$ rpki-client -vvf rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.mft File: uc1X4v9PWLuVmpVBoxz99ml2GLI.mft (raw, json) Hash identifier: ZRGia021JSeXZ6yj+8yvF13zXkR5g3Rw5rEBjGw3eNU= Subject key identifier: 89:04:D6:29:C4:50:2C:35:5A:CC:B6:CE:D5:61:F3:EF:63:2C:ED:C5 Authority key identifier: B9:CD:57:E2:FF:4F:58:BB:95:9A:95:41:A3:1C:FD:F6:69:76:18:B2 Certificate issuer: /CN=A918E023/serialNumber=B9CD57E2FF4F58BB959A9541A31CFDF6697618B2 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uc1X4v9PWLuVmpVBoxz99ml2GLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.mft Manifest number: 2D Signing time: Tue 01 Jul 2025 08:29:24 +0000 Manifest this update: Tue 01 Jul 2025 08:29:23 +0000 Manifest next update: Tue 08 Jul 2025 08:29:23 +0000 Files and hashes: 1: uc1X4v9PWLuVmpVBoxz99ml2GLI.crl (hash: 8Ot7X3JHeage7ui8BCqyHfioEFWj6u18O7tlQmXTNHk=) 2: C420B2B6111D11F0BE9ABA7AC4F9AE02.roa (hash: BmMWgtMQ3PCdQlZ5TlrzvWUUVUt35N0MZwh0nPjZPiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.crl rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uc1X4v9PWLuVmpVBoxz99ml2GLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E023, serialNumber=B9CD57E2FF4F58BB959A9541A31CFDF6697618B2 Validity Not Before: Jul 1 08:29:23 2025 GMT Not After : Jul 8 08:29:23 2025 GMT Subject: CN=68639c63-5282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:be:16:4a:4e:0b:d7:e0:f5:55:ce:cd:6f: 13:6c:cb:f4:49:df:47:52:42:41:4f:5d:b0:f4:68: d8:c9:c2:8e:77:c9:af:82:5e:1e:bc:e2:e6:40:08: 39:5a:0c:99:d3:fc:e4:41:0f:20:e3:fa:8e:0f:ee: 07:9e:ca:49:f6:f2:88:f2:df:94:1e:2d:e1:7e:2f: 66:fd:e4:e2:ad:57:86:a0:64:0c:1e:c9:3a:45:fb: d6:47:5c:b2:4e:45:a2:95:9b:7e:2f:93:be:31:b7: 2e:af:57:43:b2:d8:20:b6:3b:04:d5:39:3b:c1:aa: d2:97:45:54:80:bc:a7:85:14:be:dc:a3:a9:ac:5d: e2:b7:ac:b5:1a:4c:b2:49:b9:a2:cd:77:e3:c5:3a: bf:e0:fa:f0:da:7b:2b:bf:fe:08:f2:f5:b5:06:36: bc:65:db:f8:0a:4e:a6:d5:97:80:79:01:f7:ff:e2: 4e:1b:05:2c:58:62:04:96:3a:27:75:bc:bb:28:65: 19:3c:04:28:19:e4:5c:d6:60:14:76:c8:2b:99:a2: 07:1b:3c:77:22:92:a9:3a:90:53:af:e0:9b:a6:2f: 31:b2:71:5a:6a:c5:30:18:86:48:ae:af:7c:70:14: 2e:03:41:65:99:1f:6f:46:b0:2f:58:d8:52:fa:6f: 18:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:04:D6:29:C4:50:2C:35:5A:CC:B6:CE:D5:61:F3:EF:63:2C:ED:C5 X509v3 Authority Key Identifier: keyid:B9:CD:57:E2:FF:4F:58:BB:95:9A:95:41:A3:1C:FD:F6:69:76:18:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uc1X4v9PWLuVmpVBoxz99ml2GLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E023/A654FEF0111C11F0B15AF970C4F9AE02/uc1X4v9PWLuVmpVBoxz99ml2GLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:58:97:e5:9e:1d:02:8f:4c:49:b2:a8:ad:6b:bf:a6:cc:e9: dd:ac:4e:69:93:08:9c:c0:ab:95:16:55:f8:76:f2:d6:5a:59: 1d:c7:52:65:a7:be:8e:d2:47:38:69:5e:b0:da:1e:db:48:4b: 0f:bc:4a:71:36:8d:e9:04:b0:f8:88:36:6f:9e:8a:b8:61:96: 6b:7b:c1:e1:52:86:76:2a:7b:20:c5:8d:78:47:f7:4b:51:52: 13:30:12:2c:b2:a3:17:9e:1b:16:c3:4b:75:99:a8:af:0e:83: 77:a6:59:22:1c:ea:0f:86:c3:2f:8a:c4:03:71:ba:1f:49:7f: e5:13:4f:dc:b0:e8:8b:ed:55:f6:6b:c8:1e:c8:54:25:c7:94: 4c:c7:e7:e7:3b:50:1d:16:a2:8f:fc:5a:29:53:2c:72:f3:20: 05:27:d0:d0:1a:47:92:36:33:ec:11:e8:12:cb:ac:ff:6c:85: 4d:cd:82:34:cb:9e:7a:b9:f1:79:6f:4d:f0:1a:f7:db:80:eb: a9:30:46:3c:10:34:91:18:eb:35:b3:d2:a3:88:95:01:5a:19: 7d:fa:93:97:86:0b:9c:80:12:b7:6e:7d:ba:be:f8:f8:54:c4: 0a:d3:ca:8e:96:9d:ce:cc:7b:ad:71:1f:da:4b:49:84:53:70: 0c:8d:83:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTAyMzExMC8GA1UEBRMoQjlDRDU3RTJGRjRGNThCQjk1OUE5NTQxQTMxQ0ZERjY2 OTc2MThCMjAeFw0yNTA3MDEwODI5MjNaFw0yNTA3MDgwODI5MjNaMBgxFjAUBgNV BAMTDTY4NjM5YzYzLTUyODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAIL4WSk4L1+D1Vc7NbxNsy/RJ30dSQkFPXbD0aNjJwo53ya+CXh684uZACDla DJnT/ORBDyDj+o4P7geeykn28ojy35QeLeF+L2b95OKtV4agZAweyTpF+9ZHXLJO RaKVm34vk74xty6vV0Oy2CC2OwTVOTvBqtKXRVSAvKeFFL7co6msXeK3rLUaTLJJ uaLNd+PFOr/g+vDaeyu//gjy9bUGNrxl2/gKTqbVl4B5Aff/4k4bBSxYYgSWOid1 vLsoZRk8BCgZ5FzWYBR2yCuZogcbPHcikqk6kFOv4JumLzGycVpqxTAYhkiur3xw FC4DQWWZH29GsC9Y2FL6bxgLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiQTWKcRQ LDVazLbO1WHz72Ms7cUwHwYDVR0jBBgwFoAUuc1X4v9PWLuVmpVBoxz99ml2GLIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMDIzL0E2NTRGRUYwMTEx QzExRjBCMTVBRjk3MEM0RjlBRTAyL3VjMVg0djlQV0x1Vm1wVkJveHo5OW1sMkdM SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdWMxWDR2OVBXTHVWbXBWQm94ejk5bWwyR0xJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MDIzL0E2NTRGRUYwMTExQzExRjBCMTVBRjk3MEM0RjlBRTAyL3VjMVg0djlQV0x1 Vm1wVkJveHo5OW1sMkdMSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG9Yl+WeHQKPTEmyqK1rv6bM6d2sTmmTCJzAq5UWVfh28tZaWR3HUmWn vo7SRzhpXrDaHttISw+8SnE2jekEsPiINm+eirhhlmt7weFShnYqeyDFjXhH90tR UhMwEiyyoxeeGxbDS3WZqK8Og3emWSIc6g+Gwy+KxANxuh9Jf+UTT9yw6IvtVfZr yB7IVCXHlEzH5+c7UB0Woo/8WilTLHLzIAUn0NAaR5I2M+wR6BLLrP9shU3NgjTL nnq58XlvTfAa99uA66kwRjwQNJEY6zWz0qOIlQFaGX36k5eGC5yAErdufbq++PhU xArTyo6Wnc7Me61xH9pLSYRTcAyNg7s= -----END CERTIFICATE-----Generated at Thu Jul 3 04:28:59 2025 by rpki-client