$ rpki-client -vvf rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft File: rU1lO4NcTh3pjsZjdoiamoN2SwI.mft (raw, json) Hash identifier: usiZVYHoLerritdLGCxl+lL0uIJR42jTEY4lEOFubRk= Subject key identifier: D1:50:67:EB:FE:6C:C2:40:51:95:7C:41:2C:BD:17:7F:7B:5A:DB:8E Authority key identifier: AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 Certificate issuer: /CN=A914B669/serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Certificate serial: 34AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft Manifest number: 34AD Signing time: Fri 22 Aug 2025 14:45:41 +0000 Manifest this update: Fri 22 Aug 2025 14:45:40 +0000 Manifest next update: Fri 29 Aug 2025 14:45:40 +0000 Files and hashes: 1: rU1lO4NcTh3pjsZjdoiamoN2SwI.crl (hash: uqX78dqAwc/mjkjqNRTyk4uBBtrYykA143uqaGxkG3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B669, serialNumber=AD4D653B835C4E1DE98EC66376889A9A83764B02 Validity Not Before: Aug 22 14:45:40 2025 GMT Not After : Aug 29 14:45:40 2025 GMT Subject: CN=68a88295-b78e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:db:3d:b0:49:fd:d2:ea:ca:d5:04:58:38:c5: cb:81:ad:20:19:04:2f:b4:99:31:6d:a4:f4:85:fc: d2:c7:47:e4:18:9e:f4:b7:ec:ee:c8:f7:10:e8:2e: d3:5f:38:b2:99:24:ee:3a:1e:77:ba:59:3a:81:b4: 3d:a3:07:6e:1d:2d:53:47:9f:ea:19:7a:e8:99:62: 87:9c:c6:16:44:2f:fd:c2:84:91:e2:b2:07:71:71: ed:2c:16:28:24:eb:be:84:6f:71:21:29:9f:3c:e5: 10:14:9d:2a:29:6a:5c:53:f1:1e:7b:86:08:cd:43: c7:f2:04:4e:2d:ed:40:e5:cf:99:55:40:7c:34:d8: 6a:71:1f:b4:f6:6f:e7:2b:41:2d:d3:59:f4:b6:c0: de:33:4b:1c:37:a2:6d:2b:00:9d:40:1d:18:95:a6: f1:5c:99:a9:5b:24:70:9d:b6:f0:e2:93:95:a9:6c: 41:80:60:52:a9:ef:2b:08:51:0c:a2:59:cb:c7:37: ea:a8:81:26:4d:e3:a5:fb:21:f6:10:55:6b:63:97: bd:93:71:4e:b0:0b:4a:a6:72:ca:d5:7e:48:77:09: 1a:fe:8d:3b:30:0e:3a:d4:92:53:55:da:93:b6:5f: fa:34:fc:29:e9:e3:16:a9:99:50:f4:db:48:d7:18: a4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:50:67:EB:FE:6C:C2:40:51:95:7C:41:2C:BD:17:7F:7B:5A:DB:8E X509v3 Authority Key Identifier: keyid:AD:4D:65:3B:83:5C:4E:1D:E9:8E:C6:63:76:88:9A:9A:83:76:4B:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rU1lO4NcTh3pjsZjdoiamoN2SwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B669/9D5BF6FE1D9211E2886EAAF508B02CD2/rU1lO4NcTh3pjsZjdoiamoN2SwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:cd:f4:a4:78:87:6b:f5:d8:a2:b3:0c:8a:41:c9:28:0f:16: 71:55:eb:c8:00:1b:6b:6e:f9:f2:2c:63:6c:0f:42:68:e9:36: 8b:d3:9b:c6:0f:6e:82:e7:a8:0f:85:74:13:f1:99:58:c9:08: 4b:20:86:ed:03:53:17:fc:ac:3e:76:89:82:9d:91:64:58:7f: 00:d7:4b:dd:9c:7f:4d:85:ee:5e:39:7f:cc:23:e9:04:6c:f3: 55:61:77:3b:e8:1b:54:f5:96:61:08:17:94:45:07:91:a6:91: 55:c1:b1:67:d4:00:72:dc:8c:cb:29:f1:87:a6:c7:29:32:4d: ae:96:3b:40:4d:01:5d:e7:9c:e0:63:e6:c8:38:ba:5d:f9:64: 3e:4b:04:7d:f7:ee:17:17:fe:e0:8a:93:76:09:30:0f:5c:aa: 52:57:7d:22:f4:5c:b0:70:47:7f:70:49:b6:a5:f3:ea:e2:91: ab:94:36:9b:49:59:e1:34:5f:12:f4:8b:ca:37:4a:0e:db:9d: 78:7a:85:79:ba:bb:47:6c:31:33:31:78:36:b2:8c:b5:48:9c: 98:ab:65:95:cc:e7:8f:8d:0c:b4:84:65:2a:a1:0f:70:0a:db: 7c:1a:b9:6a:fc:84:94:7d:ca:7f:0d:b4:72:fa:41:10:58:33: 79:01:9e:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI2NjkxMTAvBgNVBAUTKEFENEQ2NTNCODM1QzRFMURFOThFQzY2Mzc2ODg5QTlB ODM3NjRCMDIwHhcNMjUwODIyMTQ0NTQwWhcNMjUwODI5MTQ0NTQwWjAYMRYwFAYD VQQDEw02OGE4ODI5NS1iNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxds9sEn90urK1QRYOMXLga0gGQQvtJkxbaT0hfzSx0fkGJ70t+zuyPcQ6C7T XziymSTuOh53ulk6gbQ9owduHS1TR5/qGXromWKHnMYWRC/9woSR4rIHcXHtLBYo JOu+hG9xISmfPOUQFJ0qKWpcU/Eee4YIzUPH8gROLe1A5c+ZVUB8NNhqcR+09m/n K0Et01n0tsDeM0scN6JtKwCdQB0YlabxXJmpWyRwnbbw4pOVqWxBgGBSqe8rCFEM olnLxzfqqIEmTeOl+yH2EFVrY5e9k3FOsAtKpnLK1X5Idwka/o07MA461JJTVdqT tl/6NPwp6eMWqZlQ9NtI1xikmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFQZ+v+ bMJAUZV8QSy9F397WtuOMB8GA1UdIwQYMBaAFK1NZTuDXE4d6Y7GY3aImpqDdksC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjY2OS85RDVCRjZGRTFE OTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1RoM3Bqc1pqZG9pYW1vTjJT d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVMWxPNE5jVGgzcGpzWmpkb2lhbW9OMlN3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjY2OS85RDVCRjZGRTFEOTIxMUUyODg2RUFBRjUwOEIwMkNEMi9yVTFsTzROY1Ro M3Bqc1pqZG9pYW1vTjJTd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7zfSkeIdr9diiswyKQckoDxZxVevIABtrbvnyLGNsD0Jo6TaL05vG D26C56gPhXQT8ZlYyQhLIIbtA1MX/Kw+domCnZFkWH8A10vdnH9Nhe5eOX/MI+kE bPNVYXc76BtU9ZZhCBeURQeRppFVwbFn1ABy3IzLKfGHpscpMk2uljtATQFd55zg Y+bIOLpd+WQ+SwR99+4XF/7gipN2CTAPXKpSV30i9FywcEd/cEm2pfPq4pGrlDab SVnhNF8S9IvKN0oO2514eoV5urtHbDEzMXg2soy1SJyYq2WVzOePjQy0hGUqoQ9w Ctt8Grlq/ISUfcp/DbRy+kEQWDN5AZ4V -----END CERTIFICATE-----Generated at Sat Aug 23 20:31:01 2025 by rpki-client