$ rpki-client -vvf rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft File: -uYgHGZjkjQL7hOO1BeZuobapog.mft (raw, json) Hash identifier: tvi1fbmA/OB0/g6V0TpE+qxE7Tb3AlkRF3JYKrzj3GY= Subject key identifier: 3F:10:53:10:9A:DF:F5:2C:87:1E:3B:4C:36:D0:BE:A0:80:42:32:54 Authority key identifier: FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 Certificate issuer: /CN=A9158840/serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Certificate serial: 0C66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft Manifest number: 0C56 Signing time: Fri 22 Aug 2025 18:40:47 +0000 Manifest this update: Fri 22 Aug 2025 18:40:47 +0000 Manifest next update: Fri 29 Aug 2025 18:40:47 +0000 Files and hashes: 1: -uYgHGZjkjQL7hOO1BeZuobapog.crl (hash: GtB+I5Sl15Azb12/CScngEQFY8tQjTqM+9EPlAdgyaM=) 2: 513421B0E3AB11EF9C68465CC4F9AE02.roa (hash: /6OtFAV0fvfK8AYoQXUKAPYFcikHsFv3EvaxBMPOB2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3174 (0xc66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158840, serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Validity Not Before: Aug 22 18:40:47 2025 GMT Not After : Aug 29 18:40:47 2025 GMT Subject: CN=68a8b9af-ef6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ac:93:f1:8d:94:28:4b:7b:d9:a3:43:06:0c: 44:15:0d:2f:09:48:a4:52:de:7f:42:3e:66:75:ae: 39:26:f6:f0:8a:bb:fa:ca:51:8d:f2:da:ca:a0:36: 24:49:51:90:bb:7d:d1:d9:dc:71:38:5c:25:87:1c: 94:62:05:40:2a:eb:d6:36:12:55:56:59:9b:c7:a1: 78:ed:ed:a1:ad:a6:06:c5:08:5b:bb:0d:1b:a3:56: 24:a5:db:39:65:bd:36:a0:06:e8:67:ec:7c:ed:bd: ba:e0:6f:37:bd:1e:be:13:b2:a5:cb:2b:34:3a:c7: c5:b5:d8:63:a7:7e:a4:ce:7c:0e:89:48:a5:9d:86: 7b:7e:d1:bf:18:52:db:5c:bb:53:1c:71:52:ca:c4: 34:c4:45:de:02:42:ef:6a:35:a4:ea:cd:ab:92:b8: 30:c0:fb:82:26:8b:7c:97:91:b0:e3:3a:b6:e0:e5: 87:7f:aa:52:5b:c0:db:b5:cf:cb:27:59:99:8a:10: d5:88:21:d1:64:c4:2b:b9:e6:31:a1:9a:86:a4:c6: ff:de:ae:c4:b5:7c:5e:d1:4b:ab:1a:4f:fa:85:8a: 09:2a:d6:16:75:42:da:b4:32:9c:97:8f:8b:5d:95: 34:a0:ac:df:5d:1f:55:35:93:08:fb:b1:e8:3c:ca: 5f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:10:53:10:9A:DF:F5:2C:87:1E:3B:4C:36:D0:BE:A0:80:42:32:54 X509v3 Authority Key Identifier: keyid:FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:b7:6e:ee:65:43:32:88:0b:1d:a6:8d:6b:2d:09:19:f1:e2: e4:b2:0f:dd:4a:05:18:81:17:34:e8:5f:06:cc:64:4d:b6:de: 30:79:6c:9a:bf:fd:dc:55:e9:4d:54:aa:bd:75:f4:86:2a:b1: 5e:29:07:30:16:2b:ff:cb:1d:c3:01:af:d4:bb:2c:4d:f2:9b: 5f:48:b7:bb:2e:2a:9c:31:79:06:b7:8a:db:72:c7:63:85:a1: 0e:9a:69:c8:b3:be:a0:84:78:dc:00:44:24:46:4b:0d:3c:04: 9b:e7:08:46:a0:ae:eb:d7:22:93:b6:79:4a:5b:f6:74:12:77: b9:84:b1:83:74:90:e1:0e:1f:b8:b5:9a:f4:37:0c:10:ef:63: 64:39:54:e0:e6:a4:7a:88:55:e2:0a:fd:0c:20:02:9e:b4:7b: 30:d2:7d:1a:01:70:28:26:c2:e8:54:a9:0c:40:90:ac:a9:11: a8:de:57:df:7a:90:c8:0e:a8:fa:1d:9f:72:e8:3b:2f:84:f6: b4:82:25:b4:f4:95:c0:05:6e:bd:02:19:da:21:f1:0d:82:d6: 48:8b:d2:00:ac:31:0b:c7:6c:84:0f:a8:1d:e1:0d:7a:9a:07: 1e:a2:7b:c0:67:58:e5:1e:51:9f:1f:43:9d:bc:1f:46:16:84: c8:b0:a3:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NDAxMTAvBgNVBAUTKEZBRTYyMDFDNjY2MzkyMzQwQkVFMTM4RUQ0MTc5OUJB ODZEQUE2ODgwHhcNMjUwODIyMTg0MDQ3WhcNMjUwODI5MTg0MDQ3WjAYMRYwFAYD VQQDEw02OGE4YjlhZi1lZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqyT8Y2UKEt72aNDBgxEFQ0vCUikUt5/Qj5mda45Jvbwirv6ylGN8trKoDYk SVGQu33R2dxxOFwlhxyUYgVAKuvWNhJVVlmbx6F47e2hraYGxQhbuw0bo1Ykpds5 Zb02oAboZ+x87b264G83vR6+E7Klyys0OsfFtdhjp36kznwOiUilnYZ7ftG/GFLb XLtTHHFSysQ0xEXeAkLvajWk6s2rkrgwwPuCJot8l5Gw4zq24OWHf6pSW8Dbtc/L J1mZihDViCHRZMQrueYxoZqGpMb/3q7EtXxe0UurGk/6hYoJKtYWdULatDKcl4+L XZU0oKzfXR9VNZMI+7HoPMpfdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8QUxCa 3/Ushx47TDbQvqCAQjJUMB8GA1UdIwQYMBaAFPrmIBxmY5I0C+4TjtQXmbqG2qaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg0MC82MTc3MzMyQTBC ODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtqUUw3aE9PMUJlWnVvYmFw b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy11WWdIR1pqa2pRTDdoT08xQmVadW9iYXBvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg0MC82MTc3MzMyQTBCODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtq UUw3aE9PMUJlWnVvYmFwb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3t27uZUMyiAsdpo1rLQkZ8eLksg/dSgUYgRc06F8GzGRNtt4weWya v/3cVelNVKq9dfSGKrFeKQcwFiv/yx3DAa/UuyxN8ptfSLe7LiqcMXkGt4rbcsdj haEOmmnIs76ghHjcAEQkRksNPASb5whGoK7r1yKTtnlKW/Z0Ene5hLGDdJDhDh+4 tZr0NwwQ72NkOVTg5qR6iFXiCv0MIAKetHsw0n0aAXAoJsLoVKkMQJCsqRGo3lff epDIDqj6HZ9y6DsvhPa0giW09JXABW69AhnaIfENgtZIi9IArDELx2yED6gd4Q16 mgceonvAZ1jlHlGfH0OdvB9GFoTIsKNK -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:37 2025 by rpki-client