$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft File: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft (raw, json) Hash identifier: /olfVc7PHYq9OhgYFf/dqPggKtC4aJ7cKB6ebnCxI6Y= Subject key identifier: C7:9C:CC:88:EE:35:37:B8:8A:AC:B0:B1:16:10:61:50:AF:A8:86:EC Authority key identifier: 50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C Certificate issuer: /CN=A91A3D65/serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft Manifest number: 01FB Signing time: Sat 23 Aug 2025 02:34:34 +0000 Manifest this update: Sat 23 Aug 2025 02:34:34 +0000 Manifest next update: Sat 30 Aug 2025 02:34:34 +0000 Files and hashes: 1: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl (hash: E+v/ttG77/qgNBONPDiGEoNAcXcOAQT2DhtK5IVk2hI=) 2: 57DD65D0D1FB11EDA0A31C2FC4F9AE02.roa (hash: FNFbf5sb9V0I6f51NgIRl7bd8+WZE2kCB/02TRMhw6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:34:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3D65, serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Validity Not Before: Aug 23 02:34:34 2025 GMT Not After : Aug 30 02:34:34 2025 GMT Subject: CN=68a928ba-3ad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:08:0d:1f:38:b1:5d:cd:96:ca:07:35:8b:9b: e5:3e:d7:b0:ec:45:01:4c:f0:3b:70:fd:64:fc:b1: 99:d5:d9:ce:fc:54:f1:11:80:a7:fb:38:f8:ec:d7: 3d:bc:9c:4e:12:d7:2f:19:ee:4c:c5:00:be:90:92: 2e:86:d7:4d:9a:b5:c1:47:6b:eb:b3:36:5f:e2:cf: 5b:ba:55:fc:de:8c:1d:61:2b:0c:15:57:a7:67:f5: b9:c2:95:aa:71:a2:02:fa:bc:71:ba:d1:9f:63:30: 9a:ba:da:19:d0:07:d1:75:93:43:d1:85:2c:07:e2: 5c:75:09:46:63:0d:f8:f3:82:76:f2:cf:a2:e7:25: 81:29:e2:51:7b:b0:12:7b:8e:10:0c:62:30:86:0f: e9:99:80:6d:c4:aa:f4:c7:95:48:4d:cb:30:bd:33: 82:2e:53:57:42:4b:26:38:53:c3:1a:61:23:93:79: 24:48:59:a6:93:97:aa:d3:b9:77:4f:8a:27:56:d4: 26:7e:b2:62:b2:3e:77:6e:ff:c7:d4:e2:41:70:2b: 59:21:07:e9:ce:5d:89:24:70:83:ab:b0:34:24:ba: d9:38:d0:52:ab:76:e5:8b:33:1b:3a:d5:32:80:55: 85:c0:79:d1:78:f8:84:53:47:cf:fa:08:60:da:fc: fe:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:9C:CC:88:EE:35:37:B8:8A:AC:B0:B1:16:10:61:50:AF:A8:86:EC X509v3 Authority Key Identifier: keyid:50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a6:10:af:d9:0e:c7:1c:79:73:ee:ed:ff:02:94:d4:1b:66: b4:48:1d:b0:46:11:ff:e9:60:69:1a:f3:6b:20:7f:15:20:a4: 42:e2:94:2b:da:e0:8d:dc:19:5e:f8:45:29:11:8f:cf:99:80: 0c:23:2a:bb:fb:44:7e:35:e9:c4:b4:ee:35:a8:1e:13:02:6a: fe:60:75:af:c3:85:9c:ff:1f:7a:60:de:d3:51:06:7f:63:2a: 7c:b7:e7:dd:25:8d:d4:c6:3f:4c:93:f8:d3:4d:e0:90:fc:d2: 3e:22:4e:7c:1e:e4:6a:78:af:a5:23:97:b9:d1:2a:19:0e:21: 68:c1:a5:3d:7b:af:67:2d:47:ac:7b:ab:2d:f6:69:68:b1:39: 7b:b4:dd:58:bc:6f:e9:21:0f:c8:b2:45:60:c8:84:fc:93:d3: c6:eb:09:73:a2:c7:59:43:1a:79:50:7a:08:ae:be:b2:ac:0a: 0b:13:08:c9:2c:f8:e7:4a:d8:e6:23:a7:e4:b9:6b:e3:b4:37: 8b:a2:f9:25:f7:82:0d:51:78:49:48:84:1c:66:b3:ed:26:3b: ed:46:9e:c9:0f:e1:37:fe:51:78:06:42:55:61:25:0f:90:68: 9d:dc:7f:aa:65:da:1d:20:77:9f:af:cc:5f:c0:e4:76:02:50: e5:da:fc:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNENjUxMTAvBgNVBAUTKDUwMDhCRTA0MUY5OTk3QjI1OUQyNTg0NDgzQTUzQTBE RkYwQjE3OEMwHhcNMjUwODIzMDIzNDM0WhcNMjUwODMwMDIzNDM0WjAYMRYwFAYD VQQDEw02OGE5MjhiYS0zYWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QgNHzixXc2Wygc1i5vlPtew7EUBTPA7cP1k/LGZ1dnO/FTxEYCn+zj47Nc9 vJxOEtcvGe5MxQC+kJIuhtdNmrXBR2vrszZf4s9bulX83owdYSsMFVenZ/W5wpWq caIC+rxxutGfYzCautoZ0AfRdZND0YUsB+JcdQlGYw3484J28s+i5yWBKeJRe7AS e44QDGIwhg/pmYBtxKr0x5VITcswvTOCLlNXQksmOFPDGmEjk3kkSFmmk5eq07l3 T4onVtQmfrJisj53bv/H1OJBcCtZIQfpzl2JJHCDq7A0JLrZONBSq3blizMbOtUy gFWFwHnRePiEU0fP+ghg2vz+yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeczIju NTe4iqywsRYQYVCvqIbsMB8GA1UdIwQYMBaAFFAIvgQfmZeyWdJYRIOlOg3/CxeM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Q2NS9FQTFFNjJENjdD NzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3SlowbGhFZzZVNkRmOExG NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBaS1CQi1abDdKWjBsaEVnNlU2RGY4TEY0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Q2NS9FQTFFNjJENjdDNzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3 SlowbGhFZzZVNkRmOExGNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASphCv2Q7HHHlz7u3/ApTUG2a0SB2wRhH/6WBpGvNrIH8VIKRC4pQr 2uCN3Ble+EUpEY/PmYAMIyq7+0R+NenEtO41qB4TAmr+YHWvw4Wc/x96YN7TUQZ/ Yyp8t+fdJY3Uxj9Mk/jTTeCQ/NI+Ik58HuRqeK+lI5e50SoZDiFowaU9e69nLUes e6st9mlosTl7tN1YvG/pIQ/IskVgyIT8k9PG6wlzosdZQxp5UHoIrr6yrAoLEwjJ LPjnStjmI6fkuWvjtDeLovkl94INUXhJSIQcZrPtJjvtRp7JD+E3/lF4BkJVYSUP kGid3H+qZdodIHefr8xfwOR2AlDl2vz7 -----END CERTIFICATE-----Generated at Sat Aug 23 22:23:42 2025 by rpki-client