$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: 9tS1MQbE8almWx+ibaeouydLuHJq1XABgILWpbF7+kM= Subject key identifier: 7E:AD:54:FC:03:19:6D:40:A4:B1:99:F6:10:CF:CD:60:D3:CB:C6:A3 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: D1 Signing time: Sat 23 Aug 2025 05:50:41 +0000 Manifest this update: Sat 23 Aug 2025 05:50:41 +0000 Manifest next update: Sat 30 Aug 2025 05:50:41 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: 1i7HXM2WhhqFbAKG63me1kEjYFS/r6lg2WWyyo4OfzA=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: Ge+55CQegGWCZISlkeWVyEDQbw8xhE1lFYLjXYnwl5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: Aug 23 05:50:41 2025 GMT Not After : Aug 30 05:50:41 2025 GMT Subject: CN=68a956b1-127a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a6:0c:ca:50:bf:01:34:40:bb:ad:2d:95:ef: 49:49:fa:4f:0d:73:af:86:bb:15:b7:68:cb:7c:45: 4a:02:d2:e8:92:77:e0:1b:4a:c8:c7:a1:4a:5e:4d: eb:af:3e:00:c3:da:c1:9f:85:c7:c2:74:98:0d:62: 34:62:4b:1d:8f:1b:1c:e2:e7:c0:82:a9:7f:b4:50: 54:04:5f:99:29:75:2a:e8:e8:e3:08:79:83:8c:52: 2e:18:aa:90:b4:ce:67:b6:6b:e4:41:dd:1e:b8:1d: 44:51:aa:97:79:81:b5:9d:39:99:3f:44:51:0d:e6: 1d:7f:e4:29:72:06:d1:da:16:12:29:7b:76:54:b3: b9:b9:e5:50:91:ca:1a:10:44:eb:a7:01:97:2a:6e: c9:2d:d3:17:44:d9:88:cc:1c:2d:e8:60:3b:b7:a7: 65:9b:af:51:97:b6:45:34:29:6b:a0:a1:03:77:6e: 0e:e3:a2:05:9f:98:72:b0:94:f9:f0:4e:9f:24:89: 6f:79:a4:14:5d:f7:6b:18:7a:dd:aa:ca:ce:e7:8f: 9c:eb:72:d2:b6:93:a5:7e:d8:ee:7d:49:b1:c4:4e: ad:26:a6:3a:ff:52:2a:e6:49:60:43:a8:e2:ab:13: 43:1f:df:7d:3c:f9:da:9a:37:bd:93:cf:4e:35:28: e4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:AD:54:FC:03:19:6D:40:A4:B1:99:F6:10:CF:CD:60:D3:CB:C6:A3 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:1f:8b:89:e4:8c:26:72:35:04:3f:e9:bb:0c:f0:d4:3f:af: 23:f4:f7:1c:d4:53:3a:e2:19:b3:78:c0:c8:c4:31:53:7e:a5: c9:22:39:1c:cb:9d:94:5c:94:e4:82:2c:97:41:8d:34:38:b2: d0:96:42:3f:74:3d:21:44:af:0b:02:b5:11:76:ed:b4:02:91: 94:60:9c:1b:92:e8:63:f4:93:46:d0:a8:b6:11:83:b5:9c:0f: ca:dc:1c:dc:61:e0:5e:f7:ef:15:be:e9:bd:f7:a2:ac:b0:73: 3e:d3:e9:fb:ec:f6:7f:07:3e:db:a2:fa:0a:3d:33:b4:ff:c9: 8f:52:00:e7:ac:89:0e:32:b4:aa:3f:ff:86:9c:cd:fb:b2:e7: 80:ec:ed:62:f4:81:dc:a4:91:35:fd:62:15:9c:6f:95:70:0c: 2d:a6:14:86:4c:5d:f7:d8:90:ac:a6:c3:89:75:59:c1:45:55: 33:4c:13:04:ee:0d:3c:68:94:89:cb:a3:c3:66:4f:51:39:a4: 4b:d5:df:2e:6e:6f:ae:61:f6:7a:e9:00:9c:c1:4e:3b:f0:19: d7:36:79:06:ea:0e:ab:20:1e:1f:1d:76:16:13:82:7b:a9:0d: ff:76:77:51:ef:74:43:9e:4e:4a:8f:2f:4e:99:13:cd:39:40: 45:45:ab:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB RTI3MTExRjAwHhcNMjUwODIzMDU1MDQxWhcNMjUwODMwMDU1MDQxWjAYMRYwFAYD VQQDEw02OGE5NTZiMS0xMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaYMylC/ATRAu60tle9JSfpPDXOvhrsVt2jLfEVKAtLoknfgG0rIx6FKXk3r rz4Aw9rBn4XHwnSYDWI0Yksdjxsc4ufAgql/tFBUBF+ZKXUq6OjjCHmDjFIuGKqQ tM5ntmvkQd0euB1EUaqXeYG1nTmZP0RRDeYdf+QpcgbR2hYSKXt2VLO5ueVQkcoa EETrpwGXKm7JLdMXRNmIzBwt6GA7t6dlm69Rl7ZFNClroKEDd24O46IFn5hysJT5 8E6fJIlveaQUXfdrGHrdqsrO54+c63LStpOlftjufUmxxE6tJqY6/1Iq5klgQ6ji qxNDH999PPnamje9k89ONSjk+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6tVPwD GW1ApLGZ9hDPzWDTy8ajMB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1 QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF ZlRJRVZGSVllM1N1SnhFZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8H4uJ5IwmcjUEP+m7DPDUP68j9Pcc1FM64hmzeMDIxDFTfqXJIjkc y52UXJTkgiyXQY00OLLQlkI/dD0hRK8LArURdu20ApGUYJwbkuhj9JNG0Ki2EYO1 nA/K3BzcYeBe9+8Vvum996KssHM+0+n77PZ/Bz7bovoKPTO0/8mPUgDnrIkOMrSq P/+GnM37sueA7O1i9IHcpJE1/WIVnG+VcAwtphSGTF332JCspsOJdVnBRVUzTBME 7g08aJSJy6PDZk9ROaRL1d8ubm+uYfZ66QCcwU478BnXNnkG6g6rIB4fHXYWE4J7 qQ3/dndR73RDnk5Kjy9OmRPNOUBFRat+ -----END CERTIFICATE-----Generated at Sun Aug 24 03:01:32 2025 by rpki-client