$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft File: Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft (raw, json) Hash identifier: GHXQYcRBw4w7MFk5mbLvQM2wvVmL+E7jb2cwKThG9eg= Subject key identifier: 22:FD:AC:48:69:E1:F3:B3:9A:65:0C:A2:71:EF:FA:7A:38:57:A9:55 Authority key identifier: 51:BE:A3:60:94:29:D9:1B:1C:4E:40:22:DA:68:BD:64:3C:33:C3:FB Certificate issuer: /CN=A91E9509/serialNumber=51BEA3609429D91B1C4E4022DA68BD643C33C3FB Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft Manifest number: 020D Signing time: Sat 23 Aug 2025 02:20:31 +0000 Manifest this update: Sat 23 Aug 2025 02:20:31 +0000 Manifest next update: Sat 30 Aug 2025 02:20:31 +0000 Files and hashes: 1: Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl (hash: oCrVygtiRuHQyFyePOSpKUjm5eDaoFHUpJX5xGAgqLI=) 2: F23AE0AE632D11ED8C102087C4F9AE02.roa (hash: ALMLm78gllLBfFwEbfYMxy6G6W9jUB1EmmnPpTHelsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9509, serialNumber=51BEA3609429D91B1C4E4022DA68BD643C33C3FB Validity Not Before: Aug 23 02:20:31 2025 GMT Not After : Aug 30 02:20:31 2025 GMT Subject: CN=68a9256f-e395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a4:e0:23:74:41:5b:03:fa:3d:1e:e9:02:98: 2d:e6:4b:90:e2:f7:e8:5a:c3:34:bb:f6:ae:69:fc: 66:28:e5:ce:32:18:5d:bd:91:8e:c4:fc:37:b6:5f: 14:7d:49:bb:76:5e:e9:8e:28:cd:a2:28:b6:5c:23: 20:ac:3e:e9:29:e0:9a:d2:1d:dc:20:b0:99:f9:c3: 5f:bf:01:94:43:21:83:b4:ef:1d:13:f7:0b:e0:54: dc:9c:54:b1:ca:1d:97:d3:f7:65:f2:d3:d0:c3:d5: 2a:eb:c6:78:e7:04:4b:31:86:6d:3e:3a:2f:ec:e5: cf:56:51:3b:39:f4:2b:c2:7b:ac:bf:2e:01:6d:12: 6d:ca:be:83:9b:15:cb:5f:a3:04:85:65:a4:f2:d3: 0e:50:43:dd:5f:4d:fa:7b:e3:dc:46:5d:2a:4c:f5: ae:a9:ea:cb:0c:de:7c:ab:23:a3:fb:13:26:3d:a5: 1c:14:ea:86:b7:47:9d:57:f0:16:df:52:52:bc:d5: 1b:11:30:3f:30:df:06:8a:60:68:57:c5:9e:4c:dd: 22:cc:27:d3:8d:e6:d3:c1:10:5b:a7:36:f0:af:1f: b8:88:3c:c0:14:75:bd:d2:3f:cf:3b:16:84:89:29: 42:a5:fa:a4:41:0d:2f:30:5b:36:5a:b0:2c:25:7a: 89:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FD:AC:48:69:E1:F3:B3:9A:65:0C:A2:71:EF:FA:7A:38:57:A9:55 X509v3 Authority Key Identifier: keyid:51:BE:A3:60:94:29:D9:1B:1C:4E:40:22:DA:68:BD:64:3C:33:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:2c:78:ed:12:ce:94:3e:8e:ee:7a:76:17:b4:0d:69:b8:03: af:30:b8:8a:00:54:1d:17:d9:d4:27:b2:87:b6:08:bf:d1:3f: 7d:c2:fc:87:0f:9d:60:33:13:fd:dc:e0:cd:53:50:dc:5b:ac: 20:47:c0:22:8b:fe:c8:8a:90:2f:d4:1f:59:3d:dc:a8:a3:77: 17:b2:37:75:3d:e3:bc:d3:eb:41:72:0c:37:c9:ca:34:6e:a7: ff:88:c2:32:67:90:ee:c3:76:4f:86:8c:4a:45:e7:28:5a:a5: 07:69:c9:50:5e:20:db:4d:f1:da:e4:45:ad:aa:95:5d:26:8b: 97:97:87:e5:cf:4a:10:2c:c7:b3:d5:2d:1e:6c:d2:bf:dc:86: 84:d7:6c:57:4b:9f:fb:77:1c:ed:cc:4a:08:a1:55:c4:96:ac: b5:cf:3f:34:48:c7:f8:2d:35:b3:c0:f2:3c:a5:f2:e9:42:4f: 8d:ee:37:f2:80:ec:2d:dd:16:e3:41:51:91:8e:1e:a8:2e:2d: 3f:7c:63:f4:eb:d8:39:6f:c8:80:cf:cc:b6:cd:48:c0:90:93: dd:fa:6f:12:95:fa:97:52:ac:9a:39:0c:67:bd:5e:d7:93:3c: 22:9e:29:70:a1:41:b7:2c:97:e2:36:8f:a3:f6:a2:94:49:63: b5:aa:78:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1MDkxMTAvBgNVBAUTKDUxQkVBMzYwOTQyOUQ5MUIxQzRFNDAyMkRBNjhCRDY0 M0MzM0MzRkIwHhcNMjUwODIzMDIyMDMxWhcNMjUwODMwMDIyMDMxWjAYMRYwFAYD VQQDEw02OGE5MjU2Zi1lMzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qTgI3RBWwP6PR7pApgt5kuQ4vfoWsM0u/auafxmKOXOMhhdvZGOxPw3tl8U fUm7dl7pjijNoii2XCMgrD7pKeCa0h3cILCZ+cNfvwGUQyGDtO8dE/cL4FTcnFSx yh2X0/dl8tPQw9Uq68Z45wRLMYZtPjov7OXPVlE7OfQrwnusvy4BbRJtyr6DmxXL X6MEhWWk8tMOUEPdX036e+PcRl0qTPWuqerLDN58qyOj+xMmPaUcFOqGt0edV/AW 31JSvNUbETA/MN8GimBoV8WeTN0izCfTjebTwRBbpzbwrx+4iDzAFHW90j/POxaE iSlCpfqkQQ0vMFs2WrAsJXqJ/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCL9rEhp 4fOzmmUMonHv+no4V6lVMB8GA1UdIwQYMBaAFFG+o2CUKdkbHE5AItpovWQ8M8P7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUwOS8yNzRFRDE1RTYw MUExMUVEQjc0MTZCNkNDNEY5QUUwMi9VYjZqWUpRcDJSc2NUa0FpMm1pOVpEd3p3 X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ViNmpZSlFwMlJzY1RrQWkybWk5WkR3endfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUwOS8yNzRFRDE1RTYwMUExMUVEQjc0MTZCNkNDNEY5QUUwMi9VYjZqWUpRcDJS c2NUa0FpMm1pOVpEd3p3X3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYLHjtEs6UPo7uenYXtA1puAOvMLiKAFQdF9nUJ7KHtgi/0T99wvyH D51gMxP93ODNU1DcW6wgR8Aii/7IipAv1B9ZPdyoo3cXsjd1PeO80+tBcgw3yco0 bqf/iMIyZ5Duw3ZPhoxKRecoWqUHaclQXiDbTfHa5EWtqpVdJouXl4flz0oQLMez 1S0ebNK/3IaE12xXS5/7dxztzEoIoVXElqy1zz80SMf4LTWzwPI8pfLpQk+N7jfy gOwt3RbjQVGRjh6oLi0/fGP069g5b8iAz8y2zUjAkJPd+m8SlfqXUqyaOQxnvV7X kzwinilwoUG3LJfiNo+j9qKUSWO1qniv -----END CERTIFICATE-----Generated at Sat Aug 23 16:43:37 2025 by rpki-client