$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft File: uhYFabkV4kxq5sJIlNBPnUo5FpI.mft (raw, json) Hash identifier: 6XanlFkLdOrqrYUdgq0BKnwH/DwAffu10T/lkeAdpmo= Subject key identifier: FF:35:FD:CB:8F:6D:D0:18:62:17:7A:61:90:85:B6:90:99:B6:B1:46 Authority key identifier: BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 Certificate issuer: /CN=A912CDCB/serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Certificate serial: 04FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft Manifest number: 04FA Signing time: Wed 20 Aug 2025 23:46:16 +0000 Manifest this update: Wed 20 Aug 2025 23:46:16 +0000 Manifest next update: Wed 27 Aug 2025 23:46:16 +0000 Files and hashes: 1: uhYFabkV4kxq5sJIlNBPnUo5FpI.crl (hash: ejwaFa68X/4YpvpK0n91F3dV0NxuV/SIx4/UNnTfySU=) 2: DAF98AAA20F111EC89E7D668C4F9AE02.roa (hash: RIj5d7qyUoWph1Jio4J8GkYeyIP1U8prnBb8m/i4EDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 23:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDCB, serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Validity Not Before: Aug 20 23:46:16 2025 GMT Not After : Aug 27 23:46:16 2025 GMT Subject: CN=68a65e48-b2f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:68:ac:cd:0c:e0:49:fc:a6:bf:60:16:87:16: 8e:b9:58:a5:6d:0e:ac:ad:8c:af:72:99:63:77:f8: e7:e1:97:32:0e:30:a0:69:26:35:50:9a:e8:e4:53: b8:65:ce:fd:04:3a:1a:a2:7f:b9:cd:68:63:fc:89: a3:33:4b:3a:f6:1f:b9:a1:57:c3:8d:bc:bb:65:a6: 7c:a4:91:c1:da:29:ad:f2:81:bc:4b:3c:0f:bc:ad: 59:2f:25:13:0a:af:cf:f2:be:a4:7f:6c:b8:c2:de: 8d:1a:67:b4:c3:e3:77:29:bf:f8:f7:2a:96:8d:d3: 45:d5:e5:97:9e:95:da:1f:f7:76:c5:c5:5c:e2:2d: 86:79:44:8a:4c:8e:2e:a0:80:1d:b1:eb:5a:be:72: 62:85:28:ba:bb:03:3a:15:47:c8:87:6b:e6:12:5d: ea:42:60:51:52:41:f7:fc:3d:cd:8a:e7:d4:2f:75: 4d:af:66:3f:52:4d:ff:0c:f0:c5:70:e2:29:e1:cd: 14:1e:43:42:81:96:0c:83:e6:bd:c2:e2:29:8a:a7: 63:4b:2e:b7:1d:63:09:b1:bd:46:e8:74:90:a5:b2: 9a:9d:d5:f7:16:08:96:35:ee:97:84:63:41:ba:94: f9:0e:0a:ec:92:32:4a:c5:61:7c:20:5a:d5:ec:5f: bd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:35:FD:CB:8F:6D:D0:18:62:17:7A:61:90:85:B6:90:99:B6:B1:46 X509v3 Authority Key Identifier: keyid:BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:92:85:2b:bf:cc:ef:7b:4d:5c:0d:b7:ba:47:d1:0d:81:43: 84:8d:97:47:2d:6f:9d:2a:9f:e8:5c:8a:7b:64:ce:7f:72:7d: bb:c9:b3:76:ac:71:81:3c:b7:e7:b1:87:f5:6e:82:74:c5:e0: 28:d8:b7:c5:0e:33:b9:32:65:1c:5e:d0:62:bb:6c:dd:09:d3: 3e:50:39:85:26:e4:0f:b3:13:43:69:f3:30:84:fb:28:73:3b: a1:47:a4:9f:94:b8:c5:bb:83:8c:88:09:38:b5:d9:db:b2:b8: 79:cd:c1:95:16:f9:79:f0:d9:c3:b4:36:e5:41:e3:75:70:83: a7:bf:a2:06:69:d4:a0:cb:2a:6d:63:b0:8a:2e:53:6d:99:39: 01:32:62:fe:0e:7b:45:0f:67:bd:b0:85:24:09:7d:29:d0:e4: c4:ff:16:53:00:c0:32:68:13:8b:1a:43:48:eb:29:1c:b5:6e: 38:8d:f2:c2:6b:eb:db:ac:aa:5e:bf:ba:cd:81:ca:00:82:3e: be:c2:4f:e1:b9:99:82:dc:5a:15:3e:a6:37:ba:e3:20:70:a4: 69:3d:43:17:7d:a7:b5:87:e4:b1:75:14:7c:3b:b4:64:50:10: 95:45:c4:83:c0:ac:fe:73:84:64:c6:25:3d:3e:e9:46:ff:28: fa:47:cd:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQ0IxMTAvBgNVBAUTKEJBMTYwNTY5QjkxNUUyNEM2QUU2QzI0ODk0RDA0RjlE NEEzOTE2OTIwHhcNMjUwODIwMjM0NjE2WhcNMjUwODI3MjM0NjE2WjAYMRYwFAYD VQQDEw02OGE2NWU0OC1iMmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2iszQzgSfymv2AWhxaOuVilbQ6srYyvcpljd/jn4ZcyDjCgaSY1UJro5FO4 Zc79BDoaon+5zWhj/ImjM0s69h+5oVfDjby7ZaZ8pJHB2imt8oG8SzwPvK1ZLyUT Cq/P8r6kf2y4wt6NGme0w+N3Kb/49yqWjdNF1eWXnpXaH/d2xcVc4i2GeUSKTI4u oIAdsetavnJihSi6uwM6FUfIh2vmEl3qQmBRUkH3/D3NiufUL3VNr2Y/Uk3/DPDF cOIp4c0UHkNCgZYMg+a9wuIpiqdjSy63HWMJsb1G6HSQpbKandX3FgiWNe6XhGNB upT5DgrskjJKxWF8IFrV7F+9zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP81/cuP bdAYYhd6YZCFtpCZtrFGMB8GA1UdIwQYMBaAFLoWBWm5FeJMaubCSJTQT51KORaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDQi84QTgyMDk0NDIw RUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRreHE1c0pJbE5CUG5VbzVG cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VoWUZhYmtWNGt4cTVzSklsTkJQblVvNUZwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDQi84QTgyMDk0NDIwRUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRr eHE1c0pJbE5CUG5VbzVGcEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKkoUrv8zve01cDbe6R9ENgUOEjZdHLW+dKp/oXIp7ZM5/cn27ybN2 rHGBPLfnsYf1boJ0xeAo2LfFDjO5MmUcXtBiu2zdCdM+UDmFJuQPsxNDafMwhPso czuhR6SflLjFu4OMiAk4tdnbsrh5zcGVFvl58NnDtDblQeN1cIOnv6IGadSgyypt Y7CKLlNtmTkBMmL+DntFD2e9sIUkCX0p0OTE/xZTAMAyaBOLGkNI6ykctW44jfLC a+vbrKpev7rNgcoAgj6+wk/huZmC3FoVPqY3uuMgcKRpPUMXfae1h+SxdRR8O7Rk UBCVRcSDwKz+c4RkxiU9PulG/yj6R80k -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:09 2025 by rpki-client