$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: tBc2Ox1YHCamn1Qx1zBYu8YG83wfIDOOLA0UMrmP9hM= Subject key identifier: 2D:0A:99:B5:B9:6F:FD:33:29:66:08:A2:15:1B:CD:74:4C:E7:2C:47 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: D9 Signing time: Sun 07 Sep 2025 06:02:14 +0000 Manifest this update: Sun 07 Sep 2025 06:02:14 +0000 Manifest next update: Sun 14 Sep 2025 06:02:14 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: U3fnIMFNy42gZjebHIVIiAde075+ioHFTaRIP3V0ma0=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: Ge+55CQegGWCZISlkeWVyEDQbw8xhE1lFYLjXYnwl5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:02:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: Sep 7 06:02:14 2025 GMT Not After : Sep 14 06:02:14 2025 GMT Subject: CN=68bd1fe6-5945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:fb:02:8c:2b:ec:53:7b:4d:4d:82:52:9d: 59:98:2d:77:a7:99:5f:1a:c2:82:b9:1b:cc:7b:75: f4:62:14:f6:b0:71:68:60:79:18:47:4c:85:6a:1b: 6c:b7:4d:f2:10:39:a2:8c:13:17:61:d9:83:0d:d8: c7:7d:2a:2a:6e:bc:0c:49:f9:bb:16:cc:b7:3a:e5: 4e:dd:31:5c:ab:a5:36:a3:8f:f4:33:1d:0d:f6:92: cb:02:e4:57:04:12:39:31:fe:6d:fd:ab:ef:a1:32: 5a:8d:a4:09:a6:6c:d5:3f:af:3d:d1:43:0a:1b:c9: eb:8c:cd:bc:2c:e8:42:3e:9d:79:a0:92:e0:36:a6: f8:47:3b:4e:0d:8b:76:d5:9a:17:36:56:4f:58:32: 69:2c:8d:46:a4:d3:89:51:02:19:0b:bb:dd:aa:bd: 66:7d:e5:27:b9:e4:6a:21:40:29:fa:2d:83:c5:45: 39:21:cd:c8:dd:b2:ed:54:eb:46:60:4c:fc:94:86: 2c:28:bf:77:40:33:b1:62:52:1d:8e:e7:c9:b6:92: f3:27:b9:26:3e:7b:12:09:20:86:02:fc:8f:a6:81: cb:98:cd:f7:65:b4:62:0a:14:ac:ab:5e:b3:61:f8: 04:56:6f:f8:d3:7b:ec:f0:26:4c:f4:92:42:98:f2: 83:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0A:99:B5:B9:6F:FD:33:29:66:08:A2:15:1B:CD:74:4C:E7:2C:47 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:ac:7d:08:b9:52:1c:0d:c6:4c:17:3e:ba:63:fe:88:99:ce: 29:a3:e4:a4:23:d7:25:4e:90:e6:5f:3d:a3:7c:c3:ae:84:dd: 20:0f:62:85:fd:db:db:71:96:fe:3f:b4:75:57:36:50:cc:18: 36:1f:37:b0:be:d1:ff:cc:f7:ed:8d:8d:85:a9:9d:e8:5d:cf: 39:71:f1:43:5a:54:0a:a5:d8:09:d3:0d:3a:34:14:ff:fc:1b: a7:d7:c9:bd:aa:0c:1d:89:73:b2:3f:10:07:6d:0f:d0:97:1f: b7:ab:ad:5d:0a:c5:22:df:b1:10:84:1a:9f:4c:da:4e:5c:c4: 4f:3f:08:47:9b:3b:b3:4c:c1:99:b5:14:ac:68:70:60:a9:16: 93:1e:58:38:e1:54:d4:34:28:65:85:d4:ae:b6:43:a2:ef:2c: ea:4c:b3:93:e4:3c:bf:4d:13:35:a9:2b:d1:47:cc:d6:5b:43: c9:d4:8c:d5:e7:54:51:1c:53:ed:e8:d3:95:50:7a:0c:96:f6: 66:06:e5:62:8c:f4:f7:81:4b:d3:73:42:28:a4:d1:4c:49:1f: ff:06:14:7f:3a:72:16:c3:ff:d7:a5:c9:c8:f6:cc:89:06:40: 03:75:12:27:2d:5a:b2:9b:8f:4b:f3:7e:b8:1e:db:ab:d5:17: 63:40:18:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB RTI3MTExRjAwHhcNMjUwOTA3MDYwMjE0WhcNMjUwOTE0MDYwMjE0WjAYMRYwFAYD VQQDEw02OGJkMWZlNi01OTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp77Aowr7FN7TU2CUp1ZmC13p5lfGsKCuRvMe3X0YhT2sHFoYHkYR0yFahts t03yEDmijBMXYdmDDdjHfSoqbrwMSfm7Fsy3OuVO3TFcq6U2o4/0Mx0N9pLLAuRX BBI5Mf5t/avvoTJajaQJpmzVP6890UMKG8nrjM28LOhCPp15oJLgNqb4RztODYt2 1ZoXNlZPWDJpLI1GpNOJUQIZC7vdqr1mfeUnueRqIUAp+i2DxUU5Ic3I3bLtVOtG YEz8lIYsKL93QDOxYlIdjufJtpLzJ7kmPnsSCSCGAvyPpoHLmM33ZbRiChSsq16z YfgEVm/403vs8CZM9JJCmPKDwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0KmbW5 b/0zKWYIohUbzXRM5yxHMB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1 QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF ZlRJRVZGSVllM1N1SnhFZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9rH0IuVIcDcZMFz66Y/6Imc4po+SkI9clTpDmXz2jfMOuhN0gD2KF /dvbcZb+P7R1VzZQzBg2HzewvtH/zPftjY2FqZ3oXc85cfFDWlQKpdgJ0w06NBT/ /Bun18m9qgwdiXOyPxAHbQ/Qlx+3q61dCsUi37EQhBqfTNpOXMRPPwhHmzuzTMGZ tRSsaHBgqRaTHlg44VTUNChlhdSutkOi7yzqTLOT5Dy/TRM1qSvRR8zWW0PJ1IzV 51RRHFPt6NOVUHoMlvZmBuVijPT3gUvTc0IopNFMSR//BhR/OnIWw//XpcnI9syJ BkADdRInLVqym49L8364Htur1RdjQBjq -----END CERTIFICATE-----Generated at Tue Sep 9 06:38:41 2025 by rpki-client