$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: nYpMoWLALDgLyRU/av/sT89NR1aP8Va+YnlRNXC8BE8= Subject key identifier: 17:CC:BF:32:3A:52:EE:7C:A0:78:FB:C4:81:8C:32:65:9D:CC:55:9B Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 094E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 092A Signing time: Fri 22 Aug 2025 20:28:59 +0000 Manifest this update: Fri 22 Aug 2025 20:28:59 +0000 Manifest next update: Fri 29 Aug 2025 20:28:59 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: m8DimejZ+6xGFuJt0RPH7J/AgzrmX0zJ/C4Wx/FfK/E=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2382 (0x94e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Aug 22 20:28:59 2025 GMT Not After : Aug 29 20:28:59 2025 GMT Subject: CN=68a8d30b-47aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:96:57:b5:c5:f9:bc:eb:06:db:77:8e:03:53: 66:4f:33:b3:78:82:2f:b7:03:b6:89:ee:bb:65:c6: d5:61:43:dd:64:70:f4:71:de:9b:cc:5f:e3:48:66: dc:db:fa:5c:bf:58:05:8b:6c:9a:0b:f8:36:fe:8e: 3c:5f:2b:29:05:a0:99:b5:8a:06:d4:4b:2a:a7:55: 2b:3f:27:d4:2e:2b:71:6f:d6:f8:5b:70:58:08:01: e7:d8:f8:fb:b9:4b:3c:4b:90:b1:37:bd:75:b1:e7: 86:72:97:2d:dc:72:eb:a7:89:8a:3d:d0:86:2f:75: a8:1d:bf:d9:09:5d:c1:9f:88:eb:de:d7:2f:c0:0e: 82:c8:07:b6:b6:40:23:17:ef:cc:cf:3b:47:e1:f5: 21:9a:24:47:f1:43:c2:08:34:7d:3a:23:29:1a:66: 8f:98:18:79:03:69:a1:e8:7f:79:68:17:65:7a:05: 5d:f5:dd:f6:06:cc:2f:8d:75:66:f0:e9:6f:bc:75: 22:66:9a:ff:dc:45:52:aa:1f:99:dd:63:32:ba:3e: 86:f9:6e:84:18:db:92:5e:6e:b1:1f:38:29:62:82: f3:0d:aa:bd:ff:9d:75:eb:db:3a:fc:d4:41:24:ec: 95:f5:fe:6b:0b:cf:3d:da:2e:f1:61:d3:37:5b:f1: b1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CC:BF:32:3A:52:EE:7C:A0:78:FB:C4:81:8C:32:65:9D:CC:55:9B X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:0a:8e:c6:f9:3a:e5:07:2d:89:70:eb:79:f6:65:eb:a2:ea: 84:9d:6b:11:e9:79:6e:1e:4d:ad:08:41:71:9e:12:bc:1b:e5: 97:53:17:fc:2e:31:22:e2:7f:ce:b1:4d:28:57:d3:77:43:05: 55:b2:b8:59:7a:2f:2d:96:73:3d:14:74:e0:f7:b6:fa:42:af: 6a:e5:4b:e6:64:23:a6:88:22:60:9c:90:9a:44:3f:8d:96:96: 07:0d:9a:54:e2:bd:88:66:42:1d:ab:e1:d5:e8:2c:7d:02:5e: bb:b7:fe:05:8b:67:29:e0:cb:99:38:53:5a:ff:11:d9:87:41: d7:e9:2c:f4:3d:47:e1:6e:c5:d1:86:66:c0:e5:8b:24:b1:21: 41:15:0f:ca:35:d8:14:d8:c3:7c:dc:2e:1a:fa:19:99:94:65: df:52:03:bc:1c:30:64:f1:64:4b:a0:03:f2:58:f7:e5:dc:78: c4:83:9c:25:c6:99:f4:73:34:2b:de:d1:bb:12:2a:06:85:53: ef:4b:4d:53:8c:08:06:68:5b:b9:8c:b4:de:6e:b9:38:ad:24: b0:fb:54:d9:1f:33:56:03:34:d1:2c:fc:f6:c7:42:b0:b6:7d: 7b:4f:01:b7:19:8c:d7:08:d5:e9:5b:3a:b5:b2:fe:c4:5d:2b: 70:84:91:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwODIyMjAyODU5WhcNMjUwODI5MjAyODU5WjAYMRYwFAYD VQQDEw02OGE4ZDMwYi00N2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5ZXtcX5vOsG23eOA1NmTzOzeIIvtwO2ie67ZcbVYUPdZHD0cd6bzF/jSGbc 2/pcv1gFi2yaC/g2/o48XyspBaCZtYoG1Esqp1UrPyfULitxb9b4W3BYCAHn2Pj7 uUs8S5CxN711seeGcpct3HLrp4mKPdCGL3WoHb/ZCV3Bn4jr3tcvwA6CyAe2tkAj F+/MzztH4fUhmiRH8UPCCDR9OiMpGmaPmBh5A2mh6H95aBdlegVd9d32BswvjXVm 8OlvvHUiZpr/3EVSqh+Z3WMyuj6G+W6EGNuSXm6xHzgpYoLzDaq9/51169s6/NRB JOyV9f5rC8892i7xYdM3W/GxNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfMvzI6 Uu58oHj7xIGMMmWdzFWbMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4Co7G+TrlBy2JcOt59mXrouqEnWsR6XluHk2tCEFxnhK8G+WXUxf8 LjEi4n/OsU0oV9N3QwVVsrhZei8tlnM9FHTg97b6Qq9q5UvmZCOmiCJgnJCaRD+N lpYHDZpU4r2IZkIdq+HV6Cx9Al67t/4Fi2cp4MuZOFNa/xHZh0HX6Sz0PUfhbsXR hmbA5YsksSFBFQ/KNdgU2MN83C4a+hmZlGXfUgO8HDBk8WRLoAPyWPfl3HjEg5wl xpn0czQr3tG7EioGhVPvS01TjAgGaFu5jLTebrk4rSSw+1TZHzNWAzTRLPz2x0Kw tn17TwG3GYzXCNXpWzq1sv7EXStwhJHi -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:04 2025 by rpki-client