$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: hO26kMUnuiyq9ltA/gCcpZDCCIGnevlzBD7DUvk0iWQ= Subject key identifier: 7A:A8:3B:FC:98:C0:98:49:AF:58:4F:25:5C:D6:B6:DC:4A:C1:A1:5C Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0C38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0C2A Signing time: Fri 22 Aug 2025 18:47:47 +0000 Manifest this update: Fri 22 Aug 2025 18:47:47 +0000 Manifest next update: Fri 29 Aug 2025 18:47:47 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: PcoiZf9h3LzSCd2odzJUdHr+gIykCAonRkQiUWhXWHI=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: J+JzfdPnvnmB6Ay3Ml+qeWmcjb1XIfVxnUqGVNUN7Ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3128 (0xc38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Aug 22 18:47:47 2025 GMT Not After : Aug 29 18:47:47 2025 GMT Subject: CN=68a8bb53-3814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:63:56:ac:b0:70:e8:b3:b5:69:61:73:e1:b2: 8e:3f:98:ca:c1:ce:74:88:61:e9:97:68:a3:c7:24: 0a:cc:d0:41:e7:7d:c0:96:17:bf:2f:61:08:8f:df: 33:9a:4f:40:92:2a:21:32:98:62:ae:3f:e2:2f:5b: 02:84:49:eb:44:15:f0:60:52:da:7a:b1:97:0b:62: 99:d0:36:8a:c7:86:b4:fb:c4:5e:ae:1b:e8:5e:3b: 42:23:ad:c6:f1:46:a9:2e:7e:35:a6:d8:e0:d2:d6: c5:62:ad:7f:1a:b2:be:32:36:8e:b9:18:93:0e:73: e2:61:b8:a2:bb:cb:cb:c6:2d:a7:f5:15:b6:66:9d: 5a:37:1f:ed:4d:8a:b8:eb:b5:58:2c:54:f0:9c:f1: c1:27:18:0c:59:1c:57:76:13:00:84:ca:9b:6e:bc: aa:bf:03:fc:42:dc:f2:c0:28:0e:43:14:53:a9:52: 56:41:5e:d1:42:d5:db:cb:47:c2:52:d6:de:1e:a1: ba:18:7c:8e:08:dc:15:3c:e7:cb:26:16:42:d0:ca: 0a:90:ac:2c:0a:29:96:5a:c8:e0:a7:fa:5e:89:02: 8e:e2:c6:17:09:1c:67:5c:93:35:31:6a:36:03:01: 52:5c:2c:42:62:7a:5c:1e:71:6b:5e:ec:85:7a:f4: e8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:A8:3B:FC:98:C0:98:49:AF:58:4F:25:5C:D6:B6:DC:4A:C1:A1:5C X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:27:3e:18:d7:b2:03:7e:a1:31:21:9d:42:39:8d:e3:c7:65: 1c:4a:20:67:63:b1:a5:dc:ad:ae:c9:64:8f:cd:d8:ad:76:5d: 7e:df:a4:f0:97:30:f0:ac:80:8e:36:83:e9:6a:af:03:a1:72: 48:02:89:15:4e:2f:36:06:dd:60:9f:39:8a:f3:28:3a:06:d1: ac:b8:0d:cf:aa:f7:18:46:69:04:75:28:20:6e:64:00:26:60: e0:56:5e:0e:7f:3a:fb:37:98:99:29:c9:56:76:1a:92:2f:c9: 56:cf:e4:34:f5:11:8f:f1:46:b4:5d:cd:1f:c8:29:70:c5:b0: 9c:35:62:a5:5e:f7:ac:1e:f0:a7:90:a9:ab:b5:f5:bc:9d:0d: ca:e4:69:6b:31:30:13:71:bf:70:42:e3:a7:17:52:d8:e6:3a: 18:f2:9f:02:a9:b0:6e:d9:14:10:0c:a1:0b:90:44:b7:5d:cd: 0c:2f:fe:8b:54:bd:59:6e:11:53:d3:4d:c8:a3:7e:88:d9:4f: 77:11:19:47:6f:62:28:bf:d8:6e:22:56:45:7d:40:7a:5c:2b: f9:66:c6:e4:53:69:8e:6f:e5:1f:fd:28:20:96:5c:e7:0a:0d: ad:f1:45:3c:8f:5e:1d:be:de:87:9f:88:66:70:62:e7:26:49: 21:b8:c0:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwODIyMTg0NzQ3WhcNMjUwODI5MTg0NzQ3WjAYMRYwFAYD VQQDEw02OGE4YmI1My0zODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA72NWrLBw6LO1aWFz4bKOP5jKwc50iGHpl2ijxyQKzNBB533Alhe/L2EIj98z mk9AkiohMphirj/iL1sChEnrRBXwYFLaerGXC2KZ0DaKx4a0+8RerhvoXjtCI63G 8UapLn41ptjg0tbFYq1/GrK+MjaOuRiTDnPiYbiiu8vLxi2n9RW2Zp1aNx/tTYq4 67VYLFTwnPHBJxgMWRxXdhMAhMqbbryqvwP8QtzywCgOQxRTqVJWQV7RQtXby0fC UtbeHqG6GHyOCNwVPOfLJhZC0MoKkKwsCimWWsjgp/peiQKO4sYXCRxnXJM1MWo2 AwFSXCxCYnpcHnFrXuyFevToBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqoO/yY wJhJr1hPJVzWttxKwaFcMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAJz4Y17IDfqExIZ1COY3jx2UcSiBnY7Gl3K2uyWSPzditdl1+36Tw lzDwrICONoPpaq8DoXJIAokVTi82Bt1gnzmK8yg6BtGsuA3PqvcYRmkEdSggbmQA JmDgVl4Ofzr7N5iZKclWdhqSL8lWz+Q09RGP8Ua0Xc0fyClwxbCcNWKlXvesHvCn kKmrtfW8nQ3K5GlrMTATcb9wQuOnF1LY5joY8p8CqbBu2RQQDKELkES3Xc0ML/6L VL1ZbhFT003Io36I2U93ERlHb2Iov9huIlZFfUB6XCv5ZsbkU2mOb+Uf/Sggllzn Cg2t8UU8j14dvt6Hn4hmcGLnJkkhuMDL -----END CERTIFICATE-----Generated at Sat Aug 23 20:34:52 2025 by rpki-client