$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft File: Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft (raw, json) Hash identifier: cJin9y47Mmb328pPBr1tQqKJkLtq16fMx1rGEKUuVts= Subject key identifier: 6C:6A:E6:8D:4C:C9:D9:1F:95:97:4F:25:D2:AE:58:A3:5A:82:6E:14 Authority key identifier: 52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B Certificate issuer: /CN=A91F9C95/serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B Certificate serial: 0BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft Manifest number: 0BD9 Signing time: Sun 24 Aug 2025 18:51:46 +0000 Manifest this update: Sun 24 Aug 2025 18:51:46 +0000 Manifest next update: Sun 31 Aug 2025 18:51:46 +0000 Files and hashes: 1: Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl (hash: C+jdhLh5qT8nvVnXMC2JkXNyYF/DWfFoJ5AOR55Chs4=) 2: C7F8C83C217311EA93A29F82C4F9AE02.roa (hash: r5uWTU+sYs/vGgm5oMxXApeoTDyzrDhvLimJL0rhlzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3039 (0xbdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C95, serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B Validity Not Before: Aug 24 18:51:46 2025 GMT Not After : Aug 31 18:51:46 2025 GMT Subject: CN=68ab5f42-38cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:17:2d:6f:d0:42:2b:d6:2b:77:a2:11:ee:e4: c6:6d:e5:dd:2d:9e:7e:f1:50:5e:15:fd:7f:f7:41: c1:60:65:fb:e9:93:22:c0:2e:97:68:57:bd:8f:a7: 1b:29:d9:05:73:8f:23:df:eb:52:8e:12:9d:f7:f7: 00:a8:3c:97:da:ba:d6:57:09:1f:01:79:d8:9f:c9: 49:a2:fe:e5:a4:67:42:42:dc:6c:ac:f5:cd:78:11: 39:9d:88:07:39:fe:96:7a:15:cb:11:a5:a2:55:c0: cb:6e:1e:bf:8c:1d:32:96:98:f5:7d:74:1a:20:30: 64:dc:1b:38:81:c1:d9:d1:6c:11:0d:d0:27:7b:6f: 58:02:86:d0:4c:3a:09:29:c3:24:32:7b:7d:ea:ca: c5:4a:a6:fb:c3:15:1c:5d:e8:5d:6d:95:ba:a4:84: 1f:1f:32:86:a8:80:38:7c:06:76:fe:80:40:d8:b0: d4:32:4f:29:6e:be:2a:a7:92:6b:7b:69:28:46:6a: ab:8f:d3:25:f1:14:6b:15:3b:1a:b5:cd:31:83:08: 13:95:b3:66:b9:46:31:7d:43:36:36:c5:54:a9:c2: ee:3c:16:c9:85:96:95:7a:b9:1e:ab:4c:d0:e8:5f: f6:4d:9c:0b:3e:e4:f2:3e:e0:95:c1:75:2e:05:75: 08:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6A:E6:8D:4C:C9:D9:1F:95:97:4F:25:D2:AE:58:A3:5A:82:6E:14 X509v3 Authority Key Identifier: keyid:52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:5c:c4:1f:5c:a3:88:da:4c:d6:4a:56:c3:ec:fb:46:bc:a6: 1a:51:5f:88:6b:c9:d1:a9:23:20:2a:0c:a5:dd:3c:43:3a:4f: f4:55:66:df:ec:58:48:24:ad:4c:52:ad:c2:c0:e4:48:1b:2f: 93:2b:92:33:f3:ae:29:28:82:b4:0b:df:a8:d7:b3:cb:04:8c: b0:6d:74:39:46:e6:27:06:30:87:91:f9:d2:cf:26:49:e0:76: d0:b2:c1:85:62:e5:3b:8e:70:51:8f:9b:b8:10:6d:1d:1c:77: 31:a2:e0:b2:a0:f5:8a:3a:a0:b7:01:e3:a5:b4:59:11:37:0f: d9:c5:69:5c:c3:dc:1a:37:65:77:9c:db:a3:b1:da:93:22:ba: 52:f4:eb:5f:77:d6:af:38:d7:cb:b5:59:ec:b1:e8:42:f9:72: 37:24:ab:58:a4:90:50:b0:e4:cc:83:f4:3c:db:c2:78:47:a6: 7c:2c:b3:f1:c8:0a:60:c3:cf:34:b4:11:e6:e9:ce:fc:e9:25: b7:e9:9a:c8:5e:d8:b1:03:7b:8e:ac:83:a3:45:3e:bc:94:7e: 9f:01:e6:c4:3a:09:68:ac:f1:ba:46:81:e2:99:18:87:7e:37: 91:80:9e:fc:e0:3f:62:8f:5d:2a:b9:dc:a6:d2:ab:4c:ae:f3: fc:64:ad:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDOTUxMTAvBgNVBAUTKDUyQkY2RjYyRUJDQTI2QjFEQzQyN0ZCRUFGRTcyMEZC QjA5N0MyMUIwHhcNMjUwODI0MTg1MTQ2WhcNMjUwODMxMTg1MTQ2WjAYMRYwFAYD VQQDEw02OGFiNWY0Mi0zOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBctb9BCK9Yrd6IR7uTGbeXdLZ5+8VBeFf1/90HBYGX76ZMiwC6XaFe9j6cb KdkFc48j3+tSjhKd9/cAqDyX2rrWVwkfAXnYn8lJov7lpGdCQtxsrPXNeBE5nYgH Of6WehXLEaWiVcDLbh6/jB0ylpj1fXQaIDBk3Bs4gcHZ0WwRDdAne29YAobQTDoJ KcMkMnt96srFSqb7wxUcXehdbZW6pIQfHzKGqIA4fAZ2/oBA2LDUMk8pbr4qp5Jr e2koRmqrj9Ml8RRrFTsatc0xgwgTlbNmuUYxfUM2NsVUqcLuPBbJhZaVerkeq0zQ 6F/2TZwLPuTyPuCVwXUuBXUIpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxq5o1M ydkflZdPJdKuWKNagm4UMB8GA1UdIwQYMBaAFFK/b2Lryiax3EJ/vq/nIPuwl8Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM5NS9CQTNFQzg2RTIx NzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0pySGNRbi0tci1jZy03Q1h3 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VyOXZZdXZLSnJIY1FuLS1yLWNnLTdDWHdocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUM5NS9CQTNFQzg2RTIxNzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0py SGNRbi0tci1jZy03Q1h3aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATXMQfXKOI2kzWSlbD7PtGvKYaUV+Ia8nRqSMgKgyl3TxDOk/0VWbf 7FhIJK1MUq3CwORIGy+TK5Iz864pKIK0C9+o17PLBIywbXQ5RuYnBjCHkfnSzyZJ 4HbQssGFYuU7jnBRj5u4EG0dHHcxouCyoPWKOqC3AeOltFkRNw/ZxWlcw9waN2V3 nNujsdqTIrpS9Otfd9avONfLtVnssehC+XI3JKtYpJBQsOTMg/Q828J4R6Z8LLPx yApgw880tBHm6c786SW36ZrIXtixA3uOrIOjRT68lH6fAebEOglorPG6RoHimRiH fjeRgJ784D9ij10qudym0qtMrvP8ZK1S -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:30 2025 by rpki-client