$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft File: UyhhbneUVH65zpK0qPBF5LLMwPw.mft (raw, json) Hash identifier: vVkG+FWsuV4gAmOMcEtWz8CZdD/4M9YppjSQiYWSD1Q= Subject key identifier: BB:65:F9:8A:E5:54:85:9B:5F:DE:C0:E1:05:6E:D9:EC:39:1C:0E:06 Authority key identifier: 53:28:61:6E:77:94:54:7E:B9:CE:92:B4:A8:F0:45:E4:B2:CC:C0:FC Certificate issuer: /CN=A91847A0/serialNumber=5328616E7794547EB9CE92B4A8F045E4B2CCC0FC Certificate serial: 1D3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft Manifest number: 1D2E Signing time: Fri 22 Aug 2025 16:13:48 +0000 Manifest this update: Fri 22 Aug 2025 16:13:48 +0000 Manifest next update: Fri 29 Aug 2025 16:13:48 +0000 Files and hashes: 1: UyhhbneUVH65zpK0qPBF5LLMwPw.crl (hash: f7+48q55qD2v/he3d8I9SIASFv7tG4KurkEefKm5oy4=) 2: 82E0D450BC5011E6B01A8D4CC4F9AE02.roa (hash: 0pFtdAh/nKnP5eoxsGxODsFcMEqhXHUTJ4P3f5IMFhU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.crl rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7482 (0x1d3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A0, serialNumber=5328616E7794547EB9CE92B4A8F045E4B2CCC0FC Validity Not Before: Aug 22 16:13:48 2025 GMT Not After : Aug 29 16:13:48 2025 GMT Subject: CN=68a8973c-2d67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:88:24:4c:f4:23:6f:76:3f:b7:6d:9c:2a:e9: 26:8d:ac:46:c1:0a:fa:63:81:ac:36:27:bf:28:48: a3:ef:40:31:77:99:79:28:c0:22:42:1d:87:0f:0a: 79:cc:91:b4:eb:43:81:36:e9:1f:e3:45:df:3d:07: a8:cd:3b:c0:31:91:9d:4e:81:11:5f:c4:1b:53:2e: 5a:07:b8:66:6c:a6:69:8d:42:e3:15:41:fc:b0:c9: e4:5b:be:5e:b9:a8:96:58:9b:8e:7c:e4:ef:e2:3a: 45:ed:38:d1:4f:d6:7c:39:03:6f:9e:a1:5d:e5:a2: b5:1a:2b:9c:63:d4:fd:52:d7:b7:06:d8:45:4f:2b: 71:ee:3d:e7:2b:4e:04:8e:01:61:a2:fb:f2:15:1d: 24:b9:dd:d3:cd:77:84:3a:3f:f1:3a:b6:ea:53:0a: c3:58:34:cf:33:bb:46:a7:0f:22:aa:5b:90:e5:9e: 7d:22:f7:1d:8a:f1:5b:81:7c:42:a2:fe:bc:2a:7e: 24:57:66:0e:22:ff:0b:6f:4b:3c:41:be:d7:32:8a: 2f:a8:9b:bc:b7:c3:33:6b:0f:5d:ca:74:94:e3:fe: b9:65:a4:a5:51:33:75:51:b4:f3:b9:63:e8:30:7b: 44:0c:ca:4d:f5:33:a8:24:df:92:88:2e:ae:5c:8b: 1f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:65:F9:8A:E5:54:85:9B:5F:DE:C0:E1:05:6E:D9:EC:39:1C:0E:06 X509v3 Authority Key Identifier: keyid:53:28:61:6E:77:94:54:7E:B9:CE:92:B4:A8:F0:45:E4:B2:CC:C0:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:67:3e:43:38:ff:f7:3e:a4:e8:c3:43:f7:96:09:ab:bf:02: 60:2b:d3:22:1c:4d:bc:70:2c:30:93:63:ae:76:68:65:d1:c6: fa:80:1c:5a:d2:52:ca:54:a4:5c:c3:68:bb:1b:cd:6e:ac:77: 34:43:bf:21:78:a6:ca:39:7c:db:c1:89:63:21:90:fc:bd:7d: e4:16:f5:1e:e6:62:43:ed:ec:a8:fb:1d:a2:ee:c3:ca:3b:99: d8:44:8f:45:14:65:e1:6d:a3:3e:10:34:e4:57:49:ca:ed:c8: b4:e8:b4:be:d2:7b:c7:df:2f:7b:6e:46:c2:ba:f8:64:9d:c7: 54:a6:11:22:b6:78:1a:3f:ba:f9:70:4e:3e:92:6a:f4:a8:73: a1:a6:e6:ae:17:ee:01:87:57:e4:4c:be:17:c1:85:bc:34:8f: e0:0a:9a:bb:b9:ba:50:b9:cd:69:ec:ec:fa:56:ce:56:92:5f: 97:37:3f:ef:f0:eb:30:88:78:54:0f:14:81:39:cf:a7:f4:91: 85:ed:dd:36:5f:96:a4:78:46:6d:1a:12:b9:53:41:20:0a:7f: 88:f7:f4:fe:e4:3a:04:81:c7:e6:29:1c:a2:c3:a4:28:06:5d: 2d:e6:50:4b:f7:93:8d:87:0a:5a:b5:7b:33:bf:e9:be:77:58: bd:cf:a9:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHTowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTAxMTAvBgNVBAUTKDUzMjg2MTZFNzc5NDU0N0VCOUNFOTJCNEE4RjA0NUU0 QjJDQ0MwRkMwHhcNMjUwODIyMTYxMzQ4WhcNMjUwODI5MTYxMzQ4WjAYMRYwFAYD VQQDEw02OGE4OTczYy0yZDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoogkTPQjb3Y/t22cKukmjaxGwQr6Y4GsNie/KEij70Axd5l5KMAiQh2HDwp5 zJG060OBNukf40XfPQeozTvAMZGdToERX8QbUy5aB7hmbKZpjULjFUH8sMnkW75e uaiWWJuOfOTv4jpF7TjRT9Z8OQNvnqFd5aK1GiucY9T9Ute3BthFTytx7j3nK04E jgFhovvyFR0kud3TzXeEOj/xOrbqUwrDWDTPM7tGpw8iqluQ5Z59IvcdivFbgXxC ov68Kn4kV2YOIv8Lb0s8Qb7XMoovqJu8t8Mzaw9dynSU4/65ZaSlUTN1UbTzuWPo MHtEDMpN9TOoJN+SiC6uXIsfZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtl+Yrl VIWbX97A4QVu2ew5HA4GMB8GA1UdIwQYMBaAFFMoYW53lFR+uc6StKjwReSyzMD8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMC8wRTRBRDEyOEJD NEYxMUU2QkFGMUMyNEFDNEY5QUUwMi9VeWhoYm5lVVZINjV6cEswcVBCRjVMTE13 UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5aGhibmVVVkg2NXpwSzBxUEJGNUxMTXdQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMC8wRTRBRDEyOEJDNEYxMUU2QkFGMUMyNEFDNEY5QUUwMi9VeWhoYm5lVVZI NjV6cEswcVBCRjVMTE13UHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtZz5DOP/3PqTow0P3lgmrvwJgK9MiHE28cCwwk2Oudmhl0cb6gBxa 0lLKVKRcw2i7G81urHc0Q78heKbKOXzbwYljIZD8vX3kFvUe5mJD7eyo+x2i7sPK O5nYRI9FFGXhbaM+EDTkV0nK7ci06LS+0nvH3y97bkbCuvhkncdUphEitngaP7r5 cE4+kmr0qHOhpuauF+4Bh1fkTL4XwYW8NI/gCpq7ubpQuc1p7Oz6Vs5Wkl+XNz/v 8OswiHhUDxSBOc+n9JGF7d02X5akeEZtGhK5U0EgCn+I9/T+5DoEgcfmKRyiw6Qo Bl0t5lBL95ONhwpatXszv+m+d1i9z6lp -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:59 2025 by rpki-client