$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: X+rhSr5fz+ejvDDHxsTX/QAsMqnEnc3P2H1SVGVe5rs= Subject key identifier: 61:03:B4:F4:24:BE:62:DF:25:DB:98:69:1B:F1:51:C1:47:2F:68:8A Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 03BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 03B3 Signing time: Sat 23 Aug 2025 01:00:19 +0000 Manifest this update: Sat 23 Aug 2025 01:00:18 +0000 Manifest next update: Sat 30 Aug 2025 01:00:18 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: 5iUcTZ1z+myJ4nZo2Y3ueK3NIe24yoaK5vg/KvqeVJg=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: 3ujH7nfRItY8BxT80xm2zxGd128K9q6N1aAV7Q13w4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF, serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: Aug 23 01:00:18 2025 GMT Not After : Aug 30 01:00:18 2025 GMT Subject: CN=68a912a2-74c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c6:0e:09:3f:44:73:54:55:f6:af:48:97:1f: bb:ad:a9:33:0f:c4:b0:2a:05:07:d8:7b:ee:33:7d: a2:e2:74:ff:1e:48:e1:33:81:c5:ee:04:fd:89:69: 39:aa:ff:dc:85:ff:b4:25:92:09:57:bf:e2:43:22: 08:fa:ee:0d:f9:00:27:c3:84:2f:86:92:55:4c:ea: e0:f6:09:fa:5c:ac:eb:75:4b:1c:22:70:dd:d1:d4: 10:7c:58:9d:7f:53:39:a8:ed:52:b0:8b:b4:74:69: 8a:7e:87:58:3d:6a:76:40:17:03:1e:83:13:b9:12: ec:86:ad:8d:f4:1a:f4:15:53:ac:38:dd:8e:65:b0: 1b:6d:3e:c7:ef:fe:7f:92:c1:9d:db:e1:45:fe:7e: a8:dc:68:a1:73:a0:c1:b3:87:7c:c1:98:27:48:64: ad:06:8f:1a:f9:fa:ce:39:f0:97:4e:7f:2e:5b:9f: aa:c2:f3:22:a5:f6:b1:26:08:8d:a7:02:d7:38:66: ab:a0:17:65:18:36:ef:db:aa:1d:af:15:df:b5:99: 08:61:55:ed:9a:3c:2b:ce:a1:2f:91:1d:07:c2:e0: d6:f3:91:99:ce:c6:f3:1b:a0:a4:74:45:4e:58:72: 60:75:11:69:98:13:5e:c1:1d:53:dd:6b:57:18:4b: 32:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:03:B4:F4:24:BE:62:DF:25:DB:98:69:1B:F1:51:C1:47:2F:68:8A X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:12:27:a7:78:4f:08:fc:ee:ce:6b:d8:51:75:e9:ba:c8:22: 93:67:48:f7:83:06:9b:9c:ad:e6:f2:11:08:1f:ef:e4:2f:2d: 3f:ef:5f:a0:59:5c:e8:e9:d2:22:dc:72:15:d5:54:d7:d6:21: 7b:a7:ba:39:ed:fc:62:d1:80:66:fe:16:ed:31:d8:3a:87:7f: ed:fe:01:24:87:ac:37:6d:3f:e8:e5:5a:74:2e:eb:03:92:5b: a0:bd:8f:16:00:46:69:84:11:83:b4:9e:2f:00:e0:ea:9c:8b: 49:6a:ca:d3:ef:53:85:35:3d:46:0f:aa:a6:46:7c:c0:ef:77: 56:de:44:e1:7d:e8:f6:90:5c:17:8d:85:d8:56:6e:96:1b:d3: c6:fd:78:7b:06:29:b2:c7:23:77:72:f2:1a:80:52:a7:27:2c: 4c:3c:ec:19:ef:ee:f5:23:ba:95:df:17:fa:85:3d:81:43:0d: 73:55:ad:4f:13:dc:0e:6b:f8:62:c6:e4:d6:3e:0b:62:eb:77: c9:5e:f2:1b:f3:d6:33:72:15:23:e2:4d:19:ca:e0:d8:b3:ec: 49:d9:77:e8:c4:51:ba:c8:b3:c0:f8:89:79:e3:c4:50:ef:d7: 76:57:c5:b1:0f:e0:2b:8a:1f:d8:cf:1f:f7:d3:a0:c1:02:8f: 2f:66:86:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjUwODIzMDEwMDE4WhcNMjUwODMwMDEwMDE4WjAYMRYwFAYD VQQDEw02OGE5MTJhMi03NGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cYOCT9Ec1RV9q9Ilx+7rakzD8SwKgUH2HvuM32i4nT/HkjhM4HF7gT9iWk5 qv/chf+0JZIJV7/iQyII+u4N+QAnw4QvhpJVTOrg9gn6XKzrdUscInDd0dQQfFid f1M5qO1SsIu0dGmKfodYPWp2QBcDHoMTuRLshq2N9Br0FVOsON2OZbAbbT7H7/5/ ksGd2+FF/n6o3Gihc6DBs4d8wZgnSGStBo8a+frOOfCXTn8uW5+qwvMipfaxJgiN pwLXOGaroBdlGDbv26odrxXftZkIYVXtmjwrzqEvkR0HwuDW85GZzsbzG6CkdEVO WHJgdRFpmBNewR1T3WtXGEsyvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEDtPQk vmLfJduYaRvxUcFHL2iKMB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJEieneE8I/O7Oa9hRdem6yCKTZ0j3gwabnK3m8hEIH+/kLy0/71+g WVzo6dIi3HIV1VTX1iF7p7o57fxi0YBm/hbtMdg6h3/t/gEkh6w3bT/o5Vp0LusD klugvY8WAEZphBGDtJ4vAODqnItJasrT71OFNT1GD6qmRnzA73dW3kThfej2kFwX jYXYVm6WG9PG/Xh7BimyxyN3cvIagFKnJyxMPOwZ7+71I7qV3xf6hT2BQw1zVa1P E9wOa/hixuTWPgti63fJXvIb89YzchUj4k0ZyuDYs+xJ2XfoxFG6yLPA+Il548RQ 79d2V8WxD+Arih/Yzx/306DBAo8vZoaF -----END CERTIFICATE-----Generated at Sat Aug 23 17:15:09 2025 by rpki-client