$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft File: UAxgp_acBL6E_PPGVyPAeXDloSg.mft (raw, json) Hash identifier: cvAKodniccJ6pu24BSgIzr/9j58Rq62Mq4EtyQYRf78= Subject key identifier: 17:89:C5:B3:AC:9B:F2:70:27:4A:59:4C:30:60:31:CA:A6:05:39:AE Authority key identifier: 50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 Certificate issuer: /CN=A91A7978/serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft Manifest number: 4C Signing time: Tue 01 Jul 2025 08:09:01 +0000 Manifest this update: Tue 01 Jul 2025 08:09:00 +0000 Manifest next update: Tue 08 Jul 2025 08:09:00 +0000 Files and hashes: 1: UAxgp_acBL6E_PPGVyPAeXDloSg.crl (hash: zccRkR7lD3WkuGXr8fwTPmtxmW2Bj0e7KNijWRkb2fg=) 2: 1EF560BEEA6911EF9AE7CD14C4F9AE02.roa (hash: lILeGFy8FkS3op8pqtEQAN5f/QrMhRlzhtxTRP45JV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7978, serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Validity Not Before: Jul 1 08:09:00 2025 GMT Not After : Jul 8 08:09:00 2025 GMT Subject: CN=6863979c-6bfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:91:05:6c:b6:71:4f:a6:6d:39:d0:86:3c:73: b7:72:2f:1f:8b:37:fe:6f:3a:5d:c4:e1:6a:73:31: f0:b1:6b:ea:db:73:6b:a8:64:4a:ce:a3:96:4a:00: 1d:ef:10:9b:40:58:56:36:b8:2b:8e:0d:80:88:e1: be:bf:fe:7f:6c:bb:e7:6b:12:fd:68:42:29:43:01: cb:e6:16:49:ef:a8:c4:93:5f:53:8b:26:de:6e:82: 9c:e8:ba:0e:a5:df:99:24:85:c3:81:3c:89:c6:1d: 1e:4c:cb:f8:9f:39:1c:35:df:1e:e6:4d:f5:d6:0c: 51:56:a5:a2:63:b8:18:4c:d7:65:29:a3:80:e7:34: 00:34:ba:d4:88:8f:ae:12:6e:93:fd:38:18:40:14: cc:e7:4f:42:e0:13:45:78:b3:fe:f8:8e:9b:52:73: b0:e3:5f:5d:21:6f:e1:ca:a8:cb:bc:6c:a9:3f:81: e1:66:fa:55:e7:fc:d9:4d:54:96:30:c0:df:f8:7f: ba:2e:10:4c:6b:22:ff:38:5b:80:b4:aa:32:c3:3c: fa:3f:e4:f6:9f:5e:88:0b:fc:56:48:97:91:64:d8: 4f:8f:82:05:89:a5:d9:fa:48:6b:84:8e:6a:90:e8: 2b:cc:7d:dd:fa:ba:c2:ce:de:83:bc:7a:d7:da:50: b4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:89:C5:B3:AC:9B:F2:70:27:4A:59:4C:30:60:31:CA:A6:05:39:AE X509v3 Authority Key Identifier: keyid:50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:20:68:4e:6d:06:79:6c:e5:d8:ac:99:fa:44:12:7c:9b:8b: 68:04:d1:6d:84:14:23:f8:14:ed:91:17:3a:c1:a1:4e:22:bf: 7d:6c:c0:a8:b3:e5:70:cb:36:06:72:89:7c:b8:05:19:99:cc: 1c:06:6f:ae:e0:b0:5b:13:e6:6e:ba:fa:cf:fb:38:f0:1b:46: 13:f7:36:64:46:6f:c4:1f:73:57:8b:dd:43:8f:a8:a3:2a:42: 03:36:ee:ee:23:03:78:55:b2:16:e0:65:cd:22:98:b1:67:92: b6:66:ff:a0:d0:ac:46:56:34:14:81:0d:5a:95:b5:e6:83:f0: c2:6a:91:8a:3e:56:88:e7:4c:cf:0d:89:09:40:66:18:cb:95: c5:bb:c3:d7:45:54:52:ad:50:7b:d8:ed:42:13:11:87:9b:cf: 09:c0:ce:19:83:c5:f6:c7:ac:4a:b5:aa:72:3d:58:b0:8f:45: f6:af:98:01:47:02:10:e6:b0:6c:63:76:15:86:a1:c0:2a:08: d4:7d:94:2c:46:79:8b:03:26:5d:e1:06:83:2d:40:cf:a0:55: 86:af:57:a4:b7:28:59:53:f4:90:0b:15:23:61:93:d9:4e:c5: f2:0e:3f:ce:07:52:60:25:0e:17:bc:70:ff:8b:61:a2:a0:f5: a4:78:ce:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB Nzk3ODExMC8GA1UEBRMoNTAwQzYwQTdGNjlDMDRCRTg0RkNGM0M2NTcyM0MwNzk3 MEU1QTEyODAeFw0yNTA3MDEwODA5MDBaFw0yNTA3MDgwODA5MDBaMBgxFjAUBgNV BAMTDTY4NjM5NzljLTZiZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzkQVstnFPpm050IY8c7dyLx+LN/5vOl3E4WpzMfCxa+rbc2uoZErOo5ZKAB3v EJtAWFY2uCuODYCI4b6//n9su+drEv1oQilDAcvmFknvqMSTX1OLJt5ugpzoug6l 35kkhcOBPInGHR5My/ifORw13x7mTfXWDFFWpaJjuBhM12Upo4DnNAA0utSIj64S bpP9OBhAFMznT0LgE0V4s/74jptSc7DjX10hb+HKqMu8bKk/geFm+lXn/NlNVJYw wN/4f7ouEExrIv84W4C0qjLDPPo/5PafXogL/FZIl5Fk2E+PggWJpdn6SGuEjmqQ 6CvMfd36usLO3oO8etfaULQ1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUF4nFs6yb 8nAnSllMMGAxyqYFOa4wHwYDVR0jBBgwFoAUUAxgp/acBL6E/PPGVyPAeXDloSgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3OTc4LzU2MkJEQjIyRUE2 ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2RV9QUEdWeVBBZVhEbG9T Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUF4Z3BfYWNCTDZFX1BQR1Z5UEFlWERsb1NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 OTc4LzU2MkJEQjIyRUE2ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2 RV9QUEdWeVBBZVhEbG9TZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABMgaE5tBnls5dismfpEEnybi2gE0W2EFCP4FO2RFzrBoU4iv31swKiz 5XDLNgZyiXy4BRmZzBwGb67gsFsT5m66+s/7OPAbRhP3NmRGb8Qfc1eL3UOPqKMq QgM27u4jA3hVshbgZc0imLFnkrZm/6DQrEZWNBSBDVqVteaD8MJqkYo+VojnTM8N iQlAZhjLlcW7w9dFVFKtUHvY7UITEYebzwnAzhmDxfbHrEq1qnI9WLCPRfavmAFH AhDmsGxjdhWGocAqCNR9lCxGeYsDJl3hBoMtQM+gVYavV6S3KFlT9JALFSNhk9lO xfIOP84HUmAlDhe8cP+LYaKg9aR4zt0= -----END CERTIFICATE-----Generated at Tue Jul 1 21:22:46 2025 by rpki-client