$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: i+0gh+U6EThVUwftvT8H3UrY1+PQG0SKO+n5ZumjNPU= Subject key identifier: 20:66:53:0D:34:78:2B:16:9D:01:4F:93:DF:B2:50:7B:48:BF:14:31 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0C19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0C07 Signing time: Fri 22 Aug 2025 18:54:43 +0000 Manifest this update: Fri 22 Aug 2025 18:54:43 +0000 Manifest next update: Fri 29 Aug 2025 18:54:43 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: 7n0FjcR8XL+IOGcpZ5UfW+2/UsrKVB60PSCjaQ/8eQQ=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: /U7W3kIJcREb7MGP1Cl2Wpd73rbaNoFSjTUo68eX8m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3097 (0xc19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Aug 22 18:54:43 2025 GMT Not After : Aug 29 18:54:43 2025 GMT Subject: CN=68a8bcf3-9ca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1c:12:3b:ca:51:07:09:b7:12:24:0c:c4:f7: e3:c1:8f:0d:c4:ce:f1:1a:49:22:69:ca:d8:6b:81: 58:7b:62:34:33:b3:bc:ef:30:21:94:90:a0:ec:88: dc:29:a1:44:ad:31:a9:9b:a9:1b:d9:1a:7c:58:61: 75:a9:41:96:dc:d8:fe:ef:7e:a4:61:10:7d:19:06: e3:71:10:76:13:31:4f:1c:06:b3:e6:10:98:b5:8b: 0e:1e:e8:a6:e8:cf:f4:57:25:57:98:40:83:57:02: e5:cb:85:45:17:7f:48:ed:64:1a:84:71:5f:4f:97: 0b:e3:ca:7e:65:be:82:72:cb:50:48:90:aa:72:d9: 43:e0:1e:3e:85:96:a5:fc:f4:f6:1b:9b:10:e4:b3: b1:b6:61:7c:09:22:c3:44:69:e1:39:dd:fd:16:c3: 0a:43:c6:7e:e4:c0:a4:c8:b7:b2:d3:2e:1d:11:c1: dc:c6:a6:99:bd:d1:0c:e3:08:17:25:09:7c:21:f3: 99:57:99:64:da:9f:31:7d:cd:32:b2:48:1c:fb:b3: 82:a6:4b:da:48:5f:4a:7f:97:9c:25:e5:29:63:46: a1:c3:c8:40:93:f7:c2:8c:eb:04:d0:e2:d4:16:bc: a9:8e:d1:b0:53:fe:a8:6e:16:03:b2:c7:a9:8d:bc: d8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:66:53:0D:34:78:2B:16:9D:01:4F:93:DF:B2:50:7B:48:BF:14:31 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:19:21:76:2b:90:b2:50:e2:8b:4a:e1:b8:50:37:7d:44:f7: d8:67:7c:7b:59:d8:0c:25:f7:52:51:27:73:4a:ef:16:0a:18: 9d:ec:26:df:9b:e8:f4:f3:c1:f4:6c:fc:0e:7a:e2:da:84:76: cb:a6:f1:05:2c:2d:14:7a:8c:6c:16:d6:cf:99:3d:f2:49:b1: 7f:67:72:19:e7:11:d8:cb:aa:0c:66:45:f5:da:49:77:63:04: 0a:e4:a9:4e:30:60:06:1c:a6:98:21:c6:4c:0b:d7:92:90:fa: 5e:08:bb:99:9f:3e:b3:1b:f4:21:2f:aa:db:89:86:9a:6d:6c: 37:18:05:de:38:98:09:b6:16:46:7c:4f:fc:c4:d8:04:6f:0b: 07:d8:2b:53:a4:f9:35:ae:7c:7f:47:8b:18:f2:7a:1e:08:ba: 29:d6:cd:46:72:02:3f:b6:41:59:01:fb:8a:77:53:53:18:da: ef:02:e5:b6:ca:74:8a:46:31:c4:c3:da:1e:9e:9e:13:c5:8b: c7:3e:58:36:a4:6d:b7:8b:40:13:b0:fa:51:db:12:f0:d1:fb: db:80:a8:64:1a:70:14:5b:8d:69:05:97:aa:3a:7c:42:d9:53: e7:c2:d0:77:38:8c:ec:46:5f:89:59:c1:31:22:f1:b2:31:5b: ee:9b:f8:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUwODIyMTg1NDQzWhcNMjUwODI5MTg1NDQzWjAYMRYwFAYD VQQDEw02OGE4YmNmMy05Y2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBwSO8pRBwm3EiQMxPfjwY8NxM7xGkkiacrYa4FYe2I0M7O87zAhlJCg7Ijc KaFErTGpm6kb2Rp8WGF1qUGW3Nj+736kYRB9GQbjcRB2EzFPHAaz5hCYtYsOHuim 6M/0VyVXmECDVwLly4VFF39I7WQahHFfT5cL48p+Zb6CcstQSJCqctlD4B4+hZal /PT2G5sQ5LOxtmF8CSLDRGnhOd39FsMKQ8Z+5MCkyLey0y4dEcHcxqaZvdEM4wgX JQl8IfOZV5lk2p8xfc0yskgc+7OCpkvaSF9Kf5ecJeUpY0ahw8hAk/fCjOsE0OLU FrypjtGwU/6obhYDssepjbzYVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBmUw00 eCsWnQFPk9+yUHtIvxQxMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqGSF2K5CyUOKLSuG4UDd9RPfYZ3x7WdgMJfdSUSdzSu8WChid7Cbf m+j088H0bPwOeuLahHbLpvEFLC0UeoxsFtbPmT3ySbF/Z3IZ5xHYy6oMZkX12kl3 YwQK5KlOMGAGHKaYIcZMC9eSkPpeCLuZnz6zG/QhL6rbiYaabWw3GAXeOJgJthZG fE/8xNgEbwsH2CtTpPk1rnx/R4sY8noeCLop1s1GcgI/tkFZAfuKd1NTGNrvAuW2 ynSKRjHEw9oenp4TxYvHPlg2pG23i0ATsPpR2xLw0fvbgKhkGnAUW41pBZeqOnxC 2VPnwtB3OIzsRl+JWcExIvGyMVvum/jX -----END CERTIFICATE-----Generated at Sun Aug 24 04:48:05 2025 by rpki-client