$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: UdSTcRf+YnPXEjb4w4yOtGDHBXJwedhGyeJmxIkMUSk= Subject key identifier: CF:00:58:D4:64:BF:88:56:CA:DE:F9:67:C3:9E:71:1B:C9:50:0E:24 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 04E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 04CF Signing time: Fri 19 Sep 2025 00:15:45 +0000 Manifest this update: Fri 19 Sep 2025 00:15:44 +0000 Manifest next update: Fri 26 Sep 2025 00:15:44 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: KUwqWZjQB0GK02BZNw10dV6JOC5BUO7f9/9pvamSmQk=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1256 (0x4e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Sep 19 00:15:44 2025 GMT Not After : Sep 26 00:15:44 2025 GMT Subject: CN=68cca0b0-7162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:76:30:3a:5d:f2:85:ec:93:e6:01:ac:ba:2a: 14:63:c3:8b:3a:95:c5:32:c9:1d:d5:7b:76:56:30: 0e:e7:47:7d:40:6c:fc:76:1e:51:cb:53:cf:fe:35: 0d:1e:76:62:04:9e:bb:20:dc:c6:30:8c:3e:ba:a5: 91:6f:9c:b2:5f:4c:b8:dc:7a:8f:b3:48:81:02:6d: d9:b8:50:70:4f:94:84:03:6e:2f:28:ca:af:56:d7: c6:56:80:5b:b4:03:f8:ea:65:2c:cd:f7:94:ad:0e: e8:bc:a2:83:01:9a:ff:7b:8d:d0:d5:be:ae:e3:fb: a1:97:27:db:97:85:9e:af:16:70:9c:75:c1:8b:f8: 93:12:1c:43:19:bf:0e:8b:61:eb:1d:31:33:dc:de: 9b:ab:e8:9d:6a:fc:fd:6d:f7:f9:69:1d:f5:1b:5a: 5b:94:59:b7:ce:3c:74:41:e4:b3:5a:11:4e:ac:ec: 60:cf:4a:e4:41:d3:40:df:ae:de:a7:cb:c2:ca:4c: 0b:01:eb:a1:23:46:86:7f:cc:9d:98:cd:9e:6a:c0: 80:62:7e:43:78:56:db:c4:eb:b7:4f:1b:53:4d:d4: e3:81:d2:84:5e:10:7e:71:d7:04:70:db:d9:57:ba: e2:28:49:87:32:fd:57:1c:c5:9d:93:51:22:ab:10: 8f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:00:58:D4:64:BF:88:56:CA:DE:F9:67:C3:9E:71:1B:C9:50:0E:24 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:85:02:06:73:7f:5e:d5:f2:78:39:0a:35:a6:f1:81:c2:1e: 4a:c7:4f:7c:3c:f8:ef:4c:e2:cf:51:6a:75:b2:fa:b1:cb:87: f8:44:b7:5e:31:81:33:2c:b4:74:c1:28:a0:c0:0b:d3:65:c3: e3:73:30:84:12:71:25:5e:ae:d7:d4:a6:a1:df:85:e1:25:a0: 45:09:74:76:35:00:3c:2b:9a:71:d8:e7:d0:7d:f5:2c:b5:ca: 29:13:b5:08:80:8a:f9:58:4b:2e:b5:03:45:20:8a:14:05:61: 75:77:af:84:74:ee:fd:66:ce:4a:25:bf:ba:04:97:bf:f4:f2: 5d:2b:44:38:39:c7:dc:cf:6a:77:6b:4e:92:e7:1b:2f:c7:f8: fb:3d:53:8e:63:ac:46:b7:09:2f:28:69:f7:50:85:f8:1e:05: 63:21:3b:2d:a9:40:d1:f1:d4:43:24:4a:8c:fd:92:28:02:fb: f2:a4:e7:74:d0:b3:9d:69:32:7e:04:68:bf:78:5e:66:38:90: 25:d4:58:b9:1a:d4:43:30:6d:54:76:95:08:a5:e3:35:a9:d0: d4:3c:88:06:1f:66:ff:aa:ac:cd:51:0c:70:82:72:df:04:a4: fb:a3:3a:66:1a:95:2d:93:ce:35:52:81:6a:d6:fc:fe:cb:c6: e6:eb:76:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUwOTE5MDAxNTQ0WhcNMjUwOTI2MDAxNTQ0WjAYMRYwFAYD VQQDEw02OGNjYTBiMC03MTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnYwOl3yheyT5gGsuioUY8OLOpXFMskd1Xt2VjAO50d9QGz8dh5Ry1PP/jUN HnZiBJ67INzGMIw+uqWRb5yyX0y43HqPs0iBAm3ZuFBwT5SEA24vKMqvVtfGVoBb tAP46mUszfeUrQ7ovKKDAZr/e43Q1b6u4/uhlyfbl4WerxZwnHXBi/iTEhxDGb8O i2HrHTEz3N6bq+idavz9bff5aR31G1pblFm3zjx0QeSzWhFOrOxgz0rkQdNA367e p8vCykwLAeuhI0aGf8ydmM2easCAYn5DeFbbxOu3TxtTTdTjgdKEXhB+cdcEcNvZ V7riKEmHMv1XHMWdk1EiqxCPBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8AWNRk v4hWyt75Z8OecRvJUA4kMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMhQIGc39e1fJ4OQo1pvGBwh5Kx098PPjvTOLPUWp1svqxy4f4RLde MYEzLLR0wSigwAvTZcPjczCEEnElXq7X1Kah34XhJaBFCXR2NQA8K5px2OfQffUs tcopE7UIgIr5WEsutQNFIIoUBWF1d6+EdO79Zs5KJb+6BJe/9PJdK0Q4Ocfcz2p3 a06S5xsvx/j7PVOOY6xGtwkvKGn3UIX4HgVjITstqUDR8dRDJEqM/ZIoAvvypOd0 0LOdaTJ+BGi/eF5mOJAl1Fi5GtRDMG1UdpUIpeM1qdDUPIgGH2b/qqzNUQxwgnLf BKT7ozpmGpUtk841UoFq1vz+y8bm63a5 -----END CERTIFICATE-----Generated at Fri Sep 19 03:57:14 2025 by rpki-client