$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: QZScJR3WsoNUNuX/0LfIO41UyNRn7drR15Sd/7XBvo4= Subject key identifier: 8D:44:42:17:75:B3:4E:5B:98:BE:C7:ED:2F:08:21:DF:F4:36:46:50 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 016C Signing time: Thu 03 Jul 2025 03:56:28 +0000 Manifest this update: Thu 03 Jul 2025 03:56:27 +0000 Manifest next update: Thu 10 Jul 2025 03:56:27 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: bZedI3q0+Gk4F4qBFovVUrr+cgvdxmdByoPykDtlQK0=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: 2h3iteWHWvj7eGZvRPLFqMA2o9nj7836hPNLX4DVTdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Jul 3 03:56:27 2025 GMT Not After : Jul 10 03:56:27 2025 GMT Subject: CN=6865ff6b-aae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:10:70:7a:eb:9b:18:94:e3:21:cb:61:e8:8d: ca:0b:f1:1f:6a:da:e8:7d:6b:e5:5b:07:e0:14:90: 2c:fc:06:01:bf:0c:60:a6:c3:d6:4b:cb:af:ec:c3: c6:b9:40:c8:95:92:15:2b:01:fd:0c:9f:4e:07:0a: 32:a6:56:2a:df:78:6f:ed:b6:1a:2b:09:f9:70:74: fb:c7:9c:38:b2:bf:58:00:84:41:0d:9f:58:9f:74: bc:8e:2d:a7:05:ab:fa:7c:1a:29:4f:ee:97:86:68: 46:88:0f:28:68:f7:80:9e:f7:85:8f:91:0b:13:1a: 3e:19:94:8c:a8:7a:67:68:04:98:60:ac:9e:09:f4: 8f:85:a3:ea:5c:d6:d7:86:25:6c:32:10:fc:d4:59: 6e:56:e0:35:ce:da:ac:ba:74:72:02:6e:ae:6b:18: 53:7c:b6:72:9f:13:90:b7:61:5f:9c:0f:94:c8:57: 2b:31:58:c0:6a:05:19:58:74:4e:ad:fa:d5:f9:f1: b7:ea:e3:54:c8:3f:3b:20:6c:a1:25:78:cd:38:df: 44:0e:6a:78:3b:ce:1a:e3:bb:da:95:db:4d:00:8d: d6:12:22:09:b1:63:09:90:4c:03:c4:02:87:df:04: ce:dd:93:f7:2c:cb:ce:ec:7d:ba:2c:47:22:07:8a: 57:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:44:42:17:75:B3:4E:5B:98:BE:C7:ED:2F:08:21:DF:F4:36:46:50 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:3d:6f:c8:ab:a4:a3:88:01:96:12:34:ce:a2:db:56:5d:f4: 4f:95:e3:42:93:3b:b9:f7:ba:ad:0e:95:31:bc:80:cc:d9:53: 8d:d0:75:8d:ac:5a:a9:5d:1b:ef:ab:c5:0f:5a:9f:6f:b8:4c: 35:c1:0a:d5:bf:59:43:a5:98:9f:fa:ae:60:4a:f7:31:ec:eb: 8f:22:01:5c:97:0f:cd:08:46:c3:67:b3:67:d2:e1:65:7c:ca: 53:88:77:e9:e6:55:8c:07:8a:d8:d2:41:dd:aa:88:e4:73:78: 0a:01:49:e8:de:32:c8:61:0d:24:cd:68:2d:a0:1e:52:c3:4a: f3:47:7b:95:81:74:89:78:f2:3b:dc:fd:30:15:9b:71:d3:b2: bb:d8:ab:57:fb:91:de:19:0c:95:fa:79:c3:cc:42:38:b0:51: 9a:12:97:26:e2:36:43:c0:10:8f:1e:38:98:89:87:6e:4b:da: 4f:f2:1d:e7:7f:cc:b8:21:42:24:6a:78:73:97:6e:da:88:43: a0:da:7a:39:29:77:b5:0d:2d:93:7e:94:77:f1:d5:9e:a2:54: e7:d2:84:cf:78:85:02:fd:4b:3c:ec:91:f0:05:4e:64:11:e8: 39:d3:0a:b4:10:92:db:e9:a6:1f:ae:67:b1:9d:19:fe:a1:78: 37:c7:45:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUwNzAzMDM1NjI3WhcNMjUwNzEwMDM1NjI3WjAYMRYwFAYD VQQDEw02ODY1ZmY2Yi1hYWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRBweuubGJTjIcth6I3KC/EfatrofWvlWwfgFJAs/AYBvwxgpsPWS8uv7MPG uUDIlZIVKwH9DJ9OBwoyplYq33hv7bYaKwn5cHT7x5w4sr9YAIRBDZ9Yn3S8ji2n Bav6fBopT+6XhmhGiA8oaPeAnveFj5ELExo+GZSMqHpnaASYYKyeCfSPhaPqXNbX hiVsMhD81FluVuA1ztqsunRyAm6uaxhTfLZynxOQt2FfnA+UyFcrMVjAagUZWHRO rfrV+fG36uNUyD87IGyhJXjNON9EDmp4O84a47valdtNAI3WEiIJsWMJkEwDxAKH 3wTO3ZP3LMvO7H26LEciB4pX1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1EQhd1 s05bmL7H7S8IId/0NkZQMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTPW/Iq6SjiAGWEjTOottWXfRPleNCkzu597qtDpUxvIDM2VON0HWN rFqpXRvvq8UPWp9vuEw1wQrVv1lDpZif+q5gSvcx7OuPIgFclw/NCEbDZ7Nn0uFl fMpTiHfp5lWMB4rY0kHdqojkc3gKAUno3jLIYQ0kzWgtoB5Sw0rzR3uVgXSJePI7 3P0wFZtx07K72KtX+5HeGQyV+nnDzEI4sFGaEpcm4jZDwBCPHjiYiYduS9pP8h3n f8y4IUIkanhzl27aiEOg2no5KXe1DS2TfpR38dWeolTn0oTPeIUC/Us87JHwBU5k Eeg50wq0EJLb6aYfrmexnRn+oXg3x0WH -----END CERTIFICATE-----Generated at Thu Jul 3 06:50:46 2025 by rpki-client