$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: Ci6FEzqiK2bL4ECxSCQyygqWKmy8qFqiMvGdDHdcoIM= Subject key identifier: 8B:9E:9B:A3:17:B7:A0:66:4A:01:57:A8:8B:51:55:00:0E:DC:FF:FA Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 03B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 03B1 Signing time: Sat 23 Aug 2025 00:58:23 +0000 Manifest this update: Sat 23 Aug 2025 00:58:22 +0000 Manifest next update: Sat 30 Aug 2025 00:58:22 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: iGR9mtqpUjaTKyYC1C7jYzUiX4navuI7TmrV7eBYoh8=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: DNm/cKBnOwMLtVf8PNiul90A2LNN5D/9x28AaUpSyDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5, serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Aug 23 00:58:22 2025 GMT Not After : Aug 30 00:58:22 2025 GMT Subject: CN=68a9122e-617d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:be:e4:46:70:0c:6a:30:06:92:a8:7a:fd:61: 26:aa:62:67:4d:1d:8c:49:6b:4b:2b:7c:72:ae:4a: 74:8e:1f:98:22:33:99:45:3e:33:cd:b8:7d:bf:79: a7:6d:78:9a:cf:1e:34:b7:8a:1d:2d:45:15:64:11: d5:30:c9:8b:db:a9:85:53:09:72:0f:ec:29:29:4b: f3:dc:d8:93:b4:0c:44:83:1d:84:90:2b:7b:8c:d4: 91:5c:e7:7a:b1:67:49:b1:65:3f:19:9c:61:6b:00: 4b:41:d9:83:30:01:7d:36:7e:3b:71:46:f7:5b:b1: 0e:1d:83:56:c6:30:63:7f:49:e4:2f:df:30:54:e0: 7f:c2:f0:aa:1e:87:1f:5c:6a:5a:b7:7e:b0:81:6f: 53:cf:e2:9d:56:19:02:9a:e0:a1:ee:8c:f9:d0:c2: 1a:5c:37:3f:b2:d3:b6:95:23:20:ec:23:b4:9a:be: 5f:c0:a4:60:b4:43:b8:52:f3:76:50:72:7f:46:e6: f6:ca:8e:7b:8b:89:04:ce:b1:b1:34:a7:3d:7a:81: c9:89:3f:d8:82:dd:7d:1f:a8:84:b2:fa:4f:03:d7: e3:d1:09:95:e5:c5:0f:0e:12:88:8b:cc:da:c7:5b: 13:50:c5:44:48:66:23:e8:c4:7d:50:6c:32:40:d8: c2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:9E:9B:A3:17:B7:A0:66:4A:01:57:A8:8B:51:55:00:0E:DC:FF:FA X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:16:e7:fe:69:0f:e5:8b:9b:1e:8b:00:cc:ce:c1:3e:b2:8c: bc:56:e9:1a:a5:37:f1:9e:ab:c6:2e:8f:5a:26:35:17:c1:89: c0:8e:f2:f0:e4:be:f9:3a:2e:8e:c7:59:40:eb:3f:1f:1e:4e: 3c:83:1b:f7:67:52:53:d9:55:d3:33:25:55:d3:bc:77:ba:fb: 26:51:e9:95:09:07:ae:e1:af:71:5c:89:f8:f7:1e:29:5b:22: f9:5a:31:af:79:36:20:b6:38:5c:24:0a:ca:9c:84:cc:e0:3d: a8:c7:e9:c5:f0:a0:e6:b4:a5:4c:14:09:ee:2f:03:5e:e5:7c: b8:c1:68:77:3c:d7:d1:06:99:a2:8c:88:04:4a:5a:80:bb:84: e5:6d:b1:f6:74:21:cf:2c:4e:08:21:0c:0d:ad:4a:c3:18:33: 39:c1:5c:e1:fc:b8:64:dd:17:b2:c8:33:f6:c9:8b:bd:ca:71: b2:48:0c:24:e5:4a:64:9f:ea:d4:86:d3:b6:27:8e:c0:47:34: fa:8f:2e:43:93:9c:20:13:ca:1f:e0:32:ed:fe:db:23:f5:2b: d6:35:01:0e:84:23:ad:20:b8:33:e8:f7:4b:db:4f:e9:92:b3: f2:61:b0:a5:1d:62:3a:3a:e7:f2:fe:27:ae:37:c4:80:b0:67: af:1a:15:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjUwODIzMDA1ODIyWhcNMjUwODMwMDA1ODIyWjAYMRYwFAYD VQQDEw02OGE5MTIyZS02MTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqb7kRnAMajAGkqh6/WEmqmJnTR2MSWtLK3xyrkp0jh+YIjOZRT4zzbh9v3mn bXiazx40t4odLUUVZBHVMMmL26mFUwlyD+wpKUvz3NiTtAxEgx2EkCt7jNSRXOd6 sWdJsWU/GZxhawBLQdmDMAF9Nn47cUb3W7EOHYNWxjBjf0nkL98wVOB/wvCqHocf XGpat36wgW9Tz+KdVhkCmuCh7oz50MIaXDc/stO2lSMg7CO0mr5fwKRgtEO4UvN2 UHJ/Rub2yo57i4kEzrGxNKc9eoHJiT/Ygt19H6iEsvpPA9fj0QmV5cUPDhKIi8za x1sTUMVESGYj6MR9UGwyQNjCtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuem6MX t6BmSgFXqItRVQAO3P/6MB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiFuf+aQ/li5seiwDMzsE+soy8VukapTfxnqvGLo9aJjUXwYnAjvLw 5L75Oi6Ox1lA6z8fHk48gxv3Z1JT2VXTMyVV07x3uvsmUemVCQeu4a9xXIn49x4p WyL5WjGveTYgtjhcJArKnITM4D2ox+nF8KDmtKVMFAnuLwNe5Xy4wWh3PNfRBpmi jIgESlqAu4TlbbH2dCHPLE4IIQwNrUrDGDM5wVzh/Lhk3ReyyDP2yYu9ynGySAwk 5Upkn+rUhtO2J47ARzT6jy5Dk5wgE8of4DLt/tsj9SvWNQEOhCOtILgz6PdL20/p krPyYbClHWI6Oufy/ieuN8SAsGevGhXw -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:53 2025 by rpki-client