$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: TE32AE46bzJ4f7KzDWuobZ9UuIW8vYIWSurQ81HRFmI= Subject key identifier: 19:59:7F:C0:3C:E2:6D:09:E3:33:3B:8B:5C:D0:72:2E:A3:43:05:0B Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 0200 Signing time: Thu 21 Aug 2025 02:28:07 +0000 Manifest this update: Thu 21 Aug 2025 02:28:07 +0000 Manifest next update: Thu 28 Aug 2025 02:28:07 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: UoHIuUkq8k9qxGU4ZwpgqhFwK4UdB4/N8coAmRiSXfQ=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: MO9P1WGnI9RODyxLdTa3D8Yco4aTU5+oDDX9VBwpv+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Aug 21 02:28:07 2025 GMT Not After : Aug 28 02:28:07 2025 GMT Subject: CN=68a68437-0afe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c9:ca:8b:59:14:c0:0f:18:2e:2a:24:7e:ad: 14:2c:d8:20:4b:3b:d1:d0:92:15:44:98:97:96:c9: 2e:ca:91:a6:ff:58:0d:a5:af:94:ab:68:b8:5d:d6: a9:3e:41:b0:cd:0a:d6:b1:87:ce:4e:0d:b1:e8:4d: 60:da:9c:af:14:77:83:14:24:92:d9:2a:ab:21:f3: a7:fa:c2:ff:46:ef:cf:84:47:2e:5c:3b:9f:b3:3a: 21:61:6e:d8:e8:aa:0a:30:c8:46:9b:1c:83:6c:93: 47:bb:b7:b5:54:06:4f:83:b4:52:a4:5d:e8:bb:28: 23:f1:54:0a:e5:ce:be:06:28:22:ec:db:e0:bd:89: 83:ad:ba:c4:0f:23:bb:de:3c:52:70:4f:24:a1:ce: 0e:3b:6a:3a:0d:82:a3:e2:0b:6e:bc:1d:c9:58:a1: 54:48:53:e7:11:d0:11:43:67:58:60:5a:20:5a:b8: d2:aa:0f:0c:56:6e:28:4b:60:7c:e0:af:ea:e7:db: f5:4e:49:0b:99:4c:ff:e5:65:a4:d0:f6:e3:00:f8: ed:63:58:56:cf:11:21:04:43:ec:df:e8:9b:6c:24: 30:20:94:a3:d9:e4:54:98:ed:90:e3:0b:3f:67:ac: 02:72:82:92:a8:1e:e5:24:16:bc:f6:d5:01:0e:17: 60:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:59:7F:C0:3C:E2:6D:09:E3:33:3B:8B:5C:D0:72:2E:A3:43:05:0B X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:7d:52:aa:6e:8d:10:49:b9:1f:ff:42:18:4e:77:bd:6a:0c: 93:52:8a:9a:1d:bf:4b:4b:4b:80:46:72:19:88:0f:76:3e:7a: 3b:46:66:21:6b:a9:d4:e3:5c:2a:bd:58:36:70:1f:d0:57:97: 72:99:dc:d8:e4:bc:d6:f1:1c:7c:92:58:13:21:d2:6e:88:ce: 50:21:8e:2f:fd:84:c8:d6:22:a5:82:65:68:7d:98:4f:c9:f6: 20:00:4a:c2:71:1b:09:44:73:7d:85:7d:83:f4:14:de:e5:55: d8:29:98:6f:5f:a5:ce:cd:1a:b8:a3:ca:c6:4f:ee:d2:f5:18: 17:a6:e9:2d:52:e1:53:6e:ce:89:2e:ad:84:e4:79:37:5b:52: 31:21:39:b6:bb:97:f3:e3:21:dc:9c:73:35:96:d5:55:40:b6: 78:0c:e2:b6:f0:54:9e:02:b9:f1:28:5a:1c:5a:9c:2b:e1:a8: ed:e7:1a:46:a7:fd:6a:50:73:f9:15:5a:a8:4b:19:22:1a:39: 86:13:a8:8e:91:d7:79:9b:e6:08:d0:e7:bb:ce:ac:93:47:5c: ad:35:d3:b3:1f:fe:ca:c0:d7:60:37:32:69:5a:6c:69:98:f2: 29:10:70:e2:05:55:82:76:7e:68:fb:3b:f9:d7:9d:0d:69:5b: 7d:5b:75:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUwODIxMDIyODA3WhcNMjUwODI4MDIyODA3WjAYMRYwFAYD VQQDEw02OGE2ODQzNy0wYWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscnKi1kUwA8YLiokfq0ULNggSzvR0JIVRJiXlskuypGm/1gNpa+Uq2i4Xdap PkGwzQrWsYfOTg2x6E1g2pyvFHeDFCSS2SqrIfOn+sL/Ru/PhEcuXDufszohYW7Y 6KoKMMhGmxyDbJNHu7e1VAZPg7RSpF3ouygj8VQK5c6+Bigi7NvgvYmDrbrEDyO7 3jxScE8koc4OO2o6DYKj4gtuvB3JWKFUSFPnEdARQ2dYYFogWrjSqg8MVm4oS2B8 4K/q59v1TkkLmUz/5WWk0PbjAPjtY1hWzxEhBEPs3+ibbCQwIJSj2eRUmO2Q4ws/ Z6wCcoKSqB7lJBa89tUBDhdgUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlZf8A8 4m0J4zM7i1zQci6jQwULMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8fVKqbo0QSbkf/0IYTne9agyTUoqaHb9LS0uARnIZiA92Pno7RmYh a6nU41wqvVg2cB/QV5dymdzY5LzW8Rx8klgTIdJuiM5QIY4v/YTI1iKlgmVofZhP yfYgAErCcRsJRHN9hX2D9BTe5VXYKZhvX6XOzRq4o8rGT+7S9RgXpuktUuFTbs6J Lq2E5Hk3W1IxITm2u5fz4yHcnHM1ltVVQLZ4DOK28FSeArnxKFocWpwr4ajt5xpG p/1qUHP5FVqoSxkiGjmGE6iOkdd5m+YI0Oe7zqyTR1ytNdOzH/7KwNdgNzJpWmxp mPIpEHDiBVWCdn5o+zv5150NaVt9W3Wx -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:59 2025 by rpki-client