$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft File: S-UGizexYyUw_1Ijhue3-wGI6eo.mft (raw, json) Hash identifier: HkDUwk8TQPrwwXpruHICg3RbBjaQGCbQBouUcdxDE60= Subject key identifier: 43:52:88:1B:0F:5B:63:0E:96:FC:B0:17:6A:65:E1:66:65:BB:09:C4 Authority key identifier: 4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA Certificate issuer: /CN=A9172BD3/serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft Manifest number: 0123 Signing time: Sat 19 Jul 2025 04:59:53 +0000 Manifest this update: Sat 19 Jul 2025 04:59:52 +0000 Manifest next update: Sat 26 Jul 2025 04:59:52 +0000 Files and hashes: 1: S-UGizexYyUw_1Ijhue3-wGI6eo.crl (hash: 3rZn7T1mau46K1PUGrOd0COWVbN1vsTC5PbQyD62lhs=) 2: B979F0F4BE4211EE9D6A1D6CC4F9AE02.roa (hash: PrkTvOXkxIIDm1NyNDWg8hQLP2IiT8tO2SVVH/dIBvI=) 3: 2DAB7B74BE4211EE970F4140C4F9AE02.roa (hash: s22fNuehfcR8cdi3cFR8Z1yPLk8LwMQLolDpdzgZgc0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:59:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3, serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Validity Not Before: Jul 19 04:59:52 2025 GMT Not After : Jul 26 04:59:52 2025 GMT Subject: CN=687b2648-8f8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b1:78:a1:ad:18:0c:9b:b2:6d:ae:36:14:c3: 11:5c:dd:8b:0e:d4:08:50:17:3e:f0:4a:01:80:6e: c2:cc:e4:25:6b:be:19:71:db:b1:dc:9d:ff:27:d9: e5:95:b6:b9:44:f6:ad:52:8f:28:46:fd:c8:c0:72: 1e:82:7d:6e:9f:12:aa:7e:27:33:54:0a:ed:4c:de: 0f:9b:47:99:06:0e:63:a4:85:79:df:08:da:cf:44: 79:00:d3:93:8c:c5:bc:86:a3:af:7a:7d:b1:96:62: 7a:d6:6a:d8:a1:f0:c5:03:fd:87:63:7a:68:7a:cb: 74:ab:e4:e3:2b:cc:3a:ee:ac:1f:cc:5d:e3:b0:81: 70:37:7e:a9:62:3e:13:4c:68:a4:89:12:64:87:6f: 11:b6:e6:03:d2:0c:d6:92:9b:14:52:41:a4:69:9e: 97:7f:8f:df:3b:c0:2b:b9:e1:2c:f2:7c:50:56:ec: 4b:bc:5a:27:6a:c7:82:7e:51:e7:2f:e5:07:e6:53: 3c:9f:49:b2:dd:7d:96:27:92:2f:78:37:9e:af:1d: a9:95:81:b4:96:cc:13:12:86:1d:e5:eb:cb:22:65: 41:1f:7d:ea:4b:c0:94:e2:80:62:65:ec:ee:4d:15: 3f:0f:f6:0c:82:1b:cd:52:cd:7e:f9:6d:0b:49:dd: 51:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:52:88:1B:0F:5B:63:0E:96:FC:B0:17:6A:65:E1:66:65:BB:09:C4 X509v3 Authority Key Identifier: keyid:4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:5b:1f:d2:ec:82:f0:38:08:e7:fc:86:a2:35:96:f7:4c:9d: 08:3f:09:e6:4a:ac:b3:fe:d9:44:86:36:33:fe:1d:92:05:d4: e0:17:0b:9b:50:3e:ba:1f:23:ec:1f:26:7a:89:76:fa:b9:87: c1:b1:cd:67:1a:4e:4d:d8:1f:9e:94:a8:20:e6:61:a9:b7:2a: 74:47:6f:f9:35:59:ee:17:a6:50:50:36:88:35:ab:65:bf:1e: 17:ff:7f:02:21:61:eb:ae:54:3c:53:48:2c:9d:ad:bf:34:e2: 7a:69:39:18:76:d7:54:1e:3c:9a:65:60:d6:6e:bf:bd:d8:6e: 9b:bc:42:39:42:e9:8d:59:54:20:b0:2e:11:6e:be:8d:b8:84: 36:94:51:03:e1:2b:60:4a:62:88:1e:f4:e1:67:a3:c6:3c:22: 76:d3:6c:a6:ed:93:b7:72:5e:09:5e:da:07:af:43:0d:83:40: 79:15:00:8c:9d:5c:27:59:1a:2b:cb:7a:8c:37:8f:d6:12:2a: 40:4d:05:b8:ab:d9:b7:c7:45:e7:de:5f:0e:e6:39:ec:9e:02: 9e:48:28:ac:85:04:a4:b9:91:d7:81:96:64:10:ff:4e:59:59: 3c:a4:e2:9e:42:a8:cc:98:c5:d0:35:e4:f1:93:e0:2e:e4:e7: 78:a5:2e:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCRDMxMTAvBgNVBAUTKDRCRTUwNjhCMzdCMTYzMjUzMEZGNTIyMzg2RTdCN0ZC MDE4OEU5RUEwHhcNMjUwNzE5MDQ1OTUyWhcNMjUwNzI2MDQ1OTUyWjAYMRYwFAYD VQQDEw02ODdiMjY0OC04ZjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbF4oa0YDJuyba42FMMRXN2LDtQIUBc+8EoBgG7CzOQla74Zcdux3J3/J9nl lba5RPatUo8oRv3IwHIegn1unxKqficzVArtTN4Pm0eZBg5jpIV53wjaz0R5ANOT jMW8hqOven2xlmJ61mrYofDFA/2HY3poest0q+TjK8w67qwfzF3jsIFwN36pYj4T TGikiRJkh28RtuYD0gzWkpsUUkGkaZ6Xf4/fO8ArueEs8nxQVuxLvFonaseCflHn L+UH5lM8n0my3X2WJ5IveDeerx2plYG0lswTEoYd5evLImVBH33qS8CU4oBiZezu TRU/D/YMghvNUs1++W0LSd1R0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENSiBsP W2MOlvywF2pl4WZluwnEMB8GA1UdIwQYMBaAFEvlBos3sWMlMP9SI4bnt/sBiOnq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkJEMy9FODBGMTM3Q0I5 OTIxMUVFQUI5RjFEMTlDNEY5QUUwMi9TLVVHaXpleFl5VXdfMUlqaHVlMy13R0k2 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1MtVUdpemV4WXlVd18xSWpodWUzLXdHSTZlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkJEMy9FODBGMTM3Q0I5OTIxMUVFQUI5RjFEMTlDNEY5QUUwMi9TLVVHaXpleFl5 VXdfMUlqaHVlMy13R0k2ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApWx/S7ILwOAjn/IaiNZb3TJ0IPwnmSqyz/tlEhjYz/h2SBdTgFwub UD66HyPsHyZ6iXb6uYfBsc1nGk5N2B+elKgg5mGptyp0R2/5NVnuF6ZQUDaINatl vx4X/38CIWHrrlQ8U0gsna2/NOJ6aTkYdtdUHjyaZWDWbr+92G6bvEI5QumNWVQg sC4Rbr6NuIQ2lFED4StgSmKIHvThZ6PGPCJ202ym7ZO3cl4JXtoHr0MNg0B5FQCM nVwnWRory3qMN4/WEipATQW4q9m3x0Xn3l8O5jnsngKeSCishQSkuZHXgZZkEP9O WVk8pOKeQqjMmMXQNeTxk+Au5Od4pS6M -----END CERTIFICATE-----Generated at Sun Jul 20 18:52:11 2025 by rpki-client