$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: xY9kwW0S5+KWAyB1fplii8dVLj/rd2av38uSPKFdGFw= Subject key identifier: 0E:9E:15:08:4D:05:47:85:DC:2C:2C:E3:F7:2A:6D:72:96:02:3A:DF Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0876 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 1FEA Signing time: Fri 22 Aug 2025 16:40:33 +0000 Manifest this update: Fri 22 Aug 2025 16:40:33 +0000 Manifest next update: Fri 29 Aug 2025 16:40:33 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: q8raSGlAvasKMteS5vvD20ctX2sr3PkNo4J+ybhypQw=) 2: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: hgO4m8NBFvCWTk/xZ7lTPgH3uo1aBC3KP8OdcPsjkbo=) 3: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: XzzXA6m5Sfbs0sLhTPVckgYHL3ZiipFrwRLSzgKZ33U=) 4: 172C2B96197711F0A993397AC4F9AE02.roa (hash: 8Qo70bxIag9X+h+p9rkvEiGVmiiK66r021Qwo1g6tkk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2166 (0x876) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Aug 22 16:40:33 2025 GMT Not After : Aug 29 16:40:33 2025 GMT Subject: CN=68a89d81-2924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:63:73:ca:82:a1:23:44:89:e0:2a:1f:7e:85: b9:b9:5e:73:76:d7:09:6f:3f:f0:db:d4:37:d4:d8: 52:b5:52:43:f4:fc:57:0a:22:93:7d:e4:8d:42:eb: b3:43:7e:68:e1:ad:61:eb:80:6f:87:cc:88:8f:66: 58:9d:c9:2f:63:05:e1:3c:a6:38:4f:ac:86:7f:f0: 4c:e8:5e:7b:8c:e4:57:8f:ee:ad:d3:3a:43:78:e8: 96:79:1b:67:32:fa:7c:5d:b2:0e:4c:ea:65:db:92: 8e:5f:eb:22:6a:03:1b:45:f1:46:6b:75:ca:01:1a: 22:fc:e1:6d:6f:7e:9c:a9:0e:4d:0b:1c:0c:6c:12: 11:2d:23:a5:4e:3c:98:f5:98:c6:fb:ba:c7:fd:6f: 69:87:a6:1b:9e:0d:70:46:9c:88:65:12:cc:47:36: a8:b7:20:fd:57:7e:07:62:c2:5f:d8:59:60:a5:94: 2c:77:0f:f3:5b:55:13:4c:6f:ff:10:dc:06:7e:d1: 0b:dc:25:8b:85:dc:15:92:6c:f6:8f:4c:51:f4:2d: 62:4c:fe:59:84:29:cb:5a:f9:4b:4d:8d:15:a1:3b: 15:85:00:e3:40:80:14:67:ec:ae:34:18:c1:5a:da: de:0b:e1:74:39:06:8d:a2:42:33:37:e9:e3:7d:1e: 8e:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9E:15:08:4D:05:47:85:DC:2C:2C:E3:F7:2A:6D:72:96:02:3A:DF X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:8c:7e:4b:87:c5:72:1d:ab:73:26:83:a3:de:96:95:3e:7c: a6:ff:7c:43:a8:5c:a5:a9:d4:44:80:34:bc:2e:6c:9e:4a:71: 20:18:5a:35:92:77:68:be:43:06:df:7e:f7:ed:8b:ac:79:2f: f1:62:c7:d2:3a:de:f1:46:c4:47:77:c4:42:86:3d:ae:5d:94: 37:f2:fb:ba:95:29:e7:83:bb:34:93:ab:97:48:0a:b7:c2:de: 5f:8a:e0:2b:fb:6b:bb:ee:66:da:c1:8c:1f:97:81:ef:8a:56: 92:79:09:c1:14:c1:26:1d:77:8a:d1:56:6b:2e:dc:ef:a4:81: 31:8b:09:f1:0b:3d:28:6e:cd:c9:e2:86:62:51:9f:89:c0:5b: f6:ad:71:f0:d8:fa:3e:08:fd:3a:d9:34:ff:93:f0:43:e1:da: 26:ed:7c:33:ba:0b:6b:7b:59:2a:67:52:e0:e7:c0:65:c1:da: 1c:ba:03:e5:3b:9f:81:06:ba:71:0b:77:21:15:c9:a6:31:0f: 57:c5:94:4b:df:ad:c2:7a:47:b5:76:e2:01:09:f0:00:58:e1: 38:95:24:32:10:c7:59:be:7e:4e:15:c8:e3:5c:aa:87:6a:9e: 5a:67:ab:a7:74:15:c8:95:cb:b0:e7:3f:ca:0f:f1:4d:57:8b: 8e:a8:7e:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjUwODIyMTY0MDMzWhcNMjUwODI5MTY0MDMzWjAYMRYwFAYD VQQDEw02OGE4OWQ4MS0yOTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmNzyoKhI0SJ4CoffoW5uV5zdtcJbz/w29Q31NhStVJD9PxXCiKTfeSNQuuz Q35o4a1h64Bvh8yIj2ZYnckvYwXhPKY4T6yGf/BM6F57jORXj+6t0zpDeOiWeRtn Mvp8XbIOTOpl25KOX+siagMbRfFGa3XKARoi/OFtb36cqQ5NCxwMbBIRLSOlTjyY 9ZjG+7rH/W9ph6Ybng1wRpyIZRLMRzaotyD9V34HYsJf2FlgpZQsdw/zW1UTTG// ENwGftEL3CWLhdwVkmz2j0xR9C1iTP5ZhCnLWvlLTY0VoTsVhQDjQIAUZ+yuNBjB WtreC+F0OQaNokIzN+njfR6OUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6eFQhN BUeF3Cws4/cqbXKWAjrfMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5jH5Lh8VyHatzJoOj3paVPnym/3xDqFylqdREgDS8LmyeSnEgGFo1 kndovkMG33737YuseS/xYsfSOt7xRsRHd8RChj2uXZQ38vu6lSnng7s0k6uXSAq3 wt5fiuAr+2u77mbawYwfl4HvilaSeQnBFMEmHXeK0VZrLtzvpIExiwnxCz0obs3J 4oZiUZ+JwFv2rXHw2Po+CP062TT/k/BD4dom7Xwzugtre1kqZ1Lg58BlwdocugPl O5+BBrpxC3chFcmmMQ9XxZRL363Ceke1duIBCfAAWOE4lSQyEMdZvn5OFcjjXKqH ap5aZ6undBXIlcuw5z/KD/FNV4uOqH7e -----END CERTIFICATE-----Generated at Sat Aug 23 23:54:27 2025 by rpki-client