$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft File: UEMacUvIutzoUZ5LmRR-FR7fd5c.mft (raw, json) Hash identifier: gFmB85/BNUyJS4iuzekSMMw1lRA4aTZJIm0dOUFkcC8= Subject key identifier: 59:B6:06:8E:7F:DA:8F:74:9A:3A:EB:02:92:CE:7D:3A:07:27:0A:A2 Authority key identifier: 50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 Certificate issuer: /CN=A91DA289/serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Certificate serial: 0638 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft Manifest number: 0632 Signing time: Mon 30 Jun 2025 23:04:46 +0000 Manifest this update: Mon 30 Jun 2025 23:04:46 +0000 Manifest next update: Mon 07 Jul 2025 23:04:46 +0000 Files and hashes: 1: UEMacUvIutzoUZ5LmRR-FR7fd5c.crl (hash: dKQFfJGMHH4tghQp4Ty1G21qvyhKLj7kfLmsO+n0/1g=) 2: 0BE0F63C9CBB11EBA4731E19C4F9AE02.roa (hash: ln0lvafoMsf2mDlhqtsb54uvMwde1qgk9VtDAAnL3YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:04:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA289, serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Validity Not Before: Jun 30 23:04:46 2025 GMT Not After : Jul 7 23:04:46 2025 GMT Subject: CN=6863180e-94bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:f0:52:fa:58:bb:b0:e6:47:48:58:b0:a6: 23:0d:35:4d:3a:53:1f:47:9c:b8:68:f7:a9:c6:df: 83:3f:94:a6:3a:10:fb:99:c8:48:e7:38:26:f1:17: a9:c0:14:f2:30:f8:fe:13:6d:fd:3d:6b:04:cb:98: 4f:3c:63:b0:4a:97:63:d4:2a:08:28:cb:f9:b6:e8: ae:d7:c4:d5:c6:b3:c0:4d:46:d6:2f:20:1a:87:ce: 9a:f7:af:36:c4:79:67:b0:d0:c1:20:15:9f:ba:c1: 4f:00:97:a9:bd:81:89:bf:7d:9c:db:89:6c:65:90: cc:e6:6b:49:c1:6d:05:ca:69:bb:d1:09:70:2e:2e: dd:e0:46:e0:de:cc:95:9b:c1:50:f9:bb:68:2e:00: 92:fb:81:64:4d:b0:9e:e0:a3:3f:b3:ad:09:c0:50: a5:80:60:fe:45:96:bc:6c:e2:f2:fc:38:f2:4a:bf: 80:9d:57:cc:6a:36:56:fc:2d:07:70:66:42:5e:40: 40:55:a5:8c:38:0b:fd:43:87:bf:0a:22:92:25:00: c0:bd:8f:bb:6c:2d:92:55:3f:2f:f0:40:fd:22:fa: b8:af:f7:92:4e:73:fb:d9:18:a4:39:16:a2:4b:5b: 03:10:d4:f6:5d:6a:92:39:23:84:c6:02:b9:23:cf: aa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B6:06:8E:7F:DA:8F:74:9A:3A:EB:02:92:CE:7D:3A:07:27:0A:A2 X509v3 Authority Key Identifier: keyid:50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:23:b9:fb:6d:e1:f7:2a:c3:9a:93:d3:99:b1:24:a6:24:74: 78:d5:29:42:27:b1:3b:fd:2a:00:f1:f1:ba:a9:54:d2:04:96: 95:3e:ec:97:7a:1c:c1:be:56:45:52:54:17:26:aa:49:c2:62: fb:fb:52:05:49:5b:55:9b:01:b4:05:93:e6:af:4d:31:10:ee: 63:06:d1:01:05:b3:0b:af:b8:69:55:a0:f2:cc:29:34:0a:84: 27:b5:80:8f:4c:45:c3:8b:f6:5f:58:27:14:6b:e5:bb:c8:c1: cf:3b:14:19:66:5f:4f:85:d6:6d:80:7d:81:1b:75:c8:99:c5: 7a:62:59:bb:c8:6c:34:52:e6:37:e3:32:ab:b8:12:f9:e1:49: 5d:7e:a5:bf:52:85:96:0b:48:cc:b3:9e:5e:c7:08:98:34:41: 92:90:c0:51:03:8c:cd:e5:70:af:45:91:61:3d:26:ac:57:b6: 0c:ab:3a:7b:13:69:dd:ab:20:03:06:26:22:aa:e2:90:0e:af: 34:3f:4a:78:42:3c:c2:2e:21:25:f3:d1:d6:cb:45:4f:d2:18: 03:72:d2:ef:05:07:a8:7e:38:5d:dd:47:d8:4c:dc:0d:02:f4: c3:41:f0:81:a4:ba:46:6f:af:c5:02:d8:19:5b:1a:d3:57:72: 74:f0:8f:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyODkxMTAvBgNVBAUTKDUwNDMxQTcxNEJDOEJBRENFODUxOUU0Qjk5MTQ3RTE1 MUVERjc3OTcwHhcNMjUwNjMwMjMwNDQ2WhcNMjUwNzA3MjMwNDQ2WjAYMRYwFAYD VQQDEw02ODYzMTgwZS05NGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwi/wUvpYu7DmR0hYsKYjDTVNOlMfR5y4aPepxt+DP5SmOhD7mchI5zgm8Rep wBTyMPj+E239PWsEy5hPPGOwSpdj1CoIKMv5tuiu18TVxrPATUbWLyAah86a9682 xHlnsNDBIBWfusFPAJepvYGJv32c24lsZZDM5mtJwW0Fymm70QlwLi7d4Ebg3syV m8FQ+btoLgCS+4FkTbCe4KM/s60JwFClgGD+RZa8bOLy/DjySr+AnVfMajZW/C0H cGZCXkBAVaWMOAv9Q4e/CiKSJQDAvY+7bC2SVT8v8ED9Ivq4r/eSTnP72RikORai S1sDENT2XWqSOSOExgK5I8+qvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFm2Bo5/ 2o90mjrrApLOfToHJwqiMB8GA1UdIwQYMBaAFFBDGnFLyLrc6FGeS5kUfhUe33eX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI4OS9FMDFCMDU0NDlD QjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0em9VWjVMbVJSLUZSN2Zk NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VFTWFjVXZJdXR6b1VaNUxtUlItRlI3ZmQ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI4OS9FMDFCMDU0NDlDQjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0 em9VWjVMbVJSLUZSN2ZkNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmI7n7beH3KsOak9OZsSSmJHR41SlCJ7E7/SoA8fG6qVTSBJaVPuyX ehzBvlZFUlQXJqpJwmL7+1IFSVtVmwG0BZPmr00xEO5jBtEBBbMLr7hpVaDyzCk0 CoQntYCPTEXDi/ZfWCcUa+W7yMHPOxQZZl9PhdZtgH2BG3XImcV6Ylm7yGw0UuY3 4zKruBL54UldfqW/UoWWC0jMs55exwiYNEGSkMBRA4zN5XCvRZFhPSasV7YMqzp7 E2ndqyADBiYiquKQDq80P0p4QjzCLiEl89HWy0VP0hgDctLvBQeofjhd3UfYTNwN AvTDQfCBpLpGb6/FAtgZWxrTV3J08I8C -----END CERTIFICATE-----Generated at Tue Jul 1 05:50:23 2025 by rpki-client