$ rpki-client -vvf rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft File: rUk9yaPSQDSDYoWHBR93lRWJFnk.mft (raw, json) Hash identifier: KjbEli2W18aF24rSk53cpO+2jRGmsb3drh4FtlM3H6o= Subject key identifier: 46:FB:EA:AD:3C:03:57:2F:5A:43:29:EC:ED:0E:8D:0F:C1:C9:08:93 Authority key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 Certificate issuer: /CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679 Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft Manifest number: 027D Signing time: Sat 23 Aug 2025 01:56:29 +0000 Manifest this update: Sat 23 Aug 2025 01:56:28 +0000 Manifest next update: Sat 30 Aug 2025 01:56:28 +0000 Files and hashes: 1: rUk9yaPSQDSDYoWHBR93lRWJFnk.crl (hash: UpCBZGatwvHx2DPTwgO3mr7O7qfAaCekov8LRFKm3b4=) 2: 8275E1721C5311EDA75CF137C4F9AE02.roa (hash: QBccf8qiB/fg1E5oo2BszC0tBdDW5Z5O97MgPa2rWD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B418, serialNumber=AD493DC9A3D2403483628587051F779515891679 Validity Not Before: Aug 23 01:56:28 2025 GMT Not After : Aug 30 01:56:28 2025 GMT Subject: CN=68a91fcd-039d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ff:b6:f9:cc:93:a7:f5:f3:5d:0c:09:81:3a: 2c:c5:04:65:62:08:b7:4d:6b:5e:d7:e0:d9:fd:ef: a7:de:e5:19:cf:da:16:23:21:ca:f5:34:e4:8b:ba: e6:47:57:b7:a6:10:83:d8:21:3e:80:39:c1:f3:84: 3d:48:d0:47:73:f9:a8:76:05:0a:2a:91:0b:88:44: 89:0f:27:03:dd:bb:e8:ec:a5:5d:11:d8:cc:90:73: 26:7b:0c:93:de:71:d5:1b:ff:62:a6:c9:85:20:a5: 8f:2d:0e:0d:b7:c8:25:79:c2:66:7f:0d:ae:d6:4f: d7:79:51:ff:bd:32:ca:91:7b:73:49:1a:64:d0:65: 39:32:53:eb:71:5c:6d:30:41:9c:d5:73:e1:d2:3e: ec:96:82:6e:78:8f:9d:a4:d4:c0:cc:e9:1d:af:53: 09:c8:4b:7f:e4:a7:d3:0d:40:06:22:96:c8:9c:d4: f6:24:00:74:1b:83:0f:71:59:8e:7a:30:da:20:5b: f8:e1:ae:2e:bb:de:b6:90:bf:d0:08:b9:a9:92:76: 23:83:7e:6b:c7:18:2c:8b:2d:65:0e:ca:e3:c8:7c: 65:0d:20:7f:d2:20:79:ae:3e:32:fc:29:e5:5e:c1: 3c:3a:6a:af:c2:07:1a:1e:9f:b3:c7:ce:5c:3a:96: f6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:FB:EA:AD:3C:03:57:2F:5A:43:29:EC:ED:0E:8D:0F:C1:C9:08:93 X509v3 Authority Key Identifier: keyid:AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:b0:e3:e4:c3:a3:e6:af:83:ee:6a:1d:36:9d:08:99:3f:5f: ae:c7:36:20:e2:00:7c:5f:ba:a9:07:a9:6e:79:1a:ca:99:91: 3b:f2:40:c2:8b:1c:b9:14:3a:e6:6a:a3:80:94:59:31:5b:2c: 9b:97:31:21:1d:eb:5b:b6:a6:ff:a0:af:32:4a:98:a4:9e:6a: 87:c7:86:d0:ac:9f:b6:f6:7d:27:be:96:6b:84:30:dc:dd:79: 97:53:22:41:fa:a1:c2:ab:49:c4:3e:ef:56:aa:be:dd:90:7b: 24:a1:d6:a2:39:9b:8c:11:8f:26:a7:78:fc:4c:00:3f:96:76: 42:a1:b4:e9:5b:62:78:f8:74:f4:54:17:10:31:d1:24:17:9a: c4:82:a1:56:2e:9b:8a:df:86:62:63:77:2d:20:44:9f:32:8e: b2:52:84:16:e6:26:e7:da:6d:20:14:db:1f:f7:bc:bd:b2:9b: fa:6b:b5:3f:6e:b6:ac:ae:96:0f:d3:c7:ae:da:2d:22:7d:25: 6b:df:af:b3:b0:05:87:73:d3:98:26:48:8f:68:c6:6d:13:09: 6a:5c:da:df:ae:58:3c:02:82:04:7a:8f:f5:36:2e:13:90:6f: fd:7d:c1:cf:88:fc:42:15:db:03:8e:b1:4f:15:7f:46:24:70: c2:40:42:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4NzA1MUY3Nzk1 MTU4OTE2NzkwHhcNMjUwODIzMDE1NjI4WhcNMjUwODMwMDE1NjI4WjAYMRYwFAYD VQQDEw02OGE5MWZjZC0wMzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArP+2+cyTp/XzXQwJgTosxQRlYgi3TWte1+DZ/e+n3uUZz9oWIyHK9TTki7rm R1e3phCD2CE+gDnB84Q9SNBHc/modgUKKpELiESJDycD3bvo7KVdEdjMkHMmewyT 3nHVG/9ipsmFIKWPLQ4Nt8glecJmfw2u1k/XeVH/vTLKkXtzSRpk0GU5MlPrcVxt MEGc1XPh0j7sloJueI+dpNTAzOkdr1MJyEt/5KfTDUAGIpbInNT2JAB0G4MPcVmO ejDaIFv44a4uu962kL/QCLmpknYjg35rxxgsiy1lDsrjyHxlDSB/0iB5rj4y/Cnl XsE8OmqvwgcaHp+zx85cOpb2IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEb76q08 A1cvWkMp7O0OjQ/ByQiTMB8GA1UdIwQYMBaAFK1JPcmj0kA0g2KFhwUfd5UViRZ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQxOC9BRDBEQzQ4MDFD NEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FEU0RZb1dIQlI5M2xSV0pG bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVazl5YVBTUURTRFlvV0hCUjkzbFJXSkZuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FE U0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGsOPkw6Pmr4Puah02nQiZP1+uxzYg4gB8X7qpB6lueRrKmZE78kDC ixy5FDrmaqOAlFkxWyyblzEhHetbtqb/oK8ySpiknmqHx4bQrJ+29n0nvpZrhDDc 3XmXUyJB+qHCq0nEPu9Wqr7dkHskodaiOZuMEY8mp3j8TAA/lnZCobTpW2J4+HT0 VBcQMdEkF5rEgqFWLpuK34ZiY3ctIESfMo6yUoQW5ibn2m0gFNsf97y9spv6a7U/ brasrpYP08eu2i0ifSVr36+zsAWHc9OYJkiPaMZtEwlqXNrfrlg8AoIEeo/1Ni4T kG/9fcHPiPxCFdsDjrFPFX9GJHDCQEKq -----END CERTIFICATE-----Generated at Sat Aug 23 21:21:36 2025 by rpki-client