$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft File: UzSpQuM2kLKBJhu645cTXb6kE5c.mft (raw, json) Hash identifier: jXmfWJVPxwrO69oetDzdQBYlt6rYyvLcaDUqjafsqco= Subject key identifier: 7A:66:AA:F7:E9:22:02:79:9E:20:FA:C2:7F:3A:94:9F:0E:1A:B9:3D Authority key identifier: 53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 Certificate issuer: /CN=A91DA022/serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft Manifest number: 0840 Signing time: Sat 28 Jun 2025 20:25:15 +0000 Manifest this update: Sat 28 Jun 2025 20:25:15 +0000 Manifest next update: Sat 05 Jul 2025 20:25:15 +0000 Files and hashes: 1: UzSpQuM2kLKBJhu645cTXb6kE5c.crl (hash: 8n7ipM/rfFqE3fFmt95eBE1SQ5gKwisGMluAuAEd3r0=) 2: DF3136A2CFF011EAB2F1D086C4F9AE02.roa (hash: P441cSLHyLoUjwh77ci4OGTBUeTeIRb4uG1co2Vb+f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA022, serialNumber=5334A942E33690B281261BBAE397135DBEA41397 Validity Not Before: Jun 28 20:25:15 2025 GMT Not After : Jul 5 20:25:15 2025 GMT Subject: CN=68604fab-ae53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:84:05:ea:97:e5:2f:b7:f0:c9:39:30:44:46: 00:d9:45:bf:5d:b4:31:86:a3:db:bb:44:23:14:ad: 47:a4:eb:49:51:1e:bb:81:75:99:0d:cb:73:ed:b0: 8d:5a:d5:fe:e5:ac:79:50:ab:11:d1:b9:3a:9b:0c: 17:69:f7:58:50:a8:0f:7c:f5:83:ed:0c:ce:48:53: 60:04:96:89:12:5d:c2:65:b3:f1:d8:85:d6:32:87: 59:08:e9:28:2e:ec:60:7f:f5:b0:8c:05:98:42:a2: b5:81:bd:d5:e2:d7:39:f5:34:76:54:11:bc:a8:9f: 2c:f3:d5:fe:27:ae:83:47:45:a2:ea:7e:3b:ce:1f: 96:95:a6:50:68:1c:01:d6:a6:10:d2:49:42:1b:ed: c7:55:8b:07:d6:54:b8:16:1b:2c:d4:40:ba:4d:56: bb:3a:00:85:d4:76:b2:f8:ce:26:1f:29:05:02:e6: 35:dc:e7:fd:7d:ec:34:b0:4e:d8:70:ea:73:b0:b4: 38:42:70:34:27:ac:66:90:bc:e0:52:98:a6:9b:d8: 1a:81:a0:9c:c0:23:1b:94:9d:9e:0f:93:99:75:b7: b4:ed:fd:43:b6:ce:f6:3e:61:eb:a0:07:44:b7:e7: 39:24:d6:46:74:19:64:63:99:f4:f0:0e:23:82:a9: 40:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:66:AA:F7:E9:22:02:79:9E:20:FA:C2:7F:3A:94:9F:0E:1A:B9:3D X509v3 Authority Key Identifier: keyid:53:34:A9:42:E3:36:90:B2:81:26:1B:BA:E3:97:13:5D:BE:A4:13:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzSpQuM2kLKBJhu645cTXb6kE5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA022/9D8D9458CFEF11EAB2CB8885C4F9AE02/UzSpQuM2kLKBJhu645cTXb6kE5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:20:39:e8:2d:16:dd:a9:88:f1:52:7e:0f:b2:01:09:e1:c8: 73:b9:14:52:d7:dd:a0:66:86:70:3d:23:d2:20:43:b7:02:91: ff:ea:da:03:12:6d:07:37:1e:66:a4:7b:b7:c1:71:0b:90:4d: b8:ef:e2:3c:c3:dc:71:fc:2a:4e:ac:dd:96:29:47:5f:84:5f: ea:ee:a3:43:00:4f:ad:07:ba:dd:29:91:82:fc:52:39:2e:c1: f6:13:a7:82:55:02:0c:07:64:59:6b:51:03:7e:cb:68:4b:55: 19:58:7b:c9:dd:1b:f6:c6:24:30:b9:c1:f8:ab:bc:7e:70:9e: 79:51:35:e2:65:a8:56:65:2f:0c:18:73:dc:20:62:02:58:79: 7a:f8:9e:3d:5f:05:49:88:6e:ac:0c:9e:4d:2a:29:c8:2f:e9: ca:55:72:13:21:eb:4b:c2:69:f6:b1:e8:47:55:c4:af:09:08: 4f:4f:c9:3d:b4:c0:b4:60:c0:9f:20:ad:c1:77:6f:58:73:4c: 16:35:8d:75:7c:66:bc:21:da:eb:8e:a8:94:3d:e8:53:2c:80: e2:41:7a:ee:4a:41:48:6a:01:2b:3c:ab:64:a5:a7:27:2b:97: 2e:71:6b:d7:a9:89:9c:89:00:e4:89:33:2f:5d:ba:b8:28:7b: a4:df:de:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjIxMTAvBgNVBAUTKDUzMzRBOTQyRTMzNjkwQjI4MTI2MUJCQUUzOTcxMzVE QkVBNDEzOTcwHhcNMjUwNjI4MjAyNTE1WhcNMjUwNzA1MjAyNTE1WjAYMRYwFAYD VQQDEw02ODYwNGZhYi1hZTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx4QF6pflL7fwyTkwREYA2UW/XbQxhqPbu0QjFK1HpOtJUR67gXWZDctz7bCN WtX+5ax5UKsR0bk6mwwXafdYUKgPfPWD7QzOSFNgBJaJEl3CZbPx2IXWModZCOko Luxgf/WwjAWYQqK1gb3V4tc59TR2VBG8qJ8s89X+J66DR0Wi6n47zh+WlaZQaBwB 1qYQ0klCG+3HVYsH1lS4Fhss1EC6TVa7OgCF1Hay+M4mHykFAuY13Of9few0sE7Y cOpzsLQ4QnA0J6xmkLzgUpimm9gagaCcwCMblJ2eD5OZdbe07f1Dts72PmHroAdE t+c5JNZGdBlkY5n08A4jgqlAvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHpmqvfp IgJ5niD6wn86lJ8OGrk9MB8GA1UdIwQYMBaAFFM0qULjNpCygSYbuuOXE12+pBOX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMi85RDhEOTQ1OENG RUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtMS0JKaHU2NDVjVFhiNmtF NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6U3BRdU0ya0xLQkpodTY0NWNUWGI2a0U1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMi85RDhEOTQ1OENGRUYxMUVBQjJDQjg4ODVDNEY5QUUwMi9VelNwUXVNMmtM S0JKaHU2NDVjVFhiNmtFNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOIDnoLRbdqYjxUn4PsgEJ4chzuRRS192gZoZwPSPSIEO3ApH/6toD Em0HNx5mpHu3wXELkE247+I8w9xx/CpOrN2WKUdfhF/q7qNDAE+tB7rdKZGC/FI5 LsH2E6eCVQIMB2RZa1EDfstoS1UZWHvJ3Rv2xiQwucH4q7x+cJ55UTXiZahWZS8M GHPcIGICWHl6+J49XwVJiG6sDJ5NKinIL+nKVXITIetLwmn2sehHVcSvCQhPT8k9 tMC0YMCfIK3Bd29Yc0wWNY11fGa8IdrrjqiUPehTLIDiQXruSkFIagErPKtkpacn K5cucWvXqYmciQDkiTMvXbq4KHuk395m -----END CERTIFICATE-----Generated at Sun Jun 29 22:08:48 2025 by rpki-client