$ rpki-client -vvf rpki.apnic.net/member_repository/A913FE55/24CAE4A8473B11F08336F75CC4F9AE02/usH6Gx5O5DACOyddInpdBDx_lqM.mft File: usH6Gx5O5DACOyddInpdBDx_lqM.mft (raw, json) Hash identifier: uioHIdyxJAkCRwZG1gYToONh/foOpUf6ddKi56JxZOQ= Subject key identifier: AF:3E:F7:11:7C:03:EF:9F:F0:45:D6:E8:E2:F8:83:5B:4F:90:8B:35 Authority key identifier: BA:C1:FA:1B:1E:4E:E4:30:02:3B:27:5D:22:7A:5D:04:3C:7F:96:A3 Certificate issuer: /CN=A913FE55/serialNumber=BAC1FA1B1E4EE430023B275D227A5D043C7F96A3 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/usH6Gx5O5DACOyddInpdBDx_lqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FE55/24CAE4A8473B11F08336F75CC4F9AE02/usH6Gx5O5DACOyddInpdBDx_lqM.mft Manifest number: 29 Signing time: Sat 23 Aug 2025 08:01:35 +0000 Manifest this update: Sat 23 Aug 2025 08:01:35 +0000 Manifest next update: Sat 30 Aug 2025 08:01:35 +0000 Files and hashes: 1: usH6Gx5O5DACOyddInpdBDx_lqM.crl (hash: MgLvK2V+OzwKNo23IlTqb3rVQEhQCwFGHl5b/ztNEzw=) 2: 7D7ECB70480611F08B614210C4F9AE02.roa (hash: PHW92SRejl/mbnatTD1r3a2U+gvK6WAe5C24ZUPT5mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FE55/24CAE4A8473B11F08336F75CC4F9AE02/usH6Gx5O5DACOyddInpdBDx_lqM.crl rsync://rpki.apnic.net/member_repository/A913FE55/24CAE4A8473B11F08336F75CC4F9AE02/usH6Gx5O5DACOyddInpdBDx_lqM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/usH6Gx5O5DACOyddInpdBDx_lqM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FE55, serialNumber=BAC1FA1B1E4EE430023B275D227A5D043C7F96A3 Validity Not Before: Aug 23 08:01:35 2025 GMT Not After : Aug 30 08:01:35 2025 GMT Subject: CN=68a9755f-a6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:0d:98:f8:50:e1:9e:79:40:2e:2b:27:fa:87: 15:06:81:e4:2d:55:7d:b2:26:2d:a4:cf:1c:45:26: 60:4f:f2:bd:d0:2f:b3:28:f5:58:4c:89:6f:30:b1: a5:78:fe:4d:ee:8c:32:85:23:6b:1c:40:33:3c:ef: fa:9c:04:88:62:cf:ae:67:24:a0:07:d4:ac:21:53: ca:01:20:cc:83:e7:a2:e1:78:15:63:c1:fd:13:62: c6:6b:2b:87:cf:95:71:f5:14:b4:d2:3a:6d:a9:37: ee:b6:a9:7a:88:a8:6c:7d:9b:db:fe:6c:29:a1:ca: 65:ce:dd:33:a5:c3:f9:9b:3c:fe:30:d4:15:3f:10: 05:62:51:9f:87:3f:a4:f0:76:a0:4d:9d:e1:d4:e3: 6e:cc:c7:41:b1:5f:ed:61:dc:3e:f2:de:76:82:1a: 22:cc:e2:69:bb:86:22:6f:b6:a0:93:ad:b7:6c:83: ab:01:bb:24:9a:27:d5:b3:87:c2:fd:65:b6:be:e1: d3:90:e9:eb:9e:b0:b9:b6:ad:76:df:a0:e4:df:76: 8c:52:63:b9:5a:d2:ea:ed:fd:b8:ee:ae:07:fb:bb: 4e:9e:a4:0e:bd:ab:26:8e:d4:c5:7a:e8:af:c5:14: 9b:0e:ca:42:86:a9:62:45:f9:83:0a:20:da:a2:3d: fe:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:3E:F7:11:7C:03:EF:9F:F0:45:D6:E8:E2:F8:83:5B:4F:90:8B:35 X509v3 Authority Key Identifier: keyid:BA:C1:FA:1B:1E:4E:E4:30:02:3B:27:5D:22:7A:5D:04:3C:7F:96:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FE55/24CAE4A8473B11F08336F75CC4F9AE02/usH6Gx5O5DACOyddInpdBDx_lqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/usH6Gx5O5DACOyddInpdBDx_lqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FE55/24CAE4A8473B11F08336F75CC4F9AE02/usH6Gx5O5DACOyddInpdBDx_lqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:e9:ff:d5:2e:dd:68:d1:f1:dd:71:d3:db:f6:d3:53:dc:38: d8:62:e0:c1:7d:a1:a6:11:de:96:43:85:c5:a5:d3:af:96:10: 26:ba:33:20:2e:0a:ea:21:24:61:82:ad:8e:6f:8c:f6:76:ab: 07:5a:67:db:c2:34:ad:7e:3c:a8:39:46:b4:0c:b0:db:0e:2c: c9:38:ae:a1:aa:03:20:19:86:1a:3c:28:70:ba:e0:ad:12:06: c9:15:31:44:35:1f:a9:a3:47:be:e3:54:be:4b:e3:72:45:04: aa:c3:b4:90:3d:01:22:6a:44:08:09:54:ef:80:54:77:b2:58: 4f:4a:e3:a2:0d:db:9e:6b:2f:56:72:f1:da:89:9d:db:3b:b3: ce:1c:11:ba:8f:7e:6c:00:0c:c0:92:5c:d5:f7:e6:f4:6c:d9: 37:01:78:42:10:fb:fb:9b:46:bd:d9:5a:01:73:37:c0:05:11: 9b:a9:1c:79:ad:35:1a:0f:4c:6b:17:11:14:0e:6f:76:b4:f2: 3f:ea:3a:96:19:2a:cd:ea:3e:39:90:83:95:e1:46:a7:ab:77: 73:61:69:79:29:07:ab:73:85:67:ec:7b:9e:94:aa:87:94:59: 94:0a:3c:bf:e2:95:30:86:be:c7:d8:cc:32:64:c6:0d:0f:b4: e2:8b:8f:f6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RkU1NTExMC8GA1UEBRMoQkFDMUZBMUIxRTRFRTQzMDAyM0IyNzVEMjI3QTVEMDQz QzdGOTZBMzAeFw0yNTA4MjMwODAxMzVaFw0yNTA4MzAwODAxMzVaMBgxFjAUBgNV BAMTDTY4YTk3NTVmLWE2ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxDZj4UOGeeUAuKyf6hxUGgeQtVX2yJi2kzxxFJmBP8r3QL7Mo9VhMiW8wsaV4 /k3ujDKFI2scQDM87/qcBIhiz65nJKAH1KwhU8oBIMyD56LheBVjwf0TYsZrK4fP lXH1FLTSOm2pN+62qXqIqGx9m9v+bCmhymXO3TOlw/mbPP4w1BU/EAViUZ+HP6Tw dqBNneHU427Mx0GxX+1h3D7y3naCGiLM4mm7hiJvtqCTrbdsg6sBuySaJ9Wzh8L9 Zba+4dOQ6euesLm2rXbfoOTfdoxSY7la0urt/bjurgf7u06epA69qyaO1MV66K/F FJsOykKGqWJF+YMKINqiPf6lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrz73EXwD 75/wRdbo4viDW0+QizUwHwYDVR0jBBgwFoAUusH6Gx5O5DACOyddInpdBDx/lqMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGRTU1LzI0Q0FFNEE4NDcz QjExRjA4MzM2Rjc1Q0M0RjlBRTAyL3VzSDZHeDVPNURBQ095ZGRJbnBkQkR4X2xx TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdXNINkd4NU81REFDT3lkZElucGRCRHhfbHFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNG RTU1LzI0Q0FFNEE4NDczQjExRjA4MzM2Rjc1Q0M0RjlBRTAyL3VzSDZHeDVPNURB Q095ZGRJbnBkQkR4X2xxTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMjp/9Uu3WjR8d1x09v201PcONhi4MF9oaYR3pZDhcWl06+WECa6MyAu CuohJGGCrY5vjPZ2qwdaZ9vCNK1+PKg5RrQMsNsOLMk4rqGqAyAZhho8KHC64K0S BskVMUQ1H6mjR77jVL5L43JFBKrDtJA9ASJqRAgJVO+AVHeyWE9K46IN255rL1Zy 8dqJnds7s84cEbqPfmwADMCSXNX35vRs2TcBeEIQ+/ubRr3ZWgFzN8AFEZupHHmt NRoPTGsXERQOb3a08j/qOpYZKs3qPjmQg5XhRqerd3NhaXkpB6tzhWfse56UqoeU WZQKPL/ilTCGvsfYzDJkxg0PtOKLj/Y= -----END CERTIFICATE-----Generated at Sat Aug 23 14:24:22 2025 by rpki-client