$ rpki-client -vvf rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft File: sUCvBJGbRROCWm6lfhq55UN548g.mft (raw, json) Hash identifier: Wj8KsyO9p8LfT3E8ghXCv/VUZ8muhD74OUMDB9WSeUw= Subject key identifier: 04:D4:CD:A8:E7:0B:6D:7E:AB:15:D4:75:02:D5:1D:D4:33:7A:D6:1A Authority key identifier: B1:40:AF:04:91:9B:45:13:82:5A:6E:A5:7E:1A:B9:E5:43:79:E3:C8 Certificate issuer: /CN=A913EBFD/serialNumber=B140AF04919B4513825A6EA57E1AB9E54379E3C8 Certificate serial: 0B61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft Manifest number: 0B5B Signing time: Fri 22 Aug 2025 19:13:54 +0000 Manifest this update: Fri 22 Aug 2025 19:13:53 +0000 Manifest next update: Fri 29 Aug 2025 19:13:53 +0000 Files and hashes: 1: sUCvBJGbRROCWm6lfhq55UN548g.crl (hash: itLTc+OxE3kQE65iRJJEqO6mirZlCFia96WCAzNlC24=) 2: B6EF8F5E3A9011EA957A6A34C4F9AE02.roa (hash: MMg6miblGYwiWs8actEKJcMi2SqNBUoJuKwgQQDzl38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.crl rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2913 (0xb61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EBFD, serialNumber=B140AF04919B4513825A6EA57E1AB9E54379E3C8 Validity Not Before: Aug 22 19:13:53 2025 GMT Not After : Aug 29 19:13:53 2025 GMT Subject: CN=68a8c172-2327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2d:bb:b7:67:50:a1:5b:f1:8b:0d:7a:8b:80: 1a:c6:c7:33:eb:fe:55:32:e5:a5:03:a1:18:64:9c: 50:9b:19:59:79:d6:c8:33:d0:c2:09:a5:3c:28:47: 25:76:7d:6e:b7:d5:1e:25:b6:ab:ea:dc:0c:97:7f: 3c:ce:17:b8:a2:5d:3b:da:cc:30:65:3d:b3:7c:2c: 33:f2:59:1f:04:25:85:62:60:8b:f7:c5:48:29:dc: 40:d8:74:22:d9:62:cb:1f:5b:92:8c:cc:b6:59:23: 81:ae:c4:2d:bc:7f:69:dd:6d:2c:45:0a:3a:b3:59: df:40:5d:b5:20:c7:a0:97:24:42:9c:5c:82:52:2a: 44:2d:00:1d:b2:ed:52:93:ab:1b:c3:8c:1b:97:15: 25:cc:c4:8e:38:b4:b5:37:ca:51:b2:5b:84:c3:41: 06:5d:0a:af:6a:e6:fd:86:45:49:dd:b4:e8:cb:22: 81:5a:dc:e2:b5:1e:d4:45:c0:52:d2:b4:68:50:d8: a5:0a:c5:76:68:ee:23:2b:62:a4:71:a8:c7:47:1c: ee:52:5e:d6:2e:71:29:87:cc:28:5b:6e:05:06:9d: 90:c1:d9:4a:a1:d7:19:61:95:56:a6:a0:8e:88:d7: 29:2e:8b:31:2d:16:83:73:38:2b:cd:36:d5:04:45: 0c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D4:CD:A8:E7:0B:6D:7E:AB:15:D4:75:02:D5:1D:D4:33:7A:D6:1A X509v3 Authority Key Identifier: keyid:B1:40:AF:04:91:9B:45:13:82:5A:6E:A5:7E:1A:B9:E5:43:79:E3:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUCvBJGbRROCWm6lfhq55UN548g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EBFD/F7CE629A3A8E11EA80AF0E31C4F9AE02/sUCvBJGbRROCWm6lfhq55UN548g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f4:05:80:14:8f:cc:36:eb:1c:70:ea:41:af:c4:57:d3:15: 75:1b:22:93:14:1e:39:ef:de:6c:8f:20:e8:80:52:02:58:1e: eb:8e:fa:5c:56:13:8d:0c:87:ec:8c:47:81:d3:cf:ab:01:8f: 1d:0e:63:e4:38:d2:7c:7e:af:8e:40:d7:7d:1e:09:9a:be:b5: 5c:ff:5d:66:4e:e9:52:d8:ca:0e:72:d2:56:f2:4e:e4:81:25: 57:4c:4d:be:65:bb:c1:f8:f5:b3:80:0e:8a:a7:4f:03:ca:2d: 8c:0f:9a:bd:31:cf:4d:ca:50:cd:4f:cc:b9:56:c1:67:d8:5e: 16:1a:31:e4:c6:49:d9:61:cc:0d:75:7e:c9:66:bb:7a:bf:5e: 29:29:bb:d2:a1:f5:03:d9:e3:cb:2f:88:a6:3c:ff:74:b5:c7: 82:e0:90:5c:14:4c:ef:cb:ca:54:c1:74:1d:99:ae:17:0e:89: cf:53:8d:c3:22:d5:52:95:45:d1:bc:e1:51:78:e2:8d:86:f0: 2e:d8:9d:22:94:d5:90:13:36:c7:90:66:29:6d:45:70:cb:dd: 2f:06:5b:b8:5b:9f:8c:87:bf:0f:65:22:46:0c:7c:d8:d0:45: b4:da:d1:db:37:2d:b4:18:b0:d5:b1:73:81:e6:7b:73:16:95: c2:ad:1c:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VCRkQxMTAvBgNVBAUTKEIxNDBBRjA0OTE5QjQ1MTM4MjVBNkVBNTdFMUFCOUU1 NDM3OUUzQzgwHhcNMjUwODIyMTkxMzUzWhcNMjUwODI5MTkxMzUzWjAYMRYwFAYD VQQDEw02OGE4YzE3Mi0yMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5y27t2dQoVvxiw16i4Aaxscz6/5VMuWlA6EYZJxQmxlZedbIM9DCCaU8KEcl dn1ut9UeJbar6twMl388zhe4ol072swwZT2zfCwz8lkfBCWFYmCL98VIKdxA2HQi 2WLLH1uSjMy2WSOBrsQtvH9p3W0sRQo6s1nfQF21IMeglyRCnFyCUipELQAdsu1S k6sbw4wblxUlzMSOOLS1N8pRsluEw0EGXQqvaub9hkVJ3bToyyKBWtzitR7URcBS 0rRoUNilCsV2aO4jK2KkcajHRxzuUl7WLnEph8woW24FBp2QwdlKodcZYZVWpqCO iNcpLosxLRaDczgrzTbVBEUMJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATUzajn C21+qxXUdQLVHdQzetYaMB8GA1UdIwQYMBaAFLFArwSRm0UTglpupX4aueVDeePI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUJGRC9GN0NFNjI5QTNB OEUxMUVBODBBRjBFMzFDNEY5QUUwMi9zVUN2QkpHYlJST0NXbTZsZmhxNTVVTjU0 OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVQ3ZCSkdiUlJPQ1dtNmxmaHE1NVVONTQ4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUJGRC9GN0NFNjI5QTNBOEUxMUVBODBBRjBFMzFDNEY5QUUwMi9zVUN2QkpHYlJS T0NXbTZsZmhxNTVVTjU0OGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC9AWAFI/MNusccOpBr8RX0xV1GyKTFB45795sjyDogFICWB7rjvpc VhONDIfsjEeB08+rAY8dDmPkONJ8fq+OQNd9HgmavrVc/11mTulS2MoOctJW8k7k gSVXTE2+ZbvB+PWzgA6Kp08Dyi2MD5q9Mc9NylDNT8y5VsFn2F4WGjHkxknZYcwN dX7JZrt6v14pKbvSofUD2ePLL4imPP90tceC4JBcFEzvy8pUwXQdma4XDonPU43D ItVSlUXRvOFReOKNhvAu2J0ilNWQEzbHkGYpbUVwy90vBlu4W5+Mh78PZSJGDHzY 0EW02tHbNy20GLDVsXOB5ntzFpXCrRyT -----END CERTIFICATE-----Generated at Sun Aug 24 00:00:43 2025 by rpki-client