$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: Pwu7cKxb6d3A7xKUFgQr9DB1+liXNAtQCG0I51+i1DU= Subject key identifier: 58:5C:62:19:2D:85:CF:32:48:CD:C7:EA:48:FC:2A:59:19:1C:1F:09 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 229A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 2268 Signing time: Thu 04 Sep 2025 15:57:29 +0000 Manifest this update: Thu 04 Sep 2025 15:57:28 +0000 Manifest next update: Thu 11 Sep 2025 15:57:28 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: vGh/9TMS4PxyI2hTR/BtEyEeS4Y24yNMtf4kyE/xW20=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8858 (0x229a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Sep 4 15:57:28 2025 GMT Not After : Sep 11 15:57:28 2025 GMT Subject: CN=68b9b6e9-fbb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:41:ec:4f:12:b8:bf:a1:84:a8:da:25:ed:20: 44:0f:31:bd:2c:b9:69:bd:76:a9:61:8d:b9:81:80: 54:32:14:03:8f:06:a5:d5:ad:69:14:0a:dd:35:4b: 50:c5:c5:6b:01:67:1c:21:37:35:89:9e:45:dd:1b: 26:0a:76:03:ca:30:39:31:29:45:1d:81:fc:11:de: c1:4f:42:e0:1e:8b:6e:dc:20:5c:c9:05:5e:ef:82: be:2e:00:b4:05:8b:00:ae:66:18:04:da:42:bd:fd: a5:86:fa:f3:1b:6f:db:df:ee:7b:45:e4:7e:be:c7: 14:6b:0b:93:d4:78:c6:24:9d:26:1e:92:75:b0:15: b8:bb:ee:42:d1:40:df:a9:7c:e8:c0:c5:bd:bf:bf: 61:99:cf:69:5a:aa:04:89:c8:b1:14:b1:c3:eb:68: eb:af:ef:7b:e6:63:5b:91:3f:16:4e:ee:63:0d:70: d7:b4:35:38:e7:45:f9:8d:2c:3c:3f:e3:cf:45:46: 52:9d:5e:fa:70:1d:63:b0:a5:57:cd:d3:df:32:fa: ed:5d:4e:a5:81:b6:ff:8b:98:70:2d:77:da:8d:b9: 23:2d:78:a1:f4:e3:d1:93:b0:1b:c0:8a:65:61:d0: f3:16:ca:2d:97:f3:76:00:5a:56:35:80:8c:3d:0d: 98:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5C:62:19:2D:85:CF:32:48:CD:C7:EA:48:FC:2A:59:19:1C:1F:09 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:f8:d2:b8:e3:7f:b6:2f:f8:9c:98:c8:26:79:79:2e:23:a7: 7f:e5:42:28:e8:ea:2c:a1:21:a4:7d:e8:c6:4d:79:85:26:d9: 80:c7:1c:5a:4a:13:c6:0e:c3:fe:d2:8d:ab:0f:ce:e2:80:26: dc:67:57:75:a7:83:40:d7:84:30:c7:d5:d8:b9:40:89:cd:59: 7b:91:ad:7a:b3:ba:52:f0:c1:d0:4d:41:94:8f:19:bb:0f:57: 46:ca:a2:e5:d7:9f:49:a3:50:1e:15:97:96:9c:a0:28:8f:08: ce:1f:42:aa:0a:47:49:86:83:a8:a3:24:b3:66:5e:66:3a:f3: 79:3d:b2:f4:f5:94:f6:9b:2d:25:ef:c7:4f:5d:ff:3c:3d:b3: ba:ab:7d:68:25:de:70:14:6e:e0:82:3f:ce:ea:fc:37:54:6f: ab:e2:b0:35:da:58:9c:bd:d6:8a:98:4b:b5:67:ff:d0:dc:96: 7d:9a:8a:ca:8a:83:4c:2b:4b:35:65:17:c4:2e:96:c8:c6:c1: 2f:d4:dd:c8:ec:57:30:d7:88:ea:2d:8c:d7:e8:bd:01:d0:64: 35:8a:ad:45:15:4a:fc:0e:ba:e9:76:34:e2:5b:67:db:3a:ce: 23:5a:2a:ca:a7:30:91:ef:89:ed:2f:32:76:25:38:1c:ab:22: ca:3b:cb:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUwOTA0MTU1NzI4WhcNMjUwOTExMTU1NzI4WjAYMRYwFAYD VQQDEw02OGI5YjZlOS1mYmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEHsTxK4v6GEqNol7SBEDzG9LLlpvXapYY25gYBUMhQDjwal1a1pFArdNUtQ xcVrAWccITc1iZ5F3RsmCnYDyjA5MSlFHYH8Ed7BT0LgHotu3CBcyQVe74K+LgC0 BYsArmYYBNpCvf2lhvrzG2/b3+57ReR+vscUawuT1HjGJJ0mHpJ1sBW4u+5C0UDf qXzowMW9v79hmc9pWqoEicixFLHD62jrr+975mNbkT8WTu5jDXDXtDU450X5jSw8 P+PPRUZSnV76cB1jsKVXzdPfMvrtXU6lgbb/i5hwLXfajbkjLXih9OPRk7AbwIpl YdDzFsotl/N2AFpWNYCMPQ2YvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhcYhkt hc8ySM3H6kj8KlkZHB8JMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg+NK443+2L/icmMgmeXkuI6d/5UIo6OosoSGkfejGTXmFJtmAxxxa ShPGDsP+0o2rD87igCbcZ1d1p4NA14Qwx9XYuUCJzVl7ka16s7pS8MHQTUGUjxm7 D1dGyqLl159Jo1AeFZeWnKAojwjOH0KqCkdJhoOooySzZl5mOvN5PbL09ZT2my0l 78dPXf88PbO6q31oJd5wFG7ggj/O6vw3VG+r4rA12licvdaKmEu1Z//Q3JZ9morK ioNMK0s1ZRfELpbIxsEv1N3I7Fcw14jqLYzX6L0B0GQ1iq1FFUr8DrrpdjTiW2fb Os4jWirKpzCR74ntLzJ2JTgcqyLKO8sv -----END CERTIFICATE-----Generated at Sat Sep 6 16:11:57 2025 by rpki-client