$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: 6zezriAnzLnFxOJCyvsYoDUC6jiBCqNM6KZ9w7wKRuw= Subject key identifier: 65:8C:BB:2D:5F:B3:63:40:02:B9:FD:19:53:08:48:32:26:3A:09:BA Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 34AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 34AE Signing time: Sun 24 Aug 2025 14:44:14 +0000 Manifest this update: Sun 24 Aug 2025 14:44:14 +0000 Manifest next update: Sun 31 Aug 2025 14:44:14 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: 4PMtNRDYIKxRga4QeLaEb9caDsdPhfbGUKuy+etBJCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13486 (0x34ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: Aug 24 14:44:14 2025 GMT Not After : Aug 31 14:44:14 2025 GMT Subject: CN=68ab253e-096c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ce:7a:a7:91:8b:da:1f:1d:8f:91:57:9d:3f: a5:45:65:a5:34:1b:fd:24:1c:06:81:21:b6:33:18: b7:83:ad:a8:ee:db:bb:74:39:40:e2:0f:e3:89:03: 02:4c:cf:7f:e4:8b:15:ba:ae:eb:43:55:92:16:fb: c5:0f:0f:70:86:42:b8:f3:cb:7a:c1:65:e4:0a:3e: 0a:c2:73:14:ae:41:49:26:49:90:b8:50:e5:2c:1f: 81:c8:d4:19:c4:19:fa:c4:fb:c6:1c:21:06:d5:c3: 12:b2:25:5d:ac:7c:7e:70:8f:55:14:a7:8d:92:e6: 19:fa:52:3d:85:a6:eb:61:5a:6b:3e:b8:12:3d:59: 7c:7f:b5:2b:ea:9f:ed:74:f0:a2:6d:41:83:75:b9: 8b:4e:06:94:22:24:a1:81:fd:f9:3c:65:db:11:14: 8a:ef:d7:0a:4f:40:b2:6b:1b:47:41:21:11:fc:b6: c9:80:2f:e2:63:a3:c1:e3:09:4e:50:5a:4c:af:08: d7:78:4d:d7:46:e8:62:84:8d:da:1c:6d:68:d8:6e: 26:38:20:93:75:e6:28:d7:cf:e6:1f:d0:ff:f8:b2: 3f:26:0c:a3:49:53:7e:ec:48:2c:2a:53:c1:2a:83: 6c:b7:f8:60:e3:c8:50:fd:86:b1:92:34:5b:b7:d5: 79:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:8C:BB:2D:5F:B3:63:40:02:B9:FD:19:53:08:48:32:26:3A:09:BA X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:53:81:1e:24:1f:e9:f8:46:f7:06:09:4b:da:af:f7:64:e6: 4d:b9:da:70:75:26:a7:76:75:4d:45:9c:02:fc:ff:55:ac:04: 01:4e:f9:00:82:2d:6f:11:7f:ca:1a:00:85:88:2d:d6:b9:d0: 48:f2:46:72:82:f7:c6:4d:ff:dc:5f:84:9a:a2:e9:4a:c9:1e: 57:45:00:a4:dc:b1:63:23:45:01:65:0e:96:ca:76:23:ae:25: a3:e1:fc:28:4e:8e:42:8a:67:0c:43:aa:20:47:27:fb:07:3e: 41:0d:8e:e1:c8:e9:1b:1d:23:a0:d9:14:00:24:aa:ef:76:1c: 4d:9d:d9:a4:72:45:54:92:73:b8:fc:d9:c9:81:f3:25:7c:1e: 80:bc:e3:7e:98:4b:d0:0d:ee:a7:3e:60:70:dd:ff:87:1a:99: 89:29:f1:7d:a1:4b:fe:ad:41:60:c1:e7:df:6c:dd:19:92:8c: 67:8e:4a:9e:82:15:72:62:64:a7:f1:7f:ac:e9:99:c5:c1:37: 1b:d0:3f:d5:e0:79:5f:5a:69:21:9a:eb:9b:ab:f6:60:7f:9a: 41:15:96:2c:f3:0d:5d:5d:b6:73:92:43:de:f8:1a:f4:d9:92: ba:88:ea:40:1b:47:36:28:f4:07:0b:ca:99:3b:fb:44:41:84: e4:16:f7:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUwODI0MTQ0NDE0WhcNMjUwODMxMTQ0NDE0WjAYMRYwFAYD VQQDEw02OGFiMjUzZS0wOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2c56p5GL2h8dj5FXnT+lRWWlNBv9JBwGgSG2Mxi3g62o7tu7dDlA4g/jiQMC TM9/5IsVuq7rQ1WSFvvFDw9whkK488t6wWXkCj4KwnMUrkFJJkmQuFDlLB+ByNQZ xBn6xPvGHCEG1cMSsiVdrHx+cI9VFKeNkuYZ+lI9habrYVprPrgSPVl8f7Ur6p/t dPCibUGDdbmLTgaUIiShgf35PGXbERSK79cKT0CyaxtHQSER/LbJgC/iY6PB4wlO UFpMrwjXeE3XRuhihI3aHG1o2G4mOCCTdeYo18/mH9D/+LI/JgyjSVN+7EgsKlPB KoNst/hg48hQ/YaxkjRbt9V5XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWMuy1f s2NAArn9GVMISDImOgm6MB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJU4EeJB/p+Eb3BglL2q/3ZOZNudpwdSandnVNRZwC/P9VrAQBTvkA gi1vEX/KGgCFiC3WudBI8kZygvfGTf/cX4SaoulKyR5XRQCk3LFjI0UBZQ6WynYj riWj4fwoTo5CimcMQ6ogRyf7Bz5BDY7hyOkbHSOg2RQAJKrvdhxNndmkckVUknO4 /NnJgfMlfB6AvON+mEvQDe6nPmBw3f+HGpmJKfF9oUv+rUFgweffbN0Zkoxnjkqe ghVyYmSn8X+s6ZnFwTcb0D/V4HlfWmkhmuubq/Zgf5pBFZYs8w1dXbZzkkPe+Br0 2ZK6iOpAG0c2KPQHC8qZO/tEQYTkFvdc -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:19 2025 by rpki-client