$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: OQA5VaF8magSBOBiFprlCrMtiLC2ArXSzxFUDucD+3w= Subject key identifier: D4:FC:1F:9E:DD:EC:8E:E1:66:54:AD:49:55:1D:25:25:10:13:A0:ED Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: B5 Signing time: Sat 23 Aug 2025 06:16:28 +0000 Manifest this update: Sat 23 Aug 2025 06:16:28 +0000 Manifest next update: Sat 30 Aug 2025 06:16:28 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: vTqWKb0kxUlYBvvCQUuzogpEGHua43m6gdBlTs2Rf9w=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: 3YeMlkcKDR/G7e8HpdLpzhvB3RsMdGgeM4Qv8rsxSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Aug 23 06:16:28 2025 GMT Not After : Aug 30 06:16:28 2025 GMT Subject: CN=68a95cbc-6ec0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:51:b8:ad:46:68:a9:31:c6:d6:3d:e7:ae:d7: d4:68:b8:31:f5:bb:60:47:1d:ea:aa:42:0b:e8:d1: 5a:5b:b7:15:d7:bf:e1:a5:3e:b9:0a:fe:66:91:3c: 5a:ad:56:8a:fa:38:54:2e:37:9a:e5:a7:21:c8:48: da:a3:17:3b:1f:4a:0a:06:68:41:33:9a:68:a8:1f: 85:64:26:39:49:ab:15:88:d7:ad:2d:fb:7d:1a:09: 54:7d:14:be:d7:d7:fb:af:04:b1:2c:18:6a:b9:6c: 3e:49:77:69:3f:91:c4:94:7e:61:f4:72:21:40:13: 6b:fa:80:3b:92:ee:6c:fc:21:40:db:2e:39:3d:7f: 2e:3c:50:a6:0d:bf:61:52:2c:36:3b:af:38:45:b9: ae:6d:7e:d8:86:25:40:7b:58:1b:d5:84:f7:35:80: 08:91:be:71:4c:67:6a:7b:60:34:45:c5:a1:28:e7: d7:dc:81:d4:50:87:3a:6c:5e:79:8d:0f:00:a7:07: d8:fb:18:8a:33:f8:24:2f:91:e6:89:9f:f9:df:15: 92:a9:ac:c9:71:3f:35:98:bb:89:52:77:d3:0a:db: 5e:b0:0f:3a:c1:12:d7:07:4e:2a:ab:1d:e3:37:4a: 55:88:fa:a0:20:5d:31:99:cc:20:0c:0c:c4:d1:fd: d0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FC:1F:9E:DD:EC:8E:E1:66:54:AD:49:55:1D:25:25:10:13:A0:ED X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:e6:b5:e1:94:bb:c0:7b:0f:6f:66:0e:20:af:e0:b7:4f:90: 77:0b:7a:db:e3:1a:67:a0:c8:f9:ac:de:9d:3c:d2:10:e9:5c: b7:ca:bf:6f:96:be:01:ca:f9:6d:7d:fb:29:aa:c9:d0:f2:a9: 5c:09:c5:c7:ad:71:06:5b:05:79:ae:5d:13:d6:47:6c:e2:e4: 7e:eb:00:1b:5b:d3:bf:8c:7f:3e:f8:7e:dd:c5:62:32:d3:7f: 83:f6:2d:f0:27:c6:5a:38:ba:35:a2:f6:56:42:ff:fd:82:36: 9b:16:d3:6b:18:2a:2d:f1:a9:2e:df:19:39:79:09:f0:21:f2: 23:5e:1d:a1:69:ed:ef:99:8b:b3:da:dd:bc:ea:c0:b4:3e:37: c7:f0:8e:35:d3:0f:41:46:f1:35:fa:67:c5:d6:17:b6:c7:a5: a9:d4:42:a2:25:22:62:ea:8f:7a:3d:d9:03:b1:2c:5a:2e:f3: dd:25:9f:70:5f:62:9f:2e:7b:e1:ed:18:fa:63:3d:99:04:99: 40:f9:85:d0:dc:46:dd:8f:8e:40:fc:a1:88:14:ba:48:5f:06: a8:4a:91:f1:b1:41:51:84:63:f7:86:2a:bd:15:0d:25:b6:43: 8b:68:4c:aa:13:7a:3e:87:94:5f:7b:af:ef:91:43:0e:7b:d3: 57:2e:a5:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjUwODIzMDYxNjI4WhcNMjUwODMwMDYxNjI4WjAYMRYwFAYD VQQDEw02OGE5NWNiYy02ZWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11G4rUZoqTHG1j3nrtfUaLgx9btgRx3qqkIL6NFaW7cV17/hpT65Cv5mkTxa rVaK+jhULjea5achyEjaoxc7H0oKBmhBM5poqB+FZCY5SasViNetLft9GglUfRS+ 19f7rwSxLBhquWw+SXdpP5HElH5h9HIhQBNr+oA7ku5s/CFA2y45PX8uPFCmDb9h Uiw2O684RbmubX7YhiVAe1gb1YT3NYAIkb5xTGdqe2A0RcWhKOfX3IHUUIc6bF55 jQ8ApwfY+xiKM/gkL5HmiZ/53xWSqazJcT81mLuJUnfTCttesA86wRLXB04qqx3j N0pViPqgIF0xmcwgDAzE0f3Q0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNT8H57d 7I7hZlStSVUdJSUQE6DtMB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx5rXhlLvAew9vZg4gr+C3T5B3C3rb4xpnoMj5rN6dPNIQ6Vy3yr9v lr4ByvltffspqsnQ8qlcCcXHrXEGWwV5rl0T1kds4uR+6wAbW9O/jH8++H7dxWIy 03+D9i3wJ8ZaOLo1ovZWQv/9gjabFtNrGCot8aku3xk5eQnwIfIjXh2hae3vmYuz 2t286sC0PjfH8I410w9BRvE1+mfF1he2x6Wp1EKiJSJi6o96PdkDsSxaLvPdJZ9w X2KfLnvh7Rj6Yz2ZBJlA+YXQ3Ebdj45A/KGIFLpIXwaoSpHxsUFRhGP3hiq9FQ0l tkOLaEyqE3o+h5Rfe6/vkUMOe9NXLqXO -----END CERTIFICATE-----Generated at Sat Aug 23 20:43:30 2025 by rpki-client