$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: nPDhBBsf/rjCfHUKXWaAFRej0Q4e8E9zuIZd9ygBfqI= Subject key identifier: 08:4D:F1:BA:EE:32:8B:AF:B2:9D:B1:D6:4B:CC:2E:9F:AA:F7:5C:E2 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0F98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0F83 Signing time: Fri 22 Aug 2025 17:40:58 +0000 Manifest this update: Fri 22 Aug 2025 17:40:58 +0000 Manifest next update: Fri 29 Aug 2025 17:40:58 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: wyWuNI7Q5vKCAT3yckAdfbDHIkIjkhHDjEEQzLVOHdA=) 2: 164B42E2414111F0A098A82DC4F9AE02.roa (hash: dJHoDekjFkpD+HydVswBgGgsUVupPAujnF3OBVrSpKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3992 (0xf98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Aug 22 17:40:58 2025 GMT Not After : Aug 29 17:40:58 2025 GMT Subject: CN=68a8abaa-f532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:96:d8:4a:c2:d2:9d:c2:93:9a:e3:7e:68:68: 02:31:86:4e:29:70:03:eb:ed:36:0c:b3:7f:8e:23: f0:19:88:38:af:4c:d3:3e:2d:66:9f:76:d6:5b:bf: 6a:2b:92:05:07:71:04:fe:14:97:0c:61:4d:1d:c5: 0a:72:a7:a1:60:d1:82:03:2d:e4:e4:68:31:22:ae: 26:16:08:f9:6f:13:1a:0d:05:d4:ee:cf:90:77:52: 8f:37:81:55:06:4f:1d:44:8a:4e:b6:35:bb:b2:db: db:1e:c3:ba:af:13:81:65:7f:c4:1a:d6:b8:d7:4b: 29:79:4d:94:95:45:d2:94:ac:3d:e0:94:41:88:2c: a2:95:ae:63:29:37:81:c8:30:31:6f:53:f8:75:fb: ae:34:5e:eb:6f:b4:67:2e:74:0d:f6:b7:4e:84:bd: 75:c4:42:35:f2:9f:db:c8:39:e7:f4:69:f6:66:bc: 4e:34:d0:c3:ca:da:93:bc:2d:36:0f:9d:3d:42:6c: a8:2e:ad:d6:09:1c:72:be:39:ff:03:f3:af:13:97: 14:21:50:00:5c:bd:94:34:0e:2c:05:82:36:d7:b1: 47:8f:e4:a1:3e:49:c0:6d:c6:08:80:8a:17:29:b1: b0:17:b7:04:95:b9:74:bc:d1:a1:0b:f3:ad:c6:02: 8e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:4D:F1:BA:EE:32:8B:AF:B2:9D:B1:D6:4B:CC:2E:9F:AA:F7:5C:E2 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:eb:f3:74:c7:32:65:e1:c7:2b:8e:77:2f:39:d0:f8:ec:ea: 66:60:61:9e:a4:d8:f3:9d:dc:a2:8d:bc:39:62:0d:56:53:98: 8e:b5:d1:2d:00:ea:c2:df:04:50:3b:35:5e:0a:a9:95:b1:b6: f1:85:40:bc:cb:81:5f:6e:49:24:cd:fa:83:e3:58:2f:47:d0: 64:ce:05:55:82:39:01:07:d7:3b:e9:8c:92:38:28:ab:31:08: 26:93:58:18:2d:8a:95:6c:a4:27:4b:c1:c6:b0:62:95:44:c1: 2d:0a:aa:89:95:6c:84:61:b5:2f:df:56:8f:3a:09:9b:76:31: d9:54:c1:22:c1:a1:77:2b:51:c9:cf:39:d2:23:56:bf:c2:b0: e0:8c:8f:aa:1c:86:6e:89:dd:29:c5:67:82:ec:d3:8f:ce:b3: ba:b0:44:78:3b:5b:1d:8d:a4:00:75:d4:3a:73:65:62:85:d6: 62:a3:e8:9d:ac:f1:41:2c:0f:bb:43:f7:9e:42:11:c4:91:cc: a3:d9:84:b4:e8:80:31:68:b1:31:54:46:23:ee:13:e8:97:9d: 1d:f3:1a:dd:14:a6:74:e4:0e:a8:e0:94:21:f3:17:2f:80:33: ce:c2:a2:1e:76:0b:ff:3f:46:2a:aa:c6:a8:5b:2f:50:62:25: 1b:1b:af:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUwODIyMTc0MDU4WhcNMjUwODI5MTc0MDU4WjAYMRYwFAYD VQQDEw02OGE4YWJhYS1mNTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZbYSsLSncKTmuN+aGgCMYZOKXAD6+02DLN/jiPwGYg4r0zTPi1mn3bWW79q K5IFB3EE/hSXDGFNHcUKcqehYNGCAy3k5GgxIq4mFgj5bxMaDQXU7s+Qd1KPN4FV Bk8dRIpOtjW7stvbHsO6rxOBZX/EGta410speU2UlUXSlKw94JRBiCyila5jKTeB yDAxb1P4dfuuNF7rb7RnLnQN9rdOhL11xEI18p/byDnn9Gn2ZrxONNDDytqTvC02 D509QmyoLq3WCRxyvjn/A/OvE5cUIVAAXL2UNA4sBYI217FHj+ShPknAbcYIgIoX KbGwF7cElbl0vNGhC/OtxgKOEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhN8bru Mouvsp2x1kvMLp+q91ziMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb6/N0xzJl4ccrjncvOdD47OpmYGGepNjzndyijbw5Yg1WU5iOtdEt AOrC3wRQOzVeCqmVsbbxhUC8y4FfbkkkzfqD41gvR9BkzgVVgjkBB9c76YySOCir MQgmk1gYLYqVbKQnS8HGsGKVRMEtCqqJlWyEYbUv31aPOgmbdjHZVMEiwaF3K1HJ zznSI1a/wrDgjI+qHIZuid0pxWeC7NOPzrO6sER4O1sdjaQAddQ6c2VihdZio+id rPFBLA+7Q/eeQhHEkcyj2YS06IAxaLExVEYj7hPol50d8xrdFKZ05A6o4JQh8xcv gDPOwqIedgv/P0YqqsaoWy9QYiUbG6+1 -----END CERTIFICATE-----Generated at Sun Aug 24 00:07:02 2025 by rpki-client