$ rpki-client -vvf rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft File: uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft (raw, json) Hash identifier: jTEFtR8+8pm+IDWaE8H/ptxu3FPso6yb07UmCFMGK1Q= Subject key identifier: 44:09:CE:A7:2C:3B:EB:61:D9:2D:81:77:9B:94:0B:2E:C7:B6:0F:26 Authority key identifier: B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D Certificate issuer: /CN=A911F2DF/serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft Manifest number: CF Signing time: Thu 03 Jul 2025 05:54:08 +0000 Manifest this update: Thu 03 Jul 2025 05:54:08 +0000 Manifest next update: Thu 10 Jul 2025 05:54:08 +0000 Files and hashes: 1: uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl (hash: VXarJok3FXe6H3XeOZCU9mOWXmXXGWZVKzORtsEURLI=) 2: 92E390AC958E11EF87A4040BC4F9AE02.roa (hash: ziX6uRrjdN8XtvPVmk67ZGOFErPjsTpewvnUOr01Tm8=) 3: 7FAE29E8958E11EF9CC0DD0AC4F9AE02.roa (hash: 3kGsoUmf1FpifCPtPS1E6u6lzuQTEBurC189TVcNMdw=) 4: 659B37E4958E11EFAFF1870AC4F9AE02.roa (hash: XEN2blQh3Cs+gyEWpdkV0R6BegNBQ93goCybhrow5bM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F2DF, serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Validity Not Before: Jul 3 05:54:08 2025 GMT Not After : Jul 10 05:54:08 2025 GMT Subject: CN=68661b00-be28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d3:43:10:b3:a3:83:10:22:3a:72:cf:88:17: a4:f4:26:e1:bc:9f:ea:eb:69:98:bc:1f:9b:c9:03: 42:6b:23:23:65:0e:9e:9b:b0:a1:ff:ed:b2:94:8c: 38:d3:de:5f:65:31:84:31:4b:91:e1:5a:53:1b:2f: 62:0b:20:d6:b0:dc:3a:96:0f:ad:74:5e:00:e8:30: 8a:6a:c8:6b:af:a7:67:06:4c:61:cf:3e:9c:75:b8: fc:b7:5a:75:9d:3f:b0:1f:ec:51:6c:07:e1:57:31: c8:2d:be:e2:fb:f1:0b:42:74:d3:b1:40:96:84:71: 38:1e:fe:bd:c6:06:95:92:d9:d8:10:9c:e8:26:bc: d6:a0:11:c6:c0:70:ba:9e:4a:e9:27:c9:cf:90:92: 4d:bd:3f:bf:16:f1:1b:ba:72:ba:c2:a9:52:1e:9d: 70:d3:f2:61:1b:78:73:8f:2f:8c:8b:ce:9b:e2:42: ae:54:5b:61:04:00:db:b8:63:b4:f9:2c:8c:a9:aa: 8f:09:88:fe:4f:d8:21:2a:90:4b:bc:59:2f:79:0a: d2:27:e1:d6:66:07:55:f7:15:16:6b:b9:6f:71:e4: 23:01:5c:67:13:c7:e0:44:e3:45:2d:e2:d9:a0:48: 87:f1:6b:77:bb:49:fa:44:b4:14:8b:17:82:a2:61: 25:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:09:CE:A7:2C:3B:EB:61:D9:2D:81:77:9B:94:0B:2E:C7:B6:0F:26 X509v3 Authority Key Identifier: keyid:B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:d6:23:97:0f:62:f1:4b:0b:2e:4b:cb:2b:8f:cc:dd:e4:87: 64:4d:6a:88:e1:64:2c:0b:4f:7a:9b:63:d1:1e:47:03:85:97: 1a:4e:bc:75:92:ce:f6:36:9b:06:b1:24:a8:17:29:1d:14:7e: 28:ac:13:fb:9d:70:c6:2e:13:98:07:00:16:7b:2e:24:06:ce: 25:bb:d3:cd:3a:8d:8e:14:fb:ab:2a:a0:5e:2d:09:95:5c:47: e1:87:fe:4f:67:60:ce:85:80:29:e6:8e:21:67:e8:2b:68:ca: 8b:a1:81:4a:9e:c8:b6:a0:30:86:3a:c9:7f:8a:13:19:3e:f7: f9:45:50:14:25:63:5a:06:3b:87:ab:6b:03:1d:c3:ba:32:2b: a4:02:f3:be:d2:f7:2e:cf:a3:e5:fe:9a:2a:84:a9:a4:e4:ff: 7c:ce:10:0f:fc:29:0c:ff:87:4c:eb:80:a9:f8:15:39:dc:b0: 07:69:81:bd:84:be:7c:95:9e:ee:35:08:d1:11:56:4e:fa:02: de:62:b4:41:6f:86:8b:21:19:62:ae:0d:c0:e0:88:6f:a0:58: 55:6a:95:47:da:5a:ce:bf:3c:7d:16:f9:a4:05:0d:9a:7e:f1: f9:91:b5:4b:8f:9d:e9:86:39:de:88:df:7a:9b:94:4a:e9:9e: c7:9c:9c:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYyREYxMTAvBgNVBAUTKEI4NEMyMzk2OUVENzlDMEUzMUMxM0MxNDUwMDEyRTIy NDZEM0Y5NEQwHhcNMjUwNzAzMDU1NDA4WhcNMjUwNzEwMDU1NDA4WjAYMRYwFAYD VQQDEw02ODY2MWIwMC1iZTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNNDELOjgxAiOnLPiBek9CbhvJ/q62mYvB+byQNCayMjZQ6em7Ch/+2ylIw4 095fZTGEMUuR4VpTGy9iCyDWsNw6lg+tdF4A6DCKashrr6dnBkxhzz6cdbj8t1p1 nT+wH+xRbAfhVzHILb7i+/ELQnTTsUCWhHE4Hv69xgaVktnYEJzoJrzWoBHGwHC6 nkrpJ8nPkJJNvT+/FvEbunK6wqlSHp1w0/JhG3hzjy+Mi86b4kKuVFthBADbuGO0 +SyMqaqPCYj+T9ghKpBLvFkveQrSJ+HWZgdV9xUWa7lvceQjAVxnE8fgRONFLeLZ oEiH8Wt3u0n6RLQUixeComEl5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQJzqcs O+th2S2Bd5uUCy7Htg8mMB8GA1UdIwQYMBaAFLhMI5ae15wOMcE8FFABLiJG0/lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjJERi8wMDUwMUZEMjIz QUUxMUVGOTQ5M0Y0NUNDNEY5QUUwMi91RXdqbHA3WG5BNHh3VHdVVUFFdUlrYlQt VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VFd2pscDdYbkE0eHdUd1VVQUV1SWtiVC1VMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjJERi8wMDUwMUZEMjIzQUUxMUVGOTQ5M0Y0NUNDNEY5QUUwMi91RXdqbHA3WG5B NHh3VHdVVUFFdUlrYlQtVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg1iOXD2LxSwsuS8srj8zd5IdkTWqI4WQsC096m2PRHkcDhZcaTrx1 ks72NpsGsSSoFykdFH4orBP7nXDGLhOYBwAWey4kBs4lu9PNOo2OFPurKqBeLQmV XEfhh/5PZ2DOhYAp5o4hZ+graMqLoYFKnsi2oDCGOsl/ihMZPvf5RVAUJWNaBjuH q2sDHcO6MiukAvO+0vcuz6Pl/poqhKmk5P98zhAP/CkM/4dM64Cp+BU53LAHaYG9 hL58lZ7uNQjREVZO+gLeYrRBb4aLIRlirg3A4IhvoFhVapVH2lrOvzx9FvmkBQ2a fvH5kbVLj53phjneiN96m5RK6Z7HnJym -----END CERTIFICATE-----Generated at Thu Jul 3 08:05:19 2025 by rpki-client