$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: v1BOZdrL+SS6ZaEf3FQhNmbsBOT2fKipDkESNgQEynw= Subject key identifier: FD:4F:F7:A2:1D:95:E1:0F:B3:5D:3A:B2:DB:CE:49:AC:EB:FD:25:6F Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01F1 Signing time: Wed 17 Sep 2025 03:08:24 +0000 Manifest this update: Wed 17 Sep 2025 03:08:23 +0000 Manifest next update: Wed 24 Sep 2025 03:08:23 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: kUJdUYmqBC5Q0i23tMgdO05HnG7Z+/GPQETMwKClqP4=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Sep 17 03:08:23 2025 GMT Not After : Sep 24 03:08:23 2025 GMT Subject: CN=68ca2628-5cb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f5:74:39:cf:a0:d1:c1:4e:bd:d8:ba:2d:45: 2a:da:a9:26:47:fe:48:b4:0d:12:be:e5:84:7f:ec: fb:ac:e9:79:fa:c5:a8:0b:3d:b3:78:4b:89:bd:52: ca:a2:a7:cc:f5:22:82:e2:b7:43:fb:bd:7d:00:4a: 3b:59:c5:62:14:4e:51:ec:bd:91:17:4d:22:b3:4a: cb:ad:53:fa:0c:46:50:3b:58:67:0f:d3:ba:02:1b: 33:e0:fb:70:78:cf:df:3f:b4:eb:0a:32:2c:27:e0: 71:22:81:96:7b:20:a6:04:0f:14:fa:68:d4:e7:f2: 9a:1a:1a:5f:61:e5:9c:9b:5b:df:69:e7:ff:c0:a6: 32:12:ef:58:bf:e6:9c:0c:d3:ea:64:1a:70:23:83: 95:be:a6:7e:16:89:a2:b0:ff:02:4b:db:de:50:9a: db:2a:b3:dd:d2:40:58:b1:c2:55:3b:0c:7d:0d:f1: 97:46:de:1e:ad:21:97:81:1a:17:95:74:a4:3d:36: bb:11:70:0e:69:cf:ce:14:df:51:90:87:4e:2e:af: 6c:38:9b:1a:c1:bd:7c:05:e8:61:cb:e1:4c:a5:90: 33:8d:bd:09:23:55:00:11:72:df:ff:18:fd:03:b5: 8d:8d:30:83:a1:24:d7:db:ff:2d:2e:1d:89:ed:24: 5d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4F:F7:A2:1D:95:E1:0F:B3:5D:3A:B2:DB:CE:49:AC:EB:FD:25:6F X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:dd:ed:1f:98:69:1f:e9:7c:e7:44:e4:9e:b4:64:55:82:b0: ea:39:ed:17:70:c0:5f:17:e0:95:a0:c7:ff:72:f8:c3:15:ef: ac:b7:ad:6f:60:0d:07:e7:d4:ad:54:06:d9:06:a2:42:af:1c: 41:f3:b4:08:0c:91:67:26:f0:6d:59:dd:a3:c9:f5:74:1f:80: 6e:95:19:2d:72:ea:cf:c9:d5:c3:bd:27:ad:f4:57:10:09:6a: fd:03:7b:7e:ca:7d:f2:9e:69:6b:24:b2:f5:a2:ae:91:2c:a0: aa:58:64:45:b3:24:c5:71:79:b1:9c:2d:30:de:36:99:1a:d6: 60:08:5c:d1:83:39:92:10:7a:40:ae:1a:d8:3b:ec:d2:2c:c1: e3:6c:b4:d1:b0:40:dd:31:be:f9:09:1a:01:dc:c7:7f:a4:81: 59:7e:b3:24:b6:f1:f3:70:92:8d:65:45:f5:e8:1a:25:f4:fa: 3e:be:fe:0a:89:fa:15:2d:b4:72:07:f1:75:bb:55:36:52:06: ee:8d:51:65:99:3e:22:18:cf:9c:d2:d6:5f:81:db:78:fd:03: 27:5a:d2:9a:ae:88:9f:33:ae:de:3c:39:ce:2a:81:7f:10:ec: 79:46:e8:c5:8c:f3:3c:c1:f2:51:56:6a:df:c0:be:8e:6b:9a: 65:30:ce:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwOTE3MDMwODIzWhcNMjUwOTI0MDMwODIzWjAYMRYwFAYD VQQDEw02OGNhMjYyOC01Y2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3fV0Oc+g0cFOvdi6LUUq2qkmR/5ItA0SvuWEf+z7rOl5+sWoCz2zeEuJvVLK oqfM9SKC4rdD+719AEo7WcViFE5R7L2RF00is0rLrVP6DEZQO1hnD9O6Ahsz4Ptw eM/fP7TrCjIsJ+BxIoGWeyCmBA8U+mjU5/KaGhpfYeWcm1vfaef/wKYyEu9Yv+ac DNPqZBpwI4OVvqZ+FomisP8CS9veUJrbKrPd0kBYscJVOwx9DfGXRt4erSGXgRoX lXSkPTa7EXAOac/OFN9RkIdOLq9sOJsawb18Behhy+FMpZAzjb0JI1UAEXLf/xj9 A7WNjTCDoSTX2/8tLh2J7SRd2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1P96Id leEPs106stvOSazr/SVvMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp3e0fmGkf6XznROSetGRVgrDqOe0XcMBfF+CVoMf/cvjDFe+st61v YA0H59StVAbZBqJCrxxB87QIDJFnJvBtWd2jyfV0H4BulRktcurPydXDvSet9FcQ CWr9A3t+yn3ynmlrJLL1oq6RLKCqWGRFsyTFcXmxnC0w3jaZGtZgCFzRgzmSEHpA rhrYO+zSLMHjbLTRsEDdMb75CRoB3Md/pIFZfrMktvHzcJKNZUX16Bol9Po+vv4K ifoVLbRyB/F1u1U2UgbujVFlmT4iGM+c0tZfgdt4/QMnWtKaroifM67ePDnOKoF/ EOx5RujFjPM8wfJRVmrfwL6Oa5plMM41 -----END CERTIFICATE-----Generated at Wed Sep 17 15:10:31 2025 by rpki-client