$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft File: U4JkLr15mg-ChtBlSCntdoQw-eQ.mft (raw, json) Hash identifier: M0+ewayFYBoGShPvYtI1inz22Cz4erdKuDAQb5uzFVs= Subject key identifier: 34:49:79:89:03:84:83:2C:F8:90:9A:61:EE:DB:08:B2:61:6C:E3:D0 Authority key identifier: 53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 Certificate issuer: /CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Certificate serial: 0E6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft Manifest number: 0E69 Signing time: Thu 24 Jul 2025 17:52:41 +0000 Manifest this update: Thu 24 Jul 2025 17:52:41 +0000 Manifest next update: Thu 31 Jul 2025 17:52:41 +0000 Files and hashes: 1: U4JkLr15mg-ChtBlSCntdoQw-eQ.crl (hash: nNp//Lsg+suESohIbdng5po/JYXHNig/KXDOPc7W0+Y=) 2: 350711FA881211EE9710F928C4F9AE02.roa (hash: /AJd6poS8Ng5rehLy7t+jOBIXVOshJArXBaFYmXY69Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 17:52:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3694 (0xe6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Validity Not Before: Jul 24 17:52:41 2025 GMT Not After : Jul 31 17:52:41 2025 GMT Subject: CN=688272e9-8826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b7:6b:ad:0f:4b:c5:2b:a4:58:08:d7:36:32: 50:84:63:a8:b2:59:8b:78:99:1a:a6:f1:60:92:c9: 35:9b:56:d5:6c:8c:4d:20:ea:6f:f9:cf:e3:d4:89: 4b:b8:52:16:0c:a7:e6:7e:63:cc:ba:90:ac:72:de: a7:d7:21:25:13:71:16:64:d0:c4:a4:a1:d6:78:88: ce:ba:1a:08:53:a0:f8:8a:81:2b:6a:38:bc:53:3b: d9:25:e6:71:e2:fb:9d:17:e4:aa:d6:1b:f2:b8:17: f5:26:ab:36:d9:b9:60:ee:93:73:e5:11:96:fa:fb: 13:25:2d:9a:54:80:2f:94:17:cc:3a:ce:89:70:3d: 8c:f6:04:8e:cd:af:d0:49:9f:22:b4:f8:34:f9:ea: 48:45:37:3a:0b:af:ea:11:77:b2:5f:56:11:3d:6f: d0:f2:6d:2a:4a:00:32:55:4f:03:0a:d3:9c:ae:49: 0c:32:37:75:22:05:ef:b6:d5:7b:47:89:3e:a1:52: aa:c1:26:7d:79:df:d9:f7:68:7d:e5:c0:5a:c2:4f: 36:46:c6:88:4c:cb:67:52:14:53:a3:ea:d5:b2:04: a8:44:5a:f9:e0:87:0d:1c:a7:d3:24:ef:fd:a7:f0: fb:7e:68:eb:78:9c:4e:58:70:c0:bc:16:a4:fb:cc: cd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:49:79:89:03:84:83:2C:F8:90:9A:61:EE:DB:08:B2:61:6C:E3:D0 X509v3 Authority Key Identifier: keyid:53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:67:40:00:df:a1:83:e1:e2:f6:a4:53:58:f0:52:42:4f:d5: b7:23:55:c6:8e:2a:1c:48:c8:db:8b:b6:93:fc:26:e4:d6:d8: b4:13:64:50:ad:de:2e:56:ac:ba:39:b1:11:1f:9e:3c:11:a4: ba:89:60:21:1c:06:6d:ab:73:79:75:6b:85:85:36:2f:96:2e: eb:ef:57:91:18:d5:f7:e3:53:af:26:8e:c4:d6:86:2c:35:65: 04:91:10:bd:0f:54:c3:c4:e0:b3:8b:e0:67:a8:fa:82:84:28: c5:51:09:f9:22:45:89:82:42:9d:84:a5:42:06:18:b6:8c:63: 2d:13:cb:bb:9b:d1:aa:33:67:3e:c7:79:2c:47:6f:ea:e9:14: 1e:66:95:00:bc:57:6c:89:25:a4:73:12:af:ef:c0:fb:c6:4b: ad:8d:7b:8b:bd:80:fa:1c:95:57:02:3d:53:a5:75:29:e4:0a: fe:47:33:52:4a:22:6c:27:80:1a:cc:fe:b0:d9:92:14:90:6b: a1:b9:16:a2:b8:2a:b6:b5:55:1a:00:16:69:b9:5f:6a:03:84: 3f:05:c5:12:f8:05:94:ea:c7:a7:b5:c7:22:3f:fb:f6:b7:40: 8f:e2:80:fd:cf:76:0e:60:bf:f1:a5:a9:d6:77:ff:f0:09:42: cf:53:1b:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDUzODI2NDJFQkQ3OTlBMEY4Mjg2RDA2NTQ4MjlFRDc2 ODQzMEY5RTQwHhcNMjUwNzI0MTc1MjQxWhcNMjUwNzMxMTc1MjQxWjAYMRYwFAYD VQQDEw02ODgyNzJlOS04ODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bdrrQ9LxSukWAjXNjJQhGOoslmLeJkapvFgksk1m1bVbIxNIOpv+c/j1IlL uFIWDKfmfmPMupCsct6n1yElE3EWZNDEpKHWeIjOuhoIU6D4ioEraji8UzvZJeZx 4vudF+Sq1hvyuBf1Jqs22blg7pNz5RGW+vsTJS2aVIAvlBfMOs6JcD2M9gSOza/Q SZ8itPg0+epIRTc6C6/qEXeyX1YRPW/Q8m0qSgAyVU8DCtOcrkkMMjd1IgXvttV7 R4k+oVKqwSZ9ed/Z92h95cBawk82RsaITMtnUhRTo+rVsgSoRFr54IcNHKfTJO/9 p/D7fmjreJxOWHDAvBak+8zNpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRJeYkD hIMs+JCaYe7bCLJhbOPQMB8GA1UdIwQYMBaAFFOCZC69eZoPgobQZUgp7XaEMPnk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yQ0Q0NUZCQTlF MjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1nLUNodEJsU0NudGRvUXct ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0SmtMcjE1bWctQ2h0QmxTQ250ZG9Rdy1lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yQ0Q0NUZCQTlFMjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1n LUNodEJsU0NudGRvUXctZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1Z0AA36GD4eL2pFNY8FJCT9W3I1XGjiocSMjbi7aT/Cbk1ti0E2RQ rd4uVqy6ObERH548EaS6iWAhHAZtq3N5dWuFhTYvli7r71eRGNX341OvJo7E1oYs NWUEkRC9D1TDxOCzi+BnqPqChCjFUQn5IkWJgkKdhKVCBhi2jGMtE8u7m9GqM2c+ x3ksR2/q6RQeZpUAvFdsiSWkcxKv78D7xkutjXuLvYD6HJVXAj1TpXUp5Ar+RzNS SiJsJ4AazP6w2ZIUkGuhuRaiuCq2tVUaABZpuV9qA4Q/BcUS+AWU6sentcciP/v2 t0CP4oD9z3YOYL/xpanWd//wCULPUxuj -----END CERTIFICATE-----Generated at Sat Jul 26 00:56:57 2025 by rpki-client