$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: pj/RB33+/BY60KmtV5XEdNraJzeUqMpVBfYqrMKsv7Q= Subject key identifier: 22:E0:71:A2:F2:55:B9:FC:62:FE:C9:9D:C2:10:5D:40:EB:DE:7A:74 Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 0200 Signing time: Sat 23 Aug 2025 02:27:59 +0000 Manifest this update: Sat 23 Aug 2025 02:27:58 +0000 Manifest next update: Sat 30 Aug 2025 02:27:58 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: nXTEjyQb+e6iT0hg6EdtsOXlHuePVptPFTCM/aN2wik=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Aug 23 02:27:58 2025 GMT Not After : Aug 30 02:27:58 2025 GMT Subject: CN=68a9272f-a5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b4:63:af:b8:40:6e:eb:3e:4f:7e:95:58:d8: 52:22:9d:78:9c:08:25:2a:8d:2c:3a:21:54:de:6c: 63:2b:d8:17:fc:b3:f8:28:02:20:01:bc:55:d0:e9: ed:22:d1:36:81:86:d8:18:73:70:72:dc:65:8d:42: 09:b5:e9:85:d9:5c:cd:2b:b6:61:49:39:f2:28:a5: f2:75:4b:95:fb:b6:b6:10:e4:c7:63:f4:ea:46:60: 0f:51:54:38:9e:30:77:86:b5:c6:10:a6:2c:f8:1d: bc:8b:04:0f:42:b5:5b:5e:c5:7e:26:7a:8c:e7:ea: 73:d1:97:4f:eb:78:c2:14:2f:10:de:31:af:55:da: 61:a2:ba:9a:fa:55:84:3e:f3:77:66:22:62:86:a0: d3:97:3e:4a:05:58:53:1f:2f:55:59:20:c1:5f:fa: 2e:d4:c9:bb:fc:da:02:2d:43:71:c4:03:5f:98:a9: 1e:35:49:d7:67:5d:4a:02:fb:80:cd:e1:b4:2b:83: ee:68:44:f7:1d:cb:3d:71:09:f2:e9:38:87:50:51: 62:9b:4a:bd:d6:bb:e6:bf:fc:c8:1a:04:5d:21:16: 6d:97:98:57:84:81:c8:c0:69:43:6c:85:2b:a4:bf: 02:32:cf:55:7c:37:2a:72:55:a0:1e:49:ab:6c:31: f1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E0:71:A2:F2:55:B9:FC:62:FE:C9:9D:C2:10:5D:40:EB:DE:7A:74 X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:89:19:31:7c:be:4f:2d:b9:fe:89:90:4b:29:2c:08:ad:39: c6:27:35:ea:0d:df:94:67:6c:57:af:96:d2:7d:a9:d0:e7:9b: fe:f1:ac:ba:ed:60:5d:da:00:d4:5f:91:b6:d0:f2:c0:b5:7e: 03:0f:ba:00:40:1d:d9:d8:af:b0:87:8f:95:ab:46:53:be:3a: 9e:b8:0c:ad:70:20:88:a3:a1:b6:25:4e:b0:84:c3:d8:77:68: af:3a:53:77:c2:47:b3:b2:68:b4:cb:0f:ee:bd:c1:07:fb:ba: 10:ec:e2:4b:3a:1e:44:45:1d:8b:c6:fb:4b:88:89:66:b6:f2: b4:15:11:ea:d5:1e:17:c0:1f:8d:f7:12:2b:97:67:90:7c:c5: ba:59:8e:e2:4e:59:15:17:39:a6:d3:1e:96:21:99:69:45:47: 71:93:7c:ba:ad:01:43:90:96:7d:5e:64:90:46:49:cf:31:de: f2:86:86:87:10:93:af:a6:0d:27:e4:2e:61:a4:29:db:16:f5: b9:0a:82:94:e5:92:85:4f:90:84:5b:b3:f8:bd:0d:53:fa:cb: fe:8f:d7:4c:96:41:e7:9e:02:2c:5f:85:16:20:1e:23:d5:63: 6e:10:a6:44:93:46:98:95:19:f8:28:81:89:ea:77:89:cc:a3: 01:4b:c8:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUwODIzMDIyNzU4WhcNMjUwODMwMDIyNzU4WjAYMRYwFAYD VQQDEw02OGE5MjcyZi1hNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7Rjr7hAbus+T36VWNhSIp14nAglKo0sOiFU3mxjK9gX/LP4KAIgAbxV0Ont ItE2gYbYGHNwctxljUIJtemF2VzNK7ZhSTnyKKXydUuV+7a2EOTHY/TqRmAPUVQ4 njB3hrXGEKYs+B28iwQPQrVbXsV+JnqM5+pz0ZdP63jCFC8Q3jGvVdphorqa+lWE PvN3ZiJihqDTlz5KBVhTHy9VWSDBX/ou1Mm7/NoCLUNxxANfmKkeNUnXZ11KAvuA zeG0K4PuaET3Hcs9cQny6TiHUFFim0q91rvmv/zIGgRdIRZtl5hXhIHIwGlDbIUr pL8CMs9VfDcqclWgHkmrbDHxHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLgcaLy Vbn8Yv7JncIQXUDr3np0MB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNiRkxfL5PLbn+iZBLKSwIrTnGJzXqDd+UZ2xXr5bSfanQ55v+8ay6 7WBd2gDUX5G20PLAtX4DD7oAQB3Z2K+wh4+Vq0ZTvjqeuAytcCCIo6G2JU6whMPY d2ivOlN3wkezsmi0yw/uvcEH+7oQ7OJLOh5ERR2LxvtLiIlmtvK0FRHq1R4XwB+N 9xIrl2eQfMW6WY7iTlkVFzmm0x6WIZlpRUdxk3y6rQFDkJZ9XmSQRknPMd7yhoaH EJOvpg0n5C5hpCnbFvW5CoKU5ZKFT5CEW7P4vQ1T+sv+j9dMlkHnngIsX4UWIB4j 1WNuEKZEk0aYlRn4KIGJ6neJzKMBS8je -----END CERTIFICATE-----Generated at Sun Aug 24 05:06:04 2025 by rpki-client