$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: LxydhOeMqP1IZ4gGI8jeLAJHsFHtnXBw/TBkE22epXg= Subject key identifier: 12:39:80:B6:DB:B0:3A:59:60:9D:25:41:B5:BC:17:37:1E:97:0E:A1 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 0149 Signing time: Sat 23 Aug 2025 04:27:43 +0000 Manifest this update: Sat 23 Aug 2025 04:27:43 +0000 Manifest next update: Sat 30 Aug 2025 04:27:43 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: MG1pAgozc14OdPmrA/NyTRAw6IuQb14C4GgLhvnnpkg=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Aug 23 04:27:43 2025 GMT Not After : Aug 30 04:27:43 2025 GMT Subject: CN=68a9433f-838c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:35:18:c9:1f:b9:be:80:ba:ac:75:78:c6:ae: 0a:32:56:1f:59:40:e9:24:a1:87:b1:95:5e:fc:eb: 9d:92:9d:4d:a2:a1:11:4b:05:1a:9f:64:0b:11:71: ec:6c:f2:40:a7:4a:75:f0:e2:7b:cd:49:9b:b2:42: 36:07:f6:aa:13:db:01:22:b3:68:e7:08:24:bf:90: 6e:d7:4e:3f:cd:85:51:8d:e2:da:07:da:29:27:10: de:b1:a1:f7:6f:68:f4:8c:6e:fd:44:74:23:88:8d: 19:c6:34:11:bd:87:2a:19:ba:e7:d9:c8:9a:53:27: 62:a0:e0:dd:7f:ef:f1:6d:94:c6:47:8d:d0:5b:b7: f1:8a:df:ea:a7:57:66:76:fb:94:34:61:d3:e3:0e: 74:40:eb:8b:51:b5:b0:4e:d6:37:b5:a2:89:8c:07: 9e:35:63:c6:6a:87:91:02:e9:f1:f0:4c:e2:39:6e: 6c:53:24:76:92:d2:bc:78:e5:d7:f1:cd:5e:af:6e: c9:70:92:95:9e:f0:ad:00:94:f0:27:4e:6e:93:7a: 02:a1:4c:77:8b:75:3c:6b:7a:c6:04:be:dc:42:9b: 19:1a:0e:6b:7d:1f:a4:d2:45:23:ab:0d:4e:5b:0b: dd:3c:b4:1a:ac:d4:00:e0:3b:bb:b1:28:de:ef:d4: 45:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:39:80:B6:DB:B0:3A:59:60:9D:25:41:B5:BC:17:37:1E:97:0E:A1 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:7e:5c:d0:71:51:bf:06:72:8c:34:1e:a0:6e:00:d6:83:b3: bd:ce:dc:9d:49:54:27:2f:a0:ba:a1:04:01:df:bc:fa:0d:a3: 0f:cf:44:8a:6d:b8:65:53:ec:e8:24:42:74:3c:d6:ff:2d:fb: 9e:1a:c6:b1:a5:05:34:7b:a5:83:51:51:71:cb:d5:81:ac:2d: 50:84:55:0e:99:e6:89:19:0b:a3:d6:f8:08:32:87:39:1b:16: 37:bc:af:17:94:02:b2:f5:72:68:0c:df:24:4a:7f:10:b1:61: 4d:66:5d:3d:0e:78:25:72:9d:f2:c1:5e:cd:6d:6a:5f:a2:71: 85:7c:4e:83:5a:ef:0a:21:36:dd:37:e4:80:c4:8f:9d:df:59: 33:a2:9a:19:0d:21:6d:44:27:96:98:55:c4:14:6b:10:f0:93: 47:4e:60:9b:d6:1a:19:5e:96:90:0d:4b:f5:eb:f8:1b:f8:be: 4a:a3:00:27:63:87:af:38:c5:44:22:9b:8b:0a:79:0b:d5:fb: d2:44:eb:38:f9:44:68:19:4a:a6:d3:07:78:8a:c0:64:33:0d: ec:05:bf:01:f3:09:5f:98:a5:fc:c7:97:0f:f7:1c:ea:22:5d: 9a:9d:a7:2e:b1:08:54:8a:8f:cf:31:67:f4:7b:b5:e4:fb:24: 27:43:dd:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwODIzMDQyNzQzWhcNMjUwODMwMDQyNzQzWjAYMRYwFAYD VQQDEw02OGE5NDMzZi04MzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojUYyR+5voC6rHV4xq4KMlYfWUDpJKGHsZVe/Oudkp1NoqERSwUan2QLEXHs bPJAp0p18OJ7zUmbskI2B/aqE9sBIrNo5wgkv5Bu104/zYVRjeLaB9opJxDesaH3 b2j0jG79RHQjiI0ZxjQRvYcqGbrn2ciaUydioODdf+/xbZTGR43QW7fxit/qp1dm dvuUNGHT4w50QOuLUbWwTtY3taKJjAeeNWPGaoeRAunx8EziOW5sUyR2ktK8eOXX 8c1er27JcJKVnvCtAJTwJ05uk3oCoUx3i3U8a3rGBL7cQpsZGg5rfR+k0kUjqw1O WwvdPLQarNQA4Du7sSje79RFvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBI5gLbb sDpZYJ0lQbW8Fzcelw6hMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlflzQcVG/BnKMNB6gbgDWg7O9ztydSVQnL6C6oQQB37z6DaMPz0SK bbhlU+zoJEJ0PNb/LfueGsaxpQU0e6WDUVFxy9WBrC1QhFUOmeaJGQuj1vgIMoc5 GxY3vK8XlAKy9XJoDN8kSn8QsWFNZl09Dnglcp3ywV7NbWpfonGFfE6DWu8KITbd N+SAxI+d31kzopoZDSFtRCeWmFXEFGsQ8JNHTmCb1hoZXpaQDUv16/gb+L5KowAn Y4evOMVEIpuLCnkL1fvSROs4+URoGUqm0wd4isBkMw3sBb8B8wlfmKX8x5cP9xzq Il2anacusQhUio/PMWf0e7Xk+yQnQ93i -----END CERTIFICATE-----Generated at Sat Aug 23 19:33:28 2025 by rpki-client