$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: XGP2SZR02eb5ObSJF/A8HQFg+e55mECxseXaWAmDqoQ= Subject key identifier: 01:AE:72:9B:6F:62:AD:60:82:D6:3F:1B:BC:F7:00:74:10:71:98:13 Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01E4 Signing time: Sat 23 Aug 2025 02:53:15 +0000 Manifest this update: Sat 23 Aug 2025 02:53:14 +0000 Manifest next update: Sat 30 Aug 2025 02:53:14 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: MyE+Yb/pDfubjHSwtLIWtdAZdDNTEsT799XvRTFTU3g=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:53:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Aug 23 02:53:14 2025 GMT Not After : Aug 30 02:53:14 2025 GMT Subject: CN=68a92d1b-2b90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:58:82:99:a6:29:cd:5d:67:e9:ff:43:04:e5: d9:9e:8a:a2:d1:73:51:7a:73:df:db:50:d1:20:9a: 5f:35:8c:aa:a4:8e:f1:fe:20:6b:8d:c8:0b:da:4a: b6:5a:eb:67:a4:ae:ce:3d:9c:b7:0a:fa:7b:b0:3a: ca:55:0a:47:a2:38:cf:bb:f9:9c:c7:98:da:ea:67: b6:3d:f0:6c:22:b7:7c:db:cf:a9:af:10:4a:64:8c: 84:07:0c:5f:55:f5:1f:2c:5a:6d:f8:49:d7:0c:bb: 0e:0e:79:c6:e7:25:de:6a:2a:3b:98:ef:71:0a:ce: 0f:6c:63:38:a0:16:c9:96:53:de:a4:30:5e:ed:1b: ca:a5:92:fb:4d:8a:6e:ea:03:cf:98:3a:f5:28:ea: ce:21:0a:2d:f9:87:7a:07:b8:b9:9a:0e:65:4c:1f: 2c:db:34:37:22:82:b0:5d:93:b4:bc:02:a0:fb:86: 10:f8:63:26:28:35:f1:4d:1f:14:a0:b1:24:6e:23: c9:bf:82:82:8b:d5:c4:ef:8e:af:2a:b1:94:90:b1: 7b:05:25:49:c1:5c:ce:d0:9c:db:d7:f9:26:0f:e8: 9b:1e:f1:39:d9:91:db:50:d2:53:11:bb:7e:6e:0a: 07:b5:70:6c:4b:35:27:89:65:b0:6f:84:ea:78:46: e3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:AE:72:9B:6F:62:AD:60:82:D6:3F:1B:BC:F7:00:74:10:71:98:13 X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:57:f5:77:a7:64:e9:f9:56:5f:78:a6:ee:37:5f:4d:1a:c9: 7c:ea:fd:0b:e4:85:be:05:9b:7e:a9:e2:78:2e:3d:f8:93:0c: ad:a1:5c:ec:4d:b7:09:75:3b:fb:8b:d9:22:fb:f3:0d:c0:59: d5:50:cf:38:85:60:20:00:aa:7d:9d:51:0e:4f:c6:9c:5a:05: 94:1d:d7:bc:58:89:b9:5a:b8:c6:80:c2:70:b2:db:95:f5:6d: d4:0b:e7:0a:56:f8:6b:ab:37:9a:a0:3c:3d:2e:98:f1:ef:91: 75:9d:84:c5:86:d2:1b:c8:d7:16:b9:68:a9:14:79:10:49:e3: 3d:01:8b:f0:77:a2:e9:85:6d:7e:ea:90:8d:ad:91:de:62:e5: bf:66:bc:32:f0:d5:fb:e0:71:e1:4e:51:c2:cb:2d:3b:b1:bb: bc:18:f0:77:93:cd:a3:43:df:f0:db:64:d7:b5:76:85:72:e4: 76:f4:29:c3:ec:79:71:82:3d:5d:5b:cf:60:cf:52:80:5d:75: ef:a7:36:4d:70:52:48:2d:1b:49:42:12:96:89:3c:2f:8b:ce: c4:98:ba:0b:07:77:02:30:89:f5:3a:f9:71:ed:26:a9:09:8c: 53:0e:a9:95:15:72:50:4c:4d:52:3c:c6:c9:5b:a3:3f:21:53: a7:62:57:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwODIzMDI1MzE0WhcNMjUwODMwMDI1MzE0WjAYMRYwFAYD VQQDEw02OGE5MmQxYi0yYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtViCmaYpzV1n6f9DBOXZnoqi0XNRenPf21DRIJpfNYyqpI7x/iBrjcgL2kq2 WutnpK7OPZy3Cvp7sDrKVQpHojjPu/mcx5ja6me2PfBsIrd828+prxBKZIyEBwxf VfUfLFpt+EnXDLsODnnG5yXeaio7mO9xCs4PbGM4oBbJllPepDBe7RvKpZL7TYpu 6gPPmDr1KOrOIQot+Yd6B7i5mg5lTB8s2zQ3IoKwXZO0vAKg+4YQ+GMmKDXxTR8U oLEkbiPJv4KCi9XE746vKrGUkLF7BSVJwVzO0Jzb1/kmD+ibHvE52ZHbUNJTEbt+ bgoHtXBsSzUniWWwb4TqeEbjewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGucptv Yq1ggtY/G7z3AHQQcZgTMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWV/V3p2Tp+VZfeKbuN19NGsl86v0L5IW+BZt+qeJ4Lj34kwytoVzs TbcJdTv7i9ki+/MNwFnVUM84hWAgAKp9nVEOT8acWgWUHde8WIm5WrjGgMJwstuV 9W3UC+cKVvhrqzeaoDw9Lpjx75F1nYTFhtIbyNcWuWipFHkQSeM9AYvwd6LphW1+ 6pCNrZHeYuW/Zrwy8NX74HHhTlHCyy07sbu8GPB3k82jQ9/w22TXtXaFcuR29CnD 7Hlxgj1dW89gz1KAXXXvpzZNcFJILRtJQhKWiTwvi87EmLoLB3cCMIn1Ovlx7Sap CYxTDqmVFXJQTE1SPMbJW6M/IVOnYlf4 -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:38 2025 by rpki-client