$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft (raw, json) Hash identifier: QTMTTZVgPzU0uEs0vozQlWJ501ichIeGtDmw8bDPU+o= Subject key identifier: 62:47:71:1B:23:28:9D:96:41:4B:03:44:44:16:2D:85:50:27:27:3E Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 0A04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft Manifest number: 09FD Signing time: Fri 22 Aug 2025 19:58:49 +0000 Manifest this update: Fri 22 Aug 2025 19:58:49 +0000 Manifest next update: Fri 29 Aug 2025 19:58:49 +0000 Files and hashes: 1: UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl (hash: jSOa+eAVS14imw/Hx/N7cumSV6yLCNfOaMsDXGA2fII=) 2: 21028CF67EF811EAAD47CD30C4F9AE02.roa (hash: +gB8ZHO5MMKVGP2yT3GNNhFPo53EwfTpImIrJ+ySljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2564 (0xa04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Aug 22 19:58:49 2025 GMT Not After : Aug 29 19:58:49 2025 GMT Subject: CN=68a8cbf9-d9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8a:04:ca:b8:ac:3c:6e:a9:8e:34:16:ee:1d: 81:9b:6b:ec:eb:4e:f4:68:93:5b:92:fe:5c:5d:cc: 87:1f:27:35:ac:7c:5b:82:c5:4a:aa:95:51:32:59: fd:18:c1:bc:0e:f4:3a:28:6f:6e:65:6b:9b:6b:b7: 47:0e:2b:36:85:11:25:f3:3e:d6:fd:30:78:a7:d2: c4:52:d6:81:7a:6d:14:c8:d4:c9:4e:d7:eb:97:58: 5d:59:ce:4b:5c:ec:21:5e:bd:ca:97:f8:ab:52:89: 31:69:81:48:9d:ec:5e:df:0e:a8:ea:f1:8e:3f:af: 08:c3:0b:a2:15:08:f0:02:3d:38:f0:25:bd:aa:ce: 74:75:de:6a:d7:d4:c8:ff:1b:b5:07:3c:fc:27:bb: 78:78:cd:cc:83:d0:7c:f6:4b:e2:bd:aa:de:e2:89: 58:b7:95:62:c7:ad:2f:d9:74:b5:e3:38:41:7f:44: 9e:b0:0c:73:b4:9a:58:5f:dd:43:8e:2e:5a:b2:d0: 5e:58:9f:f4:9f:0e:8d:a7:8b:5d:48:f1:1d:2f:a5: 8d:34:f1:7d:a0:13:b8:49:62:fb:0e:c3:d3:48:1a: 92:a4:3c:8e:55:7e:0c:24:c8:97:ae:58:38:98:70: b5:12:41:9d:e1:eb:50:5f:ea:61:3f:1b:66:07:81: e7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:47:71:1B:23:28:9D:96:41:4B:03:44:44:16:2D:85:50:27:27:3E X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:f8:fa:16:4b:43:f7:e9:07:86:f9:cc:d0:c6:dc:f5:45:d9: 18:95:8c:14:5d:93:62:95:dd:66:b4:bd:a5:fb:c6:2d:66:55: 40:fc:b8:71:3d:c6:a6:c0:3c:cf:05:54:10:68:db:e1:ab:88: cb:95:e2:5d:5a:e6:f2:42:f6:9a:09:ec:b5:d8:ee:08:b1:4d: 8f:82:5a:ce:70:8b:f6:d5:f6:cf:cc:e0:e9:0f:88:fc:21:e4: 68:eb:ea:97:36:5f:f6:be:a6:3d:a6:07:bf:0b:6e:fd:9b:55: e8:2b:53:cf:2e:c5:95:ee:65:b7:cc:e2:0a:e0:ea:f4:e2:38: 94:c6:97:a8:55:ec:e9:44:f6:87:77:55:03:be:62:ba:2f:bc: ca:60:65:d7:48:fd:ef:de:47:c5:65:05:f3:42:4f:90:c2:eb: 02:d1:9c:85:71:c0:de:1c:d7:2b:0c:09:de:15:0a:21:7f:ca: e8:bf:cf:3a:98:54:bf:64:a8:0c:da:3e:5f:99:ee:30:7e:17: 05:00:f4:71:ea:60:21:d9:cc:55:d3:f5:d6:e5:ac:e5:12:99: d6:8e:f4:81:0c:a5:88:be:ee:76:09:ee:09:f1:33:6a:85:ee: a2:dc:14:66:b1:bd:45:39:ee:72:91:4b:3f:a4:2e:d2:a2:1a: c1:bb:a5:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjUwODIyMTk1ODQ5WhcNMjUwODI5MTk1ODQ5WjAYMRYwFAYD VQQDEw02OGE4Y2JmOS1kOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIoEyrisPG6pjjQW7h2Bm2vs6070aJNbkv5cXcyHHyc1rHxbgsVKqpVRMln9 GMG8DvQ6KG9uZWuba7dHDis2hREl8z7W/TB4p9LEUtaBem0UyNTJTtfrl1hdWc5L XOwhXr3Kl/irUokxaYFInexe3w6o6vGOP68IwwuiFQjwAj048CW9qs50dd5q19TI /xu1Bzz8J7t4eM3Mg9B89kvivare4olYt5Vix60v2XS14zhBf0SesAxztJpYX91D ji5astBeWJ/0nw6Np4tdSPEdL6WNNPF9oBO4SWL7DsPTSBqSpDyOVX4MJMiXrlg4 mHC1EkGd4etQX+phPxtmB4HnlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJHcRsj KJ2WQUsDREQWLYVQJyc+MB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQ aW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0+PoWS0P36QeG+czQxtz1RdkYlYwUXZNild1mtL2l+8YtZlVA/Lhx PcamwDzPBVQQaNvhq4jLleJdWubyQvaaCey12O4IsU2PglrOcIv21fbPzODpD4j8 IeRo6+qXNl/2vqY9pge/C279m1XoK1PPLsWV7mW3zOIK4Or04jiUxpeoVezpRPaH d1UDvmK6L7zKYGXXSP3v3kfFZQXzQk+QwusC0ZyFccDeHNcrDAneFQohf8rov886 mFS/ZKgM2j5fme4wfhcFAPRx6mAh2cxV0/XW5azlEpnWjvSBDKWIvu52Ce4J8TNq he6i3BRmsb1FOe5ykUs/pC7SohrBu6U5 -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:43 2025 by rpki-client