$ rpki-client -vvf rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft File: xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft (raw, json) Hash identifier: ilGR+1k/Ykp+i5qQaQnFP3AIWU5+RCEVjnMlS2x49PI= Subject key identifier: E0:4B:E4:A9:7B:3A:02:18:1D:A2:07:BA:C3:AF:68:29:42:61:E5:14 Authority key identifier: C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 Certificate issuer: /CN=A912D1D5/serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft Manifest number: 01CD Signing time: Sat 23 Aug 2025 03:05:20 +0000 Manifest this update: Sat 23 Aug 2025 03:05:19 +0000 Manifest next update: Sat 30 Aug 2025 03:05:19 +0000 Files and hashes: 1: xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl (hash: QnEaQ6ROfZv4HqqvuGY7+M7rbGYVUPjUc+6U/hgdxm8=) 2: 19E19DA0E5CE11EDB697BC74C4F9AE02.roa (hash: 8oKi9g3FW28uCT296akypss1lnTC3S8VPwt27zeBIKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D1D5, serialNumber=C54525E9705BD69D61424DBEE7B0493F5FD6F0A4 Validity Not Before: Aug 23 03:05:19 2025 GMT Not After : Aug 30 03:05:19 2025 GMT Subject: CN=68a92fef-3848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f2:b7:43:f1:5f:f9:c0:dd:6a:04:87:0c:c9: 89:c4:1a:02:b4:35:d9:dd:86:69:bf:75:9e:b6:f2: 1e:ac:7a:80:a3:24:63:e5:d5:4b:a0:ca:b1:6d:1a: ec:1f:c3:a9:eb:a0:ff:e3:d7:08:d3:03:1c:a4:b8: 13:2c:f2:1d:4f:b2:79:6b:e5:61:ea:20:a7:76:a7: 92:d0:69:85:2c:f5:13:36:49:02:fb:ec:8e:dc:4f: 61:26:67:b1:68:98:08:fd:78:55:ee:5e:b0:e2:9d: 59:a2:41:b8:b7:18:f2:8a:aa:26:a3:48:f2:dc:86: da:0e:f1:b5:14:8d:7b:cc:eb:36:9d:77:45:05:4a: 21:65:24:0b:95:8f:1b:79:42:3a:00:e5:a0:68:87: 6e:97:f4:49:a3:7c:5c:fc:3e:98:4c:6f:e1:34:27: 56:ae:73:5b:a2:e8:28:2a:d1:00:06:04:70:34:ad: 58:98:65:18:d6:6a:2a:13:dd:3c:71:6a:0c:41:33: 5d:92:88:85:7f:77:e5:51:86:91:2f:37:48:38:5b: b2:19:6a:9c:97:56:7f:7d:c3:c2:ea:8d:0d:39:9d: 01:68:57:2e:e1:65:bf:50:85:3f:ac:4b:06:7a:d1: e1:3c:1c:f0:2d:3a:1c:1a:c2:8d:22:e2:a3:40:f9: 68:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4B:E4:A9:7B:3A:02:18:1D:A2:07:BA:C3:AF:68:29:42:61:E5:14 X509v3 Authority Key Identifier: keyid:C5:45:25:E9:70:5B:D6:9D:61:42:4D:BE:E7:B0:49:3F:5F:D6:F0:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUUl6XBb1p1hQk2-57BJP1_W8KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D1D5/343361EECC8C11EDA4C1A143C4F9AE02/xUUl6XBb1p1hQk2-57BJP1_W8KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:10:f0:55:30:2f:e3:61:da:ea:7d:2a:13:1d:2d:64:c3:3a: 5c:62:c8:fe:9d:22:8c:d1:a2:da:be:41:ab:0c:29:77:2d:00: f4:66:06:0b:cd:db:ec:75:54:6c:59:5a:66:a9:4f:06:30:f4: c5:84:73:fc:a4:e2:12:ef:90:a4:45:7f:36:89:55:9a:ea:3b: 14:3b:16:9d:e4:b8:91:19:5d:57:cd:0b:fa:47:de:44:e3:68: 04:a3:de:97:79:fd:a9:1a:d0:30:c2:7d:f9:af:14:ef:d8:e5: e2:04:76:60:b4:c5:f4:2e:39:a9:5e:5e:4f:ba:3d:15:8f:26: 58:d1:9c:eb:c9:9b:1b:00:c7:c6:4f:08:9e:57:b4:bd:ce:47: e9:d1:09:c1:c6:71:d1:f7:74:d8:ae:7e:a8:61:3d:63:fc:d6: 8a:41:8c:d0:30:75:f4:a8:60:fd:63:37:ae:fe:8b:20:02:bc: 08:2b:16:80:2c:ad:d6:b0:38:c9:56:2c:69:7d:b9:5e:70:11: 67:1e:db:80:02:9a:55:12:ad:2b:95:8f:95:70:e7:75:bb:b2: 31:3f:e5:19:0a:d1:3c:a0:bf:ba:19:83:1b:01:42:53:e8:78: 42:51:b3:a5:b4:b8:9e:dd:e2:6e:46:d5:6e:ff:87:9b:9b:a5: 04:fb:40:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQxRDUxMTAvBgNVBAUTKEM1NDUyNUU5NzA1QkQ2OUQ2MTQyNERCRUU3QjA0OTNG NUZENkYwQTQwHhcNMjUwODIzMDMwNTE5WhcNMjUwODMwMDMwNTE5WjAYMRYwFAYD VQQDEw02OGE5MmZlZi0zODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvK3Q/Ff+cDdagSHDMmJxBoCtDXZ3YZpv3WetvIerHqAoyRj5dVLoMqxbRrs H8Op66D/49cI0wMcpLgTLPIdT7J5a+Vh6iCndqeS0GmFLPUTNkkC++yO3E9hJmex aJgI/XhV7l6w4p1ZokG4txjyiqomo0jy3IbaDvG1FI17zOs2nXdFBUohZSQLlY8b eUI6AOWgaIdul/RJo3xc/D6YTG/hNCdWrnNbougoKtEABgRwNK1YmGUY1moqE908 cWoMQTNdkoiFf3flUYaRLzdIOFuyGWqcl1Z/fcPC6o0NOZ0BaFcu4WW/UIU/rEsG etHhPBzwLTocGsKNIuKjQPloaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBL5Kl7 OgIYHaIHusOvaClCYeUUMB8GA1UdIwQYMBaAFMVFJelwW9adYUJNvuewST9f1vCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDFENS8zNDMzNjFFRUND OEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFwMWhRazItNTdCSlAxX1c4 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVVWw2WEJiMXAxaFFrMi01N0JKUDFfVzhLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDFENS8zNDMzNjFFRUNDOEMxMUVEQTRDMUExNDNDNEY5QUUwMi94VVVsNlhCYjFw MWhRazItNTdCSlAxX1c4S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZEPBVMC/jYdrqfSoTHS1kwzpcYsj+nSKM0aLavkGrDCl3LQD0ZgYL zdvsdVRsWVpmqU8GMPTFhHP8pOIS75CkRX82iVWa6jsUOxad5LiRGV1XzQv6R95E 42gEo96Xef2pGtAwwn35rxTv2OXiBHZgtMX0LjmpXl5Puj0VjyZY0ZzryZsbAMfG TwieV7S9zkfp0QnBxnHR93TYrn6oYT1j/NaKQYzQMHX0qGD9Yzeu/osgArwIKxaA LK3WsDjJVixpfblecBFnHtuAAppVEq0rlY+VcOd1u7IxP+UZCtE8oL+6GYMbAUJT 6HhCUbOltLie3eJuRtVu/4ebm6UE+0Cc -----END CERTIFICATE-----Generated at Sat Aug 23 19:36:27 2025 by rpki-client