$ rpki-client -vvf rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft File: 5ufguvNPIMPZye8md2gF84JGO4Y.mft (raw, json) Hash identifier: vM1yVYDDE3FblIiPYPe2EuEg3yz3vXPgw1d9kJcrCi8= Subject key identifier: E5:FA:50:59:77:4D:EC:DD:E1:CB:AF:05:DD:61:B9:5B:9F:23:57:70 Authority key identifier: E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 Certificate issuer: /CN=A9160BD2/serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Certificate serial: 069B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft Manifest number: 0696 Signing time: Fri 22 Aug 2025 22:24:15 +0000 Manifest this update: Fri 22 Aug 2025 22:24:14 +0000 Manifest next update: Fri 29 Aug 2025 22:24:14 +0000 Files and hashes: 1: 5ufguvNPIMPZye8md2gF84JGO4Y.crl (hash: FcgJ29PACz3+AyIReJOZ7geY/LYSeR1ryQvzqPwO3bo=) 2: 159A3C967D7211EBA0A7FF60C4F9AE02.roa (hash: Zxo0mKrJYkISVsqHRZIlLeBZhk5GaXEPMnvmTBTNLew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1691 (0x69b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160BD2, serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Validity Not Before: Aug 22 22:24:14 2025 GMT Not After : Aug 29 22:24:14 2025 GMT Subject: CN=68a8ee0f-a287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:85:17:07:c9:84:23:19:0f:f2:ee:47:12:f0: fd:6b:0c:ec:22:5b:71:88:76:95:ed:55:be:da:a6: 50:0a:bc:c7:08:cb:7b:8d:89:6d:5b:af:9b:49:e9: 65:2d:c7:17:97:03:e3:79:0a:7d:b9:c5:9f:b4:a9: 0a:6c:5a:48:10:6e:24:37:e6:34:8c:60:a1:cd:e0: 9e:e4:29:6c:c3:97:51:b9:f7:aa:ce:1c:fd:52:f5: be:7d:79:d9:dc:72:7d:cb:e9:54:29:05:60:b0:66: 28:60:df:2e:6a:86:b8:3b:b7:8a:8d:08:01:c6:09: 67:ae:ba:d7:3b:e3:96:ac:b1:a8:d1:f0:8c:b1:ec: ed:a2:f5:37:01:e5:6a:22:b7:c5:08:7f:16:fb:93: bd:b1:a8:5c:78:b4:23:b4:20:10:17:05:ca:54:71: 5c:a2:f9:bf:c4:13:73:b2:45:ea:1a:50:01:17:36: 76:02:ef:74:f2:14:a8:6e:45:48:c5:c4:ca:07:68: 37:46:8e:82:56:20:6d:69:4f:b0:2f:77:0c:b0:25: c0:04:78:4d:41:98:11:26:dd:9f:7b:fd:f4:fc:2a: a1:9b:99:5e:b9:a2:33:0a:d8:ed:8d:e4:88:50:74: 6f:c4:83:a4:69:7c:ce:d9:2b:9b:d1:9b:f5:73:99: 2c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FA:50:59:77:4D:EC:DD:E1:CB:AF:05:DD:61:B9:5B:9F:23:57:70 X509v3 Authority Key Identifier: keyid:E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:8a:00:4c:32:0d:df:74:f6:02:52:25:43:00:3a:b1:b9:d0: 7c:de:73:0a:8c:73:ab:6d:0d:13:33:0e:48:1e:fe:70:26:61: a3:6d:c8:62:56:03:0b:87:b9:5c:76:71:77:4e:4a:da:58:44: f3:0f:87:80:de:1b:26:0d:3d:b9:dc:58:e8:22:5f:3f:04:53: 3d:74:42:a2:5e:1a:f2:53:b4:3c:1e:c4:38:30:cf:8d:08:b6: 89:50:b5:e1:b2:9d:df:e5:9a:fe:a9:84:d6:ba:a5:68:0b:3e: 33:94:97:4d:ec:c1:af:ba:03:1b:3d:d0:77:f2:b2:f9:52:4d: 55:34:bc:de:11:ba:b4:44:16:fa:f5:96:48:c3:90:e4:37:a9: 62:67:b7:92:ef:d8:f7:bf:30:63:67:b2:f8:13:fa:d6:e5:a2: 4b:9a:88:aa:93:8b:3d:8e:4a:aa:7d:90:67:de:22:da:2c:90: 91:ab:de:be:fe:c5:3c:5c:e0:ed:8b:68:9e:93:91:07:cd:3c: 6d:5a:34:82:e2:7c:13:3a:15:b4:e5:12:7a:0a:b9:65:2d:f2: 90:5c:1a:7d:f4:81:4e:8a:95:ff:c0:51:7d:72:0f:a8:20:e5: cc:ae:de:f6:4e:69:d8:f6:28:81:4d:85:9a:89:01:96:a7:f6: 24:26:1c:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBCRDIxMTAvBgNVBAUTKEU2RTdFMEJBRjM0RjIwQzNEOUM5RUYyNjc3NjgwNUYz ODI0NjNCODYwHhcNMjUwODIyMjIyNDE0WhcNMjUwODI5MjIyNDE0WjAYMRYwFAYD VQQDEw02OGE4ZWUwZi1hMjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4UXB8mEIxkP8u5HEvD9awzsIltxiHaV7VW+2qZQCrzHCMt7jYltW6+bSell LccXlwPjeQp9ucWftKkKbFpIEG4kN+Y0jGChzeCe5Clsw5dRufeqzhz9UvW+fXnZ 3HJ9y+lUKQVgsGYoYN8uaoa4O7eKjQgBxglnrrrXO+OWrLGo0fCMseztovU3AeVq IrfFCH8W+5O9sahceLQjtCAQFwXKVHFcovm/xBNzskXqGlABFzZ2Au908hSobkVI xcTKB2g3Ro6CViBtaU+wL3cMsCXABHhNQZgRJt2fe/30/Cqhm5leuaIzCtjtjeSI UHRvxIOkaXzO2Sub0Zv1c5ksmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOX6UFl3 Tezd4cuvBd1huVufI1dwMB8GA1UdIwQYMBaAFObn4LrzTyDD2cnvJndoBfOCRjuG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEJEMi9FN0U5MDQwMDdE NkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElNUFp5ZThtZDJnRjg0SkdP NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV1Zmd1dk5QSU1QWnllOG1kMmdGODRKR080WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEJEMi9FN0U5MDQwMDdENkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElN UFp5ZThtZDJnRjg0SkdPNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiigBMMg3fdPYCUiVDADqxudB83nMKjHOrbQ0TMw5IHv5wJmGjbchi VgMLh7lcdnF3TkraWETzD4eA3hsmDT253FjoIl8/BFM9dEKiXhryU7Q8HsQ4MM+N CLaJULXhsp3f5Zr+qYTWuqVoCz4zlJdN7MGvugMbPdB38rL5Uk1VNLzeEbq0RBb6 9ZZIw5DkN6liZ7eS79j3vzBjZ7L4E/rW5aJLmoiqk4s9jkqqfZBn3iLaLJCRq96+ /sU8XODti2iek5EHzTxtWjSC4nwTOhW05RJ6CrllLfKQXBp99IFOipX/wFF9cg+o IOXMrt72TmnY9iiBTYWaiQGWp/YkJhxf -----END CERTIFICATE-----Generated at Sun Aug 24 03:09:15 2025 by rpki-client