$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: 6BcI5+0qg/wcWY/cKiJS4r351srtjT8gZN0i6YRgMzs= Subject key identifier: 96:CD:EC:26:F7:5A:FF:99:B9:A0:4F:8F:A8:74:5F:C2:5F:3A:2D:10 Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 066C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 0667 Signing time: Fri 22 Aug 2025 22:41:48 +0000 Manifest this update: Fri 22 Aug 2025 22:41:47 +0000 Manifest next update: Fri 29 Aug 2025 22:41:47 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: QreHpSK5hNpquvSlQlCZ08Fwpn6piZKJVa9TIjmbXo8=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1644 (0x66c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Aug 22 22:41:47 2025 GMT Not After : Aug 29 22:41:47 2025 GMT Subject: CN=68a8f22b-8874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e7:09:d7:f3:2b:da:d2:40:20:e1:42:25:2c: ed:50:bc:06:9b:60:44:7a:df:d0:38:82:11:3f:dd: ef:db:38:80:c7:72:2e:69:cd:8b:d0:f3:0e:7f:84: de:2b:e8:de:4f:bf:a5:ee:1d:bd:e4:e1:e6:8e:14: f4:c2:63:8d:67:0f:80:dc:d1:e8:97:c9:3c:e4:78: 6d:17:74:5e:e0:29:a2:6c:1e:d6:21:01:75:6e:9c: 06:68:60:42:e5:da:8f:78:88:17:06:18:f5:fd:ab: cf:c2:d0:bc:99:a1:d9:57:af:fd:40:9e:4d:3b:ce: 97:a0:44:81:8e:57:4a:ba:4c:68:b1:df:58:82:7d: ee:a3:07:56:a7:87:55:d5:14:a7:9f:f2:bb:f9:e3: fd:be:48:63:5e:2e:f5:c3:11:52:04:fd:e8:f3:19: 0a:0f:3e:01:e2:53:f7:75:90:48:b7:42:ea:66:e6: 12:f2:95:a0:c2:c9:18:da:f1:6b:4e:79:d6:af:63: df:d1:66:9f:f9:1c:aa:41:db:5e:e6:5a:2d:fe:51: e9:26:76:c0:db:20:3a:48:3b:bd:8e:86:fc:c4:c4: 96:c7:fd:99:9b:f9:c4:89:3a:55:b8:46:4b:3d:af: c4:f1:28:8f:4f:3a:92:6b:19:45:c3:ec:89:1d:81: bc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:CD:EC:26:F7:5A:FF:99:B9:A0:4F:8F:A8:74:5F:C2:5F:3A:2D:10 X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:f0:db:02:24:a1:4c:f7:ab:8c:d7:46:a7:a8:32:cf:65:50: af:78:d0:7a:11:fe:27:46:da:9d:20:57:26:4d:48:e3:65:0e: 4c:14:0c:6f:56:5a:41:e8:32:30:ce:6a:ce:9f:45:43:f9:22: ef:d1:ab:0e:ff:49:3b:25:b2:e7:51:f4:ee:b2:55:17:9a:b9: b1:1d:b4:67:eb:a5:7e:92:c8:8e:16:aa:ad:ff:4d:16:89:32: 2b:76:1f:57:a5:6a:28:4d:aa:22:24:ff:e1:32:35:86:70:d5: e1:ec:ec:43:1c:69:43:ce:07:3c:5d:b7:77:c8:3a:ee:bb:d2: 19:b9:57:82:74:7f:a4:60:ee:e0:4f:d0:0f:3e:4d:4a:ef:57: 70:76:b4:4a:9f:88:4b:54:af:d4:f3:2c:81:05:8e:0c:6c:54: 4d:22:a1:82:64:1f:ec:99:bf:56:32:51:bf:03:f0:7c:68:7f: c5:eb:46:df:1f:5b:f6:ac:19:8f:50:0e:fd:bf:26:d9:2c:93: 82:a5:0d:ab:3c:bb:a0:6c:59:bd:22:32:fd:76:b5:1d:92:75: 32:bc:5b:dd:d7:cc:99:d7:0f:b6:e9:ef:16:eb:59:19:a7:e6: c3:39:d9:5a:a0:bc:ae:76:75:fa:2e:3f:62:58:d0:f0:49:6e: 4f:91:41:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUwODIyMjI0MTQ3WhcNMjUwODI5MjI0MTQ3WjAYMRYwFAYD VQQDEw02OGE4ZjIyYi04ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOcJ1/Mr2tJAIOFCJSztULwGm2BEet/QOIIRP93v2ziAx3Iuac2L0PMOf4Te K+jeT7+l7h295OHmjhT0wmONZw+A3NHol8k85HhtF3Re4CmibB7WIQF1bpwGaGBC 5dqPeIgXBhj1/avPwtC8maHZV6/9QJ5NO86XoESBjldKukxosd9Ygn3uowdWp4dV 1RSnn/K7+eP9vkhjXi71wxFSBP3o8xkKDz4B4lP3dZBIt0LqZuYS8pWgwskY2vFr TnnWr2Pf0Waf+RyqQdte5lot/lHpJnbA2yA6SDu9job8xMSWx/2Zm/nEiTpVuEZL Pa/E8SiPTzqSaxlFw+yJHYG8jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbN7Cb3 Wv+ZuaBPj6h0X8JfOi0QMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy8NsCJKFM96uM10anqDLPZVCveNB6Ef4nRtqdIFcmTUjjZQ5MFAxv VlpB6DIwzmrOn0VD+SLv0asO/0k7JbLnUfTuslUXmrmxHbRn66V+ksiOFqqt/00W iTIrdh9XpWooTaoiJP/hMjWGcNXh7OxDHGlDzgc8Xbd3yDruu9IZuVeCdH+kYO7g T9APPk1K71dwdrRKn4hLVK/U8yyBBY4MbFRNIqGCZB/smb9WMlG/A/B8aH/F60bf H1v2rBmPUA79vybZLJOCpQ2rPLugbFm9IjL9drUdknUyvFvd18yZ1w+26e8W61kZ p+bDOdlaoLyudnX6Lj9iWNDwSW5PkUHB -----END CERTIFICATE-----Generated at Sun Aug 24 00:53:20 2025 by rpki-client