$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: K0lbrlEY+phZx/DUs9XBHTsOymrqiNEnSLViECYaI8o= Subject key identifier: FC:A2:86:1E:57:92:27:8A:1C:11:1B:CB:DD:E5:67:46:7B:02:7E:B8 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 357A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 34FE Signing time: Fri 18 Jul 2025 14:24:56 +0000 Manifest this update: Fri 18 Jul 2025 14:24:55 +0000 Manifest next update: Fri 25 Jul 2025 14:24:55 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: XT5jk5WJIJb38VDLwziRTwHLKF7yW7O+nGQP+sk9XQQ=) 2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: KKCg2NooRoQGuF3KYpzz51c9C/45UUPObnLo2e5njhU=) 3: D0886954188811EC8E86754FC4F9AE02.roa (hash: yPv2xJqSMbxdqO3CUxzFvtSmE89AHilhOo/061TH8FU=) 4: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: nfNjfg1IXDDhMM0k16fT6xDTUZvLHRQ/C+xvVXQFUFE=) 5: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: iSQxLeiRN1fYoIns2yWqQhKW9w0d7Bh4Hi7g+FcoiAo=) 6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: GOobL3IcAmOzxEXI8Av9eECmrglVLT+e8Yk36aU9ns8=) 7: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: ZaxlSh3XWBv2fOJrVopMAyhJjHEvnP8TGG96c6iuXcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13690 (0x357a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Jul 18 14:24:55 2025 GMT Not After : Jul 25 14:24:55 2025 GMT Subject: CN=687a5938-99ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:30:d6:b8:e2:f2:71:ff:31:9e:a1:0e:21:ea: 6f:b2:b8:a4:42:9d:e1:92:c5:93:76:9c:6f:34:5b: d8:87:87:0b:b6:6e:48:87:76:f0:60:96:d6:a4:e3: c9:32:ea:e3:79:ea:dc:9a:9c:4b:44:81:01:ca:38: ee:3c:08:07:46:93:48:72:1d:b4:b4:cc:07:5f:17: a1:0f:ed:2f:2b:0a:b8:f9:ec:e9:bd:ca:68:a8:71: 5e:4f:e8:de:1e:6e:cf:3a:22:fb:53:8e:62:81:64: d9:f1:7d:d9:f8:55:37:f1:86:05:50:15:e5:df:21: 3d:55:5f:03:24:10:23:8e:2f:e4:c9:7e:e8:04:a6: a2:69:f9:2f:39:80:4a:58:58:18:6d:de:20:d3:9a: b7:ac:ca:ac:3c:13:e4:04:69:c4:4c:94:11:9d:80: 20:70:85:45:6f:03:5a:fa:f4:da:38:08:fc:a5:de: b1:9e:2d:bc:70:1f:b5:4c:0d:f3:ad:82:8a:cf:91: 77:c2:72:86:c6:c9:13:a3:14:24:e7:bd:fb:f1:59: 89:e2:20:3d:32:4d:15:a9:d5:89:7b:9b:ff:7c:55: 96:37:78:a9:53:60:ed:44:ad:4d:5c:6f:34:4b:59: 0a:35:0b:69:97:10:4a:b9:dc:9b:23:36:b9:b2:d8: cc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A2:86:1E:57:92:27:8A:1C:11:1B:CB:DD:E5:67:46:7B:02:7E:B8 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d4:39:16:4e:9b:62:0e:40:95:d3:59:4e:98:15:3e:5c:6a: ad:62:95:46:96:4f:b8:2b:5c:37:98:1d:1a:67:83:08:0a:ee: 09:ad:ff:b2:b9:a9:b1:5b:42:73:3e:78:32:57:dc:57:fb:ee: 4f:d0:58:69:6a:33:1d:7a:25:70:aa:4f:08:b5:fa:c7:3b:d1: 36:50:ff:8c:77:b3:30:aa:4a:24:b9:88:9f:9d:42:1f:16:de: b0:35:70:c5:4f:30:a1:d2:24:60:11:ca:de:f4:49:5f:59:15: 59:47:68:32:7e:a9:40:3e:a0:96:8e:21:10:70:61:44:20:f6: 56:ce:91:f4:45:a5:70:a2:c5:f0:10:c4:f5:33:01:86:27:80: 78:01:4f:6b:2e:8a:0c:f6:35:0f:50:e2:f2:19:21:4e:4f:59: 5c:f8:05:96:c0:a9:62:eb:fd:2a:f3:73:23:b1:6a:a7:96:ec: 7d:22:e9:38:a2:e0:33:0b:ef:c3:29:70:c4:05:23:65:c1:66: f2:fe:47:a5:15:3e:e8:00:10:86:61:66:10:c7:56:d4:be:ce: 02:c0:b7:02:37:ac:8d:87:48:34:2a:ec:70:fd:89:d9:da:1a: 0f:f8:9c:33:32:90:6d:f6:8b:e8:57:0f:ef:33:36:4c:61:b5: 09:01:5e:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUwNzE4MTQyNDU1WhcNMjUwNzI1MTQyNDU1WjAYMRYwFAYD VQQDEw02ODdhNTkzOC05OWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6TDWuOLycf8xnqEOIepvsrikQp3hksWTdpxvNFvYh4cLtm5Ih3bwYJbWpOPJ MurjeercmpxLRIEByjjuPAgHRpNIch20tMwHXxehD+0vKwq4+ezpvcpoqHFeT+je Hm7POiL7U45igWTZ8X3Z+FU38YYFUBXl3yE9VV8DJBAjji/kyX7oBKaiafkvOYBK WFgYbd4g05q3rMqsPBPkBGnETJQRnYAgcIVFbwNa+vTaOAj8pd6xni28cB+1TA3z rYKKz5F3wnKGxskToxQk57378VmJ4iA9Mk0VqdWJe5v/fFWWN3ipU2DtRK1NXG80 S1kKNQtplxBKudybIza5stjMLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyihh5X kieKHBEby93lZ0Z7An64MB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG1DkWTptiDkCV01lOmBU+XGqtYpVGlk+4K1w3mB0aZ4MICu4Jrf+y uamxW0JzPngyV9xX++5P0FhpajMdeiVwqk8ItfrHO9E2UP+Md7MwqkokuYifnUIf Ft6wNXDFTzCh0iRgEcre9ElfWRVZR2gyfqlAPqCWjiEQcGFEIPZWzpH0RaVwosXw EMT1MwGGJ4B4AU9rLooM9jUPUOLyGSFOT1lc+AWWwKli6/0q83MjsWqnlux9Iuk4 ouAzC+/DKXDEBSNlwWby/kelFT7oABCGYWYQx1bUvs4CwLcCN6yNh0g0Kuxw/YnZ 2hoP+JwzMpBt9ovoVw/vMzZMYbUJAV67 -----END CERTIFICATE-----Generated at Sun Jul 20 06:19:40 2025 by rpki-client