$ rpki-client -vvf rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft File: u5dqWY5eywXjf6wApbeIjlf1HFI.mft (raw, json) Hash identifier: jaQKKQGMNGP0DcgH+ogKVsafIMMRSd5gFFFeayfMSPQ= Subject key identifier: E3:00:46:D1:90:CD:BD:BB:A8:5A:C1:6D:DF:D9:24:B1:36:A3:7F:2D Authority key identifier: BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 Certificate issuer: /CN=A91590E3/serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Certificate serial: 1928 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft Manifest number: 18F1 Signing time: Fri 22 Aug 2025 16:35:01 +0000 Manifest this update: Fri 22 Aug 2025 16:35:00 +0000 Manifest next update: Fri 29 Aug 2025 16:35:00 +0000 Files and hashes: 1: u5dqWY5eywXjf6wApbeIjlf1HFI.crl (hash: xvKdltp/bVThbQ8SE4JqV96ot4p2Mda14zwZGqrQetI=) 2: 1295ACC8511811F0BC16C641C4F9AE02.roa (hash: 84OKZziZJhzWPyx/Qu58m71qp96Ia8UIPI3npSmJSak=) 3: 4D12993446CC11F08EB9471AC4F9AE02.roa (hash: vbJhtFwjv9AiVVu2dZyRBj8FMJ3ESi6HyljVMBZDFwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6440 (0x1928) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91590E3, serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Validity Not Before: Aug 22 16:35:00 2025 GMT Not After : Aug 29 16:35:00 2025 GMT Subject: CN=68a89c35-db29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cd:5f:d0:fa:5c:07:6c:20:a1:a7:9c:68:51: 6d:7c:98:2f:19:9c:8c:ca:3e:f2:fc:0f:db:0b:2b: 85:12:5a:d2:6e:d0:fd:bc:f3:1c:4c:e5:b1:13:76: ae:37:75:d7:77:dc:20:e8:00:a9:0f:d9:a1:b0:02: d6:db:cf:82:62:ad:52:8b:e0:09:f3:0f:a7:e7:2a: c2:4d:b3:41:a3:3a:6c:aa:1b:71:15:9c:51:78:98: 9b:a1:ec:bb:48:1e:8e:6d:df:86:c5:4b:4f:73:99: 42:cb:6e:1f:e2:34:06:16:98:16:90:0c:e1:81:ea: 0b:46:8c:a3:d1:f2:0b:74:31:fb:0c:a8:06:3a:2e: 27:b2:f1:7a:40:27:3f:37:a5:4a:eb:6d:7f:1c:e8: d2:06:5f:09:f2:45:3e:bc:f9:88:7e:b8:7b:6c:d4: 0e:eb:3c:3b:c6:b7:72:47:6c:46:43:a2:06:c5:38: 13:25:1c:cb:8e:9c:50:d1:31:66:74:7d:87:95:03: 38:e0:c2:3d:c1:0b:29:9d:0e:cc:8b:31:0f:24:e4: bb:ea:57:f0:fa:94:0d:c8:62:2f:ed:00:85:0b:3b: 9f:8c:b9:2b:1a:09:a8:9d:4b:ac:a5:15:0d:c4:ec: 6a:56:ae:4a:19:f8:63:80:c1:3a:ad:b8:83:9a:5c: 5a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:00:46:D1:90:CD:BD:BB:A8:5A:C1:6D:DF:D9:24:B1:36:A3:7F:2D X509v3 Authority Key Identifier: keyid:BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:1e:2d:c4:a3:5f:b5:88:93:65:6b:58:d4:c1:99:7b:4d:9e: 89:70:b4:81:46:3e:ca:08:00:1c:63:85:80:b3:c0:f0:3a:9b: de:e2:1c:7d:2c:2f:57:e7:e9:33:79:54:f8:0b:c3:73:4e:43: e3:69:a3:a0:bf:60:4e:ef:d3:b0:45:9f:db:b7:f1:6b:05:33: eb:61:e5:8a:7e:2b:3c:ec:bb:6a:29:28:79:f5:21:78:c4:40: 25:c7:05:c2:c8:dc:59:5b:85:3b:ab:0d:ec:3a:b5:0b:1b:4d: 41:ed:4e:7d:cb:d3:13:49:fe:c5:08:56:c9:96:4a:46:6b:3c: ac:86:a7:7b:47:c4:88:f6:f8:bc:e0:42:8b:ab:6b:0f:4e:c4: ac:6d:cd:bf:a6:5b:e6:53:a8:e0:12:ec:45:28:46:9f:db:ed: 6d:44:d9:86:35:0f:ec:ca:1f:b2:cf:87:c9:75:15:59:d8:44: f5:6a:3d:97:5e:0f:fe:eb:cf:73:74:5c:0e:b6:e2:86:51:0a: bd:5d:c3:68:c0:e0:8f:d7:46:09:35:36:4d:2d:7c:d5:36:9f: 97:6d:87:a6:31:de:85:08:3e:41:27:40:14:c0:f2:f3:63:17: f0:65:d9:cf:20:2f:6b:b7:40:59:2a:3c:af:4f:a2:e2:cf:5b: 88:72:2f:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkwRTMxMTAvBgNVBAUTKEJCOTc2QTU5OEU1RUNCMDVFMzdGQUMwMEE1Qjc4ODhF NTdGNTFDNTIwHhcNMjUwODIyMTYzNTAwWhcNMjUwODI5MTYzNTAwWjAYMRYwFAYD VQQDEw02OGE4OWMzNS1kYjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzs1f0PpcB2wgoaecaFFtfJgvGZyMyj7y/A/bCyuFElrSbtD9vPMcTOWxE3au N3XXd9wg6ACpD9mhsALW28+CYq1Si+AJ8w+n5yrCTbNBozpsqhtxFZxReJiboey7 SB6Obd+GxUtPc5lCy24f4jQGFpgWkAzhgeoLRoyj0fILdDH7DKgGOi4nsvF6QCc/ N6VK621/HOjSBl8J8kU+vPmIfrh7bNQO6zw7xrdyR2xGQ6IGxTgTJRzLjpxQ0TFm dH2HlQM44MI9wQspnQ7MizEPJOS76lfw+pQNyGIv7QCFCzufjLkrGgmonUuspRUN xOxqVq5KGfhjgME6rbiDmlxaPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMARtGQ zb27qFrBbd/ZJLE2o38tMB8GA1UdIwQYMBaAFLuXalmOXssF43+sAKW3iI5X9RxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTBFMy9EQTE4QjE4NDlB NDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3WGpmNndBcGJlSWpsZjFI RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1ZHFXWTVleXdYamY2d0FwYmVJamxmMUhGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTBFMy9EQTE4QjE4NDlBNDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3 WGpmNndBcGJlSWpsZjFIRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFHi3Eo1+1iJNla1jUwZl7TZ6JcLSBRj7KCAAcY4WAs8DwOpve4hx9 LC9X5+kzeVT4C8NzTkPjaaOgv2BO79OwRZ/bt/FrBTPrYeWKfis87LtqKSh59SF4 xEAlxwXCyNxZW4U7qw3sOrULG01B7U59y9MTSf7FCFbJlkpGazyshqd7R8SI9vi8 4EKLq2sPTsSsbc2/plvmU6jgEuxFKEaf2+1tRNmGNQ/syh+yz4fJdRVZ2ET1aj2X Xg/+689zdFwOtuKGUQq9XcNowOCP10YJNTZNLXzVNp+XbYemMd6FCD5BJ0AUwPLz YxfwZdnPIC9rt0BZKjyvT6Liz1uIci94 -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:33 2025 by rpki-client