$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: xY+6qwqn8PGJyLq3nepG/nwGW+kUlx+FyoePzGdBMA0= Subject key identifier: 40:37:F5:6E:B6:E8:98:FE:99:43:BD:3C:50:ED:43:06:65:CC:91:9D Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0C2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0C26 Signing time: Wed 10 Sep 2025 18:51:06 +0000 Manifest this update: Wed 10 Sep 2025 18:51:06 +0000 Manifest next update: Wed 17 Sep 2025 18:51:06 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: uO6BwKi147H8CpztluDXnK1ngI8RA6x5fXAND7MswKQ=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 18:51:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3117 (0xc2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Sep 10 18:51:06 2025 GMT Not After : Sep 17 18:51:06 2025 GMT Subject: CN=68c1c89a-d1a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:af:c8:2a:d3:12:7b:7a:cc:a5:15:00:8f:a0: ed:76:78:4f:e6:1e:a3:31:6b:76:f2:31:22:65:0b: 6b:76:f0:e6:47:7c:74:fe:88:70:42:b0:86:c9:c1: 80:e8:11:e5:90:c8:24:40:4a:7e:bc:34:b1:52:87: 19:7d:ff:45:89:4f:4e:3c:22:bc:89:24:21:51:62: e1:f6:c4:42:9d:7e:68:72:3a:cc:de:ec:fe:eb:4d: fd:ba:fb:aa:47:8f:46:91:2c:cb:09:48:f6:fa:68: c1:ae:26:b4:0b:15:5f:ae:50:ff:17:1a:e9:d3:14: 92:2b:0f:96:0d:ef:35:1e:8b:03:d2:f4:cf:b0:a7: 60:31:e9:bf:f1:33:bf:29:db:7c:43:46:0e:e4:bb: 8c:93:c1:b7:a1:9b:2a:91:a6:68:40:57:f8:75:5b: a8:d9:68:ca:6a:5e:f7:06:8e:9c:59:0b:c2:f8:0b: 9b:e5:dc:e5:a3:bb:d6:2b:fa:db:a8:e2:8a:76:a6: 42:c5:dd:11:21:86:74:d1:3c:1b:84:0e:81:77:45: c9:49:26:6a:ad:f0:ad:05:a0:8b:72:92:c0:6b:f8: c6:98:7c:e2:82:99:eb:ba:3e:fd:da:73:bd:92:e0: 52:0b:22:84:ab:ca:75:3a:14:43:28:1f:b5:38:7a: 1c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:37:F5:6E:B6:E8:98:FE:99:43:BD:3C:50:ED:43:06:65:CC:91:9D X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:ad:20:86:2f:03:23:93:fa:f6:70:fc:42:ed:86:eb:ad:2c: f5:67:4f:93:98:1e:8a:b8:bb:7e:64:bf:69:bf:00:37:f5:91: 14:64:db:21:6a:8b:94:76:1f:85:2c:95:a1:bc:3b:b2:24:09: f8:70:91:dd:47:22:eb:36:51:54:ed:87:b4:71:71:4c:02:bb: 60:12:5f:01:c7:35:14:2d:9a:a1:c9:ef:42:07:bf:af:2c:2a: 7a:97:03:e0:b8:39:42:48:91:58:83:5c:62:65:de:04:53:8d: ac:17:d2:f5:c4:88:5a:8a:9b:f2:46:2e:e5:81:17:10:9a:01: 0e:d4:6e:a1:2e:51:15:80:0f:a6:9d:dc:0d:0b:f2:46:3c:02: 59:7f:17:41:5d:5e:ac:93:3c:76:2d:5b:59:f6:58:37:ea:61: 6c:87:4e:22:67:20:f3:09:fa:2f:e9:9c:d4:25:6e:d3:eb:d8: 1f:06:78:52:cc:7b:ed:eb:32:ad:04:46:54:29:62:18:01:d6: 6c:ca:2d:26:d5:c0:1e:16:21:df:1f:e8:f0:a4:ad:22:38:78: 99:61:a4:71:eb:c8:43:05:90:ec:64:aa:09:75:8d:fc:57:17: 3d:66:29:0b:6a:2a:37:75:10:b0:e4:ff:be:68:f4:a8:be:a2: b0:fa:5d:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUwOTEwMTg1MTA2WhcNMjUwOTE3MTg1MTA2WjAYMRYwFAYD VQQDEw02OGMxYzg5YS1kMWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxa/IKtMSe3rMpRUAj6DtdnhP5h6jMWt28jEiZQtrdvDmR3x0/ohwQrCGycGA 6BHlkMgkQEp+vDSxUocZff9FiU9OPCK8iSQhUWLh9sRCnX5ocjrM3uz+6039uvuq R49GkSzLCUj2+mjBria0CxVfrlD/Fxrp0xSSKw+WDe81HosD0vTPsKdgMem/8TO/ Kdt8Q0YO5LuMk8G3oZsqkaZoQFf4dVuo2WjKal73Bo6cWQvC+Aub5dzlo7vWK/rb qOKKdqZCxd0RIYZ00TwbhA6Bd0XJSSZqrfCtBaCLcpLAa/jGmHzigpnruj792nO9 kuBSCyKEq8p1OhRDKB+1OHocCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEA39W62 6Jj+mUO9PFDtQwZlzJGdMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCorSCGLwMjk/r2cPxC7YbrrSz1Z0+TmB6KuLt+ZL9pvwA39ZEUZNsh aouUdh+FLJWhvDuyJAn4cJHdRyLrNlFU7Ye0cXFMArtgEl8BxzUULZqhye9CB7+v LCp6lwPguDlCSJFYg1xiZd4EU42sF9L1xIhaipvyRi7lgRcQmgEO1G6hLlEVgA+m ndwNC/JGPAJZfxdBXV6skzx2LVtZ9lg36mFsh04iZyDzCfov6ZzUJW7T69gfBnhS zHvt6zKtBEZUKWIYAdZsyi0m1cAeFiHfH+jwpK0iOHiZYaRx68hDBZDsZKoJdY38 Vxc9ZikLaio3dRCw5P++aPSovqKw+l1V -----END CERTIFICATE-----Generated at Thu Sep 11 00:29:27 2025 by rpki-client