$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft File: UGGUcQC8szKJ4moL3-zixfueCdI.mft (raw, json) Hash identifier: f67VBk0wuNmmzkq2KIiiNZKMN4zuy7J8BhgLcl2msVc= Subject key identifier: AB:15:8D:86:4C:22:28:53:B2:BD:69:F6:9B:55:BD:18:D4:FC:B5:C3 Authority key identifier: 50:61:94:71:00:BC:B3:32:89:E2:6A:0B:DF:EC:E2:C5:FB:9E:09:D2 Certificate issuer: /CN=A912BD8E/serialNumber=5061947100BCB33289E26A0BDFECE2C5FB9E09D2 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft Manifest number: 5A Signing time: Thu 03 Jul 2025 07:22:07 +0000 Manifest this update: Thu 03 Jul 2025 07:22:07 +0000 Manifest next update: Thu 10 Jul 2025 07:22:07 +0000 Files and hashes: 1: UGGUcQC8szKJ4moL3-zixfueCdI.crl (hash: dbSlerpg+u5hdY5507663jJ8LbvnGoeuJ5uAIJaO2ho=) 2: 08C7D93ACE8911EFBEC5D618C4F9AE02.roa (hash: nvtKwWFEZOMd88gDjqvdFcOF+TJpXNSXEguvJEtlOSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.crl rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD8E, serialNumber=5061947100BCB33289E26A0BDFECE2C5FB9E09D2 Validity Not Before: Jul 3 07:22:07 2025 GMT Not After : Jul 10 07:22:07 2025 GMT Subject: CN=68662f9f-89a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:93:67:81:25:e6:e3:f6:c7:5e:32:56:d4:c3: b8:f3:c5:3d:c3:e1:ad:94:f0:bd:40:12:25:85:77: 81:bf:b4:e3:bf:1c:70:45:85:7e:a3:f6:17:68:ae: 6e:3e:15:b6:1c:98:ab:74:b9:2a:76:8c:c0:4c:c4: 2a:28:9c:d0:05:76:2c:13:3d:0a:38:61:48:4d:5a: 11:f4:65:47:39:d0:f3:b0:fe:f1:27:f9:ed:a6:e7: e8:7b:34:66:d8:3f:aa:76:4c:4b:6b:dd:f6:a4:a0: 64:2f:03:ef:76:71:00:c8:7e:ff:2f:8e:a1:04:0c: 9f:f2:54:73:c1:4f:e7:59:03:54:9d:7d:da:01:4d: e3:32:7b:f5:da:bd:cf:ab:15:c2:9a:43:10:85:d5: 11:92:1d:09:fb:82:f1:13:45:d3:98:20:47:80:eb: 4d:1f:13:fa:33:59:01:19:39:94:12:5d:95:54:9f: d8:88:48:90:3b:39:a0:50:2e:e1:af:99:a4:f2:bb: 38:c4:56:3e:7c:e4:1c:ac:3f:cc:78:63:89:40:9e: d1:61:f3:7e:cb:c1:3e:aa:27:a1:e6:d5:d1:7c:53: 37:23:d6:a7:b1:69:0d:ad:7a:3f:aa:b3:d1:65:fe: 0b:e4:0f:d4:8a:8b:ae:40:8d:a6:d7:00:69:37:32: c6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:15:8D:86:4C:22:28:53:B2:BD:69:F6:9B:55:BD:18:D4:FC:B5:C3 X509v3 Authority Key Identifier: keyid:50:61:94:71:00:BC:B3:32:89:E2:6A:0B:DF:EC:E2:C5:FB:9E:09:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:d7:6c:3c:2c:e9:55:56:5a:cf:f2:b0:59:85:68:c1:0f:c0: f6:d1:2c:1a:f8:6c:2e:f6:00:18:a3:02:d9:ec:87:8e:5f:99: d5:ff:ba:44:1e:98:55:8a:e5:ad:2f:bd:a4:23:52:f3:32:ec: ff:30:a1:61:82:e8:40:1c:8d:50:1e:25:f9:7b:df:5a:62:9d: 89:b2:d2:c5:7a:c4:ad:d5:2e:f6:7b:c0:f5:3f:7d:f8:95:48: 83:1c:9a:ac:b7:22:dd:8f:b2:43:57:8e:a6:de:de:84:a0:0a: 60:16:c7:df:d0:ba:57:86:51:41:3b:1a:af:73:22:eb:6b:e6: 17:74:ce:58:ac:52:9f:b7:3c:fc:c0:cc:e3:ec:9b:97:ca:98: 5c:a4:df:66:92:94:48:8f:ed:21:74:d7:05:15:15:03:60:57: 95:79:06:dd:33:bd:0c:14:61:05:ad:22:bc:71:b3:7d:b5:c2: 38:d6:17:27:74:c0:a3:8d:6d:b9:06:19:38:5f:38:54:67:88: 97:61:19:3f:7d:62:4b:a6:cc:0d:0d:e0:56:0f:09:26:4e:8a: 25:56:55:ad:11:6e:a3:5f:ce:ed:b0:d6:76:d5:d7:83:63:49: 7b:d1:86:68:3b:87:e9:f1:41:e1:0e:50:60:7c:b5:1d:8d:2d: 87:f9:20:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QkQ4RTExMC8GA1UEBRMoNTA2MTk0NzEwMEJDQjMzMjg5RTI2QTBCREZFQ0UyQzVG QjlFMDlEMjAeFw0yNTA3MDMwNzIyMDdaFw0yNTA3MTAwNzIyMDdaMBgxFjAUBgNV BAMTDTY4NjYyZjlmLTg5YTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYk2eBJebj9sdeMlbUw7jzxT3D4a2U8L1AEiWFd4G/tOO/HHBFhX6j9hdorm4+ FbYcmKt0uSp2jMBMxCoonNAFdiwTPQo4YUhNWhH0ZUc50POw/vEn+e2m5+h7NGbY P6p2TEtr3fakoGQvA+92cQDIfv8vjqEEDJ/yVHPBT+dZA1SdfdoBTeMye/Xavc+r FcKaQxCF1RGSHQn7gvETRdOYIEeA600fE/ozWQEZOZQSXZVUn9iISJA7OaBQLuGv maTyuzjEVj585BysP8x4Y4lAntFh837LwT6qJ6Hm1dF8Uzcj1qexaQ2tej+qs9Fl /gvkD9SKi65AjabXAGk3MsYlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqxWNhkwi KFOyvWn2m1W9GNT8tcMwHwYDVR0jBBgwFoAUUGGUcQC8szKJ4moL3+zixfueCdIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCRDhFLzNBRjU3RkRBQ0U4 ODExRUY4N0MwNzExN0M0RjlBRTAyL1VHR1VjUUM4c3pLSjRtb0wzLXppeGZ1ZUNk SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUdHVWNRQzhzektKNG1vTDMteml4ZnVlQ2RJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC RDhFLzNBRjU3RkRBQ0U4ODExRUY4N0MwNzExN0M0RjlBRTAyL1VHR1VjUUM4c3pL SjRtb0wzLXppeGZ1ZUNkSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHPXbDws6VVWWs/ysFmFaMEPwPbRLBr4bC72ABijAtnsh45fmdX/ukQe mFWK5a0vvaQjUvMy7P8woWGC6EAcjVAeJfl731pinYmy0sV6xK3VLvZ7wPU/ffiV SIMcmqy3It2PskNXjqbe3oSgCmAWx9/QuleGUUE7Gq9zIutr5hd0zlisUp+3PPzA zOPsm5fKmFyk32aSlEiP7SF01wUVFQNgV5V5Bt0zvQwUYQWtIrxxs321wjjWFyd0 wKONbbkGGThfOFRniJdhGT99YkumzA0N4FYPCSZOiiVWVa0RbqNfzu2w1nbV14Nj SXvRhmg7h+nxQeEOUGB8tR2NLYf5IHQ= -----END CERTIFICATE-----Generated at Thu Jul 3 23:06:11 2025 by rpki-client