$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft File: UgupTND7nnwUDfvAzFi5PPVMIvM.mft (raw, json) Hash identifier: Q1G4me1A/+stvbj3cWeT/eddXtBIlPltvf8Tk8fKDQw= Subject key identifier: D6:6A:66:28:C2:FC:A3:1E:33:C6:8A:9A:92:77:44:76:76:58:0D:CE Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft Manifest number: B5 Signing time: Sat 23 Aug 2025 06:41:42 +0000 Manifest this update: Sat 23 Aug 2025 06:41:42 +0000 Manifest next update: Sat 30 Aug 2025 06:41:42 +0000 Files and hashes: 1: UgupTND7nnwUDfvAzFi5PPVMIvM.crl (hash: 8DILKq+yO0NJlN1qDOhdCotZYK1sNyhJAxt7/6uSv/Y=) 2: D79D112E6C7F11EF92105459C4F9AE02.roa (hash: taSipunEH/A4JKib1d15PbUF8sLm4qJrajeTCDOlA48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: Aug 23 06:41:42 2025 GMT Not After : Aug 30 06:41:42 2025 GMT Subject: CN=68a962a6-30d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c7:b1:15:94:e8:c3:e1:8b:76:25:f0:28:7e: 4c:08:12:0f:16:ef:26:a6:b7:ff:f8:74:70:21:4b: e7:50:36:7a:25:c7:77:c2:85:62:ca:ea:b5:e2:de: 67:40:c0:8b:b7:38:2b:27:57:d7:4d:99:9f:52:e8: 11:59:63:42:19:f0:4f:f9:67:9c:17:89:49:df:2b: 66:34:95:94:3a:21:58:45:9e:91:9f:b6:fa:f3:da: 82:98:f5:28:33:89:17:b6:da:91:9b:db:03:9d:82: d0:81:2d:e9:ac:98:36:20:e3:b9:4e:3f:c1:f6:39: c1:5d:78:0b:c7:2d:1c:f9:8c:61:5a:73:6f:6b:d9: 96:91:3c:00:5c:3e:88:13:dd:41:16:04:c6:fb:84: f7:fe:a4:4b:e4:3e:2a:af:7a:60:e1:24:57:b8:c5: 89:d9:ac:09:f3:f8:c4:e2:99:e8:7d:2a:a0:66:08: cb:41:25:a2:7f:80:51:48:3c:42:22:0c:22:af:a2: 33:0e:8b:f5:a4:47:84:7d:42:53:ff:54:ce:07:9b: 99:26:01:ed:de:74:f1:44:75:0e:3a:e3:75:0c:89: 2b:6f:de:18:7c:b8:9a:7e:d9:c6:a0:e1:96:db:8e: 82:fa:4e:6b:55:14:7c:ac:9d:24:c0:49:b3:15:42: 5f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:6A:66:28:C2:FC:A3:1E:33:C6:8A:9A:92:77:44:76:76:58:0D:CE X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:7c:fa:a6:d6:73:03:9f:4e:de:20:f8:5e:af:ae:a2:15:39: f2:6c:8d:e3:0b:8b:a1:06:5e:42:eb:86:6a:6d:59:e6:e7:f7: 06:2f:14:96:7a:a1:ec:bf:0e:06:c8:a2:80:3f:0a:6e:9d:2a: 57:e8:86:99:c7:2a:2c:52:e6:22:e5:2c:97:f7:ab:48:a2:6e: 14:c2:b5:77:ad:08:03:76:1a:09:26:6a:1e:79:8f:f1:48:22: b6:f0:8c:01:3a:0f:a2:5d:5c:88:e4:d5:2c:93:b7:a9:16:2b: 4e:b0:ef:4d:dc:32:7b:60:4f:f6:02:fd:d9:de:4b:e7:a8:f0: a6:6f:ed:71:19:4c:ca:45:82:63:9e:c8:b7:01:a9:8b:8b:25: 39:5c:f4:c8:e7:fe:cb:bf:38:bf:a6:50:06:25:77:62:f2:03: 2f:d5:59:a1:5e:68:0e:44:91:4b:68:dd:96:a6:50:49:23:2d: dd:5d:d3:41:24:51:05:83:7b:52:26:51:47:dc:5c:0a:94:17: 83:b9:2f:d6:c5:e9:2a:63:af:50:36:61:7d:a0:48:03:a4:c7: 18:15:84:b4:e7:e1:d6:07:eb:db:96:ca:60:9e:12:8e:3b:d9: 23:e8:f8:09:58:41:f6:d7:9f:2b:9e:9c:a9:69:0f:75:a7:80: ba:f4:25:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDUyMEJBOTRDRDBGQjlFN0MxNDBERkJDMENDNThCOTND RjU0QzIyRjMwHhcNMjUwODIzMDY0MTQyWhcNMjUwODMwMDY0MTQyWjAYMRYwFAYD VQQDEw02OGE5NjJhNi0zMGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcexFZTow+GLdiXwKH5MCBIPFu8mprf/+HRwIUvnUDZ6Jcd3woViyuq14t5n QMCLtzgrJ1fXTZmfUugRWWNCGfBP+WecF4lJ3ytmNJWUOiFYRZ6Rn7b689qCmPUo M4kXttqRm9sDnYLQgS3prJg2IOO5Tj/B9jnBXXgLxy0c+YxhWnNva9mWkTwAXD6I E91BFgTG+4T3/qRL5D4qr3pg4SRXuMWJ2awJ8/jE4pnofSqgZgjLQSWif4BRSDxC Igwir6IzDov1pEeEfUJT/1TOB5uZJgHt3nTxRHUOOuN1DIkrb94YfLiaftnGoOGW 246C+k5rVRR8rJ0kwEmzFUJfbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZqZijC /KMeM8aKmpJ3RHZ2WA3OMB8GA1UdIwQYMBaAFFILqUzQ+558FA37wMxYuTz1TCLz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8xQ0Y2Q0Q3NDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25ud1VEZnZBekZpNVBQVk1J dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8xQ0Y2Q0Q3NDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25u d1VEZnZBekZpNVBQVk1Jdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQfPqm1nMDn07eIPher66iFTnybI3jC4uhBl5C64ZqbVnm5/cGLxSW eqHsvw4GyKKAPwpunSpX6IaZxyosUuYi5SyX96tIom4UwrV3rQgDdhoJJmoeeY/x SCK28IwBOg+iXVyI5NUsk7epFitOsO9N3DJ7YE/2Av3Z3kvnqPCmb+1xGUzKRYJj nsi3AamLiyU5XPTI5/7Lvzi/plAGJXdi8gMv1VmhXmgORJFLaN2WplBJIy3dXdNB JFEFg3tSJlFH3FwKlBeDuS/WxekqY69QNmF9oEgDpMcYFYS05+HWB+vblspgnhKO O9kj6PgJWEH2158rnpypaQ91p4C69CUT -----END CERTIFICATE-----Generated at Sat Aug 23 14:25:27 2025 by rpki-client