$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft File: Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft (raw, json) Hash identifier: ++dGHQJo5+7iwMgoQaQfnlR1TJbxi+nrykohD6nE0BI= Subject key identifier: BE:16:59:0D:2E:6F:9D:A4:75:95:D9:2E:C4:B1:8A:C2:EB:68:AF:16 Authority key identifier: 53:0D:29:AD:C0:FB:1C:F2:83:7D:39:BB:86:34:34:86:C1:C7:16:82 Certificate issuer: /CN=A91F3AF8/serialNumber=530D29ADC0FB1CF2837D39BB86343486C1C71682 Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft Manifest number: 07C6 Signing time: Tue 22 Jul 2025 21:26:16 +0000 Manifest this update: Tue 22 Jul 2025 21:26:16 +0000 Manifest next update: Tue 29 Jul 2025 21:26:16 +0000 Files and hashes: 1: Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl (hash: HQkQrvyoR5uZm7+LxzjqX15TWm21INNG2/Vpd6aS+dM=) 2: 3791632A030011EB909C3244C4F9AE02.roa (hash: dB3zmsBTd89CRpUWBbCoSsuPQSrK3XC84t7uk9x1cA8=) 3: CC08667A7A6011EB9BC9937BC4F9AE02.roa (hash: Z/3rZQtnqfOwNEnHVO1+ydXZ5JjAuPVHRMvibrG3oIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 21:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3AF8, serialNumber=530D29ADC0FB1CF2837D39BB86343486C1C71682 Validity Not Before: Jul 22 21:26:16 2025 GMT Not After : Jul 29 21:26:16 2025 GMT Subject: CN=688001f8-32e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d4:c5:a3:da:aa:66:67:df:22:9c:db:e7:8e: b7:91:da:8b:30:39:c9:e1:7d:70:af:be:1e:ba:2e: 46:74:13:f8:83:56:e9:2d:7f:1b:8d:d2:7c:08:30: e2:f1:e5:f0:11:af:6a:40:d6:ff:6e:0a:ea:4a:90: 65:f0:92:c8:71:0e:f3:ec:44:df:a6:e2:b7:39:c9: ce:cc:76:dd:29:3f:66:c5:03:55:c0:71:07:c7:79: 77:80:54:b8:ae:a4:d9:ea:01:6a:0a:ca:5f:a6:00: 01:ae:44:35:f6:a6:71:a7:f8:09:24:17:c8:fe:da: 64:c0:62:06:e5:c4:60:86:c0:d5:c9:96:10:90:95: f4:34:27:65:b8:74:51:f5:a4:c4:fc:1d:ba:42:5b: ba:19:0b:50:d9:0e:03:00:e1:eb:a0:b7:1a:4d:a6: d2:c6:38:f7:a4:58:0f:e4:cd:0d:a5:d3:b8:7a:bd: 33:36:14:d4:5b:91:2e:a8:03:a0:15:32:3c:2f:a0: b6:b7:7a:71:a1:ff:b9:9a:e3:68:ff:6a:04:4f:1d: 68:2a:f7:41:da:bb:0a:46:7e:c8:fc:23:2d:9c:57: bb:11:bc:8c:a9:63:96:2b:d2:e8:91:76:f4:8c:c5: 55:04:9e:e5:e6:de:58:f7:3e:b5:96:95:ab:26:1e: e1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:16:59:0D:2E:6F:9D:A4:75:95:D9:2E:C4:B1:8A:C2:EB:68:AF:16 X509v3 Authority Key Identifier: keyid:53:0D:29:AD:C0:FB:1C:F2:83:7D:39:BB:86:34:34:86:C1:C7:16:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:03:27:af:06:e6:85:a5:b4:df:56:3b:82:d6:23:b6:6b:4e: c2:c0:46:72:10:94:41:fd:0a:dd:55:b7:0b:43:fa:d6:0e:0c: bd:db:04:d7:9a:ee:58:af:1d:52:e4:93:95:36:a1:33:89:7a: 45:ba:e0:b4:7f:60:db:39:71:e4:db:58:31:f5:c6:68:47:a6: 25:fb:f0:2f:6b:02:9f:82:0f:ca:f1:d1:d3:fb:a6:41:d6:fc: a5:69:89:71:85:f4:23:b1:07:33:67:d4:f5:ec:d9:60:b8:c5: 22:9e:fb:8e:8b:1c:cf:df:f9:31:66:de:b5:36:d1:29:87:4e: dc:4f:17:ff:5d:54:3f:04:9b:34:fc:44:f7:1a:03:60:5e:2b: 63:94:ab:63:84:8a:de:61:ed:82:43:f9:9f:a3:e5:f4:aa:ea: 00:99:b0:26:9d:77:e2:31:38:63:f4:97:fe:77:ee:e1:df:1a: 4d:67:4f:b8:e0:31:13:0f:87:6a:c4:9c:2a:b6:66:79:31:09: 15:a1:9b:b0:ad:11:d2:50:8b:d2:66:cc:67:be:3c:3f:b4:f7: 0a:f8:bb:8a:a9:ec:7c:b9:b9:bb:b2:3f:41:df:db:17:d6:dd: b0:f6:34:4d:3d:00:69:b0:5e:05:57:06:b3:0f:c2:2c:a8:3b: 6e:01:c1:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNBRjgxMTAvBgNVBAUTKDUzMEQyOUFEQzBGQjFDRjI4MzdEMzlCQjg2MzQzNDg2 QzFDNzE2ODIwHhcNMjUwNzIyMjEyNjE2WhcNMjUwNzI5MjEyNjE2WjAYMRYwFAYD VQQDEw02ODgwMDFmOC0zMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdTFo9qqZmffIpzb5463kdqLMDnJ4X1wr74eui5GdBP4g1bpLX8bjdJ8CDDi 8eXwEa9qQNb/bgrqSpBl8JLIcQ7z7ETfpuK3OcnOzHbdKT9mxQNVwHEHx3l3gFS4 rqTZ6gFqCspfpgABrkQ19qZxp/gJJBfI/tpkwGIG5cRghsDVyZYQkJX0NCdluHRR 9aTE/B26Qlu6GQtQ2Q4DAOHroLcaTabSxjj3pFgP5M0NpdO4er0zNhTUW5EuqAOg FTI8L6C2t3pxof+5muNo/2oETx1oKvdB2rsKRn7I/CMtnFe7EbyMqWOWK9LokXb0 jMVVBJ7l5t5Y9z61lpWrJh7hnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4WWQ0u b52kdZXZLsSxisLraK8WMB8GA1UdIwQYMBaAFFMNKa3A+xzyg305u4Y0NIbBxxaC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0FGOC80ODI5N0ZFRTAy RkUxMUVCQjcwNjY0M0VDNEY5QUUwMi9VdzBwcmNEN0hQS0RmVG03aGpRMGhzSEhG b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V3MHByY0Q3SFBLRGZUbTdoalEwaHNISEZvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0FGOC80ODI5N0ZFRTAyRkUxMUVCQjcwNjY0M0VDNEY5QUUwMi9VdzBwcmNEN0hQ S0RmVG03aGpRMGhzSEhGb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoAyevBuaFpbTfVjuC1iO2a07CwEZyEJRB/QrdVbcLQ/rWDgy92wTX mu5Yrx1S5JOVNqEziXpFuuC0f2DbOXHk21gx9cZoR6Yl+/AvawKfgg/K8dHT+6ZB 1vylaYlxhfQjsQczZ9T17NlguMUinvuOixzP3/kxZt61NtEph07cTxf/XVQ/BJs0 /ET3GgNgXitjlKtjhIreYe2CQ/mfo+X0quoAmbAmnXfiMThj9Jf+d+7h3xpNZ0+4 4DETD4dqxJwqtmZ5MQkVoZuwrRHSUIvSZsxnvjw/tPcK+LuKqex8ubm7sj9B39sX 1t2w9jRNPQBpsF4FVwazD8IsqDtuAcEv -----END CERTIFICATE-----Generated at Thu Jul 24 13:14:45 2025 by rpki-client