$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft File: UMP9EvajMVgZtSurzBmPsNv9QTo.mft (raw, json) Hash identifier: a9YhzoMVXuX853oU3C7WkOgxxr1nPYnNwUemBA+GWb8= Subject key identifier: 6A:E0:3C:1A:B8:72:5C:5B:AD:8D:26:50:04:25:35:1E:69:1A:11:9E Authority key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A Certificate issuer: /CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Certificate serial: 03EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft Manifest number: 03E6 Signing time: Tue 01 Jul 2025 01:07:34 +0000 Manifest this update: Tue 01 Jul 2025 01:07:33 +0000 Manifest next update: Tue 08 Jul 2025 01:07:33 +0000 Files and hashes: 1: UMP9EvajMVgZtSurzBmPsNv9QTo.crl (hash: oDmWaXAZPfrS+MMIJSYEjhuTLcJmtCVVMWarnw7NVMA=) 2: 296C190484AD11EC9C3F837CC4F9AE02.roa (hash: /RxOlV3ierU9U8XUpOrcDZ1BfZBiiZXrWx/RXW8pGyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:07:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1003 (0x3eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE616, serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Validity Not Before: Jul 1 01:07:33 2025 GMT Not After : Jul 8 01:07:33 2025 GMT Subject: CN=686334d5-cc97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e3:59:49:8f:01:c4:40:d8:dd:63:04:2c:e5: 7a:ef:08:a4:d9:c4:64:a2:0d:ed:a8:f0:d3:93:12: 70:5f:91:cc:de:34:15:7e:04:2f:53:06:9f:81:e3: a6:53:0a:a4:ea:b7:8b:8d:15:e6:5c:02:cd:fe:b7: 8c:2b:c5:1c:07:8f:1c:fc:c5:37:30:7f:78:dc:e6: 2e:8e:ea:1f:75:b8:8c:17:d3:23:fa:26:17:67:22: 74:33:db:1b:f4:5f:ba:04:7b:87:77:e6:2f:70:5f: 71:4c:2d:be:1e:3f:c0:7b:6a:2d:62:3d:2e:e2:94: ba:22:a2:cc:dc:3e:40:8e:e6:0d:df:94:04:7a:bc: 18:7a:30:e4:3e:a3:4d:a9:e0:5a:6c:e5:d1:0e:ad: cf:85:ad:c9:75:0e:b9:a3:6d:7b:b8:54:44:29:f9: 3c:6a:98:cd:46:03:60:8a:2e:49:34:c9:62:cf:3d: 86:10:a4:ae:10:3f:9f:5e:42:ae:91:67:cd:4e:4e: 05:c5:59:a2:f6:74:71:f2:5c:51:dd:54:1c:ae:e5: 37:9e:be:90:84:7b:14:47:e0:45:54:cf:f0:a1:b2: d2:34:d1:64:e6:e7:2f:47:d2:00:ed:0e:32:49:3c: ef:b9:49:7b:fd:5a:88:45:c3:1d:db:53:5c:cc:84: a6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:E0:3C:1A:B8:72:5C:5B:AD:8D:26:50:04:25:35:1E:69:1A:11:9E X509v3 Authority Key Identifier: keyid:50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a5:83:60:57:9d:85:3f:35:8c:c6:71:d2:61:d1:08:fd:c8: bc:41:03:ad:c2:32:02:88:5c:31:09:a8:33:59:f6:7f:87:ef: 09:b3:d2:ae:a1:a4:bb:4c:6a:93:30:04:9d:83:b3:a2:18:82: d6:32:8c:8b:9f:59:a7:e7:ef:71:46:7f:fb:20:8b:96:48:36: 18:4d:fe:fc:aa:ce:e4:7d:e1:b3:f7:66:c1:bb:96:29:c0:64: 34:be:d7:90:a2:c8:f1:a9:0f:5d:e0:80:da:62:75:5c:2c:f0: 5a:63:a0:78:7d:d2:92:13:7f:7d:da:21:44:60:10:73:55:1f: 03:03:20:1d:b5:26:7f:72:6b:de:92:32:f0:9d:f3:60:e8:8c: c2:ea:ac:47:d6:19:1e:72:f4:4c:68:1a:e5:3b:ac:ae:e1:24: fe:ce:6f:fa:17:19:e1:31:47:15:4e:18:31:b9:86:b5:9e:2e: 22:c1:e1:ff:fb:5f:7d:80:21:6e:a1:fa:38:a4:c9:77:6d:49: 35:2a:2a:5b:25:8d:02:26:4b:0c:3f:70:c2:92:08:d0:f9:40: 60:9e:e2:ca:27:5f:5f:10:68:84:ac:21:ab:e7:74:8f:cf:8c: 4c:ef:7d:d6:6c:0c:08:ef:12:0c:88:6d:99:31:4d:f0:e3:6d: c3:ff:ed:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJBQkNDMTk4RkIw REJGRDQxM0EwHhcNMjUwNzAxMDEwNzMzWhcNMjUwNzA4MDEwNzMzWjAYMRYwFAYD VQQDEw02ODYzMzRkNS1jYzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4uNZSY8BxEDY3WMELOV67wik2cRkog3tqPDTkxJwX5HM3jQVfgQvUwafgeOm Uwqk6reLjRXmXALN/reMK8UcB48c/MU3MH943OYujuofdbiMF9Mj+iYXZyJ0M9sb 9F+6BHuHd+YvcF9xTC2+Hj/Ae2otYj0u4pS6IqLM3D5AjuYN35QEerwYejDkPqNN qeBabOXRDq3Pha3JdQ65o217uFREKfk8apjNRgNgii5JNMlizz2GEKSuED+fXkKu kWfNTk4FxVmi9nRx8lxR3VQcruU3nr6QhHsUR+BFVM/wobLSNNFk5ucvR9IA7Q4y STzvuUl7/VqIRcMd21NczISmsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrgPBq4 clxbrY0mUAQlNR5pGhGeMB8GA1UdIwQYMBaAFFDD/RL2ozFYGbUrq8wZj7Db/UE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYxNi9BN0U0MjkxNjg0 QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1WZ1p0U3VyekJtUHNOdjlR VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNUDlFdmFqTVZnWnRTdXJ6Qm1Qc052OVFUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYxNi9BN0U0MjkxNjg0QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1W Z1p0U3VyekJtUHNOdjlRVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHpYNgV52FPzWMxnHSYdEI/ci8QQOtwjICiFwxCagzWfZ/h+8Js9Ku oaS7TGqTMASdg7OiGILWMoyLn1mn5+9xRn/7IIuWSDYYTf78qs7kfeGz92bBu5Yp wGQ0vteQosjxqQ9d4IDaYnVcLPBaY6B4fdKSE3992iFEYBBzVR8DAyAdtSZ/cmve kjLwnfNg6IzC6qxH1hkecvRMaBrlO6yu4ST+zm/6FxnhMUcVThgxuYa1ni4iweH/ +199gCFuofo4pMl3bUk1KipbJY0CJksMP3DCkgjQ+UBgnuLKJ19fEGiErCGr53SP z4xM733WbAwI7xIMiG2ZMU3w423D/+3k -----END CERTIFICATE-----Generated at Tue Jul 1 20:01:58 2025 by rpki-client