$ rpki-client -vvf rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft File: UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft (raw, json) Hash identifier: Cq/Ef2kJdknSgpadXaX8ylKenwHTB9ql0jX2ws/8gSQ= Subject key identifier: 51:CA:9F:76:70:A1:6C:D9:43:97:9C:8A:0F:1E:52:EA:69:44:BC:47 Authority key identifier: 50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 Certificate issuer: /CN=A9157031/serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft Manifest number: 0412 Signing time: Sat 23 Aug 2025 00:37:37 +0000 Manifest this update: Sat 23 Aug 2025 00:37:36 +0000 Manifest next update: Sat 30 Aug 2025 00:37:36 +0000 Files and hashes: 1: UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl (hash: Qq1g7EpgjHnuysSaYkxQKRAP3PvWxIjjWz3pOArXWRA=) 2: 32D8FF34C99E11ED98E9BE5BC4F9AE02.roa (hash: 75eZM/Pn5fV11WrvJUnUrFhvKQhEtrEs1POmskjBp6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157031, serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Validity Not Before: Aug 23 00:37:36 2025 GMT Not After : Aug 30 00:37:36 2025 GMT Subject: CN=68a90d50-e4c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d7:7c:38:25:46:2b:b8:d1:b6:9c:d4:5f:ad: 1c:3d:50:f0:9f:bf:67:72:52:61:17:a2:57:0c:cf: d2:37:28:41:bf:cb:e2:e2:82:41:45:3d:1f:13:b6: 99:a7:ec:2b:24:3d:29:69:a1:3a:14:94:41:cc:69: 2d:4d:cd:3a:f9:d7:4e:d8:40:7f:e8:d8:4a:ce:ea: 19:01:43:36:99:ad:84:8c:31:7c:cd:36:5a:5d:0c: 7b:7a:54:25:38:bc:2e:14:e6:f2:af:43:6b:0c:60: 7c:ad:5a:00:ba:9a:01:c8:48:2b:3a:75:ed:01:61: f2:0a:24:9e:3c:81:87:15:6c:b8:c2:99:83:b8:d5: 27:d9:ff:5a:dd:37:1e:d4:dd:6a:21:3b:83:d6:59: 60:d7:84:cf:25:2f:23:f8:24:e2:60:b9:37:a3:bf: 78:45:58:ce:1a:70:2a:97:82:c5:da:10:a5:e5:c8: 5f:cb:ab:47:75:8a:ee:15:b6:f8:9b:35:ad:42:ec: b2:dd:b7:19:3a:a8:6e:fd:30:cf:d3:e2:c0:20:50: f0:c6:af:e7:64:b2:22:03:2b:a2:c0:34:f8:5a:a4: 55:35:56:64:a3:b3:2d:c9:a6:c1:fe:06:92:8c:8f: 8d:2f:c8:23:26:9c:1b:06:7a:c6:7b:ee:94:74:eb: 11:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:CA:9F:76:70:A1:6C:D9:43:97:9C:8A:0F:1E:52:EA:69:44:BC:47 X509v3 Authority Key Identifier: keyid:50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:06:be:a4:3d:f7:4c:e9:bf:bf:48:b9:11:38:fc:ca:c7:f0: a1:95:81:fd:65:de:44:35:39:32:44:1c:ba:27:f7:a2:d2:a2: b6:a7:d6:8c:0b:21:eb:60:0a:c1:f7:b7:5f:30:a3:42:b4:cd: f8:36:8a:a8:9c:40:a0:6d:3c:65:05:07:e9:d0:16:50:3c:5b: 92:ab:d4:a8:66:f9:f9:01:fa:21:6e:e0:55:e0:ee:23:e8:d6: 43:a6:d0:d7:f1:fe:29:37:5e:33:9c:8a:a7:90:39:e8:3c:d3: b1:d5:ce:e8:36:79:43:c4:6a:2c:73:a3:c3:00:f9:59:d1:ba: 55:b8:fd:76:e3:aa:67:07:99:2d:63:f3:a4:e2:da:48:3b:29: 21:f2:f2:bb:ca:68:42:d0:3a:da:ef:4f:f7:37:c2:87:3d:38: 96:c1:cb:ec:9c:b6:4b:c8:b3:7d:4d:a1:9f:03:48:5e:76:a8: 16:18:9f:1c:9e:56:c0:79:23:0d:50:26:23:11:93:4d:ce:3b: 56:98:51:3d:af:d5:05:09:65:bb:c6:5a:c2:af:c6:c1:42:05: f3:eb:2a:b0:1e:d3:07:9a:53:d5:01:0e:a9:33:a1:13:05:07: 03:53:63:62:f2:fb:ea:6c:14:77:12:ee:fa:70:17:ac:8f:c3: 99:f3:4b:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwMzExMTAvBgNVBAUTKDUwRTUwRURBRjY0QTJDMjVCNzMxMjM5NjczRDkwNzBG NjE4MzAyNzkwHhcNMjUwODIzMDAzNzM2WhcNMjUwODMwMDAzNzM2WjAYMRYwFAYD VQQDEw02OGE5MGQ1MC1lNGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39d8OCVGK7jRtpzUX60cPVDwn79nclJhF6JXDM/SNyhBv8vi4oJBRT0fE7aZ p+wrJD0paaE6FJRBzGktTc06+ddO2EB/6NhKzuoZAUM2ma2EjDF8zTZaXQx7elQl OLwuFObyr0NrDGB8rVoAupoByEgrOnXtAWHyCiSePIGHFWy4wpmDuNUn2f9a3Tce 1N1qITuD1llg14TPJS8j+CTiYLk3o794RVjOGnAql4LF2hCl5chfy6tHdYruFbb4 mzWtQuyy3bcZOqhu/TDP0+LAIFDwxq/nZLIiAyuiwDT4WqRVNVZko7MtyabB/gaS jI+NL8gjJpwbBnrGe+6UdOsRHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHKn3Zw oWzZQ5ecig8eUuppRLxHMB8GA1UdIwQYMBaAFFDlDtr2SiwltzEjlnPZBw9hgwJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzAzMS83QTAwNEY3ODdF QzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xDVzNNU09XYzlrSEQyR0RB bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPVU8ydlpLTENXM01TT1djOWtIRDJHREFuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzAzMS83QTAwNEY3ODdFQzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xD VzNNU09XYzlrSEQyR0RBbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsBr6kPfdM6b+/SLkROPzKx/ChlYH9Zd5ENTkyRBy6J/ei0qK2p9aM CyHrYArB97dfMKNCtM34NoqonECgbTxlBQfp0BZQPFuSq9SoZvn5AfohbuBV4O4j 6NZDptDX8f4pN14znIqnkDnoPNOx1c7oNnlDxGosc6PDAPlZ0bpVuP1246pnB5kt Y/Ok4tpIOykh8vK7ymhC0Dra70/3N8KHPTiWwcvsnLZLyLN9TaGfA0hedqgWGJ8c nlbAeSMNUCYjEZNNzjtWmFE9r9UFCWW7xlrCr8bBQgXz6yqwHtMHmlPVAQ6pM6ET BQcDU2Ni8vvqbBR3Eu76cBesj8OZ80u/ -----END CERTIFICATE-----Generated at Sat Aug 23 13:36:31 2025 by rpki-client