$ rpki-client -vvf rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft File: uRm6CzrV4m_DHTlL4TK7yof8yFI.mft (raw, json) Hash identifier: i+w7Q0Jssbu+nGW4sKuC8qaHZlZLgthdH3KwNxow9ls= Subject key identifier: C7:DF:54:AA:9D:6B:2C:91:2C:00:42:05:28:61:CF:94:70:B7:AF:87 Authority key identifier: B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 Certificate issuer: /CN=A919E4C6/serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft Manifest number: 027D Signing time: Sat 23 Aug 2025 01:57:16 +0000 Manifest this update: Sat 23 Aug 2025 01:57:16 +0000 Manifest next update: Sat 30 Aug 2025 01:57:16 +0000 Files and hashes: 1: uRm6CzrV4m_DHTlL4TK7yof8yFI.crl (hash: zM0NBM7v4spiM1HcAH6p0QH2Jc4k05HTtr8uYIi9X6Y=) 2: 4C0F405E1E1C11EDA19CF560C4F9AE02.roa (hash: gIwDWIDp8+Uz5STSFrQB1zJpip3RVo/LQNwdpuz8o1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E4C6, serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Validity Not Before: Aug 23 01:57:16 2025 GMT Not After : Aug 30 01:57:16 2025 GMT Subject: CN=68a91ffc-f394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:84:0a:e6:3b:7a:4a:bb:a9:55:17:e4:3d:76: 0c:6b:47:9d:15:7d:64:05:d0:13:70:7a:f9:28:f9: 6a:8a:79:e1:2d:ee:96:0e:17:22:02:70:b6:90:25: 1f:b9:d8:f2:6d:00:df:25:4c:14:7a:22:e6:8d:3f: d7:e1:1a:9f:89:f4:d3:5e:f6:87:7f:d7:be:a5:a2: d8:d7:1d:9e:15:1a:15:06:f0:84:57:bb:9f:04:6a: 14:af:3f:ee:99:d7:55:6d:e0:80:e0:29:70:3b:d8: ef:ba:93:6e:e0:a6:58:68:4d:86:00:ec:a7:b0:1d: fb:94:1d:03:11:eb:40:7e:1b:10:00:a0:24:e0:af: 49:fe:60:5a:fb:0d:06:8e:3c:e6:62:bd:d1:ff:e0: 0d:db:09:61:66:9c:db:1b:37:1c:8c:90:e8:10:9b: e6:76:e0:e9:cc:b7:db:6c:20:b0:8d:64:78:a3:f4: 38:0f:6a:3f:41:61:4f:c3:58:0e:c9:59:d6:32:16: 28:59:22:ba:0c:42:c5:68:14:11:a1:8e:7e:4f:a8: 08:13:8b:00:ba:45:da:ac:3d:78:b8:74:2f:10:f8: df:d0:9f:4a:77:99:3c:69:e8:cb:c8:18:1d:d9:ce: 28:b7:29:76:72:4a:34:ad:1b:c3:62:f2:86:d1:46: 12:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:DF:54:AA:9D:6B:2C:91:2C:00:42:05:28:61:CF:94:70:B7:AF:87 X509v3 Authority Key Identifier: keyid:B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:89:ce:c5:73:ca:7e:1f:28:c5:55:cb:22:80:c4:b5:96:8c: e0:c2:19:b4:76:39:4f:53:80:26:7f:ae:7e:7a:f3:6e:29:93: 17:31:f4:70:e7:2f:08:cd:13:ae:3c:88:77:53:a3:d2:fe:8e: 35:ad:f3:cf:cb:7a:b0:60:20:ff:bb:87:ae:3e:ff:c0:6d:43: eb:08:07:68:c4:96:5e:27:23:fa:ed:29:ca:12:a7:5e:c4:c6: 69:4e:89:66:32:81:69:c7:b7:77:b1:e0:c0:16:89:6f:37:82: 0a:ae:a4:82:5b:d4:78:71:0f:3e:c0:3e:6d:c4:13:4f:11:6a: a0:e2:f6:1b:1e:62:c0:6c:d7:d8:51:ba:3a:90:b1:83:34:41: 2a:b5:51:db:04:8e:9e:b7:67:56:ee:03:2f:a0:f4:c1:2d:ad: 5b:6c:2a:e3:94:a6:bd:50:28:6d:23:13:e5:ff:d1:31:64:88: 37:cb:7a:9f:9d:02:d9:71:f1:d7:50:2f:78:37:d3:e4:d4:64: 16:39:c5:7d:8c:10:92:d4:83:30:04:5b:a9:29:9d:d0:ba:7d: 4c:82:5f:6f:84:1c:66:a6:2c:e1:a9:ba:2d:ed:9d:fd:82:3f: d8:8e:a6:29:a0:bb:79:b6:8c:58:82:c2:16:00:79:7d:78:d9: 71:be:78:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU0QzYxMTAvBgNVBAUTKEI5MTlCQTBCM0FENUUyNkZDMzFEMzk0QkUxMzJCQkNB ODdGQ0M4NTIwHhcNMjUwODIzMDE1NzE2WhcNMjUwODMwMDE1NzE2WjAYMRYwFAYD VQQDEw02OGE5MWZmYy1mMzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAloQK5jt6SrupVRfkPXYMa0edFX1kBdATcHr5KPlqinnhLe6WDhciAnC2kCUf udjybQDfJUwUeiLmjT/X4RqfifTTXvaHf9e+paLY1x2eFRoVBvCEV7ufBGoUrz/u mddVbeCA4ClwO9jvupNu4KZYaE2GAOynsB37lB0DEetAfhsQAKAk4K9J/mBa+w0G jjzmYr3R/+AN2wlhZpzbGzccjJDoEJvmduDpzLfbbCCwjWR4o/Q4D2o/QWFPw1gO yVnWMhYoWSK6DELFaBQRoY5+T6gIE4sAukXarD14uHQvEPjf0J9Kd5k8aejLyBgd 2c4otyl2cko0rRvDYvKG0UYSGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMffVKqd ayyRLABCBShhz5Rwt6+HMB8GA1UdIwQYMBaAFLkZugs61eJvwx05S+Eyu8qH/MhS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTRDNi9FQUI5NDdBODFF MTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRtX0RIVGxMNFRLN3lvZjh5 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VSbTZDenJWNG1fREhUbEw0VEs3eW9mOHlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTRDNi9FQUI5NDdBODFFMTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRt X0RIVGxMNFRLN3lvZjh5RkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ic7Fc8p+HyjFVcsigMS1lozgwhm0djlPU4Amf65+evNuKZMXMfRw 5y8IzROuPIh3U6PS/o41rfPPy3qwYCD/u4euPv/AbUPrCAdoxJZeJyP67SnKEqde xMZpTolmMoFpx7d3seDAFolvN4IKrqSCW9R4cQ8+wD5txBNPEWqg4vYbHmLAbNfY Ubo6kLGDNEEqtVHbBI6et2dW7gMvoPTBLa1bbCrjlKa9UChtIxPl/9ExZIg3y3qf nQLZcfHXUC94N9Pk1GQWOcV9jBCS1IMwBFupKZ3Qun1Mgl9vhBxmpizhqbot7Z39 gj/YjqYpoLt5toxYgsIWAHl9eNlxvnha -----END CERTIFICATE-----Generated at Sat Aug 23 16:41:35 2025 by rpki-client