$ rpki-client -vvf rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft File: UM3WDPjzEj_evOkIgq83u-PvXEg.mft (raw, json) Hash identifier: usHmuhezDqz4QMfJZEcOXnjApF0zBsB7AonMWcdokio= Subject key identifier: A6:E1:01:C6:AE:B1:9A:DF:A0:F7:BF:B4:F8:7A:DF:38:87:A3:FF:CB Authority key identifier: 50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 Certificate issuer: /CN=A9122C94/serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Certificate serial: 077D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft Manifest number: 0777 Signing time: Wed 02 Jul 2025 21:48:14 +0000 Manifest this update: Wed 02 Jul 2025 21:48:13 +0000 Manifest next update: Wed 09 Jul 2025 21:48:13 +0000 Files and hashes: 1: UM3WDPjzEj_evOkIgq83u-PvXEg.crl (hash: 0kqyqtbe7ojuCF3xvOUwjLqlwYa5ShS3g1QcOnY40Cg=) 2: 5BF797081CF411EBB5ADE642C4F9AE02.roa (hash: AwRksKXITHLfRHPDls3Dox6LPqS08ltsptsGuhqXo1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1917 (0x77d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122C94, serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Validity Not Before: Jul 2 21:48:13 2025 GMT Not After : Jul 9 21:48:13 2025 GMT Subject: CN=6865a91e-74eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:43:eb:aa:2b:d8:2f:2f:15:61:13:ca:49:ae: 3a:13:8d:b1:44:9d:04:ba:20:48:c7:29:6a:37:5c: 48:5f:70:20:b1:fb:e9:60:3f:f9:2f:ae:fd:db:c0: 3a:48:60:db:19:6e:10:6a:76:ac:6a:47:3a:89:be: 58:b8:73:88:d9:7a:1e:16:6a:7f:80:7f:f0:08:30: fd:26:e9:37:92:f2:4b:44:c1:e7:21:07:7a:ec:69: 11:b0:91:56:73:6f:b9:34:53:6b:9b:eb:75:72:51: 21:cb:30:09:a5:af:33:34:95:c9:d4:42:77:da:2e: 70:78:f4:bf:f9:98:ff:82:bc:97:40:f4:4d:ac:b4: a7:12:85:a2:67:e8:0f:ea:0c:d1:b1:f6:35:f4:1a: ba:ea:9b:ca:f0:59:af:d3:96:db:81:79:b5:d0:fc: b0:8e:3c:49:40:fa:1f:a6:8d:5f:40:0d:02:62:1b: 21:f1:6c:bb:e8:b9:b2:9a:b3:04:af:b6:fa:18:1c: b5:f9:42:e4:81:f0:bd:a5:e4:86:66:88:3a:db:f1: 92:0e:c0:3c:ad:12:39:94:f3:33:3a:a0:e3:c4:08: fd:b4:79:8e:5c:e8:c0:d1:86:92:2d:71:32:27:c4: 90:33:6e:7b:0c:05:f9:7c:b0:4e:3c:69:61:1a:e8: 46:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E1:01:C6:AE:B1:9A:DF:A0:F7:BF:B4:F8:7A:DF:38:87:A3:FF:CB X509v3 Authority Key Identifier: keyid:50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:04:48:47:2b:78:36:26:94:d4:7c:4a:54:01:a7:53:40:11: e4:1f:37:3f:27:fa:12:a7:38:d9:9b:6e:23:69:e7:5f:fc:3d: a2:22:2d:01:a1:27:a1:7a:2c:03:d8:c9:13:ee:7b:ce:7a:7a: 8f:d5:ce:36:a3:c5:78:cf:d6:3f:12:cb:fd:ef:08:91:7b:58: 4e:05:b6:03:b6:39:92:29:c9:61:62:a9:20:7e:02:80:76:fd: 80:38:8f:42:80:94:9f:69:c7:0e:7c:68:c6:5d:c5:f1:21:65: 29:eb:25:62:77:ee:d4:d8:d2:c0:b6:09:dc:b1:3a:2c:f1:97: 20:60:26:b1:df:f4:e9:e4:9b:75:05:7f:31:56:88:80:42:d7: 96:36:5b:7b:51:c8:b4:52:e5:21:13:fe:df:fb:77:17:66:d9: a6:da:ec:ee:84:b2:25:50:f5:77:d3:56:85:3d:18:50:51:6b: a5:40:e1:3b:9a:35:a5:94:38:c4:17:d6:56:ea:50:f9:e7:87: c8:7b:c3:8c:c2:50:a1:f9:03:a4:61:46:52:7d:e7:c2:ba:4b: 53:1c:7f:bc:cd:84:8b:4a:f6:eb:e2:c6:10:36:dc:21:cc:49: 64:1f:30:ec:59:29:73:a7:b4:b9:4b:aa:b2:92:d4:c7:7c:3a: ea:c2:0d:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJDOTQxMTAvBgNVBAUTKDUwQ0RENjBDRjhGMzEyM0ZERUJDRTkwODgyQUYzN0JC RTNFRjVDNDgwHhcNMjUwNzAyMjE0ODEzWhcNMjUwNzA5MjE0ODEzWjAYMRYwFAYD VQQDEw02ODY1YTkxZS03NGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0PrqivYLy8VYRPKSa46E42xRJ0EuiBIxylqN1xIX3AgsfvpYD/5L67928A6 SGDbGW4Qanasakc6ib5YuHOI2XoeFmp/gH/wCDD9Juk3kvJLRMHnIQd67GkRsJFW c2+5NFNrm+t1clEhyzAJpa8zNJXJ1EJ32i5wePS/+Zj/gryXQPRNrLSnEoWiZ+gP 6gzRsfY19Bq66pvK8Fmv05bbgXm10PywjjxJQPofpo1fQA0CYhsh8Wy76LmymrME r7b6GBy1+ULkgfC9peSGZog62/GSDsA8rRI5lPMzOqDjxAj9tHmOXOjA0YaSLXEy J8SQM257DAX5fLBOPGlhGuhG3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbhAcau sZrfoPe/tPh63ziHo//LMB8GA1UdIwQYMBaAFFDN1gz48xI/3rzpCIKvN7vj71xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkM5NC84MjIyQzI3RTFD RjIxMUVCODQyMDk1NDBDNEY5QUUwMi9VTTNXRFBqekVqX2V2T2tJZ3E4M3UtUHZY RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNM1dEUGp6RWpfZXZPa0lncTgzdS1QdlhFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkM5NC84MjIyQzI3RTFDRjIxMUVCODQyMDk1NDBDNEY5QUUwMi9VTTNXRFBqekVq X2V2T2tJZ3E4M3UtUHZYRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvBEhHK3g2JpTUfEpUAadTQBHkHzc/J/oSpzjZm24jaedf/D2iIi0B oSeheiwD2MkT7nvOenqP1c42o8V4z9Y/Esv97wiRe1hOBbYDtjmSKclhYqkgfgKA dv2AOI9CgJSfaccOfGjGXcXxIWUp6yVid+7U2NLAtgncsTos8ZcgYCax3/Tp5Jt1 BX8xVoiAQteWNlt7Uci0UuUhE/7f+3cXZtmm2uzuhLIlUPV301aFPRhQUWulQOE7 mjWllDjEF9ZW6lD554fIe8OMwlCh+QOkYUZSfefCuktTHH+8zYSLSvbr4sYQNtwh zElkHzDsWSlzp7S5S6qyktTHfDrqwg0s -----END CERTIFICATE-----Generated at Wed Jul 2 23:39:45 2025 by rpki-client