$ rpki-client -vvf rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft File: -uYgHGZjkjQL7hOO1BeZuobapog.mft (raw, json) Hash identifier: VAmjeoX+YjzqvW6JqhJLs2ScwusdCOJZCk5i8t0K0yM= Subject key identifier: 8D:CD:7D:42:21:4D:A6:3E:97:B5:0E:91:89:EA:0D:BB:56:FF:74:A5 Authority key identifier: FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 Certificate issuer: /CN=A9158840/serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Certificate serial: 0C4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft Manifest number: 0C3C Signing time: Wed 02 Jul 2025 18:49:29 +0000 Manifest this update: Wed 02 Jul 2025 18:49:28 +0000 Manifest next update: Wed 09 Jul 2025 18:49:28 +0000 Files and hashes: 1: -uYgHGZjkjQL7hOO1BeZuobapog.crl (hash: +69ZU/+tjxFvryg9DvtTJhFEVmFtF5fqdIfocCk7+9I=) 2: 513421B0E3AB11EF9C68465CC4F9AE02.roa (hash: /6OtFAV0fvfK8AYoQXUKAPYFcikHsFv3EvaxBMPOB2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3148 (0xc4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158840, serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Validity Not Before: Jul 2 18:49:28 2025 GMT Not After : Jul 9 18:49:28 2025 GMT Subject: CN=68657f39-718d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:81:0d:32:56:89:75:59:48:b2:15:31:2f:4d: 6e:6c:19:4c:00:5a:a5:f7:25:e6:c8:01:a5:30:47: b6:23:ba:3d:2e:e8:fd:5f:3d:a3:d4:0e:1b:7b:7d: f0:97:26:cc:ad:a9:4c:76:74:7a:a1:58:b4:ef:54: 34:79:b9:aa:d4:71:63:a2:7c:d3:b0:74:1b:54:1b: e9:64:85:df:cb:39:a3:bf:5a:c4:98:89:a8:fa:9d: 46:54:61:cc:70:06:1c:60:fc:f6:f7:1c:ac:c1:ea: 05:5a:e6:32:0c:d2:45:09:d8:5f:96:27:d0:f8:ef: 75:02:3f:05:5f:ac:dc:cc:1f:14:de:46:5c:c0:20: 57:7a:3b:7a:24:cd:99:d8:de:3f:95:c4:16:24:0e: 66:8a:d6:9b:94:9e:e5:22:35:d0:0e:d7:be:33:04: 59:3a:1d:fb:97:b8:b2:74:3e:0d:51:31:f7:37:6c: 18:ba:bd:b7:d3:47:ac:9c:c0:3d:44:4d:dc:af:a9: 5a:48:ab:3c:c6:3f:a0:bb:af:6f:59:c9:c2:48:77: 3b:c5:cf:5b:35:35:1b:6b:fa:ed:ad:41:f8:74:96: 54:8e:dc:be:79:34:71:ce:f1:94:b7:56:c4:2b:7c: 7b:c3:68:49:f5:df:65:59:50:c8:ca:1e:f9:ae:39: 36:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CD:7D:42:21:4D:A6:3E:97:B5:0E:91:89:EA:0D:BB:56:FF:74:A5 X509v3 Authority Key Identifier: keyid:FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:01:c8:2c:f0:41:09:96:d9:ae:15:27:3f:5d:8d:77:fe:d9: 2c:64:b2:c8:10:b5:27:16:b1:5e:8d:6d:14:d0:46:90:1e:0b: 3f:15:f1:1c:aa:fe:16:5a:a1:a4:c2:a1:c6:3a:a8:63:63:6b: 82:21:65:b1:4d:f8:9f:08:78:50:bd:ef:ba:48:67:01:87:37: 6d:80:57:97:ea:90:ea:ed:8e:2a:71:32:6d:fa:ef:4a:22:61: 5d:e5:31:3e:6f:6e:c7:ec:63:f9:8e:9b:3a:46:15:3e:7b:b2: 60:2e:e1:fd:d0:46:21:c1:b9:26:27:e3:d1:9e:70:c3:eb:d4: e8:ea:7b:50:ad:4f:d3:69:db:fa:5f:b7:c0:a6:8b:85:8c:ab: 4a:b2:9d:67:6f:bd:d7:30:a6:6c:dd:8e:2f:25:0c:9e:72:26: 51:bc:33:3a:19:a5:5e:75:c8:9a:4d:2d:f3:e5:ec:15:5d:ab: 84:56:2b:0e:f7:d8:19:83:6f:06:b1:d3:2d:47:b8:a3:86:5c: 3a:c0:a4:97:e3:70:5c:2d:91:a3:ff:2b:37:a2:a6:e3:7d:26: 8c:ac:51:74:2d:93:37:98:91:ff:b5:12:47:c1:a2:d2:e7:24: 97:75:b6:ad:ae:cf:d8:57:02:e5:4c:dc:cf:89:78:f6:ab:24: 93:4a:1d:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NDAxMTAvBgNVBAUTKEZBRTYyMDFDNjY2MzkyMzQwQkVFMTM4RUQ0MTc5OUJB ODZEQUE2ODgwHhcNMjUwNzAyMTg0OTI4WhcNMjUwNzA5MTg0OTI4WjAYMRYwFAYD VQQDEw02ODY1N2YzOS03MThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoENMlaJdVlIshUxL01ubBlMAFql9yXmyAGlMEe2I7o9Luj9Xz2j1A4be33w lybMralMdnR6oVi071Q0ebmq1HFjonzTsHQbVBvpZIXfyzmjv1rEmImo+p1GVGHM cAYcYPz29xysweoFWuYyDNJFCdhflifQ+O91Aj8FX6zczB8U3kZcwCBXejt6JM2Z 2N4/lcQWJA5mitablJ7lIjXQDte+MwRZOh37l7iydD4NUTH3N2wYur2300esnMA9 RE3cr6laSKs8xj+gu69vWcnCSHc7xc9bNTUba/rtrUH4dJZUjty+eTRxzvGUt1bE K3x7w2hJ9d9lWVDIyh75rjk2ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3NfUIh TaY+l7UOkYnqDbtW/3SlMB8GA1UdIwQYMBaAFPrmIBxmY5I0C+4TjtQXmbqG2qaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg0MC82MTc3MzMyQTBC ODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtqUUw3aE9PMUJlWnVvYmFw b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy11WWdIR1pqa2pRTDdoT08xQmVadW9iYXBvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg0MC82MTc3MzMyQTBCODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtq UUw3aE9PMUJlWnVvYmFwb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtAcgs8EEJltmuFSc/XY13/tksZLLIELUnFrFejW0U0EaQHgs/FfEc qv4WWqGkwqHGOqhjY2uCIWWxTfifCHhQve+6SGcBhzdtgFeX6pDq7Y4qcTJt+u9K ImFd5TE+b27H7GP5jps6RhU+e7JgLuH90EYhwbkmJ+PRnnDD69To6ntQrU/Tadv6 X7fApouFjKtKsp1nb73XMKZs3Y4vJQyeciZRvDM6GaVedciaTS3z5ewVXauEVisO 99gZg28GsdMtR7ijhlw6wKSX43BcLZGj/ys3oqbjfSaMrFF0LZM3mJH/tRJHwaLS 5ySXdbatrs/YVwLlTNzPiXj2qySTSh0K -----END CERTIFICATE-----Generated at Thu Jul 3 09:27:09 2025 by rpki-client