$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft File: uYUInIuVHhACl2u9XU0d0kGB8Z8.mft (raw, json) Hash identifier: qdOp+/t4PpOmGgtjvgy1Oh1jFL2jk/v6QhGqOO48H8k= Subject key identifier: 24:0F:8E:73:41:3D:25:1B:69:0E:EE:C1:7D:72:61:62:2A:60:9C:5C Authority key identifier: B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F Certificate issuer: /CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Certificate serial: 05D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft Manifest number: 05D2 Signing time: Wed 02 Jul 2025 23:20:38 +0000 Manifest this update: Wed 02 Jul 2025 23:20:37 +0000 Manifest next update: Wed 09 Jul 2025 23:20:37 +0000 Files and hashes: 1: uYUInIuVHhACl2u9XU0d0kGB8Z8.crl (hash: WUS08enIcyiuAdqYxPEzWu/EUvVfiP58CYxFxMmG+h8=) 2: 432BBA90C1F611EBAD8D7477C4F9AE02.roa (hash: hkJ88WsZE+BHMinN6yfbuiaAGQUAch41Smzi5V2G9DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:20:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA3C, serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Validity Not Before: Jul 2 23:20:37 2025 GMT Not After : Jul 9 23:20:37 2025 GMT Subject: CN=6865bec6-31c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b5:3c:c8:d5:ee:27:2c:10:61:2f:24:7f:30: 8f:d1:40:59:2b:87:b3:b2:c0:c5:2d:eb:d7:54:6e: ef:bd:b0:b4:1c:e2:30:3b:b2:da:0c:fa:88:25:a1: 05:c0:6f:85:22:3a:65:99:ae:3d:0f:b7:ea:9d:87: a0:73:3c:97:22:0d:14:12:8c:72:c8:9b:54:43:c8: 93:bd:b3:16:19:36:d4:4e:ce:bd:53:e5:19:9a:81: c2:3d:73:0b:11:ba:e4:37:a7:0d:a0:87:65:9b:50: 23:a5:ff:d3:8b:26:e8:a7:fe:0a:b2:31:db:4b:cd: d2:4c:51:af:0b:e2:c0:cf:38:79:e0:36:51:a5:e8: da:a0:8b:a4:ac:d7:ab:0b:9b:4c:14:e7:3f:c2:7d: 4c:5c:ca:80:ba:9c:6a:34:66:b1:d0:5f:18:4f:d5: 8d:63:6c:df:e0:b7:e6:43:0b:fb:64:0b:ee:5d:ba: af:ba:41:9f:21:00:41:a7:a1:74:b5:52:e0:14:bd: 57:d5:69:15:40:e3:fe:31:71:05:bf:db:e6:da:ec: 89:b4:b8:71:b3:42:0e:8c:b3:72:d7:73:35:91:84: 70:b7:aa:97:bb:f2:4c:fd:62:f7:a8:27:04:ce:4e: 6d:0c:39:4e:e5:06:5f:cd:04:31:34:3a:9b:80:42: 35:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:0F:8E:73:41:3D:25:1B:69:0E:EE:C1:7D:72:61:62:2A:60:9C:5C X509v3 Authority Key Identifier: keyid:B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:0d:a9:e6:8c:ca:80:48:3e:ee:e6:a4:b4:18:1b:08:e0:4e: 89:10:35:bb:24:bc:ec:17:03:ae:74:da:20:7b:b1:40:55:01: e4:92:8b:c7:c0:0d:19:ea:8a:ac:d2:b5:d0:11:21:57:a5:8a: 5e:f1:0a:9f:32:26:53:df:f1:d7:e9:bf:9e:d9:22:70:9b:d9: c2:d3:4a:56:42:69:82:77:b0:71:a4:dd:77:92:f8:0e:4f:f9: 2b:ec:c5:90:47:2b:cf:77:2b:61:f4:50:4d:4a:eb:b3:2f:de: 87:a4:4d:8b:80:e9:db:d4:72:39:a4:f5:b1:21:2c:b1:44:28: c8:a5:29:b0:83:b0:65:60:f7:df:4a:61:f0:96:a8:71:de:29: cb:84:dd:99:9e:4b:ed:ef:63:7b:ac:73:80:54:4e:19:35:64: 06:54:4b:5d:93:17:59:c6:68:bf:b5:08:8e:45:f6:83:fa:18: 3b:e4:d8:a4:64:b0:cd:38:cf:15:ad:26:ae:cd:cf:1f:85:ac: 2a:84:14:e6:4a:cb:d3:e1:64:d1:07:93:32:29:5f:52:6e:af: b6:1e:8a:d5:57:53:8d:41:57:4e:01:03:e1:13:4d:25:a5:e7: 1d:05:04:8e:d5:ef:a9:97:31:c9:b6:f1:35:7f:0a:31:a2:b4: a1:74:0a:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBM0MxMTAvBgNVBAUTKEI5ODUwODlDOEI5NTFFMTAwMjk3NkJCRDVENEQxREQy NDE4MUYxOUYwHhcNMjUwNzAyMjMyMDM3WhcNMjUwNzA5MjMyMDM3WjAYMRYwFAYD VQQDEw02ODY1YmVjNi0zMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7U8yNXuJywQYS8kfzCP0UBZK4ezssDFLevXVG7vvbC0HOIwO7LaDPqIJaEF wG+FIjplma49D7fqnYegczyXIg0UEoxyyJtUQ8iTvbMWGTbUTs69U+UZmoHCPXML EbrkN6cNoIdlm1Ajpf/Tiybop/4KsjHbS83STFGvC+LAzzh54DZRpejaoIukrNer C5tMFOc/wn1MXMqAupxqNGax0F8YT9WNY2zf4LfmQwv7ZAvuXbqvukGfIQBBp6F0 tVLgFL1X1WkVQOP+MXEFv9vm2uyJtLhxs0IOjLNy13M1kYRwt6qXu/JM/WL3qCcE zk5tDDlO5QZfzQQxNDqbgEI1LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQPjnNB PSUbaQ7uwX1yYWIqYJxcMB8GA1UdIwQYMBaAFLmFCJyLlR4QApdrvV1NHdJBgfGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0EzQy9EODM2NDZGRUMx RjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1VkhoQUNsMnU5WFUwZDBrR0I4 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VZVUluSXVWSGhBQ2wydTlYVTBkMGtHQjhaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0EzQy9EODM2NDZGRUMxRjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1Vkho QUNsMnU5WFUwZDBrR0I4WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0DanmjMqASD7u5qS0GBsI4E6JEDW7JLzsFwOudNoge7FAVQHkkovH wA0Z6oqs0rXQESFXpYpe8QqfMiZT3/HX6b+e2SJwm9nC00pWQmmCd7BxpN13kvgO T/kr7MWQRyvPdyth9FBNSuuzL96HpE2LgOnb1HI5pPWxISyxRCjIpSmwg7BlYPff SmHwlqhx3inLhN2Znkvt72N7rHOAVE4ZNWQGVEtdkxdZxmi/tQiORfaD+hg75Nik ZLDNOM8VrSauzc8fhawqhBTmSsvT4WTRB5MyKV9Sbq+2HorVV1ONQVdOAQPhE00l pecdBQSO1e+plzHJtvE1fwoxorShdAq7 -----END CERTIFICATE-----Generated at Thu Jul 3 03:48:52 2025 by rpki-client