$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: rUhQ1ha/hVBH+3yKwx4Cd36AheqYGUQX2gyCm0+4+5s= Subject key identifier: 33:34:67:99:4D:A9:66:5D:BA:27:26:9B:5F:4F:57:54:EC:16:AC:23 Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01CA Signing time: Thu 03 Jul 2025 03:08:08 +0000 Manifest this update: Thu 03 Jul 2025 03:08:07 +0000 Manifest next update: Thu 10 Jul 2025 03:08:07 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: /usEj5Fox0WaeHHChzGUaO75lHx/5t0QsPmKBRM78LI=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Jul 3 03:08:07 2025 GMT Not After : Jul 10 03:08:07 2025 GMT Subject: CN=6865f417-1a6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:79:db:6b:4c:04:e7:b4:85:2d:f5:c3:37:36: 89:7e:0a:6c:2b:e0:33:1d:94:80:5c:d7:e8:46:f4: ac:51:e5:00:be:37:78:e5:50:2f:34:bb:bf:04:a4: 1e:90:0d:90:35:8a:27:5e:08:f8:3d:d7:d1:a4:21: 9f:fb:c4:50:b6:5f:a7:d5:b2:d4:1e:7c:b2:37:72: cb:f7:96:e5:a4:40:ad:1d:05:6c:dc:6a:05:e5:86: 1f:fc:10:57:c9:8f:10:c2:65:bf:da:d0:14:0d:3c: 7e:4b:53:2a:38:3d:6b:95:8f:c2:65:59:20:0d:af: 57:2c:05:03:b9:62:19:b9:9c:ff:93:77:36:dc:0a: d5:cc:c0:8f:ea:67:87:95:7e:5d:e8:33:33:8d:d5: 4f:91:a5:02:05:53:c2:95:b3:8a:45:47:b0:e1:cc: fb:bd:97:10:e0:d6:51:97:ee:df:ae:3f:5f:92:3f: e4:aa:31:86:64:1e:29:a7:5a:3a:ec:96:a7:85:8c: 58:8c:74:dd:ad:73:c1:a8:a9:93:0d:8e:10:2b:6b: 4a:ae:bd:86:c2:5e:83:21:19:de:cc:ff:69:25:d3: fd:16:45:9f:6d:ce:a5:9f:b7:c4:1b:01:39:75:6e: 5d:27:c5:f5:16:36:ae:e6:4e:d1:26:05:c3:c5:9f: a4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:34:67:99:4D:A9:66:5D:BA:27:26:9B:5F:4F:57:54:EC:16:AC:23 X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:cc:29:d5:9a:0f:3a:5f:f9:ff:48:17:81:ae:7c:49:fe:e9: 0d:94:e8:be:b9:fe:e5:9f:f4:ed:af:c2:87:3c:11:30:05:23: 9f:b8:fe:7f:41:4b:61:b4:c7:36:7b:5a:4e:d0:f4:0e:4f:8a: 02:8e:e7:35:20:06:a4:90:09:fe:b5:e5:b7:16:c5:ff:c0:c7: 6a:bc:09:0d:93:9a:3d:14:1f:7c:e1:b5:e3:43:62:7d:e8:83: 64:83:03:2a:81:ae:e8:f4:69:12:83:d5:87:dc:c7:b8:6b:5c: 97:3a:07:c2:25:a8:da:87:e0:44:36:cd:f4:10:d5:68:28:3c: 9f:fd:27:e3:56:b7:06:9d:25:26:04:c2:f0:c1:0f:d4:b5:47: 69:b7:d5:0f:6b:2d:c9:a0:32:e9:9c:fc:cb:66:45:e2:22:18: 35:de:5a:1f:8c:ba:1b:51:05:f5:cf:4f:21:39:b5:0d:23:2b: d4:e0:d3:a2:a3:32:94:61:81:e7:94:db:a7:fd:88:03:37:9a: 68:58:a9:85:f3:ab:24:47:0f:d0:eb:4f:60:5b:39:c2:d1:95: 74:56:8c:d5:43:bf:ef:8d:40:12:c5:2e:97:ff:9f:13:19:cd: a0:32:82:5d:c3:79:9b:83:9f:09:33:46:85:83:a5:34:c6:a1: c3:1e:70:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwNzAzMDMwODA3WhcNMjUwNzEwMDMwODA3WjAYMRYwFAYD VQQDEw02ODY1ZjQxNy0xYTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Hnba0wE57SFLfXDNzaJfgpsK+AzHZSAXNfoRvSsUeUAvjd45VAvNLu/BKQe kA2QNYonXgj4PdfRpCGf+8RQtl+n1bLUHnyyN3LL95blpECtHQVs3GoF5YYf/BBX yY8QwmW/2tAUDTx+S1MqOD1rlY/CZVkgDa9XLAUDuWIZuZz/k3c23ArVzMCP6meH lX5d6DMzjdVPkaUCBVPClbOKRUew4cz7vZcQ4NZRl+7frj9fkj/kqjGGZB4pp1o6 7JanhYxYjHTdrXPBqKmTDY4QK2tKrr2Gwl6DIRnezP9pJdP9FkWfbc6ln7fEGwE5 dW5dJ8X1Fjau5k7RJgXDxZ+kNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDM0Z5lN qWZduicmm19PV1TsFqwjMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgzCnVmg86X/n/SBeBrnxJ/ukNlOi+uf7ln/Ttr8KHPBEwBSOfuP5/ QUthtMc2e1pO0PQOT4oCjuc1IAakkAn+teW3FsX/wMdqvAkNk5o9FB984bXjQ2J9 6INkgwMqga7o9GkSg9WH3Me4a1yXOgfCJajah+BENs30ENVoKDyf/SfjVrcGnSUm BMLwwQ/UtUdpt9UPay3JoDLpnPzLZkXiIhg13lofjLobUQX1z08hObUNIyvU4NOi ozKUYYHnlNun/YgDN5poWKmF86skRw/Q609gWznC0ZV0VozVQ7/vjUASxS6X/58T Gc2gMoJdw3mbg58JM0aFg6U0xqHDHnCt -----END CERTIFICATE-----Generated at Thu Jul 3 06:12:06 2025 by rpki-client