$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: po5sgJ5fzSv2Kt3bvUsuL4p8mkn9PE+t9nSfw/V6w4w= Subject key identifier: A4:21:AA:4B:5E:22:8C:BC:DE:03:6D:E7:21:16:B8:0F:FE:DF:81:8C Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0BF5 Signing time: Fri 18 Jul 2025 18:59:28 +0000 Manifest this update: Fri 18 Jul 2025 18:59:28 +0000 Manifest next update: Fri 25 Jul 2025 18:59:28 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: CAGBpTcOCD1TNzDot1vcziziTcV6OJMvkybjOwGyZjo=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: /U7W3kIJcREb7MGP1Cl2Wpd73rbaNoFSjTUo68eX8m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Jul 18 18:59:28 2025 GMT Not After : Jul 25 18:59:28 2025 GMT Subject: CN=687a9990-21cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:30:45:23:af:f6:26:71:dd:36:52:80:96:92: 68:26:34:19:0b:64:cc:7c:4d:73:f2:4f:1b:86:03: 1a:48:c4:1d:76:08:65:3c:06:50:35:88:c9:bb:13: 96:c5:7d:19:c4:54:8b:b5:5c:e7:85:29:f6:f4:8b: 09:d7:f1:2a:a1:10:50:e4:1d:42:9e:44:7c:8c:b5: 58:30:15:1f:c6:cc:1c:f6:f2:f4:67:ee:42:0f:5f: bb:d3:ff:ef:b7:9f:98:29:92:07:42:71:f8:a7:fc: c6:ae:25:45:bc:31:54:18:e9:71:4e:14:d2:75:e0: 6c:09:8b:33:82:dd:94:98:c2:b7:5f:b2:31:41:96: 59:1d:de:45:2b:a3:50:99:1d:76:96:62:b7:a7:bb: c8:00:9d:be:a4:0e:7d:11:2e:28:1a:80:95:cb:cc: bb:22:16:40:44:cb:3c:a4:e8:d3:b1:87:7f:62:fa: 14:9d:f3:98:0b:14:02:c2:54:b0:0a:1c:11:4f:8d: 2a:1f:0e:67:43:36:05:19:6a:8c:ec:43:42:36:ee: ce:f8:d5:38:65:b6:c8:c0:c7:4f:1d:65:ff:b0:5e: ee:fa:21:31:d4:08:8f:92:ed:8c:77:8f:0e:8e:3e: 99:36:8c:23:8b:5f:fe:de:21:2c:47:04:85:41:f9: 8d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:21:AA:4B:5E:22:8C:BC:DE:03:6D:E7:21:16:B8:0F:FE:DF:81:8C X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:cc:6e:3b:3b:ad:58:12:07:d1:4e:51:5d:25:40:9c:5c:92: 79:c3:83:f8:c7:3c:73:8e:b2:64:16:9a:13:e0:f0:0a:90:09: a7:03:cf:14:3b:f7:4b:e1:6f:43:e5:20:b9:ef:67:36:b2:5c: 87:eb:5e:77:91:fb:2d:1b:af:21:d1:98:44:c4:c9:a2:27:a4: d5:82:08:92:3e:c1:9e:5f:99:c1:8c:98:7f:8c:51:b7:d5:e0: 45:c2:eb:a1:68:f2:e0:ed:14:3b:c8:5a:33:e8:f6:65:dd:15: 0a:a2:88:9f:87:07:74:c7:12:b0:e9:7c:81:0d:79:18:df:7c: 74:e5:0f:3a:2d:7b:e2:1c:dd:6a:3c:59:7b:e8:ac:28:43:2a: af:45:c4:c2:98:70:7e:9a:84:48:5a:a9:41:78:e2:d1:02:48: 04:d3:6b:8c:72:ea:d6:ee:03:3b:53:4f:38:13:69:bf:e2:ef: a1:d9:b4:ee:35:19:bb:23:a7:a9:cd:f8:3d:c4:42:f8:bc:88: 26:9d:ac:0b:a7:8f:ba:3f:6e:52:79:41:0d:bd:23:c9:8c:48: 97:04:62:f9:34:c3:ae:be:51:a6:65:c1:6a:f1:d3:91:bb:af: 60:9b:59:4a:a2:0e:48:22:a7:e8:e7:b7:9a:fe:9c:f9:50:f6: e7:60:4c:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUwNzE4MTg1OTI4WhcNMjUwNzI1MTg1OTI4WjAYMRYwFAYD VQQDEw02ODdhOTk5MC0yMWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2TBFI6/2JnHdNlKAlpJoJjQZC2TMfE1z8k8bhgMaSMQddghlPAZQNYjJuxOW xX0ZxFSLtVznhSn29IsJ1/EqoRBQ5B1CnkR8jLVYMBUfxswc9vL0Z+5CD1+70//v t5+YKZIHQnH4p/zGriVFvDFUGOlxThTSdeBsCYszgt2UmMK3X7IxQZZZHd5FK6NQ mR12lmK3p7vIAJ2+pA59ES4oGoCVy8y7IhZARMs8pOjTsYd/YvoUnfOYCxQCwlSw ChwRT40qHw5nQzYFGWqM7ENCNu7O+NU4ZbbIwMdPHWX/sF7u+iEx1AiPku2Md48O jj6ZNowji1/+3iEsRwSFQfmNRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQhqkte Ioy83gNt5yEWuA/+34GMMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmzG47O61YEgfRTlFdJUCcXJJ5w4P4xzxzjrJkFpoT4PAKkAmnA88U O/dL4W9D5SC572c2slyH6153kfstG68h0ZhExMmiJ6TVggiSPsGeX5nBjJh/jFG3 1eBFwuuhaPLg7RQ7yFoz6PZl3RUKooifhwd0xxKw6XyBDXkY33x05Q86LXviHN1q PFl76KwoQyqvRcTCmHB+moRIWqlBeOLRAkgE02uMcurW7gM7U084E2m/4u+h2bTu NRm7I6epzfg9xEL4vIgmnawLp4+6P25SeUENvSPJjEiXBGL5NMOuvlGmZcFq8dOR u69gm1lKog5IIqfo57ea/pz5UPbnYEyD -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:16 2025 by rpki-client