$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: of+B8oT67PUIEJrapf/sQfq2ku+z/W8XfvSC7GU2RYo= Subject key identifier: F9:6B:94:0D:61:24:F4:1A:DE:36:21:D6:B1:B0:F8:B0:F4:DE:F7:4A Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 0186 Signing time: Sat 23 Aug 2025 03:40:45 +0000 Manifest this update: Sat 23 Aug 2025 03:40:45 +0000 Manifest next update: Sat 30 Aug 2025 03:40:45 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: xiIybYCFK2o0xB+NQI5U2TAJSXIlP1MDAmbrsnJVftk=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: 2h3iteWHWvj7eGZvRPLFqMA2o9nj7836hPNLX4DVTdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Aug 23 03:40:45 2025 GMT Not After : Aug 30 03:40:45 2025 GMT Subject: CN=68a9383d-a5a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:59:31:bf:5d:95:85:d7:29:26:61:db:69:75: 3c:6e:83:50:d9:95:bb:29:4e:c8:5a:4b:41:c0:b4: 6b:d5:3e:5a:9a:4d:01:9c:03:7a:f0:fb:e8:99:50: a6:78:d5:a2:a5:fb:8c:cc:2d:57:99:4e:df:d3:67: d7:7b:48:b6:fc:85:c4:2e:b0:b7:ca:56:23:33:89: 81:e6:c1:37:e2:be:06:63:1d:84:d7:49:ad:18:9d: 06:78:cc:ec:1a:d6:7c:f7:d1:04:98:e6:c4:80:d1: 3f:f4:96:1e:34:53:95:71:30:af:34:35:18:f7:28: 97:d5:42:13:8a:37:3c:97:8e:42:d7:81:e8:17:70: a5:90:fa:9a:d8:ab:e8:2c:5f:78:9b:bb:8b:9b:91: f5:f4:67:a8:c2:54:e3:ad:1a:6e:3c:d4:cb:a8:dc: 24:a5:fa:7d:a1:08:fe:27:4c:82:6a:8e:47:91:90: ba:2a:b8:f8:ee:69:fb:55:f5:bb:13:21:39:65:5f: 8a:bf:c7:88:95:3e:3f:a3:47:05:13:bc:a4:8d:82: 19:e2:40:f8:4e:ef:63:10:e9:e4:7a:ee:06:cd:6b: 81:2c:f2:10:c4:86:be:15:d6:cb:31:b1:29:a7:56: 4d:3c:7e:2f:48:3a:79:3b:cb:cd:79:36:48:f8:1c: f9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6B:94:0D:61:24:F4:1A:DE:36:21:D6:B1:B0:F8:B0:F4:DE:F7:4A X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:63:ae:ec:8a:27:65:37:95:c8:58:74:6c:a2:e9:1b:a1:dd: 69:2d:5c:7a:5f:7d:8a:93:d5:2e:7c:38:d5:90:fe:c1:25:29: a4:cf:bd:12:8e:9d:72:4f:ba:1e:3b:29:ef:b4:ea:12:9d:f3: 0b:94:e9:2e:e0:cc:e9:83:e4:9f:00:76:62:34:98:a7:53:83: 10:28:b2:15:44:81:66:54:cb:25:36:51:e8:03:03:9a:7e:f3: 91:e6:91:f4:24:78:cc:5e:e9:44:eb:52:be:bb:2b:86:91:63: 45:ba:da:f6:b9:10:26:d5:c0:67:79:c6:77:a1:b6:b3:ba:2a: d9:f2:d5:e1:35:b5:c4:9c:fd:26:33:98:33:1d:61:cc:54:dd: cb:a9:dd:64:5f:85:3a:a0:7b:36:2c:43:82:35:b8:12:de:56: 4b:f4:7c:aa:a2:48:e4:7f:3d:e7:11:64:86:28:e1:55:b0:f2: f4:11:ff:e3:bf:dc:fa:d1:84:27:46:59:62:b8:1a:b8:15:2a: b3:26:73:e3:70:e8:a1:32:c9:e0:6c:3e:51:1a:01:b5:d1:4a: 62:f2:74:dd:3c:fd:2e:b6:84:2a:69:f7:01:ca:f6:92:1f:9f: 17:bf:d2:6e:95:89:00:a7:75:61:33:91:99:27:e0:56:3c:97: a8:73:9d:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUwODIzMDM0MDQ1WhcNMjUwODMwMDM0MDQ1WjAYMRYwFAYD VQQDEw02OGE5MzgzZC1hNWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVkxv12VhdcpJmHbaXU8boNQ2ZW7KU7IWktBwLRr1T5amk0BnAN68PvomVCm eNWipfuMzC1XmU7f02fXe0i2/IXELrC3ylYjM4mB5sE34r4GYx2E10mtGJ0GeMzs GtZ899EEmObEgNE/9JYeNFOVcTCvNDUY9yiX1UITijc8l45C14HoF3ClkPqa2Kvo LF94m7uLm5H19GeowlTjrRpuPNTLqNwkpfp9oQj+J0yCao5HkZC6Krj47mn7VfW7 EyE5ZV+Kv8eIlT4/o0cFE7ykjYIZ4kD4Tu9jEOnkeu4GzWuBLPIQxIa+FdbLMbEp p1ZNPH4vSDp5O8vNeTZI+Bz5SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPlrlA1h JPQa3jYh1rGw+LD03vdKMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqY67siidlN5XIWHRsoukbod1pLVx6X32Kk9UufDjVkP7BJSmkz70S jp1yT7oeOynvtOoSnfMLlOku4Mzpg+SfAHZiNJinU4MQKLIVRIFmVMslNlHoAwOa fvOR5pH0JHjMXulE61K+uyuGkWNFutr2uRAm1cBnecZ3obazuirZ8tXhNbXEnP0m M5gzHWHMVN3Lqd1kX4U6oHs2LEOCNbgS3lZL9Hyqokjkfz3nEWSGKOFVsPL0Ef/j v9z60YQnRlliuBq4FSqzJnPjcOihMsngbD5RGgG10Upi8nTdPP0utoQqafcByvaS H58Xv9JulYkAp3VhM5GZJ+BWPJeoc51L -----END CERTIFICATE-----Generated at Sat Aug 23 13:52:50 2025 by rpki-client