$ rpki-client -vvf rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft File: xUMJ3BErZYYnvTagMHLnXQYDZNM.mft (raw, json) Hash identifier: Dz55VluntIdn9zylOQmPPRzyA4EA2CFwoQrLrtdqNYM= Subject key identifier: 90:FA:81:4C:2B:3F:68:C4:8C:19:2A:3C:1C:BE:E4:F9:5B:F0:28:70 Authority key identifier: C5:43:09:DC:11:2B:65:86:27:BD:36:A0:30:72:E7:5D:06:03:64:D3 Certificate issuer: /CN=A9199836/serialNumber=C54309DC112B658627BD36A03072E75D060364D3 Certificate serial: 04CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft Manifest number: 04C9 Signing time: Sat 23 Aug 2025 00:02:45 +0000 Manifest this update: Sat 23 Aug 2025 00:02:45 +0000 Manifest next update: Sat 30 Aug 2025 00:02:45 +0000 Files and hashes: 1: xUMJ3BErZYYnvTagMHLnXQYDZNM.crl (hash: X39CvNhUODfn1j/AFbMRHPJmRyf9DEmDhhSYMHEhq4Y=) 2: 029F318A366F11ECA773E263C4F9AE02.roa (hash: XUaIWvSjvHJx2WjE0nq5LCjXyTsCoEUciSF2lpWLzf8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.crl rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1230 (0x4ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199836, serialNumber=C54309DC112B658627BD36A03072E75D060364D3 Validity Not Before: Aug 23 00:02:45 2025 GMT Not After : Aug 30 00:02:45 2025 GMT Subject: CN=68a90525-60d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0f:44:1d:d3:1b:8e:d2:7a:b5:c9:04:61:0d: e3:5c:fd:42:d6:99:2e:fa:29:b4:a9:c3:b4:45:e3: 5b:ff:4d:6d:77:99:85:36:c3:0f:6e:9a:de:87:ec: b3:cb:3e:09:7d:f3:ce:0d:59:51:9c:6c:3d:9b:2d: 53:fa:e3:bd:bd:cd:6e:61:d6:46:ec:f9:47:3a:06: 72:63:a8:e2:ca:ae:de:49:b4:f9:bc:7c:3a:a6:16: ee:cf:6c:2c:54:78:e8:8c:b5:dc:14:cd:f4:cd:f3: fb:32:43:93:2c:25:46:ae:bd:0c:a4:ac:02:97:6b: a8:77:ce:0c:5c:86:22:37:c0:5c:2a:05:b8:f1:35: bd:0b:d4:2f:25:a0:4a:af:91:b8:b3:1e:09:06:4c: 8c:53:fc:38:99:c0:88:6c:03:db:b5:f9:c2:08:35: 6d:7a:42:22:85:87:cb:a6:c2:88:e7:17:6f:25:b0: 25:d0:8d:cc:7b:09:1d:05:ff:19:72:c2:85:8d:48: a8:09:ab:28:38:90:27:b5:57:47:71:b2:bd:5c:d8: 32:20:9c:cc:28:7b:6f:dd:68:cf:6b:2a:4c:32:10: 3c:de:26:cb:90:2f:7e:fe:6b:72:b0:06:76:7d:94: 3e:78:3e:d1:60:77:43:9b:f2:86:62:d4:b3:76:c5: 5c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FA:81:4C:2B:3F:68:C4:8C:19:2A:3C:1C:BE:E4:F9:5B:F0:28:70 X509v3 Authority Key Identifier: keyid:C5:43:09:DC:11:2B:65:86:27:BD:36:A0:30:72:E7:5D:06:03:64:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:c3:11:ef:f1:63:0c:dd:da:23:81:bd:32:81:e3:11:9d:93: 72:4e:0e:78:28:05:45:bb:36:b2:4c:2e:12:f9:01:1f:17:af: ff:76:99:3f:8e:5f:fb:f7:38:9e:8a:e7:de:26:6e:a9:05:77: 18:36:9f:e8:33:84:97:15:ce:e3:43:97:a6:32:6f:0e:c2:48: b7:59:ea:c1:4e:cd:e5:cd:89:14:d2:8c:8d:68:5e:fa:51:fd: 51:3d:34:a7:fe:dd:fb:e7:b8:0f:59:42:f8:9a:a9:c2:ee:06: cd:81:50:26:7f:cd:15:53:85:a7:60:88:02:fe:b1:bc:da:a0: 2e:f0:35:25:c8:3a:27:c4:e5:7d:b6:36:93:36:3f:d6:c6:49: 4b:af:1e:a3:46:c6:25:f4:f4:18:c7:a2:31:1d:d6:f4:5d:3c: a9:f6:c9:f9:97:19:a9:3c:87:62:db:a8:02:09:93:9f:e8:4f: 54:84:91:90:da:05:e7:fa:fa:27:f9:dc:15:c9:40:42:95:e6: 2a:8c:4d:4b:67:65:e6:69:47:cc:f7:18:4c:6a:46:0c:22:83: d0:1a:47:5f:96:56:d3:92:a1:b0:c0:ba:66:01:5a:b7:65:da: c1:6e:5e:0b:14:43:66:c1:65:df:7c:de:2e:48:e5:c3:ba:07: 05:60:0a:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4MzYxMTAvBgNVBAUTKEM1NDMwOURDMTEyQjY1ODYyN0JEMzZBMDMwNzJFNzVE MDYwMzY0RDMwHhcNMjUwODIzMDAwMjQ1WhcNMjUwODMwMDAwMjQ1WjAYMRYwFAYD VQQDEw02OGE5MDUyNS02MGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuw9EHdMbjtJ6tckEYQ3jXP1C1pku+im0qcO0ReNb/01td5mFNsMPbpreh+yz yz4JffPODVlRnGw9my1T+uO9vc1uYdZG7PlHOgZyY6jiyq7eSbT5vHw6phbuz2ws VHjojLXcFM30zfP7MkOTLCVGrr0MpKwCl2uod84MXIYiN8BcKgW48TW9C9QvJaBK r5G4sx4JBkyMU/w4mcCIbAPbtfnCCDVtekIihYfLpsKI5xdvJbAl0I3MewkdBf8Z csKFjUioCasoOJAntVdHcbK9XNgyIJzMKHtv3WjPaypMMhA83ibLkC9+/mtysAZ2 fZQ+eD7RYHdDm/KGYtSzdsVcRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJD6gUwr P2jEjBkqPBy+5Plb8ChwMB8GA1UdIwQYMBaAFMVDCdwRK2WGJ702oDBy510GA2TT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTgzNi8yOTM2RkZCMjM2 MkUxMUVDODkwOUU4NkZDNEY5QUUwMi94VU1KM0JFclpZWW52VGFnTUhMblhRWURa Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVTUozQkVyWllZbnZUYWdNSExuWFFZRFpOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTgzNi8yOTM2RkZCMjM2MkUxMUVDODkwOUU4NkZDNEY5QUUwMi94VU1KM0JFclpZ WW52VGFnTUhMblhRWURaTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4wxHv8WMM3dojgb0ygeMRnZNyTg54KAVFuzayTC4S+QEfF6//dpk/ jl/79zieiufeJm6pBXcYNp/oM4SXFc7jQ5emMm8Owki3WerBTs3lzYkU0oyNaF76 Uf1RPTSn/t3757gPWUL4mqnC7gbNgVAmf80VU4WnYIgC/rG82qAu8DUlyDonxOV9 tjaTNj/WxklLrx6jRsYl9PQYx6IxHdb0XTyp9sn5lxmpPIdi26gCCZOf6E9UhJGQ 2gXn+von+dwVyUBCleYqjE1LZ2XmaUfM9xhMakYMIoPQGkdfllbTkqGwwLpmAVq3 ZdrBbl4LFENmwWXffN4uSOXDugcFYArX -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:52 2025 by rpki-client