$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft File: 4UieBUVuksrXFYRyAOSnXWw-Q84.mft (raw, json) Hash identifier: M8ICnfsLmNgswBN2HStS1wg912lvvijzkxoSKnaexyw= Subject key identifier: F0:EB:9B:6B:BD:C5:A1:75:49:D2:3A:8E:6D:A9:E9:A8:76:4F:B6:EA Authority key identifier: E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE Certificate issuer: /CN=A91F6AE0/serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Certificate serial: 02F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft Manifest number: 02EE Signing time: Sat 23 Aug 2025 01:33:05 +0000 Manifest this update: Sat 23 Aug 2025 01:33:05 +0000 Manifest next update: Sat 30 Aug 2025 01:33:05 +0000 Files and hashes: 1: 4UieBUVuksrXFYRyAOSnXWw-Q84.crl (hash: NazvxR1mFvYsHQmKS2G4livXcZBVUg3ijYQ5k/OUVU8=) 2: E2DF828CF20211ECBCC9B986C4F9AE02.roa (hash: z4QSZHsaMIqrT5GqWS+ItSZJBTmn9r2MlyBM2UIg/g4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 756 (0x2f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6AE0, serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Validity Not Before: Aug 23 01:33:05 2025 GMT Not After : Aug 30 01:33:05 2025 GMT Subject: CN=68a91a51-ab8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:02:ec:ac:80:36:6c:27:3f:5c:44:a6:87:53: c0:d6:36:0b:cc:38:b6:f2:cb:5e:36:e5:82:0c:86: d8:89:68:5d:76:d9:93:77:b8:a2:49:cc:d1:7c:e7: 5e:39:d2:05:3c:e4:e6:72:21:8d:8b:5d:e0:ad:79: c6:79:47:b5:fe:9e:5d:80:d1:6e:b4:65:6a:62:9c: 76:35:d5:35:22:26:dc:d8:9e:b8:c6:ab:9f:e1:0c: 0d:5c:96:aa:fd:b9:3c:69:84:0c:1e:fc:a3:81:14: b5:be:99:87:b8:cc:2d:51:53:7b:08:e5:c0:4c:f5: aa:56:96:cd:04:a3:fa:58:df:30:ea:c6:e8:17:14: 31:24:6f:48:e5:f2:61:a3:fd:8d:b4:d1:d1:f0:3a: 50:87:9e:75:f6:9d:54:4a:16:37:db:30:ee:e2:32: c6:fa:b4:23:80:d6:5d:44:2a:7b:70:77:a5:68:37: 53:7b:79:9b:ff:85:ec:09:5e:f8:29:be:70:82:b5: f4:6d:cb:48:e5:d1:d4:7f:50:c6:7d:51:8c:a6:dc: bb:d7:a4:d2:d8:81:6b:7b:e8:30:50:fc:a7:34:f5: f8:92:f2:b1:90:88:19:64:16:85:f6:e6:a9:86:6b: e8:67:c1:64:5e:87:da:df:be:ee:52:85:32:e3:fc: dc:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:EB:9B:6B:BD:C5:A1:75:49:D2:3A:8E:6D:A9:E9:A8:76:4F:B6:EA X509v3 Authority Key Identifier: keyid:E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:0d:af:9f:71:ba:57:2a:fd:5c:5a:ef:f2:13:2c:2c:52:08: 90:3b:00:69:27:48:0c:4e:c2:7b:31:6b:58:6a:6e:0a:60:bf: 69:cb:8b:0a:cf:cb:66:2b:2d:96:69:e6:27:bc:a8:99:1d:da: e7:21:17:48:b6:fa:50:bf:7d:14:37:03:67:40:f6:4d:55:60: 3d:e6:84:26:ce:c1:67:8a:4c:5e:1d:f4:9f:2f:fe:04:a0:a9: ed:42:58:fe:5e:e7:1f:7a:bc:d0:88:6c:18:32:5c:83:d8:03: 04:a3:1a:1f:54:a6:4e:08:1c:e3:3e:bf:cb:79:85:f7:23:39: f6:11:8f:00:ae:89:1a:bf:ab:89:7d:e5:26:98:c2:a1:41:af: 37:e3:f0:4f:c9:51:10:a6:86:fc:56:26:79:4b:3a:87:0d:3d: 24:02:86:a6:cc:e0:ca:d0:1c:af:57:75:b9:be:cf:06:a5:67: 42:19:7d:b9:ff:8f:fd:6e:b1:3f:f2:9b:4c:64:b4:be:32:dd: 87:0f:66:19:a6:2e:ba:5e:41:35:af:05:ba:fc:06:c7:bb:85: 54:84:8d:47:87:7a:db:d6:d7:7b:c4:e7:ab:1d:71:50:91:b4: f9:bb:41:cf:88:2e:8a:c9:7b:05:e5:7f:3e:ab:4a:43:eb:93: a0:d5:06:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBRTAxMTAvBgNVBAUTKEUxNDg5RTA1NDU2RTkyQ0FENzE1ODQ3MjAwRTRBNzVE NkMzRTQzQ0UwHhcNMjUwODIzMDEzMzA1WhcNMjUwODMwMDEzMzA1WjAYMRYwFAYD VQQDEw02OGE5MWE1MS1hYjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQLsrIA2bCc/XESmh1PA1jYLzDi28steNuWCDIbYiWhddtmTd7iiSczRfOde OdIFPOTmciGNi13grXnGeUe1/p5dgNFutGVqYpx2NdU1Iibc2J64xquf4QwNXJaq /bk8aYQMHvyjgRS1vpmHuMwtUVN7COXATPWqVpbNBKP6WN8w6sboFxQxJG9I5fJh o/2NtNHR8DpQh5519p1UShY32zDu4jLG+rQjgNZdRCp7cHelaDdTe3mb/4XsCV74 Kb5wgrX0bctI5dHUf1DGfVGMpty716TS2IFre+gwUPynNPX4kvKxkIgZZBaF9uap hmvoZ8FkXofa377uUoUy4/zcWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDrm2u9 xaF1SdI6jm2p6ah2T7bqMB8GA1UdIwQYMBaAFOFIngVFbpLK1xWEcgDkp11sPkPO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFFMC9GQTA0N0Y1NEYx RkMxMUVDOTlCMkNCNkJDNEY5QUUwMi80VWllQlVWdWtzclhGWVJ5QU9TblhXdy1R ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVaWVCVVZ1a3NyWEZZUnlBT1NuWFd3LVE4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFFMC9GQTA0N0Y1NEYxRkMxMUVDOTlCMkNCNkJDNEY5QUUwMi80VWllQlVWdWtz clhGWVJ5QU9TblhXdy1RODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuDa+fcbpXKv1cWu/yEywsUgiQOwBpJ0gMTsJ7MWtYam4KYL9py4sK z8tmKy2WaeYnvKiZHdrnIRdItvpQv30UNwNnQPZNVWA95oQmzsFnikxeHfSfL/4E oKntQlj+XucferzQiGwYMlyD2AMEoxofVKZOCBzjPr/LeYX3Izn2EY8Arokav6uJ feUmmMKhQa834/BPyVEQpob8ViZ5SzqHDT0kAoamzODK0ByvV3W5vs8GpWdCGX25 /4/9brE/8ptMZLS+Mt2HD2YZpi66XkE1rwW6/AbHu4VUhI1Hh3rb1td7xOerHXFQ kbT5u0HPiC6KyXsF5X8+q0pD65Og1QZ8 -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:34 2025 by rpki-client