$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft File: uHMcMIhjyygE4HbVjowHFZtOXxk.mft (raw, json) Hash identifier: X3rCitAFrdzlzGQlNsyC4wz4NQZKZRVqI2em31Zqz5E= Subject key identifier: 86:A2:B5:66:A8:93:4A:ED:DB:D1:68:47:97:66:73:42:08:EC:D6:21 Authority key identifier: B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 Certificate issuer: /CN=A9164663/serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Certificate serial: 0821 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft Manifest number: 1A4F Signing time: Fri 04 Jul 2025 17:24:25 +0000 Manifest this update: Fri 04 Jul 2025 17:24:24 +0000 Manifest next update: Fri 11 Jul 2025 17:24:24 +0000 Files and hashes: 1: uHMcMIhjyygE4HbVjowHFZtOXxk.crl (hash: nG3y17YzHw8b42Bvw6WSBBha40PdMPz80x6iLyiTbfw=) 2: 3D626CDC065111F0BFE43624C4F9AE02.roa (hash: PyysKZ+hZFXrRWA3LPUfHO46XtpZrkwg+n+8mnDBEZE=) 3: 7BB2BC009FFA11ECA13C2839C4F9AE02.roa (hash: K7jgwtFrPBKypxv1Ln8vBllbtClVCUlvOXHISxYGRB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2081 (0x821) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Validity Not Before: Jul 4 17:24:24 2025 GMT Not After : Jul 11 17:24:24 2025 GMT Subject: CN=68680e48-7866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:a4:cb:13:4f:c7:f7:b0:8d:8e:7d:52:21: 8a:c0:2d:fd:5a:29:e2:a6:e8:8b:cd:90:a1:2e:8c: 8f:e0:17:2a:76:e7:e1:bc:b9:6d:86:81:3f:cf:95: ba:63:0b:69:02:d1:e3:14:68:8b:ed:64:41:28:f2: c8:fd:39:7e:2c:e8:c8:b2:0c:62:75:77:47:b9:bb: e1:d3:f9:71:b7:2e:5c:36:ec:0b:a0:c5:da:59:16: 20:42:92:ac:e3:ed:5e:01:28:0d:80:20:d6:bc:06: a9:e9:5e:43:f1:4f:bd:21:f8:8d:49:a0:39:09:5a: ec:d7:63:72:b6:e1:79:d3:9e:dc:17:23:4a:ec:25: e1:29:17:ce:36:a2:62:75:87:de:2a:ff:fc:a2:2d: 63:6d:9d:1c:a3:f7:6e:e9:67:60:f0:75:b4:49:d9: b0:58:5c:bd:da:57:c2:5e:a7:a3:8f:56:09:01:20: 5b:a8:c1:e0:1f:01:12:a1:e1:98:71:1e:2e:ed:b0: 78:80:9a:9a:66:08:ce:14:b6:c9:cd:27:a8:9a:63: b1:d4:02:ea:25:63:68:a6:79:6f:ed:de:b6:37:1f: 54:3d:38:5c:6f:15:0c:07:5e:ee:ad:07:84:85:d4: 1c:05:9d:64:da:d3:fa:59:c0:ae:b2:a1:30:32:3b: de:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A2:B5:66:A8:93:4A:ED:DB:D1:68:47:97:66:73:42:08:EC:D6:21 X509v3 Authority Key Identifier: keyid:B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:8e:35:67:59:4d:9e:f5:8c:37:03:bc:d2:3f:71:19:59:ba: 25:4e:82:a4:64:4d:3c:90:35:3b:81:c6:61:59:f5:1b:cd:7d: b9:f0:12:f6:43:d0:43:f0:01:b6:73:00:8c:05:dc:0d:55:8c: 0a:0e:76:12:4e:ba:fe:37:4e:86:da:03:c0:47:a1:31:62:3a: b4:77:ed:a9:f9:f0:1e:51:f9:d0:8f:79:5f:1d:84:18:23:0a: fe:ac:32:6e:ab:20:16:8a:79:5c:53:08:91:cf:4d:2a:d2:f4: 6a:da:86:41:d1:51:e0:20:45:0d:c8:67:1a:a9:3f:f5:b3:32: 0b:79:d4:81:a9:3b:91:88:69:90:44:54:e4:41:1f:64:f7:fd: a6:c5:8e:de:ac:09:95:44:c9:af:e6:3f:7c:55:53:b4:d0:ea: cc:b0:ed:5a:c2:ec:cc:b7:33:6e:23:b8:f2:f7:e8:7f:79:10: 68:7e:04:ad:9c:82:2f:48:39:79:5b:84:ef:b1:72:5d:cc:0b: 80:7a:79:78:ec:8b:eb:55:0d:52:b9:9a:08:40:50:b6:d7:87: 6b:14:53:5f:d1:da:b4:a8:49:95:37:e4:21:95:7f:db:68:29: 13:84:63:0a:98:4b:c2:ca:ea:e6:c5:6c:39:f1:fb:5c:f1:8a: 54:23:7b:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKEI4NzMxQzMwODg2M0NCMjgwNEUwNzZENThFOEMwNzE1 OUI0RTVGMTkwHhcNMjUwNzA0MTcyNDI0WhcNMjUwNzExMTcyNDI0WjAYMRYwFAYD VQQDEw02ODY4MGU0OC03ODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmCkyxNPx/ewjY59UiGKwC39WinipuiLzZChLoyP4BcqdufhvLlthoE/z5W6 YwtpAtHjFGiL7WRBKPLI/Tl+LOjIsgxidXdHubvh0/lxty5cNuwLoMXaWRYgQpKs 4+1eASgNgCDWvAap6V5D8U+9IfiNSaA5CVrs12NytuF5057cFyNK7CXhKRfONqJi dYfeKv/8oi1jbZ0co/du6Wdg8HW0SdmwWFy92lfCXqejj1YJASBbqMHgHwESoeGY cR4u7bB4gJqaZgjOFLbJzSeommOx1ALqJWNopnlv7d62Nx9UPThcbxUMB17urQeE hdQcBZ1k2tP6WcCusqEwMjvelwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIaitWao k0rt29FoR5dmc0II7NYhMB8GA1UdIwQYMBaAFLhzHDCIY8soBOB21Y6MBxWbTl8Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5Z0U0SGJWam93SEZadE9Y eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITWNNSWhqeXlnRTRIYlZqb3dIRlp0T1h4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY2My8xNEVBQTlGQURBNzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5 Z0U0SGJWam93SEZadE9YeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRjjVnWU2e9Yw3A7zSP3EZWbolToKkZE08kDU7gcZhWfUbzX258BL2 Q9BD8AG2cwCMBdwNVYwKDnYSTrr+N06G2gPAR6ExYjq0d+2p+fAeUfnQj3lfHYQY Iwr+rDJuqyAWinlcUwiRz00q0vRq2oZB0VHgIEUNyGcaqT/1szILedSBqTuRiGmQ RFTkQR9k9/2mxY7erAmVRMmv5j98VVO00OrMsO1awuzMtzNuI7jy9+h/eRBofgSt nIIvSDl5W4TvsXJdzAuAenl47IvrVQ1SuZoIQFC214drFFNf0dq0qEmVN+QhlX/b aCkThGMKmEvCyurmxWw58ftc8YpUI3uQ -----END CERTIFICATE-----Generated at Fri Jul 4 19:09:24 2025 by rpki-client