$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: PnzvKu73a3rgtyrxBh/71T0rney6S5w0n1OR+EctBXc= Subject key identifier: 04:57:52:F1:7E:F2:09:01:52:EF:D4:F9:A6:42:F6:B3:8A:92:0C:69 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 04C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04B0 Signing time: Mon 21 Jul 2025 00:13:02 +0000 Manifest this update: Mon 21 Jul 2025 00:13:01 +0000 Manifest next update: Mon 28 Jul 2025 00:13:01 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: iabzgyuU/HKHRZFxi/pZa7NBKxxx/UO8VthrCv+Ogus=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1225 (0x4c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Jul 21 00:13:01 2025 GMT Not After : Jul 28 00:13:01 2025 GMT Subject: CN=687d860e-c066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:63:b9:c2:f5:55:66:f6:49:25:96:1c:fe:92: bd:fe:1b:91:6f:40:34:17:ee:a8:ca:a8:78:70:75: fb:c9:82:23:ec:a9:72:64:53:f3:7a:84:f8:1f:c9: d6:9e:2a:e7:b3:d1:51:3b:14:dd:35:b2:aa:77:87: 85:99:00:17:9b:2f:07:46:34:7e:fe:12:ee:b8:4f: 04:40:c1:3c:9e:69:5a:d9:e6:8f:50:f6:99:06:99: 35:31:24:d7:99:21:f2:e6:07:57:6e:c7:4e:16:79: e6:ed:f3:5a:5b:57:3e:91:7b:4e:60:f3:15:c5:12: ae:65:ff:18:23:d0:47:31:4c:3f:53:ee:ef:f5:6d: 1b:7e:5e:00:7f:8e:fe:e0:a8:24:62:10:16:97:eb: 02:1b:f4:c8:cd:9c:bd:ed:f2:b7:bb:0a:c6:78:13: d3:bf:cf:68:13:4e:65:17:e6:6f:cd:58:ac:dc:fe: 95:c8:0f:62:e1:6d:a2:1b:7d:22:e3:c1:09:37:a4: fd:a8:6d:b5:ac:53:d9:c1:db:f2:99:3c:35:93:b3: c7:b0:f6:69:38:ac:25:34:00:9c:f7:c0:f9:41:54: a3:bd:91:a1:c7:80:5b:19:23:f3:ba:45:6d:4e:a1: 08:fc:21:1e:07:d4:ff:7c:f6:b4:2b:45:66:65:7e: 20:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:57:52:F1:7E:F2:09:01:52:EF:D4:F9:A6:42:F6:B3:8A:92:0C:69 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:8c:42:f6:be:42:99:bf:10:6b:9b:95:52:1b:01:c4:3b:39: bf:77:1e:b9:a2:80:a0:37:65:66:b2:d5:85:42:4f:3b:c1:12: 24:98:05:6e:30:83:a0:40:0d:49:94:f5:ce:17:f0:8d:ee:1b: db:87:02:30:80:d9:38:38:c9:d8:62:61:ba:21:80:d2:98:61: 7f:32:62:d2:dd:25:0c:16:7f:1d:e5:14:a9:f1:3c:fe:9e:01: a2:16:01:8f:3f:1f:fd:55:40:a9:ff:fa:cc:26:ba:58:9f:c2: 5b:fa:84:eb:ca:ce:43:c2:3e:2e:fa:d8:b2:b0:f0:3f:08:c0: 5a:65:8f:de:81:b9:e9:69:f9:21:7e:9f:9e:8e:bd:0b:15:14: a2:eb:a3:61:13:3b:21:8b:12:8e:2f:5d:64:d2:cf:7a:be:7f: b9:8c:89:93:f8:b8:38:10:8c:32:fd:27:42:cf:68:21:cd:23: 14:52:21:4d:d8:47:c4:36:9c:8e:7d:04:f3:19:e5:29:af:dc: e6:b6:3b:a6:ab:fb:ef:35:61:ff:25:3c:0e:f0:5d:55:59:2c: 1b:af:d2:9f:00:b9:7b:bf:34:8b:4b:bc:cc:c6:4e:c6:b9:cc: f9:63:57:5b:2a:d3:3d:08:ae:3c:6d:fe:6a:f9:49:4c:81:c7: 2b:92:59:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUwNzIxMDAxMzAxWhcNMjUwNzI4MDAxMzAxWjAYMRYwFAYD VQQDEw02ODdkODYwZS1jMDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWO5wvVVZvZJJZYc/pK9/huRb0A0F+6oyqh4cHX7yYIj7KlyZFPzeoT4H8nW nirns9FROxTdNbKqd4eFmQAXmy8HRjR+/hLuuE8EQME8nmla2eaPUPaZBpk1MSTX mSHy5gdXbsdOFnnm7fNaW1c+kXtOYPMVxRKuZf8YI9BHMUw/U+7v9W0bfl4Af47+ 4KgkYhAWl+sCG/TIzZy97fK3uwrGeBPTv89oE05lF+ZvzVis3P6VyA9i4W2iG30i 48EJN6T9qG21rFPZwdvymTw1k7PHsPZpOKwlNACc98D5QVSjvZGhx4BbGSPzukVt TqEI/CEeB9T/fPa0K0VmZX4gtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARXUvF+ 8gkBUu/U+aZC9rOKkgxpMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLjEL2vkKZvxBrm5VSGwHEOzm/dx65ooCgN2VmstWFQk87wRIkmAVu MIOgQA1JlPXOF/CN7hvbhwIwgNk4OMnYYmG6IYDSmGF/MmLS3SUMFn8d5RSp8Tz+ ngGiFgGPPx/9VUCp//rMJrpYn8Jb+oTrys5Dwj4u+tiysPA/CMBaZY/egbnpafkh fp+ejr0LFRSi66NhEzshixKOL11k0s96vn+5jImT+Lg4EIwy/SdCz2ghzSMUUiFN 2EfENpyOfQTzGeUpr9zmtjumq/vvNWH/JTwO8F1VWSwbr9KfALl7vzSLS7zMxk7G ucz5Y1dbKtM9CK48bf5q+UlMgccrklnl -----END CERTIFICATE-----Generated at Mon Jul 21 12:28:10 2025 by rpki-client