$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft File: UyhhbneUVH65zpK0qPBF5LLMwPw.mft (raw, json) Hash identifier: Hl+Qfnfm/Ss6pnUkanEGyE0b39ChD7E+pvgCliq/AIY= Subject key identifier: F9:E0:BF:65:56:AB:37:C3:B0:3C:9A:88:1F:4C:EA:4A:DF:0B:53:54 Authority key identifier: 53:28:61:6E:77:94:54:7E:B9:CE:92:B4:A8:F0:45:E4:B2:CC:C0:FC Certificate issuer: /CN=A91847A0/serialNumber=5328616E7794547EB9CE92B4A8F045E4B2CCC0FC Certificate serial: 1D20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft Manifest number: 1D14 Signing time: Wed 02 Jul 2025 16:16:48 +0000 Manifest this update: Wed 02 Jul 2025 16:16:48 +0000 Manifest next update: Wed 09 Jul 2025 16:16:48 +0000 Files and hashes: 1: UyhhbneUVH65zpK0qPBF5LLMwPw.crl (hash: lAAL+5eIJggy+aldXDkJMNRGAqq0Agx1jVIHPBetkGk=) 2: 82E0D450BC5011E6B01A8D4CC4F9AE02.roa (hash: 0pFtdAh/nKnP5eoxsGxODsFcMEqhXHUTJ4P3f5IMFhU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.crl rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7456 (0x1d20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A0, serialNumber=5328616E7794547EB9CE92B4A8F045E4B2CCC0FC Validity Not Before: Jul 2 16:16:48 2025 GMT Not After : Jul 9 16:16:48 2025 GMT Subject: CN=68655b70-5ae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:9c:1a:f4:36:85:e5:c1:66:28:88:e1:f6: 66:c8:70:e4:82:64:1c:7f:0d:33:72:8e:fe:9f:1d: 5c:b7:08:1d:a6:71:02:f8:41:8c:9b:3e:a7:3e:63: b2:26:0d:47:6e:63:1d:15:89:06:4f:d3:52:0f:5c: 53:65:60:fb:2c:4f:8a:99:d4:b1:04:3c:a4:60:01: 0f:57:12:4e:5e:ea:2c:d7:ce:f1:71:77:79:10:d8: 14:10:4b:32:d3:19:0f:c4:94:ba:bb:ab:13:0a:c3: 6e:29:f0:6c:f9:ce:ff:10:bd:0e:c3:2a:2c:ce:5e: f2:fe:fc:b5:a5:74:06:e3:94:1c:88:ce:20:72:75: df:ba:01:ad:f3:7b:83:6a:ef:87:64:90:08:b6:87: cd:ab:6f:c0:21:44:f4:10:98:26:af:dc:e4:f5:23: 3f:db:2d:23:63:a2:37:23:d5:bb:66:a2:79:88:85: 7b:64:10:49:80:3d:d5:d5:d4:30:39:ed:67:23:30: f5:49:ee:4e:c1:22:e3:1b:2b:fd:d1:3f:9a:94:cc: b8:09:47:75:39:7f:1a:32:65:5b:c9:3c:c2:57:c4: 8f:17:d4:af:84:5d:a6:14:dc:8d:43:58:20:b7:73: c1:92:9b:ac:50:64:6c:f2:b7:82:61:f1:db:b4:1e: b4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:E0:BF:65:56:AB:37:C3:B0:3C:9A:88:1F:4C:EA:4A:DF:0B:53:54 X509v3 Authority Key Identifier: keyid:53:28:61:6E:77:94:54:7E:B9:CE:92:B4:A8:F0:45:E4:B2:CC:C0:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:cd:b1:69:14:59:85:43:d5:40:91:c0:13:7e:a0:cc:db:19: b5:f5:69:56:01:13:c5:ef:72:c3:c0:3c:b7:a7:99:e3:f2:c8: 80:6a:a2:e0:a0:e9:79:b7:de:59:ae:b0:82:fa:66:c9:6b:e5: 1e:32:56:4e:0b:80:6a:50:c7:db:6c:0b:9f:21:de:18:8a:ec: 21:2a:d2:97:71:93:6d:aa:80:75:11:5a:03:f1:a0:c5:85:35: 71:fb:2b:f7:e1:af:6b:ba:3f:48:eb:3a:67:97:7f:cd:a0:48: 42:a2:e4:6e:14:40:02:02:23:5d:c5:36:5f:26:c0:d8:38:5f: b3:93:04:33:f8:1f:fb:23:ac:a5:44:15:d7:01:05:02:10:da: a1:fe:0e:61:43:a8:c2:85:06:7a:0a:78:52:81:01:bc:42:bd: 9c:ff:0b:77:fa:7a:97:97:78:1e:91:06:89:f0:d0:a5:61:56: 67:5d:c4:6e:9a:d9:64:f4:e8:88:45:f7:d2:5c:31:bb:d5:2c: ac:e7:26:08:5e:30:f4:64:2e:2c:3c:05:ec:fa:cc:33:8a:e1: d5:5f:8d:aa:40:82:90:4a:f2:6c:b1:1e:ff:ba:f1:0b:2a:63: 84:74:d4:0e:9f:06:0f:e7:c8:73:95:a0:3e:dc:18:b0:b0:a2: 58:60:c1:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTAxMTAvBgNVBAUTKDUzMjg2MTZFNzc5NDU0N0VCOUNFOTJCNEE4RjA0NUU0 QjJDQ0MwRkMwHhcNMjUwNzAyMTYxNjQ4WhcNMjUwNzA5MTYxNjQ4WjAYMRYwFAYD VQQDEw02ODY1NWI3MC01YWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgOcGvQ2heXBZiiI4fZmyHDkgmQcfw0zco7+nx1ctwgdpnEC+EGMmz6nPmOy Jg1HbmMdFYkGT9NSD1xTZWD7LE+KmdSxBDykYAEPVxJOXuos187xcXd5ENgUEEsy 0xkPxJS6u6sTCsNuKfBs+c7/EL0Owyoszl7y/vy1pXQG45QciM4gcnXfugGt83uD au+HZJAItofNq2/AIUT0EJgmr9zk9SM/2y0jY6I3I9W7ZqJ5iIV7ZBBJgD3V1dQw Oe1nIzD1Se5OwSLjGyv90T+alMy4CUd1OX8aMmVbyTzCV8SPF9SvhF2mFNyNQ1gg t3PBkpusUGRs8reCYfHbtB60UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPngv2VW qzfDsDyaiB9M6krfC1NUMB8GA1UdIwQYMBaAFFMoYW53lFR+uc6StKjwReSyzMD8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMC8wRTRBRDEyOEJD NEYxMUU2QkFGMUMyNEFDNEY5QUUwMi9VeWhoYm5lVVZINjV6cEswcVBCRjVMTE13 UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5aGhibmVVVkg2NXpwSzBxUEJGNUxMTXdQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMC8wRTRBRDEyOEJDNEYxMUU2QkFGMUMyNEFDNEY5QUUwMi9VeWhoYm5lVVZI NjV6cEswcVBCRjVMTE13UHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuzbFpFFmFQ9VAkcATfqDM2xm19WlWARPF73LDwDy3p5nj8siAaqLg oOl5t95ZrrCC+mbJa+UeMlZOC4BqUMfbbAufId4YiuwhKtKXcZNtqoB1EVoD8aDF hTVx+yv34a9ruj9I6zpnl3/NoEhCouRuFEACAiNdxTZfJsDYOF+zkwQz+B/7I6yl RBXXAQUCENqh/g5hQ6jChQZ6CnhSgQG8Qr2c/wt3+nqXl3gekQaJ8NClYVZnXcRu mtlk9OiIRffSXDG71Sys5yYIXjD0ZC4sPAXs+swziuHVX42qQIKQSvJssR7/uvEL KmOEdNQOnwYP58hzlaA+3BiwsKJYYMGu -----END CERTIFICATE-----Generated at Thu Jul 3 05:07:49 2025 by rpki-client