$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft File: UzSpQuM2kLKBJhu645cTXb6kE5c.mft (raw, json) Hash identifier: lsloqY3D/tTSxylkMeT3zFHaAleCptFIWHTDMxjeJcg= Subject key identifier: 70:6A:4E:08:4E:57:FD:D2:B6:8E:42:5B:FC:FC:17:0B:3E:44:A7:09 Authority key identifier: 53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 Certificate issuer: /CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Certificate serial: 0865 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft Manifest number: 085E Signing time: Fri 22 Aug 2025 20:48:41 +0000 Manifest this update: Fri 22 Aug 2025 20:48:40 +0000 Manifest next update: Fri 29 Aug 2025 20:48:40 +0000 Files and hashes: 1: UzSpQuM2kLKBJhu645cTXb6kE5c.crl (hash: eXrrCTpSq4kuk7IHAHgShYbxr83P7zqPxLlW9ClhbPQ=) 2: DF3136A2CFF011EAB2F1D086C4F9AE02.roa (hash: Us01OaqyY9hkYagplVuFKDaxQc/+mQDnpIsRSuf4AxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2149 (0x865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA022, serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Validity Not Before: Aug 22 20:48:40 2025 GMT Not After : Aug 29 20:48:40 2025 GMT Subject: CN=68a8d7a9-0cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6e:86:a9:b6:ec:02:be:cc:67:09:35:70:28: 38:7d:cc:9c:2c:36:d7:ce:e3:ca:a2:1d:a2:38:89: e2:3f:79:ba:5f:d8:53:cd:56:81:73:3c:ff:2f:c2: 6a:be:7f:23:47:32:b3:18:6e:fd:90:3d:eb:91:be: 6d:ac:85:67:42:34:5d:01:94:f8:64:94:a9:c3:2a: db:81:f8:81:04:6a:c3:1e:e6:db:9b:00:10:ad:67: 78:e2:b7:6b:48:6b:24:bb:13:e2:64:f3:2f:98:9b: 09:f6:68:4a:67:d3:b3:4a:3e:ec:9a:f7:54:16:03: 97:07:99:ad:8d:cd:e5:b0:2f:1d:96:57:d5:48:ba: 02:98:4e:f8:fc:cd:23:33:8b:fb:82:29:1c:e6:1c: 99:32:f1:b7:49:c2:20:6b:a6:02:a8:42:e4:eb:90: 3a:8c:89:a7:bb:3d:e5:d7:12:3b:cd:57:54:ed:cf: 62:88:bf:6d:e2:ba:52:16:e1:2b:70:ea:33:01:cd: b5:b7:1a:13:e8:76:e8:c7:29:93:1e:5a:5e:a0:dc: 5c:17:91:12:ee:69:1e:78:8e:86:5a:1e:ed:9a:77: bd:d6:20:cf:b3:d7:f6:d5:50:08:aa:e6:75:a4:ae: 73:bd:24:48:5f:bd:12:f3:e9:30:82:4c:d6:7e:09: c3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6A:4E:08:4E:57:FD:D2:B6:8E:42:5B:FC:FC:17:0B:3E:44:A7:09 X509v3 Authority Key Identifier: keyid:53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:7d:90:ed:cd:72:0d:a8:8b:d7:be:25:b8:91:d7:30:54:16: 9e:91:aa:50:7e:c8:f3:4f:8c:4b:cd:39:75:28:9f:6d:c1:4b: 6d:ae:b5:31:51:7c:56:11:3a:49:3b:19:d5:2b:14:6a:8c:54: cd:02:02:9f:00:79:0f:12:a7:78:85:2e:52:43:51:08:42:5d: bb:15:b2:6a:45:c8:90:74:21:33:39:45:4f:5a:86:df:97:f2: 37:86:64:9a:ab:21:c2:63:c9:1e:e0:fb:69:fb:ca:d2:0f:16: 8a:0b:92:80:23:12:85:b4:55:50:fd:8c:fb:35:eb:7b:49:5c: 8a:d6:c3:d0:dd:09:c4:c2:b7:8e:69:a8:0a:80:19:06:09:4a: 48:7c:4f:34:31:ae:a5:4c:ec:1f:bc:3e:f3:b4:2f:f3:0c:3c: 08:ab:02:5a:7f:33:71:9a:5d:b3:d3:d2:61:f4:11:b5:7f:ec: c6:85:fd:32:a4:19:ad:26:58:80:c0:87:c7:69:6e:90:40:46: be:a8:57:f0:e1:5c:65:3a:74:fe:35:ae:84:b3:c4:be:ff:f6: 49:0e:87:17:17:fa:11:60:ac:22:c1:68:64:b0:4d:cb:f6:56: 7c:93:0c:4a:a5:2d:8e:f9:8c:e8:cb:97:51:44:d2:00:7c:46: c2:6d:c2:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjIxMTAvBgNVBAUTKDUzMzRBOTQyRTMzNjkwQjI4MTI2MUJCQUUzOTcxMzVE QkVBNDEzOTcwHhcNMjUwODIyMjA0ODQwWhcNMjUwODI5MjA0ODQwWjAYMRYwFAYD VQQDEw02OGE4ZDdhOS0wY2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz26GqbbsAr7MZwk1cCg4fcycLDbXzuPKoh2iOIniP3m6X9hTzVaBczz/L8Jq vn8jRzKzGG79kD3rkb5trIVnQjRdAZT4ZJSpwyrbgfiBBGrDHubbmwAQrWd44rdr SGskuxPiZPMvmJsJ9mhKZ9OzSj7smvdUFgOXB5mtjc3lsC8dllfVSLoCmE74/M0j M4v7gikc5hyZMvG3ScIga6YCqELk65A6jImnuz3l1xI7zVdU7c9iiL9t4rpSFuEr cOozAc21txoT6HboxymTHlpeoNxcF5ES7mkeeI6GWh7tmne91iDPs9f21VAIquZ1 pK5zvSRIX70S8+kwgkzWfgnDAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBqTghO V/3Sto5CW/z8Fws+RKcJMB8GA1UdIwQYMBaAFFM0qULjNpCygSYbuuOXE12+pBOX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMi85RDhEOTQ1OENG RUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtMS0JKaHU2NDVjVFhiNmtF NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6U3BRdU0ya0xLQkpodTY0NWNUWGI2a0U1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMi85RDhEOTQ1OENGRUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtM S0JKaHU2NDVjVFhiNmtFNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSfZDtzXINqIvXviW4kdcwVBaekapQfsjzT4xLzTl1KJ9twUttrrUx UXxWETpJOxnVKxRqjFTNAgKfAHkPEqd4hS5SQ1EIQl27FbJqRciQdCEzOUVPWobf l/I3hmSaqyHCY8ke4Ptp+8rSDxaKC5KAIxKFtFVQ/Yz7Net7SVyK1sPQ3QnEwreO aagKgBkGCUpIfE80Ma6lTOwfvD7ztC/zDDwIqwJafzNxml2z09Jh9BG1f+zGhf0y pBmtJliAwIfHaW6QQEa+qFfw4VxlOnT+Na6Es8S+//ZJDocXF/oRYKwiwWhksE3L 9lZ8kwxKpS2O+Yzoy5dRRNIAfEbCbcL7 -----END CERTIFICATE-----Generated at Sat Aug 23 17:47:15 2025 by rpki-client