$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: kxsad50drBBbf63nU5UEM2Nr26T4I3jkO6ItwWSPHXc= Subject key identifier: 13:2C:9F:E9:77:3D:98:22:97:9A:CC:7A:5B:1C:BF:7D:8C:7C:02:5C Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0C1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0C10 Signing time: Wed 02 Jul 2025 18:56:42 +0000 Manifest this update: Wed 02 Jul 2025 18:56:42 +0000 Manifest next update: Wed 09 Jul 2025 18:56:42 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: igHosbDkIJ0eBmwVeZYLSzbaEKDDN4SKlfoBwrUaa00=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: J+JzfdPnvnmB6Ay3Ml+qeWmcjb1XIfVxnUqGVNUN7Ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3102 (0xc1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Jul 2 18:56:42 2025 GMT Not After : Jul 9 18:56:42 2025 GMT Subject: CN=686580ea-aa0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:79:47:68:76:61:0d:e6:9c:75:0d:ff:93:6f: 48:cd:5c:1c:c1:6a:bf:07:b0:9c:ba:7b:58:02:2a: 9c:bd:21:71:ca:1e:cf:17:ed:13:52:2f:fe:14:7e: b0:36:7c:4a:58:43:1a:dc:8b:d0:87:48:f6:4c:75: 45:07:03:f9:9d:5d:ac:76:0f:35:36:de:67:76:b2: de:14:d4:24:0a:d6:d7:38:17:c9:39:85:67:ed:7f: 4f:e4:cd:e1:cd:b3:6c:a7:08:9c:1a:2a:ee:e1:77: 5f:dc:28:fc:a9:44:d6:e1:86:09:bf:c4:23:d0:07: 83:23:55:b9:7d:21:aa:36:84:fe:a8:19:33:52:89: c8:ef:48:93:b9:8c:64:44:2f:77:13:69:74:66:9a: ab:48:49:94:3e:c5:a8:40:db:37:39:12:13:7b:7c: 71:19:4c:c8:e9:81:42:79:fc:69:af:11:e9:4c:d6: 73:dc:81:2a:d7:44:33:51:57:b9:d2:6d:0c:95:95: 2e:6f:e3:08:75:72:7e:6e:c7:1a:90:bf:be:a7:d6: b4:80:23:e5:bb:9b:63:d9:03:a0:df:a4:bf:0c:69: 26:17:e0:4c:50:dc:2e:60:47:a9:70:15:72:f5:ed: 75:96:ce:63:ac:b4:f7:4d:2a:17:b2:eb:b8:6f:b6: ff:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2C:9F:E9:77:3D:98:22:97:9A:CC:7A:5B:1C:BF:7D:8C:7C:02:5C X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:5b:6e:09:c2:ad:58:c7:3b:8b:61:16:83:33:53:c0:3e:94: 57:2a:a5:68:7c:85:33:cb:38:9f:5c:7a:a9:3b:4b:a0:8a:61: 26:e2:03:3d:54:2c:11:8a:54:40:ac:de:0f:1a:24:e8:7d:fd: ef:47:ac:68:68:fd:f3:a9:ff:92:9f:f1:8e:03:9f:50:f1:45: bb:64:4e:77:79:d0:41:33:c7:a0:fc:94:12:ab:73:68:96:1f: a8:3e:00:69:c7:ec:e0:e7:1c:f2:3a:4d:6e:7c:95:aa:5b:c6: c4:4e:46:f9:34:1f:d8:91:94:70:bb:30:6a:09:df:44:25:e7: e5:a9:fc:06:61:ab:70:7e:00:7f:66:d5:f4:59:aa:5e:15:4c: 84:17:5f:15:cf:f2:3a:3c:26:3f:c5:83:79:b0:d4:89:ab:9b: a7:1f:d3:18:8a:87:31:a5:80:48:0c:1f:49:ec:5c:fb:43:13: 7e:0c:01:54:4c:74:15:69:de:66:a1:b0:d2:72:e7:1b:7f:73: 41:a0:35:62:76:d8:b4:e9:f9:b3:69:a1:85:98:5e:b6:84:ba: 35:fc:66:73:70:5e:b1:4a:8d:89:f7:61:38:07:18:9c:4c:b5: 06:b7:c1:67:a8:04:a5:06:d2:1c:0b:a4:33:1b:94:3b:e2:43: a4:18:31:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwNzAyMTg1NjQyWhcNMjUwNzA5MTg1NjQyWjAYMRYwFAYD VQQDEw02ODY1ODBlYS1hYTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3lHaHZhDeacdQ3/k29IzVwcwWq/B7CcuntYAiqcvSFxyh7PF+0TUi/+FH6w NnxKWEMa3IvQh0j2THVFBwP5nV2sdg81Nt5ndrLeFNQkCtbXOBfJOYVn7X9P5M3h zbNspwicGiru4Xdf3Cj8qUTW4YYJv8Qj0AeDI1W5fSGqNoT+qBkzUonI70iTuYxk RC93E2l0ZpqrSEmUPsWoQNs3ORITe3xxGUzI6YFCefxprxHpTNZz3IEq10QzUVe5 0m0MlZUub+MIdXJ+bscakL++p9a0gCPlu5tj2QOg36S/DGkmF+BMUNwuYEepcBVy 9e11ls5jrLT3TSoXsuu4b7b/AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMsn+l3 PZgil5rMelscv32MfAJcMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALW24Jwq1YxzuLYRaDM1PAPpRXKqVofIUzyzifXHqpO0ugimEm4gM9 VCwRilRArN4PGiToff3vR6xoaP3zqf+Sn/GOA59Q8UW7ZE53edBBM8eg/JQSq3No lh+oPgBpx+zg5xzyOk1ufJWqW8bETkb5NB/YkZRwuzBqCd9EJeflqfwGYatwfgB/ ZtX0WapeFUyEF18Vz/I6PCY/xYN5sNSJq5unH9MYiocxpYBIDB9J7Fz7QxN+DAFU THQVad5mobDScucbf3NBoDVidti06fmzaaGFmF62hLo1/GZzcF6xSo2J92E4Bxic TLUGt8FnqASlBtIcC6QzG5Q74kOkGDHy -----END CERTIFICATE-----Generated at Thu Jul 3 11:28:51 2025 by rpki-client