$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft File: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json) Hash identifier: TbtgMkf7Sb+onMqkcjDGDC+RzFH5CnuVhFytRp2FQcQ= Subject key identifier: F5:CA:3D:E1:A5:5D:4A:F1:ED:56:C2:14:5D:70:A7:26:FE:F5:B9:82 Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft Manifest number: 024B Signing time: Tue 01 Jul 2025 02:32:50 +0000 Manifest this update: Tue 01 Jul 2025 02:32:50 +0000 Manifest next update: Tue 08 Jul 2025 02:32:50 +0000 Files and hashes: 1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: 8H0ukpAlS2rC/HOaRbszMGa+B9hS5ir1n4rfBG8ffso=) 2: A9E3A5041C3411EFBF05095BC4F9AE02.roa (hash: J01BFnUaU0xtnZuM7Va9qQmT/vUQNXlVHCchEwi5LNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:32:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: Jul 1 02:32:50 2025 GMT Not After : Jul 8 02:32:50 2025 GMT Subject: CN=686348d2-25f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3f:38:0a:f5:55:d6:4c:74:6f:85:8d:3c:09: 47:3f:a4:29:0b:7b:b9:81:45:61:86:a5:83:36:9e: 72:92:dd:02:3e:8e:c2:d9:78:8e:26:5a:17:03:92: af:f1:00:96:75:24:da:a3:e7:91:ad:26:43:b5:b7: 64:87:ce:7e:e5:a6:2e:78:98:8e:5a:b6:22:f1:41: 7e:c3:7b:0d:0b:f8:8e:3d:c1:eb:62:51:67:78:50: 6d:77:8a:a7:be:90:0a:42:66:29:2b:0f:99:4d:99: 5e:5d:02:ca:ac:7c:ac:77:f1:33:34:a9:b2:91:ff: 4e:74:ee:8d:e1:44:03:04:fe:5b:d7:a6:b9:e1:27: 98:42:d3:59:09:62:b6:9b:e1:4f:eb:43:b0:25:0e: d2:60:3b:08:db:0b:fd:a3:08:ee:1c:b6:83:3e:f0: 57:b7:ea:ad:ef:39:0d:a8:f7:7b:bf:c8:d2:bc:dc: 3c:ad:b9:8e:14:df:e3:d5:27:e9:35:47:cf:c4:e1: c6:f6:04:2d:88:01:bb:7f:1f:36:66:a6:5f:9c:45: 09:c0:75:d1:eb:91:82:33:28:22:19:56:0e:88:31: cb:9a:98:c7:ac:e7:6c:3e:fc:f0:ac:8f:07:a4:c7: 2c:40:8e:15:eb:ca:08:61:a7:e7:42:e7:9f:52:6c: fe:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:CA:3D:E1:A5:5D:4A:F1:ED:56:C2:14:5D:70:A7:26:FE:F5:B9:82 X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:cc:be:a2:6b:6c:7f:a8:4c:d0:85:4b:60:e1:ce:a8:5b:50: 1d:66:2c:12:98:7d:1c:75:0a:ac:11:0b:d0:cd:7c:30:2d:ad: 7b:3f:16:7f:3b:2a:60:3e:c7:40:7a:df:fa:84:0b:a9:38:ba: 7b:ad:c0:b5:64:b0:f0:a1:d9:0f:29:3e:65:20:2e:f2:53:d2: a5:8e:0d:f7:c7:76:e4:f2:b9:8d:e6:ed:bd:e4:9c:7b:f6:d4: b9:4a:80:c0:81:1e:2e:14:9d:86:08:33:fb:7c:43:fb:67:ff: 3f:4e:05:18:04:6d:ba:17:1d:12:1e:0e:b3:30:6d:f1:a2:0d: 53:e4:86:25:dd:a3:7a:67:de:8a:1f:c4:1f:6c:d9:ce:17:bb: 30:8a:93:8a:95:61:e3:1f:5f:72:b0:71:de:fb:e8:d7:95:80: 3a:8b:e6:5e:db:fb:b5:a0:a9:f4:af:22:a9:71:92:8f:d0:10: 53:1b:40:0a:2d:6b:75:a8:d3:53:34:f7:05:e0:35:13:7b:eb: 9a:95:3d:ce:8e:51:60:a2:f0:25:74:ef:81:5d:01:1c:11:d6: dd:2b:5c:a2:de:c8:7f:de:38:30:8c:72:da:8d:8e:b6:81:07: 09:61:b2:d1:03:34:d4:3d:47:33:0a:1c:1f:db:0a:ad:fd:42: e6:06:7c:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjUwNzAxMDIzMjUwWhcNMjUwNzA4MDIzMjUwWjAYMRYwFAYD VQQDEw02ODYzNDhkMi0yNWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwj84CvVV1kx0b4WNPAlHP6QpC3u5gUVhhqWDNp5ykt0CPo7C2XiOJloXA5Kv 8QCWdSTao+eRrSZDtbdkh85+5aYueJiOWrYi8UF+w3sNC/iOPcHrYlFneFBtd4qn vpAKQmYpKw+ZTZleXQLKrHysd/EzNKmykf9OdO6N4UQDBP5b16a54SeYQtNZCWK2 m+FP60OwJQ7SYDsI2wv9owjuHLaDPvBXt+qt7zkNqPd7v8jSvNw8rbmOFN/j1Sfp NUfPxOHG9gQtiAG7fx82ZqZfnEUJwHXR65GCMygiGVYOiDHLmpjHrOdsPvzwrI8H pMcsQI4V68oIYafnQuefUmz+7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXKPeGl XUrx7VbCFF1wpyb+9bmCMB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ3RC9BMzM5NjMwRTI3NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhF eXdsN3RSYWdkTXpSMnZfSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQzL6ia2x/qEzQhUtg4c6oW1AdZiwSmH0cdQqsEQvQzXwwLa17PxZ/ OypgPsdAet/6hAupOLp7rcC1ZLDwodkPKT5lIC7yU9Kljg33x3bk8rmN5u295Jx7 9tS5SoDAgR4uFJ2GCDP7fEP7Z/8/TgUYBG26Fx0SHg6zMG3xog1T5IYl3aN6Z96K H8QfbNnOF7swipOKlWHjH19ysHHe++jXlYA6i+Ze2/u1oKn0ryKpcZKP0BBTG0AK LWt1qNNTNPcF4DUTe+ualT3OjlFgovAldO+BXQEcEdbdK1yi3sh/3jgwjHLajY62 gQcJYbLRAzTUPUczChwf2wqt/ULmBnxZ -----END CERTIFICATE-----Generated at Wed Jul 2 22:37:02 2025 by rpki-client