$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: x8qeav0pP8neW3f6qW/l/H+AnICw1Q/w5ksf8tAe2xs= Subject key identifier: E8:AC:5C:94:6C:56:1F:58:9C:59:71:95:86:72:5A:08:99:83:F2:70 Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 04D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 04CC Signing time: Sat 23 Aug 2025 00:03:08 +0000 Manifest this update: Sat 23 Aug 2025 00:03:07 +0000 Manifest next update: Sat 30 Aug 2025 00:03:07 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: RPxsYZoMrVsYVOBrv6FVUf1xHfOR0yx4958UpVlPGWk=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: zuaM96z3jhp+fAEf2SKv65O5x2n5mX1/wYZc1QfKJIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1235 (0x4d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: Aug 23 00:03:07 2025 GMT Not After : Aug 30 00:03:07 2025 GMT Subject: CN=68a9053c-a367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dd:c0:36:12:e2:33:a5:aa:3c:f7:49:2e:16: f6:5d:de:a8:f7:28:86:2d:2e:91:96:6f:25:20:a1: be:7b:ea:44:bc:55:9f:58:c4:ae:69:ca:03:79:06: 37:fe:a8:ef:57:5b:5a:c8:a6:0f:d5:21:4d:fa:e9: 0e:98:34:73:42:7e:d3:87:0a:3f:14:03:bb:f0:51: da:cf:66:12:d3:42:dd:41:3e:a9:03:ce:2d:e7:a4: 6b:b1:5e:82:53:07:9c:97:2b:49:47:37:a1:28:2b: 6c:45:57:b4:7e:28:02:9a:00:d3:66:76:1f:e9:2e: a5:1f:01:5b:3e:f7:0d:0a:4e:76:a1:2c:3a:fa:e0: ce:3e:35:3c:9c:91:7f:01:c4:be:8c:d7:a0:76:72: 94:3d:c1:8d:0b:43:d1:2a:f7:8c:44:24:b2:ba:25: b8:16:cd:56:88:a2:9a:63:b4:2a:d3:b9:1b:ec:85: d1:63:31:d6:0b:cd:86:50:ff:8e:88:a1:21:1a:c1: 0e:cc:d3:53:58:00:a0:2b:e6:14:c7:c6:76:29:5b: e9:ca:a7:d8:72:6b:eb:2b:36:49:8c:17:be:0b:c3: 93:31:f6:41:6d:f1:97:06:50:95:66:79:14:f3:0e: ae:96:73:d3:4d:ce:7a:74:c8:1f:94:39:bd:6a:a3: 22:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AC:5C:94:6C:56:1F:58:9C:59:71:95:86:72:5A:08:99:83:F2:70 X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:6a:8c:54:09:e1:d2:dd:62:3f:37:dd:35:8a:8b:23:eb:dd: 08:42:9c:32:1b:e9:84:92:67:c0:e6:b1:52:e8:15:4e:a8:cb: 26:17:90:b3:fa:51:92:f3:0b:ef:76:5c:71:bd:22:2b:3e:3f: 98:03:a1:4a:c6:e0:50:a9:40:6e:aa:82:c6:da:9c:56:97:e5: b0:5d:f5:fb:8e:00:58:c4:d2:8d:74:a1:18:6c:0a:2f:14:76: a8:d8:4f:42:1a:2e:cd:23:10:b8:bb:ce:96:02:ba:5a:76:40: 17:f5:59:70:6c:4c:d4:27:9f:14:71:5c:25:1e:3b:9e:cf:78: ad:0e:c2:4b:af:7f:12:0f:6b:3a:ed:10:81:9f:44:ee:d2:2b: 9c:7f:52:3a:14:03:15:90:34:4f:5a:4f:40:db:e3:90:d8:61: 38:f1:8c:f0:1e:de:92:d0:65:a4:06:f9:6e:b4:e8:56:ea:22: d0:5b:54:7f:5f:0c:0f:3d:99:3e:83:ff:41:06:86:79:86:46: 5b:36:b1:90:a4:da:53:c2:aa:85:bc:ae:a2:1d:40:dd:94:3b: b8:93:82:b7:b3:70:46:88:4d:43:23:9a:40:2c:bc:99:81:a1: 66:1d:4b:24:58:96:c4:0a:1d:2c:c7:6d:6f:e0:f8:d3:ef:48: 1e:e4:99:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjUwODIzMDAwMzA3WhcNMjUwODMwMDAwMzA3WjAYMRYwFAYD VQQDEw02OGE5MDUzYy1hMzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvt3ANhLiM6WqPPdJLhb2Xd6o9yiGLS6Rlm8lIKG+e+pEvFWfWMSuacoDeQY3 /qjvV1tayKYP1SFN+ukOmDRzQn7Thwo/FAO78FHaz2YS00LdQT6pA84t56RrsV6C UweclytJRzehKCtsRVe0figCmgDTZnYf6S6lHwFbPvcNCk52oSw6+uDOPjU8nJF/ AcS+jNegdnKUPcGNC0PRKveMRCSyuiW4Fs1WiKKaY7Qq07kb7IXRYzHWC82GUP+O iKEhGsEOzNNTWACgK+YUx8Z2KVvpyqfYcmvrKzZJjBe+C8OTMfZBbfGXBlCVZnkU 8w6ulnPTTc56dMgflDm9aqMiTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOisXJRs Vh9YnFlxlYZyWgiZg/JwMB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMaoxUCeHS3WI/N901iosj690IQpwyG+mEkmfA5rFS6BVOqMsmF5Cz +lGS8wvvdlxxvSIrPj+YA6FKxuBQqUBuqoLG2pxWl+WwXfX7jgBYxNKNdKEYbAov FHao2E9CGi7NIxC4u86WArpadkAX9VlwbEzUJ58UcVwlHjuez3itDsJLr38SD2s6 7RCBn0Tu0iucf1I6FAMVkDRPWk9A2+OQ2GE48YzwHt6S0GWkBvlutOhW6iLQW1R/ XwwPPZk+g/9BBoZ5hkZbNrGQpNpTwqqFvK6iHUDdlDu4k4K3s3BGiE1DI5pALLyZ gaFmHUskWJbECh0sx21v4PjT70ge5Jlj -----END CERTIFICATE-----Generated at Sun Aug 24 03:34:54 2025 by rpki-client