$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: dqXx9kkAi28pB30kWpvzM65LdXn/j3hrXhvwrc756i8= Subject key identifier: 8E:5E:12:85:DF:20:0D:C0:15:38:E9:68:9D:54:14:2F:A1:A1:14:3A Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 0300 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 02FE Signing time: Fri 19 Sep 2025 01:38:59 +0000 Manifest this update: Fri 19 Sep 2025 01:38:59 +0000 Manifest next update: Fri 26 Sep 2025 01:38:59 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: KSnva1Z4k+BHcIpfsmrmZqXpy+R8ycBWtP1AWIiaBGo=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:38:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 768 (0x300) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: Sep 19 01:38:59 2025 GMT Not After : Sep 26 01:38:59 2025 GMT Subject: CN=68ccb433-f85c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c1:4e:3b:35:9a:f0:5a:32:77:6b:19:0c:f6: cb:22:b4:77:34:7f:ec:1b:0b:65:c5:86:8b:a8:91: 97:13:e0:fb:23:72:38:95:bb:54:cb:ac:a8:6a:db: 01:0d:10:82:62:fd:82:50:de:9a:46:c6:de:94:dd: a0:a9:07:aa:f8:b9:f2:ff:40:1e:68:27:ae:c7:45: bc:6e:5d:c0:dc:a9:09:1f:3b:69:b0:ba:a2:28:e7: ef:bf:27:3a:55:43:66:dd:4f:5a:6b:c3:07:79:3b: ff:13:8e:81:37:65:e0:76:d7:f6:33:9a:53:85:21: 61:4e:89:cb:47:4e:7a:13:7f:5e:a8:0b:4f:bc:25: 45:58:1e:cf:29:50:4d:07:28:23:3b:13:7e:8e:47: ea:f9:79:59:b1:e7:36:f0:94:f6:a1:e7:f0:1d:88: 9a:fd:4d:1c:9b:14:20:4a:21:af:63:d1:07:dd:e9: 87:e2:88:57:cb:14:d2:fe:01:4c:4c:85:aa:d2:79: ef:ce:f6:a8:41:76:43:b9:df:0a:14:48:41:c1:46: e1:3a:19:80:97:50:6a:06:42:28:a9:ab:66:63:a6: e9:16:fd:68:c9:d3:a0:1a:c7:6a:dc:3e:7f:a2:ad: e9:81:2a:75:d4:ee:01:0d:b1:31:5c:86:f6:a2:fb: 58:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:5E:12:85:DF:20:0D:C0:15:38:E9:68:9D:54:14:2F:A1:A1:14:3A X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:2c:fe:22:a8:4b:eb:42:95:87:0c:1e:d1:dd:0d:19:b9:8c: 29:98:a0:78:e7:91:4c:88:ee:e4:ce:d4:65:1e:52:33:6b:b7: a0:ca:17:5f:46:a3:a5:07:6d:91:cc:96:b4:2a:0a:a5:91:ce: 98:89:3b:35:70:43:83:a8:3c:46:d0:f8:93:97:d0:ea:3d:24: 13:3a:43:f4:ac:fd:d8:96:10:ab:e8:6d:c8:39:4c:ac:70:30: 8f:37:98:44:61:dc:73:4b:24:0b:3e:db:66:4c:f7:07:30:a0: d4:d1:55:13:b3:2a:ed:9d:9a:0d:70:a7:08:c8:22:2e:58:1b: 50:f3:2d:59:4b:08:cb:a8:a8:e0:10:b8:8d:55:d8:bc:9a:14: 7b:50:f3:91:a7:01:fd:8e:ec:01:04:64:33:ab:ad:a1:f8:e0: 06:d5:ad:96:eb:06:31:3f:9b:e6:2b:6f:97:5a:ea:41:dd:dc: 49:66:5f:d8:03:e8:43:1e:1f:b5:98:97:55:b5:4a:21:a7:6d: 8f:fc:dc:bc:c8:f7:4d:78:ad:1f:e6:d3:e7:66:3d:67:0a:eb: cf:5a:61:90:59:37:6c:fc:43:d5:ae:cb:80:0b:7a:7c:81:8b: dd:b4:80:f6:1a:c7:e4:ff:52:ae:4f:7c:37:83:ea:f6:a8:a1: 8f:e3:f3:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjUwOTE5MDEzODU5WhcNMjUwOTI2MDEzODU5WjAYMRYwFAYD VQQDEw02OGNjYjQzMy1mODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsFOOzWa8Foyd2sZDPbLIrR3NH/sGwtlxYaLqJGXE+D7I3I4lbtUy6yoatsB DRCCYv2CUN6aRsbelN2gqQeq+Lny/0AeaCeux0W8bl3A3KkJHztpsLqiKOfvvyc6 VUNm3U9aa8MHeTv/E46BN2Xgdtf2M5pThSFhTonLR056E39eqAtPvCVFWB7PKVBN BygjOxN+jkfq+XlZsec28JT2oefwHYia/U0cmxQgSiGvY9EH3emH4ohXyxTS/gFM TIWq0nnvzvaoQXZDud8KFEhBwUbhOhmAl1BqBkIoqatmY6bpFv1oydOgGsdq3D5/ oq3pgSp11O4BDbExXIb2ovtYXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5eEoXf IA3AFTjpaJ1UFC+hoRQ6MB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGLP4iqEvrQpWHDB7R3Q0ZuYwpmKB455FMiO7kztRlHlIza7egyhdf RqOlB22RzJa0Kgqlkc6YiTs1cEODqDxG0PiTl9DqPSQTOkP0rP3YlhCr6G3IOUys cDCPN5hEYdxzSyQLPttmTPcHMKDU0VUTsyrtnZoNcKcIyCIuWBtQ8y1ZSwjLqKjg ELiNVdi8mhR7UPORpwH9juwBBGQzq62h+OAG1a2W6wYxP5vmK2+XWupB3dxJZl/Y A+hDHh+1mJdVtUohp22P/Ny8yPdNeK0f5tPnZj1nCuvPWmGQWTds/EPVrsuAC3p8 gYvdtID2Gsfk/1KuT3w3g+r2qKGP4/Mv -----END CERTIFICATE-----Generated at Fri Sep 19 07:12:48 2025 by rpki-client