$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft File: UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json) Hash identifier: mDm04HLhRIIX9v9VGE3S3jyDDElG6gXwxfr6XOzREN8= Subject key identifier: EA:8A:B1:47:A3:A2:6F:A0:96:71:8F:B9:A5:13:9E:C3:BA:60:70:4D Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft Manifest number: 1F Signing time: Sat 23 Aug 2025 08:06:55 +0000 Manifest this update: Sat 23 Aug 2025 08:06:54 +0000 Manifest next update: Sat 30 Aug 2025 08:06:54 +0000 Files and hashes: 1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: h3dxSmQr3lfRTv+hdFR4T/6wp/oT8eKJESL36EBFgyI=) 2: 07026748564511F09ED8993AC4F9AE02.roa (hash: 6QcYqyX5KFb0vGx40KSlwE5riWI0V4vT0LCNn9S8ZHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Aug 23 08:06:54 2025 GMT Not After : Aug 30 08:06:54 2025 GMT Subject: CN=68a9769f-41f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:07:e6:63:64:03:71:6c:fc:98:b1:97:64:fa: 98:30:58:29:c8:58:02:85:4a:30:9d:7b:e5:ff:b7: a3:bf:c6:f1:ea:21:1c:06:d1:c0:9a:ab:2d:46:fa: 95:50:d5:11:1f:39:cc:de:c5:19:69:c5:ef:fd:66: 2f:fd:99:4d:13:07:ad:66:07:d1:ce:47:dc:41:f2: a2:67:1b:93:7c:ca:c0:2d:7b:9f:ec:36:18:e7:5e: 1a:9c:b8:98:3a:d0:c3:6c:9e:05:42:1d:3e:b8:b6: 42:39:11:62:d0:d4:d1:76:05:fa:b3:7f:e4:63:15: bb:09:ea:ab:af:a4:d6:f8:5d:de:68:d4:28:bb:f5: 89:f8:fa:c6:30:eb:95:16:0f:b7:18:ec:f8:70:ab: ad:26:09:c1:93:2f:33:51:58:0e:84:ed:d5:ea:c6: aa:b6:20:e6:72:20:58:20:54:f5:bf:e8:20:9d:fb: 0f:f9:45:66:28:f3:61:f0:43:94:8b:2c:65:fc:39: f8:92:f9:c0:94:11:73:50:52:67:5b:48:31:1f:54: 6a:96:5b:fe:03:df:2e:47:92:22:dc:9d:d2:ef:5c: 7d:6b:20:05:d0:aa:fe:28:f6:37:e6:d9:ed:85:0e: f5:55:57:26:85:8b:62:0c:26:e2:d2:39:6a:25:11: f8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:8A:B1:47:A3:A2:6F:A0:96:71:8F:B9:A5:13:9E:C3:BA:60:70:4D X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:5c:c4:58:f7:a4:5b:0f:ce:b1:3e:cf:39:e8:82:7b:59:cf: 04:85:23:81:e0:0d:b2:15:8e:12:45:50:79:d0:58:93:a3:fd: a4:43:8b:69:68:14:f0:07:8f:4c:b8:cf:71:1e:31:6f:67:05: 4a:04:f9:87:b5:e0:68:c7:23:45:00:9c:03:1b:50:5f:60:84: 7e:bb:e2:90:45:39:a3:c3:b0:67:c3:48:6e:cc:17:d9:35:6d: f3:da:e9:d3:ea:8f:06:6a:56:75:8f:86:1e:fc:50:f8:be:93: 7d:2e:0a:41:d4:98:ec:ce:3e:d7:00:f2:9b:e0:32:98:52:15: c3:62:66:5e:20:99:fe:de:3b:68:31:b3:3b:77:52:43:29:93: 1f:1f:62:5a:c8:48:03:2e:27:57:58:93:bf:ca:f1:f3:af:60: 88:16:e1:5d:39:90:ed:7e:db:a4:ed:37:26:a9:21:31:17:a6: f5:87:b5:47:86:9b:c1:9a:67:e2:26:7f:8a:b3:7f:b7:18:9d: a3:60:d4:9c:a9:31:e3:d5:d7:1d:f0:df:84:bd:f6:e3:e7:6f: 77:4f:ce:33:6b:0a:86:78:58:21:bc:18:93:38:1e:29:2d:45: 2a:63:92:9c:7c:23:40:b5:fa:25:5c:3d:e4:0e:4e:63:7e:3f: e2:3d:58:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTNGRTExMC8GA1UEBRMoNTJBMUM0MjBEODI3QzE2Q0VBQTA0MjgzREQyOEI2NDBB MzE1NjM0RDAeFw0yNTA4MjMwODA2NTRaFw0yNTA4MzAwODA2NTRaMBgxFjAUBgNV BAMTDTY4YTk3NjlmLTQxZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6B+ZjZANxbPyYsZdk+pgwWCnIWAKFSjCde+X/t6O/xvHqIRwG0cCaqy1G+pVQ 1REfOczexRlpxe/9Zi/9mU0TB61mB9HOR9xB8qJnG5N8ysAte5/sNhjnXhqcuJg6 0MNsngVCHT64tkI5EWLQ1NF2Bfqzf+RjFbsJ6quvpNb4Xd5o1Ci79Yn4+sYw65UW D7cY7Phwq60mCcGTLzNRWA6E7dXqxqq2IOZyIFggVPW/6CCd+w/5RWYo82HwQ5SL LGX8OfiS+cCUEXNQUmdbSDEfVGqWW/4D3y5HkiLcndLvXH1rIAXQqv4o9jfm2e2F DvVVVyaFi2IMJuLSOWolEfhlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6oqxR6Oi b6CWcY+5pROew7pgcE0wHwYDVR0jBBgwFoAUUqHEINgnwWzqoEKD3Si2QKMVY00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxM0ZFLzhEOEUyMkMyNTY0 MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVXFIRUlOZ253V3pxb0VLRDNTaTJRS01WWTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx M0ZFLzhEOEUyMkMyNTY0MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6 cW9FS0QzU2kyUUtNVlkwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALJcxFj3pFsPzrE+zznogntZzwSFI4HgDbIVjhJFUHnQWJOj/aRDi2lo FPAHj0y4z3EeMW9nBUoE+Ye14GjHI0UAnAMbUF9ghH674pBFOaPDsGfDSG7MF9k1 bfPa6dPqjwZqVnWPhh78UPi+k30uCkHUmOzOPtcA8pvgMphSFcNiZl4gmf7eO2gx szt3UkMpkx8fYlrISAMuJ1dYk7/K8fOvYIgW4V05kO1+26TtNyapITEXpvWHtUeG m8GaZ+Imf4qzf7cYnaNg1JypMePV1x3w34S99uPnb3dPzjNrCoZ4WCG8GJM4Hikt RSpjkpx8I0C1+iVcPeQOTmN+P+I9WG0= -----END CERTIFICATE-----Generated at Sat Aug 23 10:55:13 2025 by rpki-client