$ rpki-client -vvf rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft File: UM3WDPjzEj_evOkIgq83u-PvXEg.mft (raw, json) Hash identifier: Ym4yYxGi8U0mMXYcK2V3RBos+lTqNUrPUJwUVQkc7lo= Subject key identifier: CB:CD:0E:E8:A2:6D:B6:D5:C7:FD:61:72:E7:10:FB:F1:23:21:49:2E Authority key identifier: 50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 Certificate issuer: /CN=A9122C94/serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Certificate serial: 0797 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft Manifest number: 0791 Signing time: Fri 22 Aug 2025 21:35:46 +0000 Manifest this update: Fri 22 Aug 2025 21:35:45 +0000 Manifest next update: Fri 29 Aug 2025 21:35:45 +0000 Files and hashes: 1: UM3WDPjzEj_evOkIgq83u-PvXEg.crl (hash: 1ztJT9ZZ6NdH5f4YVbUS8UepwjFkFc3UORNxjeJQMdY=) 2: 5BF797081CF411EBB5ADE642C4F9AE02.roa (hash: AwRksKXITHLfRHPDls3Dox6LPqS08ltsptsGuhqXo1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1943 (0x797) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122C94, serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Validity Not Before: Aug 22 21:35:45 2025 GMT Not After : Aug 29 21:35:45 2025 GMT Subject: CN=68a8e2b1-22bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:00:c8:4e:87:c8:9a:5e:f3:44:ed:ba:5b:2f: 06:49:ec:35:ce:40:4f:a4:b1:d3:f9:23:04:a0:68: 60:39:79:17:0c:6b:32:fa:51:84:75:19:9c:86:39: 42:9d:a8:4e:23:40:cc:97:85:34:c6:12:32:e7:f8: 21:df:d3:6d:39:36:91:2f:5e:b0:74:76:5e:28:b5: a6:94:94:90:8a:f3:de:5b:1f:a8:22:6a:c0:3b:f7: 0d:7a:30:01:42:76:b7:d7:fc:78:b9:8d:bf:f4:69: 63:de:ad:39:19:35:2c:c8:78:92:79:f1:4a:d0:9e: c3:14:92:db:88:e5:17:e0:a2:59:df:21:04:89:3a: c3:ab:2c:cd:c1:6f:b1:e7:9b:61:46:63:e0:a8:9f: 58:45:09:31:ca:20:ec:79:39:2b:07:ab:0a:41:a7: 44:8c:06:63:5a:08:2b:47:a2:ba:ce:8b:80:c2:4a: 99:c5:d7:f6:92:e2:3a:cc:a7:cd:f5:d1:0b:21:f6: 85:95:22:a3:2a:80:24:81:a6:72:7d:34:8c:d6:41: 66:ad:1d:26:59:7c:ad:cf:fe:fc:1f:12:91:d2:58: eb:81:f9:22:3d:1f:b8:16:03:a6:87:b2:65:fb:67: cd:26:9e:ca:63:a0:83:61:9a:4d:f6:5e:ea:c9:2d: 9a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CD:0E:E8:A2:6D:B6:D5:C7:FD:61:72:E7:10:FB:F1:23:21:49:2E X509v3 Authority Key Identifier: keyid:50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:d8:87:f6:ac:60:66:51:13:4b:ef:09:3a:65:18:26:f9:d7: 5e:33:be:4c:ca:1b:eb:51:4d:b3:32:6f:37:07:35:ca:39:45: d9:26:b4:6f:40:d0:46:20:d3:84:b6:32:bc:4b:19:37:9d:a7: d6:5d:7b:07:8c:cd:50:1d:25:30:fa:6d:47:0f:c4:30:62:fd: 24:b3:b4:8a:12:a5:f5:2c:eb:aa:1f:00:46:ac:7d:b8:00:cd: 30:7d:f7:a3:b9:85:b8:8b:03:df:9a:5b:aa:55:69:ab:97:d6: b4:b4:23:fa:ff:29:4f:0f:4d:d7:95:51:75:e5:7a:fe:f2:5d: 1f:1f:22:38:e4:99:51:ff:40:a1:8e:3d:f0:7d:6d:4b:c1:a8: 9d:9a:68:f1:96:f2:08:fd:f8:71:85:72:74:67:a6:69:6a:a6: 73:17:59:e3:44:04:a0:3d:9c:1f:62:79:3f:ab:2e:87:6b:74: 43:fb:19:3a:09:bc:64:e0:b5:11:28:d9:7b:1d:90:ed:a9:58: ea:89:69:e0:3e:3d:ef:24:ce:b5:5a:b0:7e:ea:4f:82:47:ad: a6:15:7b:22:86:e5:df:4f:94:b8:1d:ef:46:64:5f:75:27:0b: 8b:61:fb:2f:7e:ac:fe:97:12:b9:8f:60:56:05:c9:d4:0e:5d: b7:58:ad:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJDOTQxMTAvBgNVBAUTKDUwQ0RENjBDRjhGMzEyM0ZERUJDRTkwODgyQUYzN0JC RTNFRjVDNDgwHhcNMjUwODIyMjEzNTQ1WhcNMjUwODI5MjEzNTQ1WjAYMRYwFAYD VQQDEw02OGE4ZTJiMS0yMmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ADITofIml7zRO26Wy8GSew1zkBPpLHT+SMEoGhgOXkXDGsy+lGEdRmchjlC nahOI0DMl4U0xhIy5/gh39NtOTaRL16wdHZeKLWmlJSQivPeWx+oImrAO/cNejAB Qna31/x4uY2/9Glj3q05GTUsyHiSefFK0J7DFJLbiOUX4KJZ3yEEiTrDqyzNwW+x 55thRmPgqJ9YRQkxyiDseTkrB6sKQadEjAZjWggrR6K6zouAwkqZxdf2kuI6zKfN 9dELIfaFlSKjKoAkgaZyfTSM1kFmrR0mWXytz/78HxKR0ljrgfkiPR+4FgOmh7Jl +2fNJp7KY6CDYZpN9l7qyS2arQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvNDuii bbbVx/1hcucQ+/EjIUkuMB8GA1UdIwQYMBaAFFDN1gz48xI/3rzpCIKvN7vj71xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkM5NC84MjIyQzI3RTFD RjIxMUVCODQyMDk1NDBDNEY5QUUwMi9VTTNXRFBqekVqX2V2T2tJZ3E4M3UtUHZY RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNM1dEUGp6RWpfZXZPa0lncTgzdS1QdlhFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkM5NC84MjIyQzI3RTFDRjIxMUVCODQyMDk1NDBDNEY5QUUwMi9VTTNXRFBqekVq X2V2T2tJZ3E4M3UtUHZYRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA32If2rGBmURNL7wk6ZRgm+ddeM75MyhvrUU2zMm83BzXKOUXZJrRv QNBGINOEtjK8Sxk3nafWXXsHjM1QHSUw+m1HD8QwYv0ks7SKEqX1LOuqHwBGrH24 AM0wffejuYW4iwPfmluqVWmrl9a0tCP6/ylPD03XlVF15Xr+8l0fHyI45JlR/0Ch jj3wfW1LwaidmmjxlvII/fhxhXJ0Z6ZpaqZzF1njRASgPZwfYnk/qy6Ha3RD+xk6 Cbxk4LURKNl7HZDtqVjqiWngPj3vJM61WrB+6k+CR62mFXsihuXfT5S4He9GZF91 JwuLYfsvfqz+lxK5j2BWBcnUDl23WK2e -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:35 2025 by rpki-client