$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft File: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft (raw, json) Hash identifier: UPObwcuDMDBeJSu97lz1d+NqVI7Mq+UvVoJNR213IHk= Subject key identifier: D8:6D:E7:32:D5:DA:23:1E:98:95:D3:B5:2F:91:31:3A:B3:13:44:95 Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft Manifest number: 71 Signing time: Sat 23 Aug 2025 07:10:19 +0000 Manifest this update: Sat 23 Aug 2025 07:10:18 +0000 Manifest next update: Sat 30 Aug 2025 07:10:18 +0000 Files and hashes: 1: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl (hash: zFCVccX9tP8IZRAKKKpJelcraxD9418cxHCqwFmSIAA=) 2: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (hash: e53H18n/zt4tMpCTzx/LyyJ5rGfSmD0vKN+ZK6rIQ0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: Aug 23 07:10:18 2025 GMT Not After : Aug 30 07:10:18 2025 GMT Subject: CN=68a9695b-ac4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:1d:02:cc:27:31:75:f0:f7:1f:d1:34:3d: fc:26:df:4f:d7:f8:61:be:89:f9:70:c9:24:4b:5c: 1c:b1:99:f6:2e:c3:b2:2b:c4:2f:f3:5f:5c:df:0b: f6:ab:cb:bf:73:6a:d5:fc:fb:cd:ad:0d:69:89:f4: 3e:f6:7c:96:e6:5d:ef:88:35:7d:06:3f:b5:d1:3e: 0f:ac:f8:e2:80:54:01:19:48:6d:a5:39:4c:bc:69: 48:e2:e2:1d:84:a9:0e:a6:8d:ae:9b:5e:a4:d9:c4: ca:05:f2:2c:50:a7:96:bf:d4:4f:f4:ef:5e:76:4b: ab:31:83:c9:68:da:54:fc:17:65:ff:21:f1:17:79: 05:9d:a0:b4:88:7b:b1:21:0c:1a:3b:53:66:2c:7d: a7:d0:3c:e2:2b:35:e3:c2:67:4c:9f:8b:a2:42:7a: 4c:9e:ce:d8:6a:e3:94:0b:d2:d8:dc:e5:cc:c6:b7: ae:68:c5:2c:c9:cc:20:b2:ee:ed:b6:09:24:a0:d1: 78:20:9b:dc:9c:e5:02:1c:13:f1:f5:3d:73:70:3e: bf:a0:c6:be:2a:07:67:cd:df:26:49:c0:6f:fe:1e: d4:df:30:af:94:81:3c:74:16:38:5d:a1:52:fa:d1: e9:00:8a:fe:72:95:85:46:8d:3c:43:49:2b:16:2a: 28:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6D:E7:32:D5:DA:23:1E:98:95:D3:B5:2F:91:31:3A:B3:13:44:95 X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:af:14:e8:0a:d8:3f:bc:a2:a8:70:7e:9d:16:56:25:21:73: 73:da:72:8e:67:73:08:e9:7a:d8:e4:25:b7:16:71:0e:fc:a0: 84:6e:fd:57:91:fd:0c:94:c0:9f:80:a5:e5:af:29:d2:ff:e4: 5c:75:5a:3b:28:5a:4e:51:71:53:6f:6a:5c:4c:33:4c:86:48: 16:fd:67:a8:3c:d9:13:4d:08:9c:b9:21:75:8c:8d:f9:eb:a7: 1f:94:24:ce:75:13:c2:73:cc:7c:7b:6d:2e:06:28:5d:2a:6c: eb:81:50:f8:41:81:9f:cc:b0:4a:d5:5e:06:66:e4:9f:c5:07: 47:76:f9:18:c0:bc:ad:73:4c:1c:11:14:08:c9:d7:ca:5f:ce: ed:61:20:67:c8:6c:6b:38:49:56:dc:5e:6b:a5:7f:7b:cd:1a: f3:73:2f:1c:c7:ec:d4:e4:4d:b0:3d:dd:fc:f7:5b:55:48:7a: e4:1a:4c:3b:36:28:2a:cd:67:a7:80:f7:11:1e:76:e7:b4:e7: 96:ca:28:fa:54:75:e7:90:3c:9c:1a:63:f1:df:f4:4c:50:81: ba:06:24:c3:50:df:10:b0:55:8b:04:a1:6b:4c:fc:7e:14:b8: 69:d7:5c:c5:2d:fa:f6:ae:fa:8c:7d:e1:99:5f:b2:cc:46:14: cc:ba:be:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODc0OTExMC8GA1UEBRMoOTU0NTlENUQxRUIwNDA5NUZEMTYzRjBEODREMUYzQTQ2 QzE1RTRGMDAeFw0yNTA4MjMwNzEwMThaFw0yNTA4MzAwNzEwMThaMBgxFjAUBgNV BAMTDTY4YTk2OTViLWFjNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/9R0CzCcxdfD3H9E0Pfwm30/X+GG+iflwySRLXByxmfYuw7IrxC/zX1zfC/ar y79zatX8+82tDWmJ9D72fJbmXe+INX0GP7XRPg+s+OKAVAEZSG2lOUy8aUji4h2E qQ6mja6bXqTZxMoF8ixQp5a/1E/07152S6sxg8lo2lT8F2X/IfEXeQWdoLSIe7Eh DBo7U2YsfafQPOIrNePCZ0yfi6JCekyezthq45QL0tjc5czGt65oxSzJzCCy7u22 CSSg0Xggm9yc5QIcE/H1PXNwPr+gxr4qB2fN3yZJwG/+HtTfMK+UgTx0FjhdoVL6 0ekAiv5ylYVGjTxDSSsWKijBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2G3nMtXa Ix6YldO1L5ExOrMTRJUwHwYDVR0jBBgwFoAUlUWdXR6wQJX9Fj8NhNHzpGwV5PAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NzQ5L0JBNTdEQkE2REMy MDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFVXZFhSNndRSlg5Rmo4TmhOSHpwR3dWNVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NzQ5L0JBNTdEQkE2REMyMDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpY OUZqOE5oTkh6cEd3VjVQQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI6vFOgK2D+8oqhwfp0WViUhc3Paco5ncwjpetjkJbcWcQ78oIRu/VeR /QyUwJ+ApeWvKdL/5Fx1WjsoWk5RcVNvalxMM0yGSBb9Z6g82RNNCJy5IXWMjfnr px+UJM51E8JzzHx7bS4GKF0qbOuBUPhBgZ/MsErVXgZm5J/FB0d2+RjAvK1zTBwR FAjJ18pfzu1hIGfIbGs4SVbcXmulf3vNGvNzLxzH7NTkTbA93fz3W1VIeuQaTDs2 KCrNZ6eA9xEedue055bKKPpUdeeQPJwaY/Hf9ExQgboGJMNQ3xCwVYsEoWtM/H4U uGnXXMUt+vau+ox94ZlfssxGFMy6vvM= -----END CERTIFICATE-----Generated at Sat Aug 23 12:26:48 2025 by rpki-client