$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: o4e/P2J9OlF5SWVNHXbf5A4u1Ny4qFAsHmCee2gg4bk= Subject key identifier: FC:D2:55:8D:E7:70:AF:01:85:AC:DF:94:30:52:7B:8C:2E:4C:AD:64 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0857 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 1FB3 Signing time: Wed 02 Jul 2025 16:42:26 +0000 Manifest this update: Wed 02 Jul 2025 16:42:25 +0000 Manifest next update: Wed 09 Jul 2025 16:42:25 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: IidxTcTM+UYWaUGK/DI6hwoaNVj+7dhg3gF627zb2Ss=) 2: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: N8Zu0vBF8OzMIkwjMW9PY96KN4BV5mgavDU65hU3CV4=) 3: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: JvODnYndpHnB3LhhdlMPKTuT3GGGiBYCEkjoP3vm/gw=) 4: 172C2B96197711F0A993397AC4F9AE02.roa (hash: RY1kZcOsaNMOE2ufRhLpAs1h8om1CC81p0l2LvKhO5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2135 (0x857) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Jul 2 16:42:25 2025 GMT Not After : Jul 9 16:42:25 2025 GMT Subject: CN=68656172-5131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9b:cb:2c:bc:47:5e:0a:2a:b5:59:0c:40:99: 4f:36:d9:f2:75:48:55:51:b5:7b:57:90:9b:c1:16: 2d:86:33:96:3c:bd:17:7e:bb:76:b2:28:f2:04:77: 44:32:57:04:23:fb:79:51:f0:32:9e:89:72:c3:a6: 9a:de:80:60:21:b2:d9:43:7b:85:15:23:71:ec:6d: f1:90:00:57:95:12:9d:f5:b0:8f:c3:de:fc:89:f1: 5b:73:c1:b9:45:2d:35:b4:7c:bd:75:62:bc:2f:02: 09:0c:94:e7:47:14:b7:16:a4:b3:7e:8d:1f:49:fd: 95:a5:ae:c5:48:37:98:8e:a2:99:1f:e3:25:bf:32: 45:06:f4:c4:8a:dc:c0:fc:af:a9:5c:fe:0d:b6:65: b7:1f:f3:bc:1e:34:0c:a7:70:3f:55:66:1f:24:54: 9d:9c:85:db:70:70:c4:71:8c:00:07:5d:35:07:3d: eb:7c:dc:36:99:09:f4:6b:9d:78:54:ef:13:8c:11: 35:5b:cd:df:f9:78:fc:e2:85:f6:d2:50:16:19:d6: 14:91:31:ea:3d:95:95:36:a0:96:00:17:3c:30:f2: 4f:b5:6f:12:5c:b6:8a:3f:73:73:c2:5e:f3:fe:f3: 41:28:d0:16:ea:d1:34:d8:16:82:b6:ce:bb:cc:ef: 68:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D2:55:8D:E7:70:AF:01:85:AC:DF:94:30:52:7B:8C:2E:4C:AD:64 X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:aa:81:36:c8:17:37:10:00:0a:2e:f5:5b:41:ed:21:49:f1: 76:a7:8b:ae:e1:02:8f:39:af:b2:fd:1c:cc:32:25:53:6d:ab: c4:bd:57:29:a0:20:19:a2:f9:6a:ec:87:30:e6:d9:8f:6c:25: 94:95:d0:c7:28:87:7d:d9:25:73:e8:49:af:83:b3:e7:5f:a8: 0b:52:59:a4:1d:2e:63:1b:6f:45:9f:ec:ce:bf:08:b1:a5:53: e6:9e:46:04:88:0d:d9:86:c5:ca:2d:e3:ca:ac:12:09:9a:9a: 19:dc:75:48:3e:20:2b:63:94:f4:5d:2e:73:32:ba:3e:01:b5: 45:23:50:40:c0:9d:71:b5:97:5e:65:b1:06:8f:48:67:17:8a: 6b:91:ee:51:18:26:cb:10:45:d2:58:6a:04:09:d6:23:f1:d6: 1d:6a:a8:6b:21:a0:25:df:7e:57:2f:fb:34:87:7f:60:94:57: 6d:0b:86:d1:63:f3:d3:8c:06:b1:e0:47:f9:38:0c:d8:37:3a: cd:c8:9a:13:b8:79:c3:8f:af:d9:c9:06:2c:04:27:36:d7:29: 78:13:62:18:64:42:ac:6c:34:8f:7b:77:16:38:49:51:16:10: 48:a6:da:98:a9:aa:41:51:ba:d6:5f:0f:d5:36:63:b2:b1:51: a7:a3:91:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjUwNzAyMTY0MjI1WhcNMjUwNzA5MTY0MjI1WjAYMRYwFAYD VQQDEw02ODY1NjE3Mi01MTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JvLLLxHXgoqtVkMQJlPNtnydUhVUbV7V5CbwRYthjOWPL0Xfrt2sijyBHdE MlcEI/t5UfAynolyw6aa3oBgIbLZQ3uFFSNx7G3xkABXlRKd9bCPw978ifFbc8G5 RS01tHy9dWK8LwIJDJTnRxS3FqSzfo0fSf2Vpa7FSDeYjqKZH+MlvzJFBvTEitzA /K+pXP4NtmW3H/O8HjQMp3A/VWYfJFSdnIXbcHDEcYwAB101Bz3rfNw2mQn0a514 VO8TjBE1W83f+Xj84oX20lAWGdYUkTHqPZWVNqCWABc8MPJPtW8SXLaKP3Nzwl7z /vNBKNAW6tE02BaCts67zO9oRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzSVY3n cK8BhazflDBSe4wuTK1kMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1qoE2yBc3EAAKLvVbQe0hSfF2p4uu4QKPOa+y/RzMMiVTbavEvVcp oCAZovlq7Icw5tmPbCWUldDHKId92SVz6Emvg7PnX6gLUlmkHS5jG29Fn+zOvwix pVPmnkYEiA3ZhsXKLePKrBIJmpoZ3HVIPiArY5T0XS5zMro+AbVFI1BAwJ1xtZde ZbEGj0hnF4prke5RGCbLEEXSWGoECdYj8dYdaqhrIaAl335XL/s0h39glFdtC4bR Y/PTjAax4Ef5OAzYNzrNyJoTuHnDj6/ZyQYsBCc21yl4E2IYZEKsbDSPe3cWOElR FhBIptqYqapBUbrWXw/VNmOysVGno5G5 -----END CERTIFICATE-----Generated at Fri Jul 4 17:46:35 2025 by rpki-client