$ rpki-client -vvf rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft File: UjrFjamEDQscqom9_54NzkZ2fEo.mft (raw, json) Hash identifier: 2ayICLjOMoLRms4efwVRlaYM2ETXB/YR/M3hMi4WHQc= Subject key identifier: E7:4F:29:2A:7A:11:B1:B3:B8:D4:D8:FD:0D:35:89:7D:4C:46:87:EF Authority key identifier: 52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A Certificate issuer: /CN=A9124B27/serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft Manifest number: 65 Signing time: Tue 01 Jul 2025 07:50:16 +0000 Manifest this update: Tue 01 Jul 2025 07:50:15 +0000 Manifest next update: Tue 08 Jul 2025 07:50:15 +0000 Files and hashes: 1: UjrFjamEDQscqom9_54NzkZ2fEo.crl (hash: l+MHLAn3MdhPr7qBCwnlY4E/q7OEFly+ceijcxpoYkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B27, serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Validity Not Before: Jul 1 07:50:15 2025 GMT Not After : Jul 8 07:50:15 2025 GMT Subject: CN=68639337-2b40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:f5:b5:5a:28:b1:54:15:1f:43:8e:81:0f:6b: 32:17:5c:f9:9b:98:34:17:f0:81:13:55:46:a5:14: 34:37:e5:fa:16:ed:db:07:39:9f:1e:5d:6f:c6:c1: c4:2e:04:de:2e:05:04:12:9f:bf:06:1a:d2:51:23: 88:24:e6:32:1b:4a:b5:f8:33:aa:85:91:cc:23:13: e4:e1:67:d3:3b:88:78:5e:6f:8f:36:0f:d5:7d:e4: 46:cc:0f:28:76:4f:3c:c6:f1:5d:75:18:61:d7:40: cf:09:3b:a4:d7:c3:5b:52:f1:be:2a:7c:f9:e9:90: 02:b6:72:3f:92:d8:72:cf:39:c9:cd:a8:45:46:bc: 35:69:ca:d4:aa:73:e0:a0:c4:b3:f2:91:c4:a2:6c: 66:09:e5:ca:7f:43:eb:0e:1d:f4:02:0f:7b:5c:b4: 97:89:5f:ec:b7:91:76:d3:36:da:2d:e9:75:e1:f1: a7:95:5c:87:3f:f4:9d:d7:77:12:e5:c3:37:7f:12: f5:a5:f8:73:e7:7f:da:2a:7c:d8:f0:27:6e:1b:04: 60:b2:46:46:4c:b0:df:be:83:1d:44:c2:2c:3f:cf: 07:d2:14:3e:46:ac:0a:2d:6e:96:40:4f:45:0b:14: b8:c7:a7:f9:64:f1:2e:7f:c7:c9:cf:90:1f:4e:50: 7a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4F:29:2A:7A:11:B1:B3:B8:D4:D8:FD:0D:35:89:7D:4C:46:87:EF X509v3 Authority Key Identifier: keyid:52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:b2:83:61:c8:fe:c4:19:e2:be:0e:54:c2:2a:32:7f:7e:58: 41:6f:8f:a6:24:68:07:22:c5:cd:42:e5:55:55:e6:33:8b:1e: c5:c6:c2:1c:01:a0:5f:b1:c1:c5:e0:01:9f:2b:cf:48:69:7c: a5:ce:11:a9:3b:50:50:51:76:e4:f1:7c:99:68:d9:78:e3:13: b7:5b:ae:66:fd:d7:d4:b6:64:09:b5:60:df:70:14:37:6f:e0: 9d:cf:c2:66:c6:b5:9d:3c:ed:7e:07:32:82:9b:01:41:bc:30: a6:04:4f:8d:6a:04:9a:ba:ed:4a:f4:dd:b8:6e:24:d6:13:72: f5:e9:97:ad:1f:09:c9:f3:bf:ce:69:f4:e7:d2:27:42:b4:07: 5c:ac:cf:06:75:b8:93:2a:f2:44:0c:a1:cf:09:b4:16:c6:b7: a5:e9:a3:a5:45:dc:40:de:92:7e:1d:50:34:09:7c:3b:86:97: fa:46:82:a9:7e:56:3b:d0:fd:67:57:b3:99:0a:9c:e0:e7:cb: cc:45:d5:1e:61:89:09:2c:1c:80:86:64:b0:56:be:2c:84:4d: d2:a1:8c:eb:d1:c3:33:39:6a:cc:57:a7:b0:23:0c:9d:4b:e8: 13:ff:61:db:8b:24:ff:f9:e8:32:64:1d:ee:84:92:e1:c4:63: 20:6a:09:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NEIyNzExMC8GA1UEBRMoNTIzQUM1OERBOTg0MEQwQjFDQUE4OUJERkY5RTBEQ0U0 Njc2N0M0QTAeFw0yNTA3MDEwNzUwMTVaFw0yNTA3MDgwNzUwMTVaMBgxFjAUBgNV BAMTDTY4NjM5MzM3LTJiNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD19bVaKLFUFR9DjoEPazIXXPmbmDQX8IETVUalFDQ35foW7dsHOZ8eXW/GwcQu BN4uBQQSn78GGtJRI4gk5jIbSrX4M6qFkcwjE+ThZ9M7iHheb482D9V95EbMDyh2 TzzG8V11GGHXQM8JO6TXw1tS8b4qfPnpkAK2cj+S2HLPOcnNqEVGvDVpytSqc+Cg xLPykcSibGYJ5cp/Q+sOHfQCD3tctJeJX+y3kXbTNtot6XXh8aeVXIc/9J3XdxLl wzd/EvWl+HPnf9oqfNjwJ24bBGCyRkZMsN++gx1Ewiw/zwfSFD5GrAotbpZAT0UL FLjHp/lk8S5/x8nPkB9OUHp9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU508pKnoR sbO41Nj9DTWJfUxGh+8wHwYDVR0jBBgwFoAUUjrFjamEDQscqom9/54NzkZ2fEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0QjI3LzUwMDYxOERDQzZF ODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFzY3FvbTlfNTROemtaMmZF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWpyRmphbUVEUXNjcW9tOV81NE56a1oyZkVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 QjI3LzUwMDYxOERDQzZFODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFz Y3FvbTlfNTROemtaMmZFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABayg2HI/sQZ4r4OVMIqMn9+WEFvj6YkaAcixc1C5VVV5jOLHsXGwhwB oF+xwcXgAZ8rz0hpfKXOEak7UFBRduTxfJlo2XjjE7dbrmb919S2ZAm1YN9wFDdv 4J3PwmbGtZ087X4HMoKbAUG8MKYET41qBJq67Ur03bhuJNYTcvXpl60fCcnzv85p 9OfSJ0K0B1yszwZ1uJMq8kQMoc8JtBbGt6Xpo6VF3EDekn4dUDQJfDuGl/pGgql+ VjvQ/WdXs5kKnODny8xF1R5hiQksHICGZLBWviyETdKhjOvRwzM5asxXp7AjDJ1L 6BP/YduLJP/56DJkHe6EkuHEYyBqCSg= -----END CERTIFICATE-----Generated at Wed Jul 2 03:26:57 2025 by rpki-client