$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: Xhw6Ooob8DLaYVGb+Jx1VsBUfOtNjVRCRZBz9OylZfo= Subject key identifier: 1F:58:89:C6:F0:68:A7:83:EA:4D:3A:89:45:C5:85:F3:AD:A4:3A:0A Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 0156 Signing time: Wed 17 Sep 2025 04:44:55 +0000 Manifest this update: Wed 17 Sep 2025 04:44:55 +0000 Manifest next update: Wed 24 Sep 2025 04:44:55 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: XVfzoP9quz9fW8KxELdWyk334U3rFosSXFWzhpkmSpY=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:44:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Sep 17 04:44:55 2025 GMT Not After : Sep 24 04:44:55 2025 GMT Subject: CN=68ca3cc7-e5eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e4:66:86:d1:86:d0:b5:99:80:1e:19:a0:69: 50:6b:32:c5:1b:0b:b0:df:86:6a:5c:79:bc:0a:ce: 3a:ed:17:79:6b:ab:bb:cb:6b:aa:f0:20:cd:d3:3f: ae:35:bb:75:fc:57:e2:93:aa:36:d2:9b:e9:67:6c: 8c:13:2a:43:9a:05:2f:79:76:4f:d0:9d:34:fa:87: 88:92:2b:0f:2c:8e:ea:fa:65:3a:c1:4c:7c:4f:c0: 58:19:4f:ca:2e:f3:50:43:19:db:e7:32:0a:0f:bc: 03:4f:d2:3d:db:d4:60:1f:7a:8e:bc:cf:ce:f9:70: f1:b4:58:cf:14:06:c4:c6:2d:3b:77:f3:c4:05:bf: 7a:ab:a8:bc:96:38:f1:d4:34:96:4b:1d:80:6e:59: ed:01:86:5d:a2:e1:dd:41:66:ee:13:59:18:ca:ac: ac:bb:d1:ab:06:d9:d6:b8:87:7b:d5:97:0a:09:74: c7:2b:21:f8:ee:53:ee:fa:bb:08:0b:c6:de:e0:75: 61:99:52:a2:b6:47:35:4a:0e:a8:83:7a:9f:a2:52: df:45:8a:86:67:6c:0e:f1:34:d7:19:43:f0:0b:4e: c8:1f:5f:85:c1:62:7a:ac:d9:5c:ae:ca:08:bd:2e: 52:22:4f:8f:6b:81:ff:e6:1a:82:ed:de:20:46:be: 5a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:58:89:C6:F0:68:A7:83:EA:4D:3A:89:45:C5:85:F3:AD:A4:3A:0A X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:8b:5c:45:33:c8:0b:bb:aa:a5:43:80:eb:77:1d:9d:63:af: 7e:c3:e5:2c:99:91:b5:97:55:10:7f:42:89:cf:78:dc:08:39: 59:fe:2c:e3:1e:c3:7a:f2:78:6d:52:b3:25:ff:ad:d0:75:81: 8d:8c:19:16:de:b2:5c:c4:65:a3:43:57:60:ca:89:eb:41:cf: e2:3c:0c:ff:9b:8a:ca:19:cb:09:23:5d:19:bc:fb:8e:b9:b2: ec:3a:b2:4c:a6:05:b1:94:4d:64:68:a7:5d:86:b7:95:3e:a0: 93:45:0c:bb:2c:6d:88:e0:83:fd:5a:d8:b6:9f:cf:dc:56:73: fe:30:2b:16:5b:bb:a5:e7:17:52:40:7b:3c:5b:6d:52:0c:7b: 8e:d1:54:42:bc:e4:38:a1:d3:e5:77:17:72:cb:ab:ec:b2:ff: f0:f2:be:26:76:a2:37:40:92:3b:d5:3d:76:84:4a:65:07:c5: 44:ac:54:6a:9d:6c:1b:28:9b:ce:eb:98:f5:4f:e1:d1:5b:d6: 9e:79:5a:42:12:bf:10:13:18:a7:6c:f1:9d:34:2d:da:1a:9d: 99:dc:eb:5c:3e:31:a2:ed:bc:51:fd:72:db:4c:43:63:51:b4: 42:f5:d6:64:e7:2d:55:c1:c7:87:32:51:a8:07:c5:82:a1:a0: e5:74:65:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwOTE3MDQ0NDU1WhcNMjUwOTI0MDQ0NDU1WjAYMRYwFAYD VQQDEw02OGNhM2NjNy1lNWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uRmhtGG0LWZgB4ZoGlQazLFGwuw34ZqXHm8Cs467Rd5a6u7y2uq8CDN0z+u Nbt1/Ffik6o20pvpZ2yMEypDmgUveXZP0J00+oeIkisPLI7q+mU6wUx8T8BYGU/K LvNQQxnb5zIKD7wDT9I929RgH3qOvM/O+XDxtFjPFAbExi07d/PEBb96q6i8ljjx 1DSWSx2AblntAYZdouHdQWbuE1kYyqysu9GrBtnWuId71ZcKCXTHKyH47lPu+rsI C8be4HVhmVKitkc1Sg6og3qfolLfRYqGZ2wO8TTXGUPwC07IH1+FwWJ6rNlcrsoI vS5SIk+Pa4H/5hqC7d4gRr5ajwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9Yicbw aKeD6k06iUXFhfOtpDoKMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRi1xFM8gLu6qlQ4Drdx2dY69+w+UsmZG1l1UQf0KJz3jcCDlZ/izj HsN68nhtUrMl/63QdYGNjBkW3rJcxGWjQ1dgyonrQc/iPAz/m4rKGcsJI10ZvPuO ubLsOrJMpgWxlE1kaKddhreVPqCTRQy7LG2I4IP9Wti2n8/cVnP+MCsWW7ul5xdS QHs8W21SDHuO0VRCvOQ4odPldxdyy6vssv/w8r4mdqI3QJI71T12hEplB8VErFRq nWwbKJvO65j1T+HRW9aeeVpCEr8QExinbPGdNC3aGp2Z3OtcPjGi7bxR/XLbTENj UbRC9dZk5y1VwceHMlGoB8WCoaDldGV9 -----END CERTIFICATE-----Generated at Fri Sep 19 00:40:18 2025 by rpki-client