$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: HXZqFUm1hq12qh38+YRMLm3+LgU2fMiy0eAm+NsBrt8= Subject key identifier: BB:7C:15:85:67:61:14:88:0C:D7:48:CA:A8:39:55:EB:BD:C7:19:CB Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: C6 Signing time: Tue 09 Sep 2025 05:55:51 +0000 Manifest this update: Tue 09 Sep 2025 05:55:51 +0000 Manifest next update: Tue 16 Sep 2025 05:55:51 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: dxFMTo9Eyaac/BL/7ZgpZUAnzCI1UWk7qiYkP8cYPFs=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: IIflfQCAxW1X5tnyPUSdNiUWUvRyGX/zn4vbskdXfXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Sep 9 05:55:51 2025 GMT Not After : Sep 16 05:55:51 2025 GMT Subject: CN=68bfc167-a148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2a:31:a4:f9:a2:7e:d4:52:5e:90:da:e4:ad: bf:c4:d4:72:ba:3a:45:df:46:ff:10:9f:5c:ea:d3: 43:e9:bb:8b:12:b6:fa:05:a4:6d:aa:1e:96:c0:fb: 62:73:8c:6a:e0:ce:84:e6:be:9b:4d:f1:6f:bd:88: c2:36:c0:0e:aa:48:9d:90:e6:5b:f1:aa:73:ab:65: 11:91:cf:5f:e6:b4:4f:ed:f4:12:b8:d6:f0:cc:df: 08:66:d3:9e:c5:36:00:e7:a3:b5:46:74:ff:ed:a8: e6:95:46:b6:f3:5d:e5:b8:f8:d2:c8:af:ac:3d:8d: a7:99:64:6c:0d:f9:fb:7a:5a:0d:35:a2:df:1f:e9: be:5c:8e:7f:3b:41:14:ce:32:e0:c1:40:e8:04:a7: 84:d1:14:18:ec:bd:e8:ca:7a:10:b3:3e:e8:17:20: 83:df:55:d1:17:71:03:12:66:03:49:89:d0:be:11: ac:0d:b2:f7:9e:58:df:53:62:f6:1c:cb:10:86:eb: db:c9:8a:e0:34:91:aa:3f:c0:ca:23:63:e9:6b:ea: 52:db:94:16:3a:31:0c:48:67:fe:ab:a7:0d:6e:e7: 89:ae:cf:d7:e7:cc:14:b8:c5:88:6a:d5:02:f6:13: ab:06:d2:1c:9c:43:97:b0:21:29:ea:79:64:2b:53: b8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7C:15:85:67:61:14:88:0C:D7:48:CA:A8:39:55:EB:BD:C7:19:CB X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:98:0c:a4:58:0e:b6:98:4c:51:fa:68:f5:fc:47:40:eb:4c: 06:8f:20:c2:92:68:cd:d5:30:94:1f:54:f3:b4:3f:aa:ae:90: 5e:46:2a:16:63:4c:40:37:aa:eb:61:a1:dd:59:c6:be:6a:c1: bd:be:62:27:0f:2c:19:ac:a1:42:41:d7:f3:72:88:29:77:1e: 3e:5a:b6:f4:6d:0d:e0:93:08:ee:a8:50:41:98:53:1a:fd:ae: 34:52:f8:d7:4b:b7:f8:2b:cf:c4:6c:1e:c2:ab:8f:3b:17:ed: 2b:d5:60:95:ac:51:53:c4:46:5c:ee:62:54:13:d1:38:b7:f0: 4f:20:99:e1:d3:0e:39:26:5d:76:66:9c:8d:d9:9d:56:ae:e4: 7a:6e:21:dc:ad:0c:a5:62:f5:e1:e7:1f:37:bd:a9:31:f2:6a: f8:ca:87:ac:df:db:a3:26:57:3d:41:e5:cb:fc:87:40:5e:a2: b6:68:f5:e4:3c:c6:2f:0f:50:34:32:87:d7:79:bf:08:e9:f4: 1a:65:2f:c5:c6:58:5b:b8:42:c0:5c:ee:dc:d2:5c:c3:d2:35: 0d:bc:c8:f7:be:9a:5f:ac:9a:b8:61:ca:33:02:6a:89:e3:b6: 33:37:96:76:17:f5:08:5d:89:9e:28:96:f8:da:c5:b6:75:a5: da:99:4d:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUwOTA5MDU1NTUxWhcNMjUwOTE2MDU1NTUxWjAYMRYwFAYD VQQDEw02OGJmYzE2Ny1hMTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSoxpPmiftRSXpDa5K2/xNRyujpF30b/EJ9c6tND6buLErb6BaRtqh6WwPti c4xq4M6E5r6bTfFvvYjCNsAOqkidkOZb8apzq2URkc9f5rRP7fQSuNbwzN8IZtOe xTYA56O1RnT/7ajmlUa2813luPjSyK+sPY2nmWRsDfn7eloNNaLfH+m+XI5/O0EU zjLgwUDoBKeE0RQY7L3oynoQsz7oFyCD31XRF3EDEmYDSYnQvhGsDbL3nljfU2L2 HMsQhuvbyYrgNJGqP8DKI2Ppa+pS25QWOjEMSGf+q6cNbueJrs/X58wUuMWIatUC 9hOrBtIcnEOXsCEp6nlkK1O4iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLt8FYVn YRSIDNdIyqg5Veu9xxnLMB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCymAykWA62mExR+mj1/EdA60wGjyDCkmjN1TCUH1TztD+qrpBeRioW Y0xAN6rrYaHdWca+asG9vmInDywZrKFCQdfzcogpdx4+Wrb0bQ3gkwjuqFBBmFMa /a40UvjXS7f4K8/EbB7Cq487F+0r1WCVrFFTxEZc7mJUE9E4t/BPIJnh0w45Jl12 ZpyN2Z1WruR6biHcrQylYvXh5x83vakx8mr4yoes39ujJlc9QeXL/IdAXqK2aPXk PMYvD1A0MofXeb8I6fQaZS/FxlhbuELAXO7c0lzD0jUNvMj3vppfrJq4YcozAmqJ 47YzN5Z2F/UIXYmeKJb42sW2daXamU2Z -----END CERTIFICATE-----Generated at Tue Sep 9 13:41:31 2025 by rpki-client