$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft File: UMP9EvajMVgZtSurzBmPsNv9QTo.mft (raw, json) Hash identifier: fzLFG0T8/MKaETIq0C2fMT/eDNpuW6cDH7p9vV+Fe+w= Subject key identifier: 52:39:79:2E:82:23:DF:67:A4:F4:A8:91:AB:2E:98:6B:C3:B8:11:8E Authority key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A Certificate issuer: /CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Certificate serial: 0406 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft Manifest number: 0401 Signing time: Sat 23 Aug 2025 00:41:35 +0000 Manifest this update: Sat 23 Aug 2025 00:41:34 +0000 Manifest next update: Sat 30 Aug 2025 00:41:34 +0000 Files and hashes: 1: UMP9EvajMVgZtSurzBmPsNv9QTo.crl (hash: quyrY2MIqXzFMAxVMFHjJfyIsZcjCzfW7nF+mKNUc2A=) 2: 296C190484AD11EC9C3F837CC4F9AE02.roa (hash: /RxOlV3ierU9U8XUpOrcDZ1BfZBiiZXrWx/RXW8pGyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1030 (0x406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE616, serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Validity Not Before: Aug 23 00:41:34 2025 GMT Not After : Aug 30 00:41:34 2025 GMT Subject: CN=68a90e3f-2f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fb:1a:7e:41:2c:44:7a:88:c6:bb:b2:4c:6e: 32:ea:50:5c:0b:b9:8d:38:57:9f:ea:c0:33:17:72: ec:36:aa:7c:a8:91:a4:5f:0e:5d:4d:f6:1d:a3:45: 72:d6:42:65:4f:63:dd:c6:79:70:68:92:a2:b3:52: 73:3b:74:52:4f:92:90:56:32:e3:e0:62:ea:bf:ad: 62:b5:b9:93:06:dd:d5:88:f2:e5:1a:5d:1f:d9:dc: 14:e2:91:88:57:08:8d:77:fd:52:31:e4:35:7d:52: 15:af:0f:90:e0:90:29:08:e3:c7:41:68:90:08:04: 0d:5a:d6:4b:06:44:31:e2:81:3a:c4:58:75:af:53: d7:ef:f9:12:40:6c:33:82:5d:6c:2d:a9:d7:f5:0d: da:0d:a3:9c:ac:a0:91:39:1e:2d:06:33:00:9d:a6: d1:02:eb:a8:ce:0e:f7:8b:a3:7e:58:67:fa:3c:e3: a9:a2:c4:48:9b:58:e8:35:3c:02:c6:29:60:bd:1b: 2a:b9:38:58:df:0d:dc:ce:f9:9f:67:96:f7:2e:2d: ea:e0:51:be:32:b4:8a:84:38:54:a2:39:02:7b:77: 95:e2:d7:90:3a:91:56:6e:d1:89:ae:e1:43:66:1b: 52:30:7d:c5:ee:71:b9:e4:23:fb:8c:03:b5:40:26: ff:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:39:79:2E:82:23:DF:67:A4:F4:A8:91:AB:2E:98:6B:C3:B8:11:8E X509v3 Authority Key Identifier: keyid:50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:ba:fa:4c:6f:24:a8:14:b6:a8:61:ac:30:14:bd:b9:e2:cd: 46:88:58:33:e3:28:76:7d:f2:15:58:f4:7d:11:f1:5b:47:01: fb:c1:94:b4:d8:bb:8b:2d:08:5e:9c:e2:42:86:31:9c:8e:f6: 5f:24:bd:1d:9d:d4:95:ae:18:65:16:d5:44:2e:dd:c4:45:a4: 81:77:bd:10:fb:ed:fa:7a:28:c8:5e:55:07:07:ca:8d:1d:ea: 60:88:3b:dd:b7:45:5c:4a:0d:24:f4:16:24:2f:12:ae:fb:3b: 0d:c0:b4:ab:35:5f:e6:00:95:4a:81:e5:41:c4:5d:97:ff:4c: c4:eb:8b:c5:46:89:e4:63:93:01:b7:62:86:ad:ae:e6:7a:62: 1c:6e:ed:75:98:45:63:21:ca:44:fe:76:d3:b6:9a:38:79:85: 44:ad:e9:91:53:ae:98:09:3f:5c:f7:5e:b3:98:b7:36:3a:2a: 41:cd:0e:bb:f5:f6:e1:e0:fb:88:fe:53:c7:a8:86:f9:a9:35: 52:9d:b4:0a:19:6d:c8:b3:08:cc:3c:6a:e0:58:73:9e:d7:24: 86:e7:e8:ea:60:4b:d6:4a:7c:b0:7c:79:67:e8:4a:e3:dd:79: a4:4f:20:d9:98:b5:d1:d9:a1:e7:90:50:bb:bb:32:b6:5f:bb: 99:ad:70:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJBQkNDMTk4RkIw REJGRDQxM0EwHhcNMjUwODIzMDA0MTM0WhcNMjUwODMwMDA0MTM0WjAYMRYwFAYD VQQDEw02OGE5MGUzZi0yZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/safkEsRHqIxruyTG4y6lBcC7mNOFef6sAzF3LsNqp8qJGkXw5dTfYdo0Vy 1kJlT2PdxnlwaJKis1JzO3RST5KQVjLj4GLqv61itbmTBt3ViPLlGl0f2dwU4pGI VwiNd/1SMeQ1fVIVrw+Q4JApCOPHQWiQCAQNWtZLBkQx4oE6xFh1r1PX7/kSQGwz gl1sLanX9Q3aDaOcrKCROR4tBjMAnabRAuuozg73i6N+WGf6POOposRIm1joNTwC xilgvRsquThY3w3czvmfZ5b3Li3q4FG+MrSKhDhUojkCe3eV4teQOpFWbtGJruFD ZhtSMH3F7nG55CP7jAO1QCb/3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFI5eS6C I99npPSokasumGvDuBGOMB8GA1UdIwQYMBaAFFDD/RL2ozFYGbUrq8wZj7Db/UE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYxNi9BN0U0MjkxNjg0 QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1WZ1p0U3VyekJtUHNOdjlR VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNUDlFdmFqTVZnWnRTdXJ6Qm1Qc052OVFUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYxNi9BN0U0MjkxNjg0QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1W Z1p0U3VyekJtUHNOdjlRVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3uvpMbySoFLaoYawwFL254s1GiFgz4yh2ffIVWPR9EfFbRwH7wZS0 2LuLLQhenOJChjGcjvZfJL0dndSVrhhlFtVELt3ERaSBd70Q++36eijIXlUHB8qN HepgiDvdt0VcSg0k9BYkLxKu+zsNwLSrNV/mAJVKgeVBxF2X/0zE64vFRonkY5MB t2KGra7memIcbu11mEVjIcpE/nbTtpo4eYVEremRU66YCT9c916zmLc2OipBzQ67 9fbh4PuI/lPHqIb5qTVSnbQKGW3IswjMPGrgWHOe1ySG5+jqYEvWSnywfHln6Erj 3XmkTyDZmLXR2aHnkFC7uzK2X7uZrXAv -----END CERTIFICATE-----Generated at Sat Aug 23 14:18:27 2025 by rpki-client