$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft File: rUMyA4JywtsyFd2jrfsBU1QVaRM.mft (raw, json) Hash identifier: TyDdASBrBO0qtgSVEfzDq+WDKmsbT38AzFlkIdFQWyM= Subject key identifier: CC:78:EC:5C:10:E6:E1:A0:C7:0B:08:B9:FD:27:6B:C7:17:7A:7E:F3 Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 Certificate issuer: /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft Manifest number: DB Signing time: Fri 05 Sep 2025 07:12:23 +0000 Manifest this update: Fri 05 Sep 2025 07:12:22 +0000 Manifest next update: Fri 12 Sep 2025 07:12:22 +0000 Files and hashes: 1: rUMyA4JywtsyFd2jrfsBU1QVaRM.crl (hash: Ua2oRy6jtnoJASwrIigNzTM2VX2ZfUVWRqpEUgCbEzo=) 2: F74324B0464511EFA4CCFA6DC4F9AE02.roa (hash: reDFQAq+wjuHSjSgpYxauoEHpUtogIXvvCLXEGX4Ni8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064, serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Validity Not Before: Sep 5 07:12:22 2025 GMT Not After : Sep 12 07:12:22 2025 GMT Subject: CN=68ba8d57-5a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0f:60:cf:74:a7:d7:8e:a0:b0:07:6e:aa:6e: 9b:ed:0c:e0:a5:0c:88:8f:6f:0a:8a:88:e3:76:28: 27:9e:3b:63:3e:be:a5:37:57:4b:f6:ae:04:fe:70: a6:ce:3a:6a:d2:c4:58:95:80:ef:10:05:81:bb:cb: f5:30:98:95:e2:0a:6e:2a:37:04:3c:6e:81:a5:a5: 59:73:e3:fe:89:46:87:fa:8b:99:4f:51:dc:18:c3: d9:50:c6:a0:62:cf:82:5f:59:38:ea:fa:02:ff:b9: 3f:66:d7:ad:17:9b:ae:dd:fd:a6:10:69:24:5c:30: f3:cf:97:6d:d0:38:fb:8f:c7:ab:79:32:b9:de:6f: 3d:a2:14:77:d8:ee:10:f6:e8:fc:b3:cf:0c:4a:7f: f7:0e:3f:6f:ae:4d:5e:a6:4f:9a:82:29:b9:cd:1e: 11:c0:e3:44:93:18:78:87:20:5b:fb:94:59:f2:a7: 32:aa:f1:31:7d:dc:4d:89:3b:3e:46:18:5a:48:a9: 75:b7:5f:f7:24:18:88:30:22:67:c9:37:6d:e4:e2: f2:95:2a:36:32:fd:33:1f:31:60:db:8e:bb:4f:f5: 85:d7:f6:28:62:04:42:7e:59:3e:15:0e:57:21:78: 87:e8:bb:05:bb:d3:28:a5:cf:bf:06:8b:78:83:1d: a5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:78:EC:5C:10:E6:E1:A0:C7:0B:08:B9:FD:27:6B:C7:17:7A:7E:F3 X509v3 Authority Key Identifier: keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:69:90:8f:76:59:31:97:03:ac:61:c4:b2:73:6a:50:7c:d4: c3:a8:da:62:66:26:8e:70:ea:92:b2:3f:37:db:27:43:60:60: 10:64:6a:95:77:77:96:d8:ec:5f:34:41:90:4e:69:c2:54:95: be:3b:df:86:ac:68:f0:b4:88:1c:3b:fd:b4:30:01:ec:c4:10: 6a:c8:05:dc:24:ee:58:b1:2a:8d:9c:9a:8a:59:73:8d:23:9d: 0d:97:6e:41:af:11:56:1b:ea:53:37:a6:8d:0c:a2:fe:e9:9b: b2:25:98:c6:68:81:5a:18:f6:92:15:4c:8b:90:67:18:30:34: ad:f1:9b:ef:c6:af:0b:62:5c:f9:c9:b9:8b:20:e7:43:64:e9: c9:b5:49:c8:26:9c:64:ee:dc:91:0f:ad:b8:bc:6c:ac:da:75: 2a:80:38:1f:c5:22:db:46:12:61:8d:87:38:dc:5a:fc:ad:54: c0:41:37:34:10:d9:ae:37:36:03:98:c1:e3:0e:7e:da:55:05: 6d:52:6e:3c:74:32:ea:f7:c8:93:85:b0:3c:6b:63:3a:75:bc: 3d:c0:c6:b1:f2:eb:11:78:04:f5:d3:2c:b3:cc:d2:d5:79:ff: 13:5c:de:16:40:71:84:ee:22:de:d1:81:b8:ad:f6:b3:21:d1: fc:4a:23:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEFENDMzMjAzODI3MkMyREIzMjE1RERBM0FERkIwMTUz NTQxNTY5MTMwHhcNMjUwOTA1MDcxMjIyWhcNMjUwOTEyMDcxMjIyWjAYMRYwFAYD VQQDEw02OGJhOGQ1Ny01YTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQ9gz3Sn146gsAduqm6b7QzgpQyIj28KiojjdignnjtjPr6lN1dL9q4E/nCm zjpq0sRYlYDvEAWBu8v1MJiV4gpuKjcEPG6BpaVZc+P+iUaH+ouZT1HcGMPZUMag Ys+CX1k46voC/7k/ZtetF5uu3f2mEGkkXDDzz5dt0Dj7j8ereTK53m89ohR32O4Q 9uj8s88MSn/3Dj9vrk1epk+agim5zR4RwONEkxh4hyBb+5RZ8qcyqvExfdxNiTs+ RhhaSKl1t1/3JBiIMCJnyTdt5OLylSo2Mv0zHzFg2467T/WF1/YoYgRCflk+FQ5X IXiH6LsFu9Mopc+/Bot4gx2lXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMx47FwQ 5uGgxwsIuf0na8cXen7zMB8GA1UdIwQYMBaAFK1DMgOCcsLbMhXdo637AVNUFWkT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GM0NBNjE3MjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0c3lGZDJqcmZzQlUxUVZh Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjA2NC9GM0NBNjE3MjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0 c3lGZDJqcmZzQlUxUVZhUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnaZCPdlkxlwOsYcSyc2pQfNTDqNpiZiaOcOqSsj832ydDYGAQZGqV d3eW2OxfNEGQTmnCVJW+O9+GrGjwtIgcO/20MAHsxBBqyAXcJO5YsSqNnJqKWXON I50Nl25BrxFWG+pTN6aNDKL+6ZuyJZjGaIFaGPaSFUyLkGcYMDSt8Zvvxq8LYlz5 ybmLIOdDZOnJtUnIJpxk7tyRD624vGys2nUqgDgfxSLbRhJhjYc43Fr8rVTAQTc0 ENmuNzYDmMHjDn7aVQVtUm48dDLq98iThbA8a2M6dbw9wMax8usReAT10yyzzNLV ef8TXN4WQHGE7iLe0YG4rfazIdH8SiOE -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:06 2025 by rpki-client