$ rpki-client -vvf rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft File: UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft (raw, json) Hash identifier: iPjwY7dgrFP32jE7SxaE2WYhjZ6RPyThEp6ymWa5/W8= Subject key identifier: 60:2D:0A:8C:DC:5A:6C:3D:BE:F4:7C:67:E4:19:3E:27:7C:BE:14:97 Authority key identifier: 51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 Certificate issuer: /CN=A91383BF/serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft Manifest number: DF Signing time: Fri 25 Jul 2025 05:47:07 +0000 Manifest this update: Fri 25 Jul 2025 05:47:07 +0000 Manifest next update: Fri 01 Aug 2025 05:47:07 +0000 Files and hashes: 1: UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl (hash: zp+U8ZwQpXiJKScRR5q7/MKwKTskI6NlSk7XvYFpUpQ=) 2: C23053B019A911EF97366417C4F9AE02.roa (hash: YYki0NriwMd0PqjU0EOE6kz16/qKzKdVDNbbepKT0IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 05:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383BF, serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Validity Not Before: Jul 25 05:47:07 2025 GMT Not After : Aug 1 05:47:07 2025 GMT Subject: CN=68831a5b-bc05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:52:7f:ab:f5:3f:16:e3:42:02:3d:e4:e0:f7: e6:ae:36:69:ad:cb:8a:8d:28:8f:09:4f:e4:d3:01: e4:2b:53:ed:b5:cc:bd:de:e1:44:1b:3d:f9:bb:48: 32:2a:ff:36:54:51:f5:ec:de:69:c8:88:d7:d0:5d: 3d:66:7f:84:1c:0d:e1:c2:00:97:11:0e:41:1b:db: ed:b6:61:69:0d:84:95:d2:29:6d:ac:ec:22:b3:5c: f9:20:36:2c:cd:ee:2e:2a:ca:1a:4f:28:8f:9d:25: d5:72:c6:72:9d:d6:bd:74:34:11:d1:46:26:12:3e: 59:2c:f9:23:37:30:c4:fa:71:ef:a5:a5:41:e5:1c: a6:60:ca:b1:d7:a4:ae:9f:e6:bb:41:fb:e0:36:44: 3d:04:48:57:64:5e:50:97:12:46:29:47:a6:ba:ec: ce:98:1b:18:dd:83:21:c2:a8:b7:d3:78:26:ce:6b: 11:cb:f6:2f:bb:6c:eb:e5:b9:88:c8:21:c2:ac:b6: 00:3a:01:54:65:6c:39:12:88:a8:5e:8b:c8:ab:9b: 1b:07:22:63:42:42:91:e6:8c:ce:d0:e9:8d:24:cc: 47:c2:dc:37:08:f9:a3:3a:fc:2e:b0:8d:14:d8:49: 2c:05:06:cd:02:4f:cc:7a:b4:7a:44:99:93:05:0d: e8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:2D:0A:8C:DC:5A:6C:3D:BE:F4:7C:67:E4:19:3E:27:7C:BE:14:97 X509v3 Authority Key Identifier: keyid:51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:d9:aa:04:c9:68:76:f7:12:e5:32:3e:0a:d8:52:07:a4:0b: d1:64:2c:f5:f6:96:49:cf:fc:8a:ae:1b:14:54:67:4d:5e:af: 76:8f:95:e0:28:6e:0b:7e:82:8e:29:42:a9:90:9f:af:73:27: 92:c8:2e:80:8a:55:8d:bb:0d:25:c4:ab:74:04:55:c9:c6:33: c2:d0:15:99:05:00:0b:c4:92:94:d0:f1:60:93:f5:01:f8:07: 91:56:8b:5c:b2:10:ef:20:56:8b:30:70:45:50:8c:c5:da:ea: 02:c0:90:51:b2:1d:d8:fc:3b:67:e5:15:f4:56:e4:2f:aa:2f: 95:d4:07:6f:b6:66:b7:ad:c3:b3:2e:ae:6a:5f:55:10:e3:23: 82:3f:eb:62:0d:7e:c3:0d:bf:01:67:78:52:cf:5c:e9:eb:79: b2:d7:4e:9b:cd:fa:9c:86:00:ee:28:66:c4:22:b8:61:7b:c7: db:58:93:06:4a:c4:f5:97:2c:5f:5f:5e:ee:2a:d5:3b:ea:0a: dd:0a:05:d1:07:aa:4f:23:e3:a9:8c:74:02:9e:57:c3:6d:9a: ab:8a:e0:f6:4c:bc:a9:ac:1e:31:d2:c7:c6:22:f1:20:f9:86: ac:75:b3:8b:b5:3f:7e:82:f4:98:ce:31:4b:f5:9a:45:b3:02: 98:f0:46:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzQkYxMTAvBgNVBAUTKDUxQTQ4MjU4RDRDRDZFMDFEMjQ1OEM1QjkyMTZFRkE0 NTIxMEI2MjMwHhcNMjUwNzI1MDU0NzA3WhcNMjUwODAxMDU0NzA3WjAYMRYwFAYD VQQDEw02ODgzMWE1Yi1iYzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31J/q/U/FuNCAj3k4PfmrjZprcuKjSiPCU/k0wHkK1Pttcy93uFEGz35u0gy Kv82VFH17N5pyIjX0F09Zn+EHA3hwgCXEQ5BG9vttmFpDYSV0iltrOwis1z5IDYs ze4uKsoaTyiPnSXVcsZynda9dDQR0UYmEj5ZLPkjNzDE+nHvpaVB5RymYMqx16Su n+a7QfvgNkQ9BEhXZF5QlxJGKUemuuzOmBsY3YMhwqi303gmzmsRy/Yvu2zr5bmI yCHCrLYAOgFUZWw5EoioXovIq5sbByJjQkKR5ozO0OmNJMxHwtw3CPmjOvwusI0U 2EksBQbNAk/MerR6RJmTBQ3oawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAtCozc Wmw9vvR8Z+QZPid8vhSXMB8GA1UdIwQYMBaAFFGkgljUzW4B0kWMW5IW76RSELYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNCRi9GNjdDNjFFQTE5 ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJnSFNSWXhia2hidnBGSVF0 aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhU0NXTlROYmdIU1JZeGJraGJ2cEZJUXRpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODNCRi9GNjdDNjFFQTE5ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJn SFNSWXhia2hidnBGSVF0aU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC2aoEyWh29xLlMj4K2FIHpAvRZCz19pZJz/yKrhsUVGdNXq92j5Xg KG4LfoKOKUKpkJ+vcyeSyC6AilWNuw0lxKt0BFXJxjPC0BWZBQALxJKU0PFgk/UB +AeRVotcshDvIFaLMHBFUIzF2uoCwJBRsh3Y/Dtn5RX0VuQvqi+V1Advtma3rcOz Lq5qX1UQ4yOCP+tiDX7DDb8BZ3hSz1zp63my106bzfqchgDuKGbEIrhhe8fbWJMG SsT1lyxfX17uKtU76grdCgXRB6pPI+OpjHQCnlfDbZqriuD2TLyprB4x0sfGIvEg +YasdbOLtT9+gvSYzjFL9ZpFswKY8EZK -----END CERTIFICATE-----Generated at Fri Jul 25 11:12:27 2025 by rpki-client