$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft File: UEMacUvIutzoUZ5LmRR-FR7fd5c.mft (raw, json) Hash identifier: 18W1HEiQaGx1cR67GWYbzIwAntiQB08okJOqEreDXnI= Subject key identifier: 16:8C:BB:23:4A:48:AD:A5:35:6B:42:88:DB:4E:64:35:A0:97:CC:6E Authority key identifier: 50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 Certificate issuer: /CN=A91DA289/serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Certificate serial: 0653 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft Manifest number: 064D Signing time: Fri 22 Aug 2025 22:49:03 +0000 Manifest this update: Fri 22 Aug 2025 22:49:02 +0000 Manifest next update: Fri 29 Aug 2025 22:49:02 +0000 Files and hashes: 1: UEMacUvIutzoUZ5LmRR-FR7fd5c.crl (hash: Z3T7ImS3jdP7FKRIwmblFLAs43PrHiiEVWkZTZPhzP0=) 2: 0BE0F63C9CBB11EBA4731E19C4F9AE02.roa (hash: ln0lvafoMsf2mDlhqtsb54uvMwde1qgk9VtDAAnL3YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1619 (0x653) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA289, serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Validity Not Before: Aug 22 22:49:02 2025 GMT Not After : Aug 29 22:49:02 2025 GMT Subject: CN=68a8f3df-34b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:21:74:48:d4:b3:3c:6c:42:09:6d:11:37:0b: 04:39:e5:3a:64:86:76:a3:09:41:c7:4b:0c:cb:32: a4:83:85:85:2d:a2:f9:0f:2b:a9:5f:20:22:97:81: a1:72:15:2a:46:f9:8e:a6:81:95:33:62:80:bf:44: 80:58:fb:36:c7:be:cb:f7:a0:8d:80:8e:e1:bb:fa: e4:a5:aa:12:33:1c:3b:3a:47:3c:b1:89:d5:a5:4a: dc:2d:09:cd:97:62:c5:e4:8a:55:69:35:35:26:28: 75:35:ba:7d:41:be:c0:a0:d3:c9:4d:58:68:a2:1f: e5:e1:bb:31:07:63:20:35:da:96:08:4e:b3:9a:5f: 15:b1:21:92:9c:6a:c2:70:14:20:4f:92:02:08:fa: 5c:b2:57:1e:7b:98:a2:db:48:e4:05:66:c5:24:ee: 24:36:34:04:8b:57:07:27:1b:bc:3b:9c:5d:93:e1: 52:ef:36:fd:eb:1c:e1:43:77:47:91:36:61:f2:06: 93:ac:93:bf:82:50:1d:10:1d:99:89:45:17:bb:12: 5a:67:e9:07:60:79:77:9d:34:35:89:26:bd:78:5b: ae:3c:4c:a4:e8:bf:07:f1:ef:c1:03:3e:07:40:30: 59:bc:ee:a2:3c:ce:a2:23:e0:3c:22:17:e8:a6:65: c9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8C:BB:23:4A:48:AD:A5:35:6B:42:88:DB:4E:64:35:A0:97:CC:6E X509v3 Authority Key Identifier: keyid:50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:34:21:e7:79:de:cb:15:71:fa:1c:d3:54:70:c5:d4:d4:24: d3:6e:e9:d2:fb:2b:dd:2d:65:b3:bb:7f:76:2e:25:98:56:a9: 4e:bb:49:6b:fb:d4:71:b8:9f:c2:45:1c:c7:9d:e9:cb:0a:0b: 63:0f:36:f2:3b:90:5e:df:7d:67:18:e9:b2:31:cc:5d:e2:40: 6f:8e:e2:a6:04:f9:b7:8b:ef:56:e6:63:29:37:8a:18:29:aa: 38:b7:1f:8e:8c:28:e7:b6:a9:99:0e:61:78:41:c4:97:f3:6b: 91:82:a5:91:6a:70:7a:3e:fb:44:55:bb:37:5d:a2:4b:24:f2: 8c:69:99:4f:49:de:9a:cb:e2:81:f9:b2:88:33:f1:3e:e8:d9: 0f:72:28:81:8c:f9:18:83:7e:da:03:6a:30:c8:f0:ed:f6:15: ab:71:83:56:84:56:a0:67:41:e1:82:3c:dc:bb:da:d3:78:af: d5:bc:db:f6:bb:a3:62:57:1b:08:79:c6:58:78:49:1d:47:f2: 2d:9c:aa:9e:05:65:50:b6:d7:dc:10:ea:db:4c:35:80:02:f5: 28:49:fe:3f:d2:69:01:1a:91:65:e0:47:1e:c9:b9:59:ec:82: 3b:64:97:87:b5:92:28:1d:30:69:46:84:c9:3b:cc:85:70:27: 1b:dc:f9:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyODkxMTAvBgNVBAUTKDUwNDMxQTcxNEJDOEJBRENFODUxOUU0Qjk5MTQ3RTE1 MUVERjc3OTcwHhcNMjUwODIyMjI0OTAyWhcNMjUwODI5MjI0OTAyWjAYMRYwFAYD VQQDEw02OGE4ZjNkZi0zNGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8iF0SNSzPGxCCW0RNwsEOeU6ZIZ2owlBx0sMyzKkg4WFLaL5DyupXyAil4Gh chUqRvmOpoGVM2KAv0SAWPs2x77L96CNgI7hu/rkpaoSMxw7Okc8sYnVpUrcLQnN l2LF5IpVaTU1Jih1Nbp9Qb7AoNPJTVhooh/l4bsxB2MgNdqWCE6zml8VsSGSnGrC cBQgT5ICCPpcslcee5ii20jkBWbFJO4kNjQEi1cHJxu8O5xdk+FS7zb96xzhQ3dH kTZh8gaTrJO/glAdEB2ZiUUXuxJaZ+kHYHl3nTQ1iSa9eFuuPEyk6L8H8e/BAz4H QDBZvO6iPM6iI+A8IhfopmXJlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaMuyNK SK2lNWtCiNtOZDWgl8xuMB8GA1UdIwQYMBaAFFBDGnFLyLrc6FGeS5kUfhUe33eX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI4OS9FMDFCMDU0NDlD QjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0em9VWjVMbVJSLUZSN2Zk NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VFTWFjVXZJdXR6b1VaNUxtUlItRlI3ZmQ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI4OS9FMDFCMDU0NDlDQjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0 em9VWjVMbVJSLUZSN2ZkNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwNCHned7LFXH6HNNUcMXU1CTTbunS+yvdLWWzu392LiWYVqlOu0lr +9RxuJ/CRRzHnenLCgtjDzbyO5Be331nGOmyMcxd4kBvjuKmBPm3i+9W5mMpN4oY Kao4tx+OjCjntqmZDmF4QcSX82uRgqWRanB6PvtEVbs3XaJLJPKMaZlPSd6ay+KB +bKIM/E+6NkPciiBjPkYg37aA2owyPDt9hWrcYNWhFagZ0Hhgjzcu9rTeK/VvNv2 u6NiVxsIecZYeEkdR/ItnKqeBWVQttfcEOrbTDWAAvUoSf4/0mkBGpFl4EceyblZ 7II7ZJeHtZIoHTBpRoTJO8yFcCcb3PlQ -----END CERTIFICATE-----Generated at Sat Aug 23 16:03:17 2025 by rpki-client