$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: ChdTzYeIcDQmv9zfJjuI9uTlBy8sEQiXtI4RE8ow3Es= Subject key identifier: 47:A8:01:BD:C1:1D:A1:93:87:32:29:E7:2C:D4:BF:C3:9A:3D:74:06 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 358C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 3510 Signing time: Fri 22 Aug 2025 14:24:37 +0000 Manifest this update: Fri 22 Aug 2025 14:24:37 +0000 Manifest next update: Fri 29 Aug 2025 14:24:37 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: PyUqpYLsu6nHrh7gqaN8IH92KsrCp/5Be8KpVrsJJPU=) 2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: KKCg2NooRoQGuF3KYpzz51c9C/45UUPObnLo2e5njhU=) 3: D0886954188811EC8E86754FC4F9AE02.roa (hash: yPv2xJqSMbxdqO3CUxzFvtSmE89AHilhOo/061TH8FU=) 4: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: nfNjfg1IXDDhMM0k16fT6xDTUZvLHRQ/C+xvVXQFUFE=) 5: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: iSQxLeiRN1fYoIns2yWqQhKW9w0d7Bh4Hi7g+FcoiAo=) 6: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: GOobL3IcAmOzxEXI8Av9eECmrglVLT+e8Yk36aU9ns8=) 7: 9F3A919468D811EFB2FE405FC4F9AE02.roa (hash: ZaxlSh3XWBv2fOJrVopMAyhJjHEvnP8TGG96c6iuXcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13708 (0x358c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Aug 22 14:24:37 2025 GMT Not After : Aug 29 14:24:37 2025 GMT Subject: CN=68a87da5-4756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:45:33:79:93:36:8b:42:e6:fa:05:b0:b1:26: 04:43:d5:6f:da:af:70:f1:54:1b:05:64:97:d4:f7: 29:cd:ac:df:2b:92:b7:8c:c8:9c:1b:8b:92:28:16: 15:29:73:dd:b2:49:f8:71:f1:5e:72:50:6b:1a:f9: a7:7b:c6:a5:36:cb:d4:3d:88:6e:1e:5b:f8:31:52: d8:aa:c2:b0:2f:a6:a1:38:37:ac:b5:58:83:48:c7: 29:30:95:c0:7c:16:32:b3:99:c2:03:ae:0d:33:e4: 11:b7:a7:a9:a9:32:97:b4:d3:ef:d7:06:67:4e:dc: 73:c1:1c:64:3d:26:78:a5:81:d0:55:5a:3f:65:91: 85:d0:ac:1a:42:74:19:fe:d4:f1:5c:9a:7d:6f:c2: 01:88:9d:38:93:b1:93:96:6a:6c:e5:17:65:06:3e: 42:08:18:a0:55:18:3e:70:bb:d5:9f:ec:a1:60:db: 54:7a:10:e1:7c:1c:d7:2e:66:28:55:cd:fe:ed:7b: a6:15:43:c9:21:cf:69:78:e0:95:b8:45:08:33:73: 41:07:c6:1a:2f:27:b9:a1:0d:37:2e:e0:8b:44:1f: a8:11:0e:9f:9f:c1:4a:3e:94:57:03:80:1a:25:8a: 53:cc:e6:21:51:4b:38:13:31:16:51:20:d7:dc:6b: 08:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:A8:01:BD:C1:1D:A1:93:87:32:29:E7:2C:D4:BF:C3:9A:3D:74:06 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:df:22:ab:c9:f1:e2:4e:c8:60:38:5c:50:8c:50:cf:e1:5d: 21:5d:fb:09:7f:3c:5f:2a:61:b9:1c:f4:b3:7c:53:31:fe:c8: 75:d3:e4:7e:62:94:01:ad:52:c8:28:38:e8:71:fd:39:c3:07: 37:a8:04:30:98:35:c4:ae:0e:f2:1c:30:55:9d:a7:42:29:a5: 50:ae:82:6d:6b:37:f5:2f:5b:b2:eb:6f:2d:05:d2:a4:bd:ba: a4:db:4f:7b:67:8a:21:21:f3:0c:dc:40:da:6c:a8:dd:9e:9c: e1:23:ba:05:3a:d0:01:ca:78:ba:8b:41:d7:19:16:7a:34:17: da:32:9e:68:64:56:93:8b:ca:89:7a:de:58:c2:4b:f6:27:d7: 16:2e:8a:51:20:ed:d2:92:1d:3f:77:58:3e:6d:08:dd:c5:4f: 85:f9:c0:fa:87:39:c9:10:c7:8e:78:82:9f:96:4d:c3:2c:87: f2:42:aa:e1:3d:00:aa:47:e7:71:a0:73:ce:cb:1c:e7:11:9a: 7f:51:08:5a:ed:3a:ac:67:5e:97:b6:b5:9e:b5:30:83:f7:a7: 78:75:4f:32:57:5b:a0:df:ae:a0:e6:65:a6:77:b0:25:13:cf: 98:0d:46:6e:d3:52:81:e6:ed:8e:c8:b4:57:9f:80:e3:7f:8e: 53:5f:29:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUwODIyMTQyNDM3WhcNMjUwODI5MTQyNDM3WjAYMRYwFAYD VQQDEw02OGE4N2RhNS00NzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0UzeZM2i0Lm+gWwsSYEQ9Vv2q9w8VQbBWSX1PcpzazfK5K3jMicG4uSKBYV KXPdskn4cfFeclBrGvmne8alNsvUPYhuHlv4MVLYqsKwL6ahODestViDSMcpMJXA fBYys5nCA64NM+QRt6epqTKXtNPv1wZnTtxzwRxkPSZ4pYHQVVo/ZZGF0KwaQnQZ /tTxXJp9b8IBiJ04k7GTlmps5RdlBj5CCBigVRg+cLvVn+yhYNtUehDhfBzXLmYo Vc3+7XumFUPJIc9peOCVuEUIM3NBB8YaLye5oQ03LuCLRB+oEQ6fn8FKPpRXA4Aa JYpTzOYhUUs4EzEWUSDX3GsINQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEeoAb3B HaGThzIp5yzUv8OaPXQGMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF3yKryfHiTshgOFxQjFDP4V0hXfsJfzxfKmG5HPSzfFMx/sh10+R+ YpQBrVLIKDjocf05wwc3qAQwmDXErg7yHDBVnadCKaVQroJtazf1L1uy628tBdKk vbqk2097Z4ohIfMM3EDabKjdnpzhI7oFOtAByni6i0HXGRZ6NBfaMp5oZFaTi8qJ et5Ywkv2J9cWLopRIO3Skh0/d1g+bQjdxU+F+cD6hznJEMeOeIKflk3DLIfyQqrh PQCqR+dxoHPOyxznEZp/UQha7TqsZ16XtrWetTCD96d4dU8yV1ug366g5mWmd7Al E8+YDUZu01KB5u2OyLRXn4Djf45TXykD -----END CERTIFICATE-----Generated at Sun Aug 24 00:31:29 2025 by rpki-client