$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: x3vNNtTQN5e4Uci7IqvYCwFPEMjhAJhz7xbUdSf7SJw= Subject key identifier: 5E:55:CA:6A:E8:35:5A:4A:16:53:BF:1B:98:28:BE:C9:6E:B6:63:AD Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0C28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0C1A Signing time: Tue 22 Jul 2025 18:55:44 +0000 Manifest this update: Tue 22 Jul 2025 18:55:44 +0000 Manifest next update: Tue 29 Jul 2025 18:55:44 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: VdheYGzm8RN0r7HeEvzk300qG+I6WfFkZReu6TLepfI=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: J+JzfdPnvnmB6Ay3Ml+qeWmcjb1XIfVxnUqGVNUN7Ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3112 (0xc28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Jul 22 18:55:44 2025 GMT Not After : Jul 29 18:55:44 2025 GMT Subject: CN=687fdeb0-1abc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:17:00:db:e8:4d:50:08:6b:3d:81:73:22:62: a6:cf:64:5a:30:97:74:8e:9a:19:73:98:ea:a9:87: 7d:4a:e8:0a:61:80:90:02:2d:4c:7c:aa:1a:1a:22: 47:b2:06:97:a0:91:c8:3a:d3:2e:e1:0e:b6:f4:5a: 0d:3c:87:9d:7a:0d:20:0b:57:de:4f:8f:8f:4b:01: 6d:e8:ba:28:bd:a5:df:5d:d5:66:10:aa:32:67:e0: cb:96:25:77:7f:1b:56:fa:2c:c4:27:9a:6b:69:8e: 68:9a:94:47:d7:f5:90:ab:54:3a:48:ef:b3:1c:b8: 10:4f:1b:dd:fb:3c:8c:64:b1:ce:f5:09:95:4d:ff: 2e:8e:c2:11:fd:dc:a0:16:3c:d5:94:a7:47:38:69: 1a:be:48:b1:64:62:36:fc:0a:19:cb:ff:d6:1c:56: 0e:73:1c:56:01:a0:6c:b7:99:4b:85:98:40:d4:74: be:98:06:ec:3f:ca:b6:c7:9f:87:57:8d:e0:0e:a9: 36:96:62:a7:01:2e:33:da:fb:64:f9:f4:77:cd:7f: 73:06:8e:94:bd:b1:68:fa:e5:ee:3b:c3:d5:30:e9: 4c:37:bc:eb:8e:3e:a7:31:81:81:34:b4:f9:cd:2d: d2:ca:1c:e9:14:84:f6:e4:fd:3d:9b:e4:ec:67:3c: d1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:55:CA:6A:E8:35:5A:4A:16:53:BF:1B:98:28:BE:C9:6E:B6:63:AD X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:aa:75:73:7c:6a:a3:3f:19:6d:b6:07:9d:71:1e:4a:64:01: d8:e7:a1:dc:0b:a6:2b:14:84:5f:4b:e0:aa:61:da:61:01:69: 1d:b9:a8:a1:b0:e9:98:5b:5e:39:7c:22:45:ca:81:47:5b:7a: 5c:13:05:9e:64:ae:92:41:51:25:fa:b3:9c:b6:7a:a8:67:c8: 85:eb:da:98:21:26:9b:e6:17:1c:b1:0b:02:64:a7:cc:ac:13: 0d:be:c8:f8:f0:31:54:14:2a:1f:82:02:0a:b6:d8:7a:fa:d7: c7:70:b1:eb:17:22:d4:41:1d:f7:b3:a6:fc:ac:3d:0f:1c:89: eb:86:db:b5:4d:a7:24:65:f5:f3:67:1b:45:16:ad:81:4a:90: 8b:e9:9e:62:09:1b:8f:ab:04:a1:8b:98:b8:cc:d8:2e:e7:a3: a2:20:ec:ae:4a:bf:33:79:08:9d:87:bf:a8:50:71:95:97:c8: 16:19:21:ea:e0:8c:28:55:28:03:1b:62:df:9d:a4:14:61:c6: 32:cd:a5:a4:63:ba:08:32:40:30:37:a5:d2:b1:76:b0:a1:d4: 3c:2e:85:97:22:97:c1:90:1a:ef:df:f2:4c:a2:4e:8f:52:ca: 15:a7:6a:90:6c:6b:a8:70:71:8b:b3:eb:7a:fe:dd:55:d5:a6: 65:5d:9a:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwNzIyMTg1NTQ0WhcNMjUwNzI5MTg1NTQ0WjAYMRYwFAYD VQQDEw02ODdmZGViMC0xYWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hcA2+hNUAhrPYFzImKmz2RaMJd0jpoZc5jqqYd9SugKYYCQAi1MfKoaGiJH sgaXoJHIOtMu4Q629FoNPIedeg0gC1feT4+PSwFt6LoovaXfXdVmEKoyZ+DLliV3 fxtW+izEJ5praY5ompRH1/WQq1Q6SO+zHLgQTxvd+zyMZLHO9QmVTf8ujsIR/dyg FjzVlKdHOGkavkixZGI2/AoZy//WHFYOcxxWAaBst5lLhZhA1HS+mAbsP8q2x5+H V43gDqk2lmKnAS4z2vtk+fR3zX9zBo6UvbFo+uXuO8PVMOlMN7zrjj6nMYGBNLT5 zS3SyhzpFIT25P09m+TsZzzRGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5Vymro NVpKFlO/G5govslutmOtMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfqnVzfGqjPxlttgedcR5KZAHY56HcC6YrFIRfS+CqYdphAWkduaih sOmYW145fCJFyoFHW3pcEwWeZK6SQVEl+rOctnqoZ8iF69qYISab5hccsQsCZKfM rBMNvsj48DFUFCofggIKtth6+tfHcLHrFyLUQR33s6b8rD0PHInrhtu1TackZfXz ZxtFFq2BSpCL6Z5iCRuPqwShi5i4zNgu56OiIOyuSr8zeQidh7+oUHGVl8gWGSHq 4IwoVSgDG2LfnaQUYcYyzaWkY7oIMkAwN6XSsXawodQ8LoWXIpfBkBrv3/JMok6P UsoVp2qQbGuocHGLs+t6/t1V1aZlXZpW -----END CERTIFICATE-----Generated at Tue Jul 22 21:51:16 2025 by rpki-client