$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft File: 0UdMHaQ5s05IfCjCRynmh-CUfXM.mft (raw, json) Hash identifier: +8zf/4lbhUyorPzyNAopYFlLMj5cnhlFdNGHJLuERis= Subject key identifier: 97:30:F3:B7:28:99:6E:56:96:91:EF:77:42:88:FB:79:95:95:16:6A Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft Manifest number: 0657 Signing time: Fri 22 Aug 2025 22:52:56 +0000 Manifest this update: Fri 22 Aug 2025 22:52:55 +0000 Manifest next update: Fri 29 Aug 2025 22:52:55 +0000 Files and hashes: 1: 0UdMHaQ5s05IfCjCRynmh-CUfXM.crl (hash: UO/APn7wgIKmTgFmzsr88Te+cfZKAq/XdvmGVScZchU=) 2: AB4B141CA24211ED92C4107BC4F9AE02.roa (hash: gznbpzQsXm6xdg/ldBzHxBtH3yLXVXqXYnLIiSuqeug=) 3: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (hash: 5xwHH4/f23qWAT+TboZC+tRvenA32AbWJXTfPPug25w=) 4: E9FB74DCE57711ECBC483554C4F9AE02.roa (hash: t68ri8+sG+PCgnACutRhiIQMtoo2iXpsz04+S32xy6c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Aug 22 22:52:55 2025 GMT Not After : Aug 29 22:52:55 2025 GMT Subject: CN=68a8f4c8-424b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:22:f2:dc:b2:fa:f2:ad:2b:cc:6b:ec:3e:0c: d3:65:0f:3c:eb:50:f1:de:a2:b7:6c:e3:59:93:73: 6d:8d:dc:72:85:5e:5a:9e:4d:06:ca:bc:fd:f1:4d: d5:7f:8e:e7:6e:82:10:5b:b8:a9:e2:ca:89:e9:8d: 6f:c2:bd:97:14:fe:07:b4:60:9a:d2:53:4b:c4:ce: 17:8c:5a:09:c1:2d:fb:80:2e:23:5c:50:9c:95:b6: 19:3c:3c:fd:4d:dd:6b:55:56:91:20:41:21:54:8a: 58:75:c3:b1:09:65:4c:ca:b0:b0:ea:5f:07:b8:df: 7d:44:a3:2e:60:c5:eb:68:30:ed:d4:c9:e8:e1:ea: 68:63:d5:44:ed:8c:b7:47:5f:e3:89:e2:dd:d0:63: 2f:6f:7e:7d:c8:1b:b9:74:95:df:fc:b6:6d:54:7a: aa:45:a2:47:38:0e:49:76:fb:48:65:f5:75:dc:f9: c8:20:e6:a9:d1:cf:57:a8:44:c8:6b:ed:6b:ce:94: d2:07:3d:b2:d4:df:f4:9a:33:d6:2f:df:35:8b:68: e6:9a:35:2c:e2:06:f5:26:e1:12:fb:80:7f:c4:d1: 36:bb:e3:22:2e:26:0f:f8:64:e0:e6:45:f4:74:25: 5e:fa:1e:32:eb:1a:14:f5:1e:42:5c:89:41:91:ad: 49:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:30:F3:B7:28:99:6E:56:96:91:EF:77:42:88:FB:79:95:95:16:6A X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:d6:97:67:48:f7:7c:a7:7b:54:27:dd:86:3d:41:87:e2:b6: e8:fb:6b:9f:44:cf:d4:e3:1f:9e:62:b5:b2:57:d6:1f:bf:80: d8:a7:22:81:66:67:31:92:7b:0f:41:50:21:86:a2:96:51:e2: 3d:88:29:30:f3:18:04:de:e8:ae:9e:4f:1e:64:c7:04:ff:a3: 2f:ca:44:b8:27:ed:57:29:29:1a:02:3e:c0:af:dd:dc:e7:ea: 03:b6:f1:8b:a4:34:29:88:c2:df:79:21:83:56:17:eb:52:dd: e5:d1:8c:89:02:ea:c3:c3:58:a1:fe:a8:01:17:61:6a:8f:7c: 4a:80:d7:d4:af:6e:05:b5:16:ad:4d:0c:94:93:7a:09:1b:fb: 33:fb:75:4c:e8:a8:31:1f:65:bb:dc:dd:23:b3:7a:98:0b:70: 84:00:58:e7:7c:17:e5:e6:58:41:23:86:14:8d:92:6d:cf:fe: 35:e9:2e:3a:d9:eb:66:e0:ea:fa:a1:5b:9b:34:70:56:bb:88: 36:9f:79:ed:f8:3c:46:f3:eb:43:f2:5e:c2:3b:ae:ff:73:62: e0:d5:76:99:82:89:35:6e:c9:7f:96:73:71:a1:f5:49:0f:75: 28:05:c2:2b:60:e3:41:e1:08:48:71:c1:96:5a:63:ec:37:8c: 6a:60:6a:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjUwODIyMjI1MjU1WhcNMjUwODI5MjI1MjU1WjAYMRYwFAYD VQQDEw02OGE4ZjRjOC00MjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5CLy3LL68q0rzGvsPgzTZQ8861Dx3qK3bONZk3NtjdxyhV5ank0Gyrz98U3V f47nboIQW7ip4sqJ6Y1vwr2XFP4HtGCa0lNLxM4XjFoJwS37gC4jXFCclbYZPDz9 Td1rVVaRIEEhVIpYdcOxCWVMyrCw6l8HuN99RKMuYMXraDDt1Mno4epoY9VE7Yy3 R1/jieLd0GMvb359yBu5dJXf/LZtVHqqRaJHOA5JdvtIZfV13PnIIOap0c9XqETI a+1rzpTSBz2y1N/0mjPWL981i2jmmjUs4gb1JuES+4B/xNE2u+MiLiYP+GTg5kX0 dCVe+h4y6xoU9R5CXIlBka1J8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcw87co mW5WlpHvd0KI+3mVlRZqMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDBBOC83MEMyRUI3QUExOTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMw NUlmQ2pDUnlubWgtQ1VmWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR1pdnSPd8p3tUJ92GPUGH4rbo+2ufRM/U4x+eYrWyV9Yfv4DYpyKB ZmcxknsPQVAhhqKWUeI9iCkw8xgE3uiunk8eZMcE/6MvykS4J+1XKSkaAj7Ar93c 5+oDtvGLpDQpiMLfeSGDVhfrUt3l0YyJAurDw1ih/qgBF2Fqj3xKgNfUr24FtRat TQyUk3oJG/sz+3VM6KgxH2W73N0js3qYC3CEAFjnfBfl5lhBI4YUjZJtz/416S46 2etm4Or6oVubNHBWu4g2n3nt+DxG8+tD8l7CO67/c2Lg1XaZgok1bsl/lnNxofVJ D3UoBcIrYONB4QhIccGWWmPsN4xqYGr/ -----END CERTIFICATE-----Generated at Sat Aug 23 19:25:08 2025 by rpki-client