$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft File: U2v43c6AJmc3j0e9SVSpC3xwCcE.mft (raw, json) Hash identifier: 9o325QHeSIay6QIUy9Vfo/lwazftjZH6rtA3F/Vm5ug= Subject key identifier: 73:3B:0D:C3:46:DC:F3:52:F8:FA:0D:0A:71:0B:FF:D5:A0:83:1F:1A Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft Manifest number: 0100 Signing time: Sat 23 Aug 2025 05:15:50 +0000 Manifest this update: Sat 23 Aug 2025 05:15:49 +0000 Manifest next update: Sat 30 Aug 2025 05:15:49 +0000 Files and hashes: 1: U2v43c6AJmc3j0e9SVSpC3xwCcE.crl (hash: LJ2nqJfnGdc3aTtuMRR/cz6OpVmmwleEjoTlIl0TwXQ=) 2: D8346320F7A011EE8BE8843BC4F9AE02.roa (hash: w5ofhzUzRvCot65WQ4cidA6AcgZbPr0ZDlGiXy64td8=) 3: FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa (hash: G4iwG5XMEp5g2eV1gP3t6eKMuKxcRTnnbvUBF3nUwk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849, serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Validity Not Before: Aug 23 05:15:49 2025 GMT Not After : Aug 30 05:15:49 2025 GMT Subject: CN=68a94e86-95ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:89:7e:36:28:6b:3b:48:03:40:e8:de:29:16: e2:57:c1:9d:9e:ec:9e:0f:63:76:b9:7f:fa:b8:23: e5:e9:54:6e:ac:c0:e8:55:b9:0b:f7:e3:49:9b:7d: d6:e6:81:6a:a6:5f:e5:af:d0:6f:f9:0d:16:6b:21: b3:be:56:79:85:6b:19:72:d0:27:77:16:f6:bf:c5: 55:97:23:24:b9:1c:b9:15:6b:c6:10:8f:3f:49:2e: 8d:0a:cb:85:53:db:8e:cd:8c:c8:c7:3b:dd:3a:89: c3:21:19:04:1d:6c:45:83:ba:28:a7:0f:b1:91:19: 88:30:2c:c9:ff:4d:e4:b6:9e:19:90:97:50:70:6a: fa:11:18:cb:e9:53:5b:f8:a9:dd:58:39:78:84:10: 7f:22:41:fe:0b:9f:2f:17:ce:65:2f:5e:40:0d:f9: 08:58:6f:fb:5c:9d:c8:7d:61:a1:c7:ee:72:7d:a7: 94:9a:aa:5c:8c:60:4a:f9:4d:e5:5c:bf:37:a4:2d: 29:66:08:f3:21:3b:df:c4:33:3b:c8:ec:c9:ae:41: b1:d2:30:46:ae:a8:1d:6b:25:ed:df:5b:37:c7:17: 04:54:bc:df:f5:06:db:39:37:59:1a:3b:98:fd:87: 6a:81:37:0e:53:08:7d:ff:47:0f:70:3a:48:6b:26: 5c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3B:0D:C3:46:DC:F3:52:F8:FA:0D:0A:71:0B:FF:D5:A0:83:1F:1A X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:f3:6a:f4:b7:9d:d2:cd:d1:e8:44:6b:6f:c0:45:60:b5:22: 7a:57:94:b7:53:7f:d7:b7:ad:f9:06:55:19:a6:14:d2:bb:3c: bb:44:c0:8e:12:9d:1a:66:64:a3:5c:a7:1b:ac:d2:99:05:67: 02:fa:c6:5f:e5:18:ab:9b:94:54:4f:3f:f9:06:00:32:58:6e: e5:53:59:5e:1d:4d:11:1a:18:75:09:b0:8a:57:ea:f6:94:bd: 31:ac:e4:72:04:5e:5e:25:6a:b1:92:d6:25:d7:98:93:c0:10: 78:37:57:b7:82:e1:8b:3b:fb:5e:bb:be:63:f4:5d:e9:97:36: fe:bc:54:24:c3:a7:f0:b1:99:ae:9c:8d:40:e0:75:1f:2b:b7: c5:d1:8f:c1:82:d6:fe:5e:f7:9e:b2:55:e3:64:85:38:c9:94: 9c:e5:0f:28:f0:c9:f4:de:ee:41:7a:fe:8b:c4:50:84:58:65: 8f:0f:2e:f9:e9:da:e3:1f:70:cd:0e:e1:47:ee:cf:f2:70:ce: 09:69:45:96:a7:f7:7f:a9:4c:c8:70:5f:a9:dc:d5:65:86:aa: 35:7d:83:8c:82:77:ac:26:3e:8b:0b:a2:1f:7b:ce:92:e2:f1: 5b:57:8e:8b:cd:f7:3f:39:47:e1:ac:6a:79:fb:45:ff:66:bb: ba:73:cd:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4NDkxMTAvBgNVBAUTKDUzNkJGOEREQ0U4MDI2NjczNzhGNDdCRDQ5NTRBOTBC N0M3MDA5QzEwHhcNMjUwODIzMDUxNTQ5WhcNMjUwODMwMDUxNTQ5WjAYMRYwFAYD VQQDEw02OGE5NGU4Ni05NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyol+NihrO0gDQOjeKRbiV8GdnuyeD2N2uX/6uCPl6VRurMDoVbkL9+NJm33W 5oFqpl/lr9Bv+Q0WayGzvlZ5hWsZctAndxb2v8VVlyMkuRy5FWvGEI8/SS6NCsuF U9uOzYzIxzvdOonDIRkEHWxFg7oopw+xkRmIMCzJ/03ktp4ZkJdQcGr6ERjL6VNb +KndWDl4hBB/IkH+C58vF85lL15ADfkIWG/7XJ3IfWGhx+5yfaeUmqpcjGBK+U3l XL83pC0pZgjzITvfxDM7yOzJrkGx0jBGrqgdayXt31s3xxcEVLzf9QbbOTdZGjuY /YdqgTcOUwh9/0cPcDpIayZc6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHM7DcNG 3PNS+PoNCnEL/9Wggx8aMB8GA1UdIwQYMBaAFFNr+N3OgCZnN49HvUlUqQt8cAnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTg0OS9EQkFEMzg0RUY3 OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUptYzNqMGU5U1ZTcEMzeHdD Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0NjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTg0OS9EQkFEMzg0RUY3OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUpt YzNqMGU5U1ZTcEMzeHdDY0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl82r0t53SzdHoRGtvwEVgtSJ6V5S3U3/Xt635BlUZphTSuzy7RMCO Ep0aZmSjXKcbrNKZBWcC+sZf5Rirm5RUTz/5BgAyWG7lU1leHU0RGhh1CbCKV+r2 lL0xrORyBF5eJWqxktYl15iTwBB4N1e3guGLO/teu75j9F3plzb+vFQkw6fwsZmu nI1A4HUfK7fF0Y/Bgtb+XveeslXjZIU4yZSc5Q8o8Mn03u5Bev6LxFCEWGWPDy75 6drjH3DNDuFH7s/ycM4JaUWWp/d/qUzIcF+p3NVlhqo1fYOMgnesJj6LC6Ife86S 4vFbV46Lzfc/OUfhrGp5+0X/Zru6c823 -----END CERTIFICATE-----Generated at Sat Aug 23 11:37:38 2025 by rpki-client