$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft File: UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json) Hash identifier: 1b9cXBePNTktX6DDoATiGWEI1UbQI7Lk7Ea5i5F17yg= Subject key identifier: 9D:44:C6:C6:A5:1B:59:DC:9A:88:7B:2B:0A:19:A7:00:E4:81:45:28 Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Certificate serial: 20A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft Manifest number: 2089 Signing time: Sun 20 Jul 2025 15:59:23 +0000 Manifest this update: Sun 20 Jul 2025 15:59:22 +0000 Manifest next update: Sun 27 Jul 2025 15:59:22 +0000 Files and hashes: 1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: xmRWZ/gXsqK+JGvlr68s9wYYwR/McDF6fL5lPYDDovo=) 2: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: ebbHAc3H1xs8yb83KOxdepldMzKZEG2KB/oj0PgrPl0=) 3: 2991FB703EBC11F0B4390D6CC4F9AE02.roa (hash: ISWHnAnupcgdEe8p2mboULpSfRcbxX3lISCXNa8ynQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8361 (0x20a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159967, serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Validity Not Before: Jul 20 15:59:22 2025 GMT Not After : Jul 27 15:59:22 2025 GMT Subject: CN=687d125b-7749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:af:9a:34:73:ab:55:fc:27:67:cb:17:57:c9: 9e:ec:7d:0f:03:f7:f2:45:f4:a2:58:18:45:82:1d: 9f:09:5d:38:6c:93:f3:ff:c1:f8:61:cd:2b:f2:49: e6:50:e5:5a:64:c2:0d:4a:c6:0d:30:53:93:35:a2: 1a:dc:65:ce:2d:f7:c1:c9:05:ed:8e:95:21:7f:c4: 97:05:c3:a1:ff:6a:c6:3a:07:1a:84:25:57:84:a0: ce:30:17:23:fa:da:c4:78:94:9e:ac:16:eb:b8:5e: 89:dd:b1:ae:df:6e:d8:1c:62:00:f6:fe:e9:0b:7a: 00:9c:a8:5e:55:64:71:7a:e7:fd:c2:0f:83:9f:54: 6d:70:48:70:67:21:36:35:5a:3b:25:14:27:b7:bb: 03:50:c3:04:dc:54:17:f1:e0:b5:c9:80:32:9e:6a: dd:99:04:a2:2a:c6:8f:85:a6:d7:e7:a2:44:d9:66: fa:33:0f:1e:b6:33:85:29:f4:f9:65:5f:5d:a4:8f: a2:33:e5:0a:c2:71:1f:b9:c3:6a:ff:93:ce:69:ef: 06:af:d3:48:03:e0:1b:6c:1c:4d:2d:4c:db:20:fd: 21:cc:c4:0e:99:7a:76:3d:ea:12:7d:0e:aa:5d:19: 8c:ff:84:af:51:fa:fa:8a:33:33:18:91:e0:e9:0c: 84:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:44:C6:C6:A5:1B:59:DC:9A:88:7B:2B:0A:19:A7:00:E4:81:45:28 X509v3 Authority Key Identifier: keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:c1:6e:20:a0:0f:36:90:06:1a:ed:e2:df:42:a3:45:28:2e: 5e:88:b0:12:a6:dc:26:c0:dc:5e:cc:35:8c:09:de:16:0a:ef: e3:fb:bc:8d:c2:06:65:f2:5f:c5:99:51:7f:07:4b:b1:b6:df: 50:0f:0d:4d:d4:f6:c4:ec:74:a6:ed:d3:8b:89:a1:68:b9:cf: 49:eb:55:fb:63:73:af:47:f9:7c:cf:96:83:fc:ea:18:7e:6e: fa:63:4f:0f:a3:ef:de:eb:7c:e3:6e:ee:58:25:2b:af:d6:85: ef:49:c7:35:6a:fb:f5:3b:85:e9:f1:0e:d9:24:32:ac:f7:33: 0c:55:cf:52:56:45:69:24:a0:6f:5c:d5:d9:d6:d7:05:ce:fb: cc:4c:7c:16:32:63:50:8d:09:ec:69:1b:6c:cf:6b:93:56:6a: 5e:a8:7a:58:7c:ef:c3:da:6b:af:5d:2f:4d:f4:30:b7:d9:43: dd:fa:0b:63:71:45:b4:a0:e7:21:37:1c:e5:3c:1c:58:de:ab: 6c:31:75:a3:16:9e:6a:35:80:5c:34:40:87:57:6b:48:38:17: f7:01:8f:8c:9d:d5:66:d8:94:21:33:3c:15:c0:1e:aa:7e:5c: cf:4e:d7:7f:57:46:f1:fc:3c:72:b9:a9:91:7c:44:4a:a3:fc: c4:05:d8:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB RjZDRTYwQUYwHhcNMjUwNzIwMTU1OTIyWhcNMjUwNzI3MTU1OTIyWjAYMRYwFAYD VQQDEw02ODdkMTI1Yi03NzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2K+aNHOrVfwnZ8sXV8me7H0PA/fyRfSiWBhFgh2fCV04bJPz/8H4Yc0r8knm UOVaZMINSsYNMFOTNaIa3GXOLffByQXtjpUhf8SXBcOh/2rGOgcahCVXhKDOMBcj +trEeJSerBbruF6J3bGu327YHGIA9v7pC3oAnKheVWRxeuf9wg+Dn1RtcEhwZyE2 NVo7JRQnt7sDUMME3FQX8eC1yYAynmrdmQSiKsaPhabX56JE2Wb6Mw8etjOFKfT5 ZV9dpI+iM+UKwnEfucNq/5POae8Gr9NIA+AbbBxNLUzbIP0hzMQOmXp2PeoSfQ6q XRmM/4SvUfr6ijMzGJHg6QyE7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1Exsal G1ncmoh7KwoZpwDkgUUoMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1 QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTk2Ny8wQkJGMjU3ODE1QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFW TmZySVVGNXpXRU92Yk9ZSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMwW4goA82kAYa7eLfQqNFKC5eiLASptwmwNxezDWMCd4WCu/j+7yN wgZl8l/FmVF/B0uxtt9QDw1N1PbE7HSm7dOLiaFouc9J61X7Y3OvR/l8z5aD/OoY fm76Y08Po+/e63zjbu5YJSuv1oXvScc1avv1O4Xp8Q7ZJDKs9zMMVc9SVkVpJKBv XNXZ1tcFzvvMTHwWMmNQjQnsaRtsz2uTVmpeqHpYfO/D2muvXS9N9DC32UPd+gtj cUW0oOchNxzlPBxY3qtsMXWjFp5qNYBcNECHV2tIOBf3AY+MndVm2JQhMzwVwB6q flzPTtd/V0bx/DxyuamRfERKo/zEBdiG -----END CERTIFICATE-----Generated at Tue Jul 22 05:14:21 2025 by rpki-client