$ rpki-client -vvf rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft File: UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft (raw, json) Hash identifier: CBVEDJuqWwuAZRwequV8i0DGt9kgmRsRubOrulr0+Tk= Subject key identifier: 82:B3:A1:95:06:C2:04:F2:F0:3B:69:79:DA:9F:38:D5:FD:0C:B2:3E Authority key identifier: 52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 Certificate issuer: /CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft Manifest number: 066B Signing time: Mon 30 Jun 2025 22:45:26 +0000 Manifest this update: Mon 30 Jun 2025 22:45:26 +0000 Manifest next update: Mon 07 Jul 2025 22:45:26 +0000 Files and hashes: 1: UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl (hash: B1jnHX2Z8+WzCyQgx329gN9SvRn1dH2NjKrZcu9pIsI=) 2: C3FEC56C855711EB871D267FC4F9AE02.roa (hash: y8hsODPDu9mxz9gFgQEr+IEal2qwbZYp1jlJlCiW6og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911902E, serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Validity Not Before: Jun 30 22:45:26 2025 GMT Not After : Jul 7 22:45:26 2025 GMT Subject: CN=68631386-bc41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d6:2b:ac:bd:86:48:0a:97:e8:2c:8d:31:4f: 06:94:8a:b0:90:7d:2e:05:42:00:11:f8:01:79:22: 3f:4a:64:ad:42:70:57:b1:8f:46:d5:01:2b:49:40: 76:83:c8:90:8d:4d:5c:f7:ba:cd:5e:e8:4e:32:ab: 38:88:10:f3:aa:f2:92:41:ea:41:8a:c4:c2:f6:65: b2:49:d5:3e:01:ec:31:5a:41:ad:3c:bc:87:2a:db: 7c:c6:7e:77:fb:93:ac:12:2b:7b:20:0f:dd:15:38: 92:eb:bc:32:df:15:2b:b5:73:dd:5f:ca:bf:d4:2b: c9:42:e3:52:aa:c1:a1:8c:08:37:84:2d:15:ce:7a: 33:6b:2a:a9:32:39:a3:ae:3d:2c:c5:08:23:74:3e: b2:89:a0:73:68:a4:74:51:e1:ca:f8:b0:3c:07:76: b6:46:47:a0:d2:5a:3c:76:d7:39:95:b8:19:c0:36: f3:ec:44:5e:46:e5:39:ef:70:a2:6e:66:e2:c5:5c: 54:8f:5a:cb:f9:8e:07:63:a4:c7:f8:9d:2c:ba:9f: f9:4a:03:3e:e4:00:3b:5d:9c:33:94:f5:ee:31:2d: cf:bb:8c:b4:fc:b7:b3:5e:23:91:48:fd:58:55:96: dd:64:4b:f3:6c:1a:c1:fd:ee:ff:14:60:db:9d:8c: 84:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B3:A1:95:06:C2:04:F2:F0:3B:69:79:DA:9F:38:D5:FD:0C:B2:3E X509v3 Authority Key Identifier: keyid:52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:7a:f6:47:0b:02:29:b9:dd:c3:2e:ce:8e:32:c3:bd:f2:85: 8d:da:a4:16:04:b3:b4:6f:10:af:fa:dd:5d:73:51:94:9d:d2: 54:9b:30:a0:6c:da:d6:3b:3f:85:04:0a:32:9e:25:52:b6:48: 02:af:c8:15:28:9d:c4:0f:0d:f1:3e:6e:d8:dc:4a:87:f4:41: 7e:bc:24:9d:8b:11:27:40:e1:47:48:93:39:f0:f0:5b:d5:33: 8c:f1:b2:48:92:32:e9:2d:35:99:df:37:61:fe:b0:82:d5:ac: 1e:5a:ba:99:7b:29:2f:f9:ff:49:e0:d4:c5:f6:f7:fa:e6:84: 33:b6:cf:1b:b4:9c:2f:fc:74:e5:58:5e:51:6c:50:b5:15:8b: aa:41:aa:8a:2e:06:42:c1:a3:9f:da:ba:e0:3f:75:86:2f:77: 23:c9:fc:37:e5:c6:00:27:e8:3b:2c:ca:d2:82:10:3b:52:22: 8b:97:d2:d2:99:05:89:39:53:31:3a:2c:dd:a1:6a:b6:50:8c: b2:e3:ce:70:e0:45:97:15:9f:40:5d:5c:3b:a6:24:cb:d9:ca: 61:d0:29:78:e3:de:06:7f:8a:c3:68:e7:88:78:16:f8:51:8d: 96:2f:ee:e5:12:8c:df:b5:45:4f:f8:7e:7a:0c:de:95:87:0c: 88:f9:40:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMkUxMTAvBgNVBAUTKDUyMUIwNkMyOTExMDI4NEFBQUZFMDg3NUFBNjE4NkIw MDA2RDI3NjcwHhcNMjUwNjMwMjI0NTI2WhcNMjUwNzA3MjI0NTI2WjAYMRYwFAYD VQQDEw02ODYzMTM4Ni1iYzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdYrrL2GSAqX6CyNMU8GlIqwkH0uBUIAEfgBeSI/SmStQnBXsY9G1QErSUB2 g8iQjU1c97rNXuhOMqs4iBDzqvKSQepBisTC9mWySdU+AewxWkGtPLyHKtt8xn53 +5OsEit7IA/dFTiS67wy3xUrtXPdX8q/1CvJQuNSqsGhjAg3hC0VznozayqpMjmj rj0sxQgjdD6yiaBzaKR0UeHK+LA8B3a2Rkeg0lo8dtc5lbgZwDbz7EReRuU573Ci bmbixVxUj1rL+Y4HY6TH+J0sup/5SgM+5AA7XZwzlPXuMS3Pu4y0/LezXiORSP1Y VZbdZEvzbBrB/e7/FGDbnYyEvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKzoZUG wgTy8DtpedqfONX9DLI+MB8GA1UdIwQYMBaAFFIbBsKREChKqv4IdaphhrAAbSdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAyRS81N0FGREIyODg1 NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtFcXFfZ2gxcW1HR3NBQnRK MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Voc0d3cEVRS0VxcV9naDFxbUdHc0FCdEoyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTAyRS81N0FGREIyODg1NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtF cXFfZ2gxcW1HR3NBQnRKMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSevZHCwIpud3DLs6OMsO98oWN2qQWBLO0bxCv+t1dc1GUndJUmzCg bNrWOz+FBAoyniVStkgCr8gVKJ3EDw3xPm7Y3EqH9EF+vCSdixEnQOFHSJM58PBb 1TOM8bJIkjLpLTWZ3zdh/rCC1aweWrqZeykv+f9J4NTF9vf65oQzts8btJwv/HTl WF5RbFC1FYuqQaqKLgZCwaOf2rrgP3WGL3cjyfw35cYAJ+g7LMrSghA7UiKLl9LS mQWJOVMxOizdoWq2UIyy485w4EWXFZ9AXVw7piTL2cph0Cl4494Gf4rDaOeIeBb4 UY2WL+7lEozftUVP+H56DN6VhwyI+UAw -----END CERTIFICATE-----Generated at Wed Jul 2 15:21:02 2025 by rpki-client