$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft File: UAxgp_acBL6E_PPGVyPAeXDloSg.mft (raw, json) Hash identifier: ZZ0OjSQ282DlPfjCmPe7H/3YTJd2q+oeGqWvmAIhHgs= Subject key identifier: 75:E8:19:BB:ED:64:17:04:C4:C2:EB:22:AB:6B:0D:DC:D1:C1:CC:37 Authority key identifier: 50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 Certificate issuer: /CN=A91A7978/serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft Manifest number: 67 Signing time: Sat 23 Aug 2025 07:17:22 +0000 Manifest this update: Sat 23 Aug 2025 07:17:21 +0000 Manifest next update: Sat 30 Aug 2025 07:17:21 +0000 Files and hashes: 1: UAxgp_acBL6E_PPGVyPAeXDloSg.crl (hash: fyYGMnf8ebo8wtTzdSJItlBP5qoVzsokdeuQvT6QEgA=) 2: 1EF560BEEA6911EF9AE7CD14C4F9AE02.roa (hash: lILeGFy8FkS3op8pqtEQAN5f/QrMhRlzhtxTRP45JV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7978, serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Validity Not Before: Aug 23 07:17:21 2025 GMT Not After : Aug 30 07:17:21 2025 GMT Subject: CN=68a96b02-3f1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:68:4a:12:52:05:2f:12:84:b4:c9:cf:de: 7a:b5:1f:1d:be:45:3e:50:55:17:81:0a:c6:e5:ef: 54:d6:b5:55:df:e0:d4:03:17:cf:55:59:c9:05:be: 51:cf:e0:95:c9:55:0a:75:de:a1:d8:76:36:09:36: 50:a4:a9:d1:9f:5c:82:22:52:36:4e:67:40:52:4b: 25:c0:00:2f:9b:7d:d4:15:9b:25:8a:d6:29:26:7a: 65:26:1d:1b:ce:37:a0:50:62:f5:aa:b0:c9:30:90: af:8c:76:b0:6a:17:95:74:2a:89:9d:87:05:0c:cc: b9:96:a8:51:10:ce:61:c8:ca:6d:ef:eb:80:5e:2e: f5:82:b9:2e:e3:bb:b0:92:af:b7:13:cd:53:c1:fd: 3b:87:6c:08:86:c0:08:c5:fc:f3:2e:01:d9:3d:d4: a3:ad:be:78:80:06:28:88:83:08:21:c1:57:42:8a: ca:95:98:12:01:1d:b3:94:5e:ce:3e:cf:07:77:92: 9b:f2:14:30:a4:27:68:0e:77:6d:53:09:69:ab:3e: df:28:ec:bc:28:45:2e:4d:c3:64:aa:31:d0:26:b1: 52:81:e4:f6:c1:1e:e8:34:f7:18:3d:37:17:29:26: 7d:cd:f1:8f:07:64:3f:1d:15:fc:3a:df:91:d2:cb: c2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E8:19:BB:ED:64:17:04:C4:C2:EB:22:AB:6B:0D:DC:D1:C1:CC:37 X509v3 Authority Key Identifier: keyid:50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:4d:06:d9:40:e0:c9:10:78:d5:d3:c9:38:9f:14:7e:ce:a1: 27:a1:c0:9d:77:38:0c:7b:9f:22:8b:71:30:4f:f2:4d:34:e8: c2:7e:92:2c:21:05:6f:0a:76:eb:69:8e:0b:5d:78:24:d3:94: 96:ba:59:67:7f:0f:cb:06:fa:f4:17:33:02:10:1e:61:10:2f: 18:d0:0d:85:24:4b:97:45:58:6b:76:94:8d:55:12:36:12:f5: 77:4f:ed:8c:b9:eb:64:34:35:f0:68:ca:3c:22:b6:c1:2a:db: 54:cc:7a:c8:9a:6b:0e:2e:2a:9c:87:6e:87:f9:cf:fb:4d:6d: 63:b1:e8:76:86:7e:32:54:56:89:b8:8c:2c:30:1b:31:d6:02: ff:ea:89:ee:d7:b2:8e:a5:a7:cc:47:1a:62:f8:b3:48:35:ae: c8:10:a9:3a:2b:14:79:9a:65:38:98:55:22:e2:68:6f:62:9b: fc:f1:9c:10:ff:9e:c6:ca:a1:44:b2:7a:56:db:ba:67:36:ba: 80:3b:66:36:fb:37:ae:ee:77:6c:3f:77:07:05:8f:2d:dc:16: b4:c2:94:53:b2:46:c4:cd:39:5f:a8:06:81:3d:5c:dc:91:ad: 26:3b:e8:aa:8d:0a:b0:19:6b:75:54:3b:d2:77:2f:82:1c:7c: 76:d9:b5:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB Nzk3ODExMC8GA1UEBRMoNTAwQzYwQTdGNjlDMDRCRTg0RkNGM0M2NTcyM0MwNzk3 MEU1QTEyODAeFw0yNTA4MjMwNzE3MjFaFw0yNTA4MzAwNzE3MjFaMBgxFjAUBgNV BAMTDTY4YTk2YjAyLTNmMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3jmhKElIFLxKEtMnP3nq1Hx2+RT5QVReBCsbl71TWtVXf4NQDF89VWckFvlHP 4JXJVQp13qHYdjYJNlCkqdGfXIIiUjZOZ0BSSyXAAC+bfdQVmyWK1ikmemUmHRvO N6BQYvWqsMkwkK+MdrBqF5V0KomdhwUMzLmWqFEQzmHIym3v64BeLvWCuS7ju7CS r7cTzVPB/TuHbAiGwAjF/PMuAdk91KOtvniABiiIgwghwVdCisqVmBIBHbOUXs4+ zwd3kpvyFDCkJ2gOd21TCWmrPt8o7LwoRS5Nw2SqMdAmsVKB5PbBHug09xg9Nxcp Jn3N8Y8HZD8dFfw635HSy8IjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdegZu+1k FwTEwusiq2sN3NHBzDcwHwYDVR0jBBgwFoAUUAxgp/acBL6E/PPGVyPAeXDloSgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3OTc4LzU2MkJEQjIyRUE2 ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2RV9QUEdWeVBBZVhEbG9T Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUF4Z3BfYWNCTDZFX1BQR1Z5UEFlWERsb1NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 OTc4LzU2MkJEQjIyRUE2ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2 RV9QUEdWeVBBZVhEbG9TZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJBNBtlA4MkQeNXTyTifFH7OoSehwJ13OAx7nyKLcTBP8k006MJ+kiwh BW8KdutpjgtdeCTTlJa6WWd/D8sG+vQXMwIQHmEQLxjQDYUkS5dFWGt2lI1VEjYS 9XdP7Yy562Q0NfBoyjwitsEq21TMesiaaw4uKpyHbof5z/tNbWOx6HaGfjJUVom4 jCwwGzHWAv/qie7Xso6lp8xHGmL4s0g1rsgQqTorFHmaZTiYVSLiaG9im/zxnBD/ nsbKoUSyelbbumc2uoA7Zjb7N67ud2w/dwcFjy3cFrTClFOyRsTNOV+oBoE9XNyR rSY76KqNCrAZa3VUO9J3L4IcfHbZtZI= -----END CERTIFICATE-----Generated at Sat Aug 23 18:25:15 2025 by rpki-client