$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft File: uH-tZU7EIXxlANDwaxm-MZ09rfc.mft (raw, json) Hash identifier: j5XEPwPLXC7Fyk+OUkUIpScnE978hmZ1z9C6K9WJB7M= Subject key identifier: E8:BC:63:68:9D:54:81:9F:AC:58:95:EE:33:A2:AA:F1:33:E6:CD:CD Authority key identifier: B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 Certificate issuer: /CN=A9155725/serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft Manifest number: 36 Signing time: Thu 03 Jul 2025 07:52:20 +0000 Manifest this update: Thu 03 Jul 2025 07:52:20 +0000 Manifest next update: Thu 10 Jul 2025 07:52:20 +0000 Files and hashes: 1: uH-tZU7EIXxlANDwaxm-MZ09rfc.crl (hash: OMwGGgYiMynX4OntyxuzgJm85FzQB5NF+9WN+QzvXiI=) 2: 7621BEA0084611F08BEB2E2DC4F9AE02.roa (hash: aySEvRngppKs/Lyekhtc0uzM27zK/l0cRA6UmOeIzlU=) 3: 753F0588084611F08BEB2E2DC4F9AE02.roa (hash: v1ibDjxmzIv2LQG97YVedEX5wevRpNJDRuNHyDfGpBg=) 4: 75A4B2D4084611F08BEB2E2DC4F9AE02.roa (hash: JronbENc2C4chw8Lr5GoQXHOGuejfoIjiKRSNDdiR4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Validity Not Before: Jul 3 07:52:20 2025 GMT Not After : Jul 10 07:52:20 2025 GMT Subject: CN=686636b4-48d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e5:b5:8a:d2:bc:73:e3:2c:a6:93:dc:7e:57: a6:68:f9:15:66:0a:d9:fb:ac:2a:31:bc:24:13:c0: 28:92:a3:87:fb:ed:51:8f:b6:17:66:e4:e4:d1:8b: ef:0c:35:9e:74:d2:1b:3c:d9:0d:d6:55:42:a6:12: fc:b1:85:54:82:e3:9e:9c:0d:15:ce:5a:3e:f9:f1: f6:bb:6f:c3:b3:43:8a:34:b2:5f:8d:83:6f:91:b3: 4c:13:36:f9:30:b4:73:aa:46:b7:87:f7:96:a0:2c: 1d:f7:48:29:b5:40:9d:4e:28:b4:81:9f:00:b8:0a: 25:00:81:41:ae:87:10:b8:d4:c5:6c:46:c2:c4:69: 37:99:8d:f1:a7:d6:fe:57:33:16:7e:ad:19:4c:a4: 54:0a:94:87:a8:94:71:f7:d7:c5:44:66:07:6e:b9: 67:3a:5b:67:e9:19:2f:32:f0:14:e4:e3:6d:74:7f: 13:b8:44:da:39:7c:4f:7e:22:bb:cf:8a:25:3f:5e: d5:db:92:3e:0d:d5:fb:22:d3:9c:94:ca:6b:8f:19: 78:6b:58:eb:2a:ef:03:41:3e:bf:6f:7b:47:05:b5: 79:c5:cc:3d:18:5d:d9:5b:ce:dc:34:de:d0:4b:28: f3:48:2f:f6:39:19:43:bc:bb:01:3d:28:f5:13:5d: 98:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:BC:63:68:9D:54:81:9F:AC:58:95:EE:33:A2:AA:F1:33:E6:CD:CD X509v3 Authority Key Identifier: keyid:B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:c2:24:64:7b:d9:dc:3a:f9:b8:0e:f2:db:26:73:98:0f:c4: b6:4a:64:9b:4c:4a:47:1b:e1:54:c7:5f:8b:aa:ab:19:23:1c: bf:00:d0:e0:ed:57:3d:c3:ad:30:55:33:f6:25:33:9e:5a:c0: 8a:65:94:26:9b:02:d4:c8:cf:fc:d8:f6:7d:dd:e8:49:3a:a6: 17:5f:f6:58:55:77:94:77:ab:47:9c:a8:41:08:0a:f9:65:a2: 19:62:74:8f:fc:95:77:66:a2:bb:f7:b0:59:47:75:d6:4f:df: 47:5a:dc:32:80:a6:aa:af:ce:c6:3d:22:a2:1b:9d:33:59:9b: c2:01:9d:c4:e4:c7:c3:a7:d0:b2:65:28:51:b6:92:a3:0b:a9: c5:ee:15:4f:73:3d:be:61:60:c2:b6:ac:44:16:6e:c0:dc:d4: af:ac:c8:45:d7:66:82:b9:1a:fc:de:65:a7:64:3d:29:ad:9c: c1:b8:89:6d:6e:a8:9e:a4:8b:16:d9:37:e8:be:14:ee:a0:75: eb:bb:da:eb:23:ef:11:d6:43:b7:9b:75:c4:a7:6b:08:39:37: 04:18:d5:fd:00:f0:7f:55:ca:e1:f1:fa:8f:c6:e8:20:f0:19: 95:52:4c:27:8a:3e:f1:be:a4:a2:9f:6a:e4:5d:d7:c0:6a:01: 38:4e:eb:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoQjg3RkFENjU0RUM0MjE3QzY1MDBEMEYwNkIxOUJFMzE5 RDNEQURGNzAeFw0yNTA3MDMwNzUyMjBaFw0yNTA3MTAwNzUyMjBaMBgxFjAUBgNV BAMTDTY4NjYzNmI0LTQ4ZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG5bWK0rxz4yymk9x+V6Zo+RVmCtn7rCoxvCQTwCiSo4f77VGPthdm5OTRi+8M NZ500hs82Q3WVUKmEvyxhVSC456cDRXOWj758fa7b8OzQ4o0sl+Ng2+Rs0wTNvkw tHOqRreH95agLB33SCm1QJ1OKLSBnwC4CiUAgUGuhxC41MVsRsLEaTeZjfGn1v5X MxZ+rRlMpFQKlIeolHH318VEZgduuWc6W2fpGS8y8BTk4210fxO4RNo5fE9+IrvP iiU/XtXbkj4N1fsi05yUymuPGXhrWOsq7wNBPr9ve0cFtXnFzD0YXdlbztw03tBL KPNIL/Y5GUO8uwE9KPUTXZixAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6LxjaJ1U gZ+sWJXuM6Kq8TPmzc0wHwYDVR0jBBgwFoAUuH+tZU7EIXxlANDwaxm+MZ09rfcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzgwMUJDQUE2MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4bEFORHdheG0tTVowOXJm Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdUgtdFpVN0VJWHhsQU5Ed2F4bS1NWjA5cmZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzgwMUJDQUE2MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4 bEFORHdheG0tTVowOXJmYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAADCJGR72dw6+bgO8tsmc5gPxLZKZJtMSkcb4VTHX4uqqxkjHL8A0ODt Vz3DrTBVM/YlM55awIpllCabAtTIz/zY9n3d6Ek6phdf9lhVd5R3q0ecqEEICvll ohlidI/8lXdmorv3sFlHddZP30da3DKApqqvzsY9IqIbnTNZm8IBncTkx8On0LJl KFG2kqMLqcXuFU9zPb5hYMK2rEQWbsDc1K+syEXXZoK5GvzeZadkPSmtnMG4iW1u qJ6kixbZN+i+FO6gdeu72usj7xHWQ7ebdcSnawg5NwQY1f0A8H9VyuHx+o/G6CDw GZVSTCeKPvG+pKKfauRd18BqAThO6/M= -----END CERTIFICATE-----Generated at Fri Jul 4 00:07:34 2025 by rpki-client