$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft File: uHMcMIhjyygE4HbVjowHFZtOXxk.mft (raw, json) Hash identifier: 3MUWhtuIGQSTH3XzCX+yVB2yiJ64C14DGcslnuDIaY8= Subject key identifier: D8:C5:BE:3D:06:21:3E:70:83:12:2A:DF:BE:39:AD:F7:D8:33:F3:99 Authority key identifier: B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 Certificate issuer: /CN=A9164663/serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Certificate serial: 083A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft Manifest number: 1A81 Signing time: Fri 22 Aug 2025 17:14:33 +0000 Manifest this update: Fri 22 Aug 2025 17:14:33 +0000 Manifest next update: Fri 29 Aug 2025 17:14:33 +0000 Files and hashes: 1: uHMcMIhjyygE4HbVjowHFZtOXxk.crl (hash: kaaU8QwjkC9DdwatH8a75GFKETXsct9xwrB9eayCOh4=) 2: 3D626CDC065111F0BFE43624C4F9AE02.roa (hash: PyysKZ+hZFXrRWA3LPUfHO46XtpZrkwg+n+8mnDBEZE=) 3: 7BB2BC009FFA11ECA13C2839C4F9AE02.roa (hash: K7jgwtFrPBKypxv1Ln8vBllbtClVCUlvOXHISxYGRB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:14:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2106 (0x83a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Validity Not Before: Aug 22 17:14:33 2025 GMT Not After : Aug 29 17:14:33 2025 GMT Subject: CN=68a8a579-91b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6a:fa:89:22:30:e7:1b:63:2f:b5:a0:a6:2f: be:b0:a5:d7:2d:fd:a6:e3:a1:1e:f2:da:ba:d0:7e: ee:74:16:23:6d:08:a3:a4:33:7c:23:96:74:39:8c: 0e:9b:62:f1:04:d4:83:0f:9f:5b:0c:b0:5b:d1:11: 14:98:7d:4b:85:56:fe:dc:4e:70:4d:6b:78:4b:d0: ac:78:52:59:e4:cd:ab:b2:c0:fa:0f:12:fc:ca:02: 29:06:e0:b2:3b:3b:83:12:64:89:2b:9a:2b:b0:26: ad:5d:ea:5c:df:59:57:aa:92:7e:4a:1f:ed:50:28: 4c:d8:e6:cf:46:b6:ce:f7:33:d2:07:b1:62:cf:5c: 11:40:f2:c5:43:29:b2:4c:df:e1:77:45:62:c6:2e: d5:de:fd:c9:b3:5f:6f:fe:c2:eb:ca:92:fa:30:77: 04:e1:8b:ea:e3:ab:6f:03:98:f0:c0:4e:f9:86:1c: f2:61:76:6f:46:2b:a0:8a:2d:02:89:db:98:12:08: 66:ab:69:e6:7b:b9:9f:08:8c:8f:57:8c:d6:d7:33: bd:e9:aa:31:92:c6:41:de:c9:fe:dd:27:22:8a:c7: e3:ab:90:8e:67:8b:fe:6e:39:3d:a5:83:25:cc:8c: 16:fb:ce:b1:34:1a:14:c4:a0:94:2f:4f:b5:18:4a: 0e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:C5:BE:3D:06:21:3E:70:83:12:2A:DF:BE:39:AD:F7:D8:33:F3:99 X509v3 Authority Key Identifier: keyid:B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:c9:40:72:e6:8f:91:b7:10:14:e0:10:d2:9e:f4:39:51:76: aa:13:81:9b:f4:b7:78:d0:4a:63:8a:66:e1:0a:24:84:78:79: eb:04:0b:7f:df:8e:b6:0d:96:ed:83:c2:17:76:ec:ca:7f:1b: 35:08:a1:d5:b7:90:57:d8:b7:51:b9:6b:13:9e:5f:20:1f:99: 22:01:61:ba:60:d6:ee:54:72:5b:88:f4:03:d9:ae:2d:2c:c3: 20:a5:85:8c:c9:3f:c4:67:a3:7b:b9:5c:17:3d:16:2d:df:2d: f5:90:34:ba:35:7a:17:4a:40:52:a0:28:92:6d:5c:b8:ec:c1: 18:08:0a:1b:c8:c3:5c:95:bc:11:14:45:5e:9f:e5:3e:2e:46: 99:7a:61:ea:c6:e9:1a:29:64:c0:5f:a3:bd:17:70:d6:6b:fe: 3e:85:79:f4:ea:44:53:28:d0:81:9c:9a:f9:f1:af:4c:cf:f0: 13:14:26:a2:5d:51:cc:e6:c4:8e:78:a3:f0:45:92:57:6d:5d: ad:15:b2:c3:d4:2d:c5:b2:0d:ab:9d:9f:d4:36:65:3f:1a:39: d5:93:93:a5:21:ab:28:b9:5d:65:b7:20:bb:2e:56:4c:6f:be: 67:bf:11:6a:bd:d5:16:94:2b:68:6f:73:d3:a2:4f:a8:7c:6b: f7:75:5f:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKEI4NzMxQzMwODg2M0NCMjgwNEUwNzZENThFOEMwNzE1 OUI0RTVGMTkwHhcNMjUwODIyMTcxNDMzWhcNMjUwODI5MTcxNDMzWjAYMRYwFAYD VQQDEw02OGE4YTU3OS05MWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWr6iSIw5xtjL7Wgpi++sKXXLf2m46Ee8tq60H7udBYjbQijpDN8I5Z0OYwO m2LxBNSDD59bDLBb0REUmH1LhVb+3E5wTWt4S9CseFJZ5M2rssD6DxL8ygIpBuCy OzuDEmSJK5orsCatXepc31lXqpJ+Sh/tUChM2ObPRrbO9zPSB7Fiz1wRQPLFQymy TN/hd0Vixi7V3v3Js19v/sLrypL6MHcE4Yvq46tvA5jwwE75hhzyYXZvRiugii0C iduYEghmq2nme7mfCIyPV4zW1zO96aoxksZB3sn+3Sciisfjq5COZ4v+bjk9pYMl zIwW+86xNBoUxKCUL0+1GEoOhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjFvj0G IT5wgxIq3745rffYM/OZMB8GA1UdIwQYMBaAFLhzHDCIY8soBOB21Y6MBxWbTl8Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5Z0U0SGJWam93SEZadE9Y eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITWNNSWhqeXlnRTRIYlZqb3dIRlp0T1h4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY2My8xNEVBQTlGQURBNzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5 Z0U0SGJWam93SEZadE9YeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASyUBy5o+RtxAU4BDSnvQ5UXaqE4Gb9Ld40EpjimbhCiSEeHnrBAt/ 3462DZbtg8IXduzKfxs1CKHVt5BX2LdRuWsTnl8gH5kiAWG6YNbuVHJbiPQD2a4t LMMgpYWMyT/EZ6N7uVwXPRYt3y31kDS6NXoXSkBSoCiSbVy47MEYCAobyMNclbwR FEVen+U+LkaZemHqxukaKWTAX6O9F3DWa/4+hXn06kRTKNCBnJr58a9Mz/ATFCai XVHM5sSOeKPwRZJXbV2tFbLD1C3Fsg2rnZ/UNmU/GjnVk5OlIasouV1ltyC7LlZM b75nvxFqvdUWlCtob3PTok+ofGv3dV8l -----END CERTIFICATE-----Generated at Sat Aug 23 20:31:53 2025 by rpki-client