$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: OcFqk7uMvXeAdqTb3db3sz5mc+04QyaCOJ4ZXrdwv+Y= Subject key identifier: FA:F0:BC:DC:3E:41:EC:EB:EF:E9:FC:D5:F9:E3:5C:1A:FD:F7:51:E4 Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 01FF Signing time: Thu 21 Aug 2025 02:26:30 +0000 Manifest this update: Thu 21 Aug 2025 02:26:29 +0000 Manifest next update: Thu 28 Aug 2025 02:26:29 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: oeB9pUS+rCNFxfaIWOHvIjq81JdVGnVLJq49BJPuw84=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Aug 21 02:26:29 2025 GMT Not After : Aug 28 02:26:29 2025 GMT Subject: CN=68a683d6-fb70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bd:0a:cc:a0:fb:5c:0d:b4:17:2b:c4:28:a3: c8:f1:ed:22:6b:27:b8:c2:b7:80:ef:48:39:1f:16: d0:cb:62:ee:7b:40:b4:46:d5:fe:42:ce:38:75:e6: aa:e8:1c:ed:05:09:16:bd:24:18:95:35:b1:ed:9b: e2:56:d7:bb:94:bb:c1:d8:a2:0c:e4:1f:ed:c9:85: 50:11:63:40:dc:a7:6e:71:1b:18:30:06:de:36:03: a6:b6:13:dd:6e:b7:61:c1:4b:b4:03:11:bc:17:e4: e3:03:ce:30:9a:79:52:35:c0:1a:c1:f1:24:d9:3c: 18:94:e4:04:f6:65:89:d0:cc:1a:5d:92:7f:e9:f8: 86:4b:4f:28:7c:c7:74:70:3e:c1:00:ba:28:99:fd: 1f:cc:bc:ca:a7:cb:82:98:f1:d6:90:0a:55:ba:37: 8e:61:1a:98:ff:ab:52:d5:39:c2:6a:ff:36:28:42: e8:6b:d6:9b:1e:03:b2:6a:d7:a4:7a:9c:3c:a1:47: 1d:4f:ca:df:01:8b:50:bc:6e:38:f5:53:75:9e:8f: 9a:84:f1:2d:ed:cd:96:a2:e4:15:43:bd:be:b4:16: 3b:90:3f:53:02:2a:a3:bc:7d:d8:fa:76:e2:45:0f: 6e:01:11:1a:ad:d4:7a:2a:cf:53:e3:cd:04:06:70: b9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F0:BC:DC:3E:41:EC:EB:EF:E9:FC:D5:F9:E3:5C:1A:FD:F7:51:E4 X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:c3:fd:cb:bb:a1:6e:b5:e1:cf:58:9d:36:bd:b1:14:f6:b3: dd:ce:a6:06:07:dc:ce:5f:82:f5:72:b9:a4:60:89:96:8a:bb: 52:0c:19:d2:df:d8:11:df:cf:04:7e:5f:9d:25:6b:2c:ba:da: 62:34:2b:47:03:0c:3e:aa:ee:2c:53:6a:f8:f7:ca:f5:7b:ee: 6f:99:a3:0f:02:d1:7f:a2:5b:cf:6a:ac:e1:6c:7a:1f:84:2f: f6:9a:9e:65:7e:f5:81:39:22:85:c8:31:71:a4:29:54:09:fc: e1:31:8a:20:66:b0:0c:aa:d0:d2:93:63:ae:12:28:36:9c:1f: 72:be:cc:82:e0:48:a4:a2:4e:5b:a1:00:39:c9:1a:84:70:06: 7f:90:43:f4:77:b5:1d:ba:d3:d2:c9:ac:c8:d5:e6:4e:a1:7b: 73:ae:ec:59:95:97:d8:e3:7b:b8:dd:8d:77:3e:fd:e0:ac:21: 8e:70:e3:be:dd:5c:a4:e5:ef:4b:07:79:f7:3b:63:f4:fd:be: 4d:74:f8:ec:e4:d3:36:f3:9c:bf:a5:b9:4f:23:1a:6a:40:59: df:c8:8d:76:29:29:c0:c9:2c:96:e4:07:8c:f0:a1:9b:17:f5: 9e:74:ba:91:2f:e2:6f:df:08:a9:fc:d3:16:c4:90:42:cd:0f: ed:4a:5d:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUwODIxMDIyNjI5WhcNMjUwODI4MDIyNjI5WjAYMRYwFAYD VQQDEw02OGE2ODNkNi1mYjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApr0KzKD7XA20FyvEKKPI8e0iaye4wreA70g5HxbQy2Lue0C0RtX+Qs44deaq 6BztBQkWvSQYlTWx7ZviVte7lLvB2KIM5B/tyYVQEWNA3KducRsYMAbeNgOmthPd brdhwUu0AxG8F+TjA84wmnlSNcAawfEk2TwYlOQE9mWJ0MwaXZJ/6fiGS08ofMd0 cD7BALoomf0fzLzKp8uCmPHWkApVujeOYRqY/6tS1TnCav82KELoa9abHgOyatek epw8oUcdT8rfAYtQvG449VN1no+ahPEt7c2WouQVQ72+tBY7kD9TAiqjvH3Y+nbi RQ9uAREardR6Ks9T480EBnC56QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrwvNw+ Qezr7+n81fnjXBr991HkMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABw/3Lu6FuteHPWJ02vbEU9rPdzqYGB9zOX4L1crmkYImWirtSDBnS 39gR388Efl+dJWssutpiNCtHAww+qu4sU2r498r1e+5vmaMPAtF/olvPaqzhbHof hC/2mp5lfvWBOSKFyDFxpClUCfzhMYogZrAMqtDSk2OuEig2nB9yvsyC4Eikok5b oQA5yRqEcAZ/kEP0d7UdutPSyazI1eZOoXtzruxZlZfY43u43Y13Pv3grCGOcOO+ 3Vyk5e9LB3n3O2P0/b5NdPjs5NM285y/pblPIxpqQFnfyI12KSnAySyW5AeM8KGb F/WedLqRL+Jv3wip/NMWxJBCzQ/tSl1V -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:12 2025 by rpki-client