$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: OGdy2+IO8w9/U7BO4afCCQsa8IQP3ND4T1dWzYhoBcg= Subject key identifier: 83:C8:CB:26:48:A6:3F:B1:1F:D5:B5:FC:EB:13:1F:A2:70:18:DF:5F Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: B4 Signing time: Thu 21 Aug 2025 06:15:44 +0000 Manifest this update: Thu 21 Aug 2025 06:15:43 +0000 Manifest next update: Thu 28 Aug 2025 06:15:43 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: kILsOAMw5viqWy+k1sm8DbKV3lnyf8vD5vpSdpD/VOE=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: 3YeMlkcKDR/G7e8HpdLpzhvB3RsMdGgeM4Qv8rsxSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 06:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Aug 21 06:15:43 2025 GMT Not After : Aug 28 06:15:43 2025 GMT Subject: CN=68a6b990-0e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c5:9a:dc:34:9a:a2:91:f6:a6:e9:23:7a:b6: 1f:38:26:33:30:78:6b:a1:3c:2d:9c:14:05:2f:6f: 9f:cd:3f:29:58:bb:d5:67:9e:50:44:ae:88:f2:69: 0b:3f:9f:b1:b1:d6:16:17:57:f2:be:f6:14:fc:66: 2d:cb:8e:c9:75:5e:92:16:f2:1d:a0:2d:7f:01:e2: 83:e9:b1:8c:e4:f3:7b:41:4e:f9:55:1c:e2:ee:69: 07:68:24:3c:c8:1b:d6:97:87:91:bb:15:02:2d:1e: 43:14:01:ff:22:f8:d3:53:44:d7:2b:af:5b:60:17: 04:63:82:72:d6:d2:ac:2d:a3:f4:b6:a0:40:cf:d7: 56:08:f0:7b:31:c5:90:e9:dd:1d:5a:ac:c5:47:70: eb:d4:36:a2:90:23:52:9a:0c:13:ea:97:b1:5e:b1: 9c:2a:77:1d:31:b0:d8:79:8e:85:70:f3:e1:8a:4a: 49:4a:66:9b:0a:78:f1:c4:72:e2:a1:9d:21:fe:84: 2b:89:18:8a:1e:0b:d6:68:74:ef:56:e3:95:ef:50: 59:ce:ae:fd:81:7b:22:59:2f:31:b1:f6:3d:5f:24: e7:fe:bb:da:3e:e2:58:ba:d9:af:f4:8a:a4:ed:35: 1f:eb:6f:c8:66:51:30:c1:6c:3d:52:4d:57:0e:9c: 1c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C8:CB:26:48:A6:3F:B1:1F:D5:B5:FC:EB:13:1F:A2:70:18:DF:5F X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:92:ae:ca:e1:5f:02:84:c2:bd:74:f4:c5:51:27:65:86:2e: ad:be:61:72:4e:e4:43:8a:70:f2:a6:e4:52:e8:d3:a5:57:3c: 6f:d5:a0:54:68:23:32:2d:10:ea:8e:a6:f3:a8:07:c9:d7:fb: 1c:ec:f1:ae:54:8f:39:3b:50:99:34:73:12:a7:f5:c8:68:0f: 95:d4:1d:f0:6f:c1:8b:49:2a:cb:ec:c6:7d:38:d4:33:da:21: 02:95:aa:ba:62:d9:b8:d8:7a:3f:6b:ff:23:f2:3a:4b:bc:27: ed:f2:1e:50:68:d8:a1:e8:45:02:a6:98:5e:29:39:2f:44:22: 66:48:dd:e6:53:57:76:6c:fb:ed:be:47:a7:4f:22:43:46:66: 79:0e:fb:cd:65:19:b5:bf:17:73:71:0a:9a:3c:f9:81:b8:8a: ba:dd:ec:07:6c:aa:ce:19:81:8d:a1:8d:a8:44:0d:ad:76:87: 02:7b:ea:c4:e3:d6:bc:6d:b9:f9:13:10:1e:9f:9a:2c:0a:97: cd:b2:74:c4:cf:d2:d0:67:bf:bb:52:7c:41:dc:a3:89:c4:b7: 93:ec:9a:18:36:33:52:41:71:c7:f8:f5:a5:61:2d:8e:32:c2: 57:19:91:ea:54:ef:60:cf:bf:21:9b:ff:e5:48:fd:8c:87:73: 12:08:30:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjUwODIxMDYxNTQzWhcNMjUwODI4MDYxNTQzWjAYMRYwFAYD VQQDEw02OGE2Yjk5MC0wZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8MWa3DSaopH2pukjerYfOCYzMHhroTwtnBQFL2+fzT8pWLvVZ55QRK6I8mkL P5+xsdYWF1fyvvYU/GYty47JdV6SFvIdoC1/AeKD6bGM5PN7QU75VRzi7mkHaCQ8 yBvWl4eRuxUCLR5DFAH/IvjTU0TXK69bYBcEY4Jy1tKsLaP0tqBAz9dWCPB7McWQ 6d0dWqzFR3Dr1DaikCNSmgwT6pexXrGcKncdMbDYeY6FcPPhikpJSmabCnjxxHLi oZ0h/oQriRiKHgvWaHTvVuOV71BZzq79gXsiWS8xsfY9XyTn/rvaPuJYutmv9Iqk 7TUf62/IZlEwwWw9Uk1XDpwcZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPIyyZI pj+xH9W1/OsTH6JwGN9fMB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVkq7K4V8ChMK9dPTFUSdlhi6tvmFyTuRDinDypuRS6NOlVzxv1aBU aCMyLRDqjqbzqAfJ1/sc7PGuVI85O1CZNHMSp/XIaA+V1B3wb8GLSSrL7MZ9ONQz 2iEClaq6Ytm42Ho/a/8j8jpLvCft8h5QaNih6EUCppheKTkvRCJmSN3mU1d2bPvt vkenTyJDRmZ5DvvNZRm1vxdzcQqaPPmBuIq63ewHbKrOGYGNoY2oRA2tdocCe+rE 49a8bbn5ExAen5osCpfNsnTEz9LQZ7+7UnxB3KOJxLeT7JoYNjNSQXHH+PWlYS2O MsJXGZHqVO9gz78hm//lSP2Mh3MSCDDm -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:12 2025 by rpki-client