:3b:be: 9c:df:3b:91:79:be:67:82:29:57:71:f1:8e:8a:f5:96:12:52: 56:26:73:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRTMxMTAvBgNVBAUTKEJCQ0M3NjBBRkUzRTlGMEE5Qjg4QzhFQzdBNDlFRDdD REQwMzk2RjcwHhcNMjUwNzIwMjIxNjU0WhcNMjUwNzI3MjIxNjU0WjAYMRYwFAYD VQQDEw02ODdkNmFkNi1jYzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmf0Fws5gOl3Me3HpvuWMAidpX4vpODsOAtz8ru26d0kue67lSKwfwbFW1jy 6dwbCirvOcWldMWZ3VWJywe1ZPEHKXobHHQEU4rGAKHq95V75RJf4gXSmGQR4SdJ urZQCHOMSUQH2xjdGcBDv7scYLrSGGe4pcFAxQMzh8zRzPxzKalBNNFn7ouqHfr/ irz7Lrc9IkUFaHPGLgo9DbRn7dmsRqL+bPfvWZWc4B7dtV/kFjG6bxQSIUQwq/Ap Xy6QmTPFywF7ykUrvwN54TiKx6Nb9rR7EqNYez3HWEkqGZlh36IV1xeUHy0qCkiW 2m+kEoxjHgm6Uv+AYHEDB5RoHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFM8xEwx p1VrsyucTi5hvtBgKQBUMB8GA1UdIwQYMBaAFLvMdgr+Pp8Km4jI7HpJ7XzdA5b3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNFMy8wOEI4RDBEMjZG M0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53cWJpTWpzZWtudGZOMERs dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U4eDJDdjQtbndxYmlNanNla250Zk4wRGx2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNFMy8wOEI4RDBEMjZGM0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53 cWJpTWpzZWtudGZOMERsdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7YD9IhjayvpyyhYcKxfuD4Wo9YJ3sNsWbV2LIxFatgrbFaWDuaAE1 JLW1kFzDDi8dmwphlAwu/DulgeBf0AZaFsJBT4hstoraDPxx1efPCq+i64cyNWCj W8ewEuN98NbYDuzkmdSIMws4Tl48ZdCjqsjhekbWLP/EMi9VrpiGRb4g9mu/xDE7 pEJmk+1Mm0EhsgreOXV/wX31aw2a35TN/fdzEM93KOt+LRdrdIP1TE/e9O+LUxk3 DqPMeEeb5jkNbNdkZUBQkBmKY0kG3mI5YToi02JxtH2kVuhlsBA/hBDbl9gpIx0q O76c3zuReb5ngilXcfGOivWWElJWJnOL -----END CERTIFICATE-----Generated at Mon Jul 21 06:57:43 2025 by rpki-client