$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft File: UGGUcQC8szKJ4moL3-zixfueCdI.mft (raw, json) Hash identifier: 7gU5DTTPj4HAAX3GPg2P5jue/HBpse8Iu4e3kD8sxtQ= Subject key identifier: 64:6A:1C:55:62:0F:71:90:79:8D:C3:19:09:68:86:E2:21:2E:F8:AA Authority key identifier: 50:61:94:71:00:BC:B3:32:89:E2:6A:0B:DF:EC:E2:C5:FB:9E:09:D2 Certificate issuer: /CN=A912BD8E/serialNumber=5061947100BCB33289E26A0BDFECE2C5FB9E09D2 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft Manifest number: 74 Signing time: Sat 23 Aug 2025 07:03:05 +0000 Manifest this update: Sat 23 Aug 2025 07:03:05 +0000 Manifest next update: Sat 30 Aug 2025 07:03:05 +0000 Files and hashes: 1: UGGUcQC8szKJ4moL3-zixfueCdI.crl (hash: jLfB8tWKi7MnHgQ/6nEifwjtYarZFwWmR0JGbi+/91s=) 2: 08C7D93ACE8911EFBEC5D618C4F9AE02.roa (hash: nvtKwWFEZOMd88gDjqvdFcOF+TJpXNSXEguvJEtlOSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.crl rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD8E, serialNumber=5061947100BCB33289E26A0BDFECE2C5FB9E09D2 Validity Not Before: Aug 23 07:03:05 2025 GMT Not After : Aug 30 07:03:05 2025 GMT Subject: CN=68a967a9-32b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:18:7c:44:d1:db:bc:07:72:9c:18:7b:58:67: 6f:f6:b8:80:89:44:eb:69:2b:52:da:f1:72:23:ff: f8:76:4d:e4:7d:05:b7:40:2d:bc:6e:c3:4b:a7:83: 68:f0:01:39:74:18:4e:70:fa:6a:88:60:0c:7b:f6: 26:62:b6:31:a8:69:55:8e:5d:ca:37:1d:82:b5:c4: 72:bf:e0:ef:50:30:20:c4:51:f5:5c:5a:0f:a9:db: 93:eb:b4:5f:93:10:09:f2:f3:2e:96:ea:57:31:67: 70:f9:b9:13:c6:be:5c:b8:1a:89:3b:6d:88:39:01: b2:dd:ae:ed:72:e7:49:19:de:ad:7d:79:e1:44:d2: 1d:c5:2e:3f:7e:1d:fb:ff:4f:34:5b:6f:fd:f1:7f: 7c:95:54:1b:ba:8c:02:37:e7:9c:f7:fb:f7:12:a6: 1f:2d:04:d4:0a:fb:93:44:b6:cb:31:66:dd:da:c1: 04:2c:4d:e9:ee:8f:2f:d3:ba:14:60:38:04:84:73: e7:ed:3a:1b:91:7c:15:9f:31:78:3e:51:00:57:b0: 90:5c:4b:85:52:65:b3:13:9f:3a:ae:06:db:32:d4: dc:6a:aa:ff:b3:1f:27:fd:e2:9f:2f:6f:8b:14:c4: 81:f5:54:b5:44:af:9d:13:22:94:b4:55:78:ce:39: d8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:6A:1C:55:62:0F:71:90:79:8D:C3:19:09:68:86:E2:21:2E:F8:AA X509v3 Authority Key Identifier: keyid:50:61:94:71:00:BC:B3:32:89:E2:6A:0B:DF:EC:E2:C5:FB:9E:09:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:f0:a9:15:d9:64:75:a4:47:04:e1:fa:8f:f8:54:99:30:f5: f3:33:29:7a:43:96:4f:3d:5a:ff:ea:4a:27:f3:82:ef:15:16: 10:43:84:d8:b2:c6:60:85:59:42:db:8b:34:9d:ba:7c:14:c7: a5:bc:32:4a:b3:62:85:dc:d8:fe:92:40:28:f5:cb:b5:f9:50: f3:2b:fb:b1:e5:41:3b:16:37:8c:95:61:6e:41:56:69:12:e2: 9c:69:a8:f1:50:9e:82:24:65:21:59:ae:cc:dc:7d:93:0b:54: 2b:74:5c:a0:37:f3:87:f2:74:b1:b8:fd:fa:51:66:dc:62:a8: 9e:a0:a2:54:c3:cc:ac:f0:50:a3:15:73:44:a0:82:a3:aa:51: e3:93:fc:fd:ed:88:04:e3:0b:a6:24:0c:b3:b5:ab:04:2d:07: 1d:a3:ab:d6:c9:4a:de:95:45:c7:5b:6a:6d:a4:8e:f9:23:83: a1:e9:49:e4:11:a1:75:e1:b6:e1:09:03:6a:50:93:96:ce:34: b7:d7:1d:c1:2e:71:2e:27:44:32:d7:cf:e0:92:6e:5b:62:d4: 3a:60:6d:0b:27:45:63:3e:99:32:ed:37:5e:4c:22:9b:28:52: b3:bf:47:8c:b1:71:77:6c:c2:36:e5:a4:0d:32:99:40:41:37: 5a:aa:05:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QkQ4RTExMC8GA1UEBRMoNTA2MTk0NzEwMEJDQjMzMjg5RTI2QTBCREZFQ0UyQzVG QjlFMDlEMjAeFw0yNTA4MjMwNzAzMDVaFw0yNTA4MzAwNzAzMDVaMBgxFjAUBgNV BAMTDTY4YTk2N2E5LTMyYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHGHxE0du8B3KcGHtYZ2/2uICJROtpK1La8XIj//h2TeR9BbdALbxuw0ung2jw ATl0GE5w+mqIYAx79iZitjGoaVWOXco3HYK1xHK/4O9QMCDEUfVcWg+p25PrtF+T EAny8y6W6lcxZ3D5uRPGvly4Gok7bYg5AbLdru1y50kZ3q19eeFE0h3FLj9+Hfv/ TzRbb/3xf3yVVBu6jAI355z3+/cSph8tBNQK+5NEtssxZt3awQQsTenujy/TuhRg OASEc+ftOhuRfBWfMXg+UQBXsJBcS4VSZbMTnzquBtsy1Nxqqv+zHyf94p8vb4sU xIH1VLVEr50TIpS0VXjOOdiDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZGocVWIP cZB5jcMZCWiG4iEu+KowHwYDVR0jBBgwFoAUUGGUcQC8szKJ4moL3+zixfueCdIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCRDhFLzNBRjU3RkRBQ0U4 ODExRUY4N0MwNzExN0M0RjlBRTAyL1VHR1VjUUM4c3pLSjRtb0wzLXppeGZ1ZUNk SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUdHVWNRQzhzektKNG1vTDMteml4ZnVlQ2RJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC RDhFLzNBRjU3RkRBQ0U4ODExRUY4N0MwNzExN0M0RjlBRTAyL1VHR1VjUUM4c3pL SjRtb0wzLXppeGZ1ZUNkSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ/wqRXZZHWkRwTh+o/4VJkw9fMzKXpDlk89Wv/qSifzgu8VFhBDhNiy xmCFWULbizSdunwUx6W8MkqzYoXc2P6SQCj1y7X5UPMr+7HlQTsWN4yVYW5BVmkS 4pxpqPFQnoIkZSFZrszcfZMLVCt0XKA384fydLG4/fpRZtxiqJ6golTDzKzwUKMV c0SggqOqUeOT/P3tiATjC6YkDLO1qwQtBx2jq9bJSt6VRcdbam2kjvkjg6HpSeQR oXXhtuEJA2pQk5bONLfXHcEucS4nRDLXz+CSblti1DpgbQsnRWM+mTLtN15MIpso UrO/R4yxcXdswjblpA0ymUBBN1qqBXg= -----END CERTIFICATE-----Generated at Sat Aug 23 18:55:20 2025 by rpki-client