$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft File: UqHEINgnwWzqoEKD3Si2QKMVY00.mft (raw, json) Hash identifier: tjTSDULhrqhZYF9jJegOa8Woi5xUS6dkxez5flRYci8= Subject key identifier: 56:C2:9A:BD:7A:71:A1:AE:1F:11:E2:B3:17:0E:4F:AB:0F:7E:CA:A7 Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft Manifest number: 05 Signing time: Thu 03 Jul 2025 08:28:20 +0000 Manifest this update: Thu 03 Jul 2025 08:28:20 +0000 Manifest next update: Thu 10 Jul 2025 08:28:20 +0000 Files and hashes: 1: UqHEINgnwWzqoEKD3Si2QKMVY00.crl (hash: V3ZHkkoftVJlANRaD27fIBLXmt3lbhJ5EcxYJPXZa8M=) 2: 07026748564511F09ED8993AC4F9AE02.roa (hash: 6QcYqyX5KFb0vGx40KSlwE5riWI0V4vT0LCNn9S8ZHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Jul 3 08:28:20 2025 GMT Not After : Jul 10 08:28:20 2025 GMT Subject: CN=68663f24-ca63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d6:eb:b9:7d:a3:3e:bc:6d:a9:95:e7:f3:5e: 19:05:15:6e:6c:02:d3:d5:52:88:88:61:4c:fa:77: 5b:a5:98:e4:2c:d7:4e:3f:95:ec:cb:bf:ed:b7:75: ba:33:60:6b:70:00:0d:8a:ae:4d:88:f3:76:36:46: 99:55:9d:a7:35:1a:37:dd:b3:16:7c:ef:c5:42:a7: 32:41:8b:7b:5f:5f:6e:49:05:c7:5a:9d:6c:e9:0e: d7:46:7a:4c:b5:3f:e4:6e:b7:07:78:5c:bf:ad:20: fb:1b:59:0d:80:9f:88:13:9f:49:5c:be:f8:16:90: b8:a2:f9:49:b9:dd:ac:ab:d2:75:6f:fc:be:01:ee: a1:48:e3:69:e1:3d:e6:6b:90:fe:3d:c5:69:34:db: a5:3c:17:cb:cb:f1:3d:33:9c:c1:c0:a0:fa:19:ad: f7:9c:5b:39:8e:38:bd:09:4c:a2:e6:7e:66:77:0b: ca:50:7a:2e:00:b8:b6:da:4f:42:18:e8:b2:73:c7: e6:13:49:8b:0b:38:22:69:f1:1c:10:11:86:42:5c: 64:9e:dc:5d:c3:27:e2:93:9c:05:04:3e:19:15:f5: 99:d8:70:26:aa:5a:61:3d:78:f9:c0:e6:f1:11:3f: 45:50:99:d5:a5:fe:42:fd:97:ba:69:6e:f0:f5:3c: bc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C2:9A:BD:7A:71:A1:AE:1F:11:E2:B3:17:0E:4F:AB:0F:7E:CA:A7 X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:17:b8:44:1a:ee:86:c0:98:1b:fd:d9:51:bf:9c:90:a8:e8: aa:18:28:7a:23:b5:20:5c:aa:27:2f:cd:48:61:f4:5f:79:03: f8:73:2d:79:9c:8c:4d:94:ce:23:1e:aa:19:63:5e:43:bd:1f: 0c:8a:b3:94:e0:07:d2:07:63:d6:15:8d:af:30:6d:d0:0a:24: a3:4b:2f:2d:42:6b:b0:d7:42:d8:e1:26:a2:db:e2:04:20:ee: a6:33:eb:17:90:ff:e3:82:ae:8f:eb:c5:50:b6:3b:f5:b9:db: 22:e9:75:e9:21:61:dd:c7:33:dc:4d:99:6f:02:23:9c:d4:fb: b8:79:2d:a7:22:a3:7d:b7:d9:8a:c4:ae:c2:30:cd:59:18:95: ee:d4:8a:1b:21:b0:98:cd:d5:af:98:f7:f1:ca:09:0a:2f:f2: 3d:2b:f7:37:d1:ad:eb:93:b0:77:68:b1:c5:80:77:e5:78:f7: 3a:80:d9:1a:44:50:10:ec:1c:71:3e:5b:81:48:40:46:39:5b: c0:96:10:e2:62:fc:ef:07:1e:ef:6f:ac:54:f7:b9:df:b0:6b: 44:db:ed:99:9e:d5:ae:e9:25:4b:ea:88:d5:59:e1:d7:47:3a: f5:bc:28:55:94:e2:b0:28:a4:56:78:15:ff:22:09:5a:1a:e5: 49:d1:91:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTNGRTExMC8GA1UEBRMoNTJBMUM0MjBEODI3QzE2Q0VBQTA0MjgzREQyOEI2NDBB MzE1NjM0RDAeFw0yNTA3MDMwODI4MjBaFw0yNTA3MTAwODI4MjBaMBgxFjAUBgNV BAMTDTY4NjYzZjI0LWNhNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC71uu5faM+vG2plefzXhkFFW5sAtPVUoiIYUz6d1ulmOQs104/lezLv+23dboz YGtwAA2Krk2I83Y2RplVnac1GjfdsxZ878VCpzJBi3tfX25JBcdanWzpDtdGeky1 P+Rutwd4XL+tIPsbWQ2An4gTn0lcvvgWkLii+Um53ayr0nVv/L4B7qFI42nhPeZr kP49xWk026U8F8vL8T0znMHAoPoZrfecWzmOOL0JTKLmfmZ3C8pQei4AuLbaT0IY 6LJzx+YTSYsLOCJp8RwQEYZCXGSe3F3DJ+KTnAUEPhkV9ZnYcCaqWmE9ePnA5vER P0VQmdWl/kL9l7ppbvD1PLyvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVsKavXpx oa4fEeKzFw5Pqw9+yqcwHwYDVR0jBBgwFoAUUqHEINgnwWzqoEKD3Si2QKMVY00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxM0ZFLzhEOEUyMkMyNTY0 MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVXFIRUlOZ253V3pxb0VLRDNTaTJRS01WWTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx M0ZFLzhEOEUyMkMyNTY0MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6 cW9FS0QzU2kyUUtNVlkwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAoXuEQa7obAmBv92VG/nJCo6KoYKHojtSBcqicvzUhh9F95A/hzLXmc jE2UziMeqhljXkO9HwyKs5TgB9IHY9YVja8wbdAKJKNLLy1Ca7DXQtjhJqLb4gQg 7qYz6xeQ/+OCro/rxVC2O/W52yLpdekhYd3HM9xNmW8CI5zU+7h5Lacio3232YrE rsIwzVkYle7UihshsJjN1a+Y9/HKCQov8j0r9zfRreuTsHdoscWAd+V49zqA2RpE UBDsHHE+W4FIQEY5W8CWEOJi/O8HHu9vrFT3ud+wa0Tb7Zme1a7pJUvqiNVZ4ddH OvW8KFWU4rAopFZ4Ff8iCVoa5UnRkXU= -----END CERTIFICATE-----Generated at Fri Jul 4 03:54:49 2025 by rpki-client