$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: PVCSKcYkzL2PEZmkyq9JyVECbx7qA5lkG9mMo4hpUQ0= Subject key identifier: BF:26:B5:46:D8:AA:B8:C7:E2:E8:4A:91:AC:EB:F7:DC:C6:49:A1:8F Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0BB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0BAB Signing time: Sun 24 Aug 2025 18:56:54 +0000 Manifest this update: Sun 24 Aug 2025 18:56:53 +0000 Manifest next update: Sun 31 Aug 2025 18:56:53 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: I8nXVCqOvo3BAywKRD96AoYexugxvyB31ZcCMvLhzTA=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: 9YLAXbZ28k13vNilzcTMcnMd0WVPI4XdwJeol/Aq30I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2994 (0xbb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98, serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: Aug 24 18:56:53 2025 GMT Not After : Aug 31 18:56:53 2025 GMT Subject: CN=68ab6075-e67c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6b:a1:07:63:14:ec:b4:a4:74:a8:1d:d6:e1: 72:b3:0f:a9:9d:7e:b2:d8:56:7b:7c:38:08:27:d4: 06:ee:da:15:3c:c9:70:38:fe:7f:4d:a2:8d:40:ec: a4:e9:69:1e:85:27:66:80:34:1e:2e:15:e2:d1:fd: df:3b:37:93:1a:e2:ab:00:21:8e:93:23:ed:e4:a0: 45:68:f0:4b:09:93:2c:08:9a:dc:7b:10:94:2e:86: e2:56:68:9f:35:e5:47:b8:8e:d9:a0:54:5e:2a:f4: a1:64:fb:84:fd:37:ca:36:a1:c1:e0:b6:3a:b5:fe: e0:61:60:e1:67:36:3a:36:78:5f:22:0a:73:8c:15: 80:b3:cf:1f:11:30:f6:ba:82:d6:4a:df:32:80:a4: 1f:54:6a:a6:6e:02:54:e7:25:b0:d1:a1:96:6a:aa: e8:ae:8d:dc:a9:ab:0e:6f:53:88:1a:13:a7:ae:12: 7c:17:b0:a7:a2:8c:4b:c1:91:8a:b5:7b:a0:e9:04: 31:0e:8a:c6:50:75:b5:9d:13:9f:1a:c8:e7:89:95: 3a:62:47:3c:4c:7e:72:9c:a1:87:35:28:11:73:19: bf:9c:4a:00:2c:ca:32:11:af:1d:01:53:cc:e4:1d: b5:e9:1c:c9:78:ff:b0:3f:75:c5:43:69:d1:04:66: 56:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:26:B5:46:D8:AA:B8:C7:E2:E8:4A:91:AC:EB:F7:DC:C6:49:A1:8F X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:23:d2:e4:cd:24:a4:52:7d:27:ac:95:a5:e0:1b:d3:cc:21: 66:cb:96:10:75:24:dd:78:22:5c:06:7a:b4:ac:81:96:44:e4: 6e:ff:e6:59:b9:a6:cf:8d:11:c6:26:d9:20:a8:40:5e:af:36: ac:31:02:63:78:d6:39:aa:91:ef:61:db:28:4c:34:3e:9e:62: c0:ca:d6:ed:b1:46:01:ca:45:ef:0c:26:0d:dd:a7:cf:a0:e3: 8d:29:e9:48:4c:7e:43:df:b1:63:64:00:fe:9a:bd:7f:9d:c7: de:02:a8:4e:6e:eb:16:78:98:ea:b6:0b:03:8c:6c:f4:94:9d: 79:b5:a5:9d:64:9f:e9:4d:e2:f9:bd:c6:f7:02:ec:ba:7f:0a: 68:a5:e9:21:23:c0:b3:20:b4:10:a7:82:2c:bf:e9:9c:79:78: 99:57:b1:a0:42:38:a9:43:c5:88:65:22:17:33:4c:65:f9:c7: 42:a1:3e:36:14:9b:d8:97:3b:eb:42:93:f9:67:16:bc:a6:a7: 74:f6:f9:9e:44:99:1c:af:b5:95:54:d2:54:82:64:99:cd:36: a0:29:98:ca:b8:3a:55:48:07:92:e6:b0:b1:74:1b:f6:37:7e: fb:c5:89:20:02:7b:8d:08:ea:29:44:5d:04:57:61:a2:92:ea: ba:fc:e5:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjUwODI0MTg1NjUzWhcNMjUwODMxMTg1NjUzWjAYMRYwFAYD VQQDEw02OGFiNjA3NS1lNjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWuhB2MU7LSkdKgd1uFysw+pnX6y2FZ7fDgIJ9QG7toVPMlwOP5/TaKNQOyk 6WkehSdmgDQeLhXi0f3fOzeTGuKrACGOkyPt5KBFaPBLCZMsCJrcexCULobiVmif NeVHuI7ZoFReKvShZPuE/TfKNqHB4LY6tf7gYWDhZzY6NnhfIgpzjBWAs88fETD2 uoLWSt8ygKQfVGqmbgJU5yWw0aGWaqroro3cqasOb1OIGhOnrhJ8F7CnooxLwZGK tXug6QQxDorGUHW1nROfGsjniZU6Ykc8TH5ynKGHNSgRcxm/nEoALMoyEa8dAVPM 5B216RzJeP+wP3XFQ2nRBGZWQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8mtUbY qrjH4uhKkazr99zGSaGPMB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAII9LkzSSkUn0nrJWl4BvTzCFmy5YQdSTdeCJcBnq0rIGWRORu/+ZZ uabPjRHGJtkgqEBerzasMQJjeNY5qpHvYdsoTDQ+nmLAytbtsUYBykXvDCYN3afP oOONKelITH5D37FjZAD+mr1/ncfeAqhObusWeJjqtgsDjGz0lJ15taWdZJ/pTeL5 vcb3Auy6fwpopekhI8CzILQQp4Isv+mceXiZV7GgQjipQ8WIZSIXM0xl+cdCoT42 FJvYlzvrQpP5Zxa8pqd09vmeRJkcr7WVVNJUgmSZzTagKZjKuDpVSAeS5rCxdBv2 N377xYkgAnuNCOopRF0EV2Gikuq6/OVT -----END CERTIFICATE-----Generated at Sun Aug 24 21:29:09 2025 by rpki-client