$ rpki-client -vvf rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft File: uEHIC-gYxhquhBeUDKPmnMFB348.mft (raw, json) Hash identifier: Az4i2E79GpurnfDQYgLRXBDu0o/cKD6kAAPevC5FYoc= Subject key identifier: F8:5C:15:3C:58:BD:43:2D:08:A6:0B:28:10:95:AB:39:18:63:12:F5 Authority key identifier: B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F Certificate issuer: /CN=A91859A3/serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Certificate serial: 0FB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft Manifest number: 0FA7 Signing time: Fri 22 Aug 2025 17:38:32 +0000 Manifest this update: Fri 22 Aug 2025 17:38:32 +0000 Manifest next update: Fri 29 Aug 2025 17:38:32 +0000 Files and hashes: 1: uEHIC-gYxhquhBeUDKPmnMFB348.crl (hash: MW1o5v3r5iyBE/Tp1t8GYDMAoATzkRBc3rNdAcr8n/I=) 2: FB45F610638211E9A58B4C45C4F9AE02.roa (hash: IofhJ7EiHeyM1r1MV+JctpkNg1pbQMhCCkdpR4fk3JY=) 3: 65EADA381A8011ECAD1E4B30C4F9AE02.roa (hash: WDBmQN8GrovE0YfJl6NcfDbYlw4MdWA6w33AFuBSc4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4021 (0xfb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859A3, serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Validity Not Before: Aug 22 17:38:32 2025 GMT Not After : Aug 29 17:38:32 2025 GMT Subject: CN=68a8ab18-dd7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:90:cc:00:86:37:f9:6f:20:15:99:3e:09:cf: 1f:14:3e:25:b6:9f:b7:53:d2:f2:d8:cd:c3:8b:05: 1a:99:9a:58:c3:8a:5b:a0:5a:37:41:ca:62:9a:1d: 45:93:1b:25:32:eb:ae:bf:30:0a:15:18:0b:62:a1: 57:d1:ca:15:e9:5a:08:1a:27:2c:91:54:d2:c5:0a: ed:59:a1:2e:bf:5b:ed:4f:85:93:d0:e7:99:c6:76: eb:17:77:2e:be:0c:18:93:05:5f:60:17:0b:98:ff: 65:8b:f2:d3:ab:05:32:ac:57:9d:58:7b:2c:17:c4: 95:77:97:a5:cf:fb:91:32:5f:12:51:d7:e4:45:dc: 6c:c2:ea:8a:7f:10:f2:f5:3c:c6:3d:ff:87:44:8c: 52:34:36:37:9f:a5:1b:65:98:ba:f4:88:80:18:25: 25:65:b3:8a:ec:75:99:d6:67:95:15:84:e6:5b:a7: 11:d7:63:f7:77:9d:83:e3:f1:8c:1e:3a:8f:39:c2: e8:fa:7d:3d:88:50:89:e9:4b:93:e9:5c:6d:ad:5d: ac:47:6c:2a:89:2b:f3:76:cf:e3:6e:66:be:fc:9a: 7c:11:5e:97:72:b8:1c:c4:98:55:01:68:50:49:14: 51:b7:52:41:7e:eb:c0:f9:d1:ab:80:fe:26:ce:3f: ca:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:5C:15:3C:58:BD:43:2D:08:A6:0B:28:10:95:AB:39:18:63:12:F5 X509v3 Authority Key Identifier: keyid:B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:7a:66:64:f8:c8:b1:00:44:66:fc:62:f3:1e:ce:d4:32:21: 19:94:61:88:ed:67:86:b1:37:8e:91:f3:ab:13:c4:a7:53:35: 10:63:01:ac:01:6b:a7:35:6f:cd:ce:20:b5:3c:aa:d8:42:13: 80:98:47:a1:45:a9:09:f9:c6:67:9f:8d:c8:59:21:c4:73:09: 3c:3c:47:07:5e:6e:80:57:7a:44:22:6e:6a:a2:2c:4b:0f:38: 78:82:05:cb:9c:71:e3:0a:5f:e0:4d:5f:2e:b0:25:46:16:8b: f2:83:a8:ba:e9:f4:28:06:2f:89:2c:e3:66:07:ac:8d:d1:26: 25:44:66:df:da:e7:18:9e:83:1e:16:9e:f6:03:90:4b:76:0a: 08:38:c9:f0:e6:47:59:3b:e7:19:62:c3:ea:35:08:a7:d3:a2: a5:be:1c:1d:b2:aa:c6:7c:dd:c1:43:6c:95:ee:f3:47:e5:98: f8:b1:21:b8:90:ba:1a:6d:82:71:ab:dd:9f:31:a9:93:8b:cf: 50:02:5a:7b:3e:fe:c3:30:e1:9b:91:b1:f7:de:a3:1e:91:0e: 5e:7a:e8:3e:eb:ee:b1:6f:3c:56:df:4a:f0:43:ff:1f:8a:2b: 1f:76:49:e6:a0:6e:5f:60:8a:93:97:e1:73:ec:b3:3e:6a:8d: 2d:37:06:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QTMxMTAvBgNVBAUTKEI4NDFDODBCRTgxOEM2MUFBRTg0MTc5NDBDQTNFNjlD QzE0MURGOEYwHhcNMjUwODIyMTczODMyWhcNMjUwODI5MTczODMyWjAYMRYwFAYD VQQDEw02OGE4YWIxOC1kZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZDMAIY3+W8gFZk+Cc8fFD4ltp+3U9Ly2M3DiwUamZpYw4pboFo3Qcpimh1F kxslMuuuvzAKFRgLYqFX0coV6VoIGicskVTSxQrtWaEuv1vtT4WT0OeZxnbrF3cu vgwYkwVfYBcLmP9li/LTqwUyrFedWHssF8SVd5elz/uRMl8SUdfkRdxswuqKfxDy 9TzGPf+HRIxSNDY3n6UbZZi69IiAGCUlZbOK7HWZ1meVFYTmW6cR12P3d52D4/GM HjqPOcLo+n09iFCJ6UuT6VxtrV2sR2wqiSvzds/jbma+/Jp8EV6XcrgcxJhVAWhQ SRRRt1JBfuvA+dGrgP4mzj/KcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhcFTxY vUMtCKYLKBCVqzkYYxL1MB8GA1UdIwQYMBaAFLhByAvoGMYaroQXlAyj5pzBQd+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlBMy83NjQzNUZFRTYz ODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXhocXVoQmVVREtQbW5NRkIz NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VFSElDLWdZeGhxdWhCZVVES1Btbk1GQjM0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlBMy83NjQzNUZFRTYzODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXho cXVoQmVVREtQbW5NRkIzNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5emZk+MixAERm/GLzHs7UMiEZlGGI7WeGsTeOkfOrE8SnUzUQYwGs AWunNW/NziC1PKrYQhOAmEehRakJ+cZnn43IWSHEcwk8PEcHXm6AV3pEIm5qoixL Dzh4ggXLnHHjCl/gTV8usCVGFovyg6i66fQoBi+JLONmB6yN0SYlRGbf2ucYnoMe Fp72A5BLdgoIOMnw5kdZO+cZYsPqNQin06KlvhwdsqrGfN3BQ2yV7vNH5Zj4sSG4 kLoabYJxq92fMamTi89QAlp7Pv7DMOGbkbH33qMekQ5eeug+6+6xbzxW30rwQ/8f iisfdknmoG5fYIqTl+Fz7LM+ao0tNwbU -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:24 2025 by rpki-client