$ rpki-client -vvf rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft File: UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft (raw, json) Hash identifier: yKJiiNtRJO5gRaz0gIf5N+w3Ur2XAgCoQV02jjmHi2I= Subject key identifier: 00:AD:63:57:C2:7A:3B:57:C6:AA:A2:51:3C:A6:B5:65:90:C5:03:7B Authority key identifier: 51:89:2B:E5:B0:B4:AB:C6:02:54:45:F4:03:9F:C7:95:D8:BA:58:E2 Certificate issuer: /CN=A9139A90/serialNumber=51892BE5B0B4ABC6025445F4039FC795D8BA58E2 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYkr5bC0q8YCVEX0A5_Hldi6WOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft Manifest number: CA Signing time: Mon 21 Jul 2025 05:52:38 +0000 Manifest this update: Mon 21 Jul 2025 05:52:37 +0000 Manifest next update: Mon 28 Jul 2025 05:52:37 +0000 Files and hashes: 1: UYkr5bC0q8YCVEX0A5_Hldi6WOI.crl (hash: ocK4ho3wdJtBreb6BfdYmcCc0MUC0b0CDvZKESV40Rw=) 2: 8B584EC2337D11EF9D71B72DC4F9AE02.roa (hash: yZ1LidZrlFrNTxapIhIsCTEZZK7lTYC0s/4RKHkPEsg=) 3: AE977DF8337E11EFB3CCD72FC4F9AE02.roa (hash: OJdZE6RjgM3Hz2T07Mg2BJv0nC0BL01Q/08oABlyEMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.crl rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYkr5bC0q8YCVEX0A5_Hldi6WOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139A90, serialNumber=51892BE5B0B4ABC6025445F4039FC795D8BA58E2 Validity Not Before: Jul 21 05:52:37 2025 GMT Not After : Jul 28 05:52:37 2025 GMT Subject: CN=687dd5a5-0f9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:57:ad:b1:94:a6:4d:a5:d9:15:c3:45:07:28: e9:ca:f7:e8:b5:01:bf:ef:97:74:d4:d0:be:ef:10: 66:a9:e7:97:90:50:99:c3:63:9d:2d:c1:91:1c:a6: 9e:d9:96:6f:b3:33:8c:89:6d:a5:54:a4:13:84:bf: 07:fd:b3:2d:f8:c3:03:f2:1d:ae:33:42:a1:6b:18: f2:39:fe:ed:a5:26:5d:42:8f:ef:cd:61:7d:d0:a9: b9:e9:c0:51:cb:21:c1:7f:0e:84:99:51:42:c5:62: e8:47:1b:b3:13:d8:0b:7c:71:15:2a:7f:2e:ea:b1: ea:30:0c:d3:43:1c:27:b4:c9:dc:4b:9e:96:d8:89: 7e:02:b4:a4:22:9a:23:c9:e8:ac:ec:98:f8:ff:b8: d4:d0:21:4f:ae:32:b9:ee:84:be:bf:12:88:13:a0: e7:89:9b:3b:09:87:97:5b:4b:09:f4:45:c7:ba:c3: 41:3c:fa:76:10:13:dd:4b:58:59:70:e6:ff:34:67: ce:f2:19:a1:07:3e:04:26:8c:26:e9:7a:33:49:63: 76:6c:bd:81:36:88:ee:0c:59:4f:27:8c:98:8b:8c: 71:3f:63:3e:99:3e:86:fe:bf:c9:f3:d5:08:db:aa: 64:8d:ca:31:9b:a6:b6:3c:ec:12:64:4f:60:99:c2: 95:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:AD:63:57:C2:7A:3B:57:C6:AA:A2:51:3C:A6:B5:65:90:C5:03:7B X509v3 Authority Key Identifier: keyid:51:89:2B:E5:B0:B4:AB:C6:02:54:45:F4:03:9F:C7:95:D8:BA:58:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYkr5bC0q8YCVEX0A5_Hldi6WOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:dd:7f:b8:95:7b:b0:46:02:42:2e:4a:54:2a:3f:18:2b:7e: a9:3b:55:e0:de:2b:3a:1f:7f:c0:e0:37:1c:f4:44:22:62:f8: ef:b5:4e:27:9e:93:f7:18:f3:f3:8a:de:86:76:69:94:ca:f7: c6:90:75:7c:57:d1:fa:47:4d:a4:50:f1:b6:68:af:64:df:d7: a6:f3:70:4c:90:ae:c5:5f:ec:aa:52:6c:0e:16:d6:b5:54:65: 11:ac:8c:de:ec:12:10:ad:46:79:a1:31:74:d2:e0:64:58:29: b6:e0:1b:58:c5:78:27:ef:ed:38:24:ba:2c:c9:5d:f5:48:29: b6:f3:9b:4a:a3:43:f8:89:f8:23:4c:3c:d6:bb:4d:74:8f:81: ca:4e:96:db:a2:2e:0f:3a:fb:62:f9:12:39:98:1e:84:0d:f7: 61:ec:44:03:1a:01:02:df:2a:f2:88:50:96:99:19:cb:2d:8a: b2:b2:eb:0c:9b:7c:10:2e:62:c5:58:51:0d:d8:e5:b2:75:13: 1c:43:f1:4b:d3:08:69:04:04:96:a9:be:18:6b:c0:2d:55:be: 50:c2:fd:97:5b:d2:04:e3:73:37:1c:eb:18:1b:13:85:3c:ab: 34:0b:21:5c:c3:1f:57:51:a1:d8:30:9c:4b:dd:cf:40:c7:13: ac:15:a0:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlBOTAxMTAvBgNVBAUTKDUxODkyQkU1QjBCNEFCQzYwMjU0NDVGNDAzOUZDNzk1 RDhCQTU4RTIwHhcNMjUwNzIxMDU1MjM3WhcNMjUwNzI4MDU1MjM3WjAYMRYwFAYD VQQDEw02ODdkZDVhNS0wZjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVetsZSmTaXZFcNFByjpyvfotQG/75d01NC+7xBmqeeXkFCZw2OdLcGRHKae 2ZZvszOMiW2lVKQThL8H/bMt+MMD8h2uM0KhaxjyOf7tpSZdQo/vzWF90Km56cBR yyHBfw6EmVFCxWLoRxuzE9gLfHEVKn8u6rHqMAzTQxwntMncS56W2Il+ArSkIpoj yeis7Jj4/7jU0CFPrjK57oS+vxKIE6DniZs7CYeXW0sJ9EXHusNBPPp2EBPdS1hZ cOb/NGfO8hmhBz4EJowm6XozSWN2bL2BNojuDFlPJ4yYi4xxP2M+mT6G/r/J89UI 26pkjcoxm6a2POwSZE9gmcKVswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFACtY1fC ejtXxqqiUTymtWWQxQN7MB8GA1UdIwQYMBaAFFGJK+WwtKvGAlRF9AOfx5XYulji MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUE5MC8xRkU4NEVEMjMz NzYxMUVGOTkzRTQ2NzNDNEY5QUUwMi9VWWtyNWJDMHE4WUNWRVgwQTVfSGxkaTZX T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VZa3I1YkMwcThZQ1ZFWDBBNV9IbGRpNldPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OUE5MC8xRkU4NEVEMjMzNzYxMUVGOTkzRTQ2NzNDNEY5QUUwMi9VWWtyNWJDMHE4 WUNWRVgwQTVfSGxkaTZXT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs3X+4lXuwRgJCLkpUKj8YK36pO1Xg3is6H3/A4Dcc9EQiYvjvtU4n npP3GPPzit6GdmmUyvfGkHV8V9H6R02kUPG2aK9k39em83BMkK7FX+yqUmwOFta1 VGURrIze7BIQrUZ5oTF00uBkWCm24BtYxXgn7+04JLosyV31SCm285tKo0P4ifgj TDzWu010j4HKTpbboi4POvti+RI5mB6EDfdh7EQDGgEC3yryiFCWmRnLLYqysusM m3wQLmLFWFEN2OWydRMcQ/FL0whpBASWqb4Ya8AtVb5Qwv2XW9IE43M3HOsYGxOF PKs0CyFcwx9XUaHYMJxL3c9AxxOsFaCO -----END CERTIFICATE-----Generated at Mon Jul 21 07:12:05 2025 by rpki-client