$ rpki-client -vvf rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft File: uHLzTVUlH6dw7MOT0mcSED1VBzc.mft (raw, json) Hash identifier: wsE2CVtGDH8oVm0ORNXjR6RgzD3IJbmRfBZwYQRSi8A= Subject key identifier: 24:4C:6C:06:CE:25:E9:04:0C:A0:44:16:44:F2:12:42:7A:72:13:D5 Authority key identifier: B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 Certificate issuer: /CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737 Certificate serial: 03E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft Manifest number: 03D8 Signing time: Sat 19 Jul 2025 01:01:06 +0000 Manifest this update: Sat 19 Jul 2025 01:01:06 +0000 Manifest next update: Sat 26 Jul 2025 01:01:06 +0000 Files and hashes: 1: uHLzTVUlH6dw7MOT0mcSED1VBzc.crl (hash: 2XDF5LmcvdThfXAQjGE1lPVaPbvjc9SOeEGwBgGrJfQ=) 2: 945375FAF69511EC90A47215C4F9AE02.roa (hash: 93z4oqW7DQ1yUII6DWRvY7Xrtn4iF7Cp5BMrU5CKBhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C606, serialNumber=B872F34D55251FA770ECC393D26712103D550737 Validity Not Before: Jul 19 01:01:06 2025 GMT Not After : Jul 26 01:01:06 2025 GMT Subject: CN=687aee52-b723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c7:88:03:b9:dd:0a:1b:9b:c0:83:41:28:cd: 4c:10:1c:d7:63:5f:a4:87:2a:41:f3:67:8a:7c:6a: bc:e2:ce:2d:ac:84:12:17:8f:24:00:9e:2c:d0:71: a7:32:0c:99:e7:86:29:55:42:b2:7d:a4:66:89:a4: 14:f9:84:f9:67:8a:fe:f0:d9:b9:48:c3:f1:a4:4a: d6:de:e7:81:61:be:b2:1a:72:67:fd:ef:ff:d7:25: 78:1d:af:90:f4:2e:32:44:e8:34:e5:73:2f:f2:bf: b5:e1:91:2c:51:d5:e7:2d:8a:32:c5:e1:71:52:75: 4c:68:b6:2b:59:05:84:bf:45:6b:8a:b6:4a:00:3d: a3:b2:4d:6f:ba:d8:f8:f9:33:8d:2c:35:b4:5c:ae: 77:fe:8d:a7:f4:c7:d7:f4:d3:40:87:75:e1:0d:04: 76:a1:9b:d1:72:bb:a5:87:77:ce:8c:da:7b:17:6b: 1f:e9:2c:ec:3f:62:d0:9c:f6:67:67:19:f7:24:88: 52:50:4c:f3:ea:62:70:66:4a:63:83:46:cf:dc:7e: 65:de:c8:ed:26:5c:24:19:b7:d7:99:89:e2:22:9c: 02:ee:f1:86:b5:23:18:b0:c3:0c:a4:28:7c:c6:fe: f0:49:49:0a:be:49:21:46:83:45:ec:f2:93:53:4e: 43:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4C:6C:06:CE:25:E9:04:0C:A0:44:16:44:F2:12:42:7A:72:13:D5 X509v3 Authority Key Identifier: keyid:B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:10:b5:5a:39:c3:2b:6f:85:a3:ce:ee:ac:45:2d:44:69:4c: 41:03:e5:7a:df:08:6c:88:c8:1b:7f:f4:f2:26:85:fd:39:e0: a0:f3:f8:98:0b:50:76:db:52:33:b7:8c:cb:e2:40:04:75:29: d5:a8:fa:8c:2c:fa:5f:ff:51:c7:49:13:16:98:a8:ae:fe:28: 8c:be:16:3e:6b:6b:73:59:73:3c:d3:5e:aa:bb:a3:79:2e:21: 0b:1f:56:e6:b5:fb:18:ac:c3:d4:c6:2d:c7:73:05:4d:4d:85: 23:45:4d:10:f1:e3:29:d8:74:eb:bb:66:12:0f:09:43:17:11: 45:df:d1:b5:6c:29:b6:a7:5b:2d:62:73:ee:27:7c:0f:21:dd: e1:12:a0:c0:5e:96:99:71:c6:e1:99:c3:fd:d2:37:d8:49:f9: 67:e5:40:5c:c9:4f:d9:f1:10:43:91:6f:83:28:a3:27:01:4b: 40:be:f7:b7:1b:d9:8b:23:4f:b3:29:d6:f7:0d:56:42:35:7b: 06:d7:59:eb:43:7b:82:b0:30:4f:98:ff:d5:d8:3a:4c:0d:36: 6c:31:f5:c4:1f:f7:ab:ce:02:68:b0:80:5e:dc:24:c2:b3:79: b1:af:b3:9a:27:92:4b:1b:b1:8d:18:c9:6e:01:83:b1:be:ae: 8e:a9:35:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2MDYxMTAvBgNVBAUTKEI4NzJGMzRENTUyNTFGQTc3MEVDQzM5M0QyNjcxMjEw M0Q1NTA3MzcwHhcNMjUwNzE5MDEwMTA2WhcNMjUwNzI2MDEwMTA2WjAYMRYwFAYD VQQDEw02ODdhZWU1Mi1iNzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMeIA7ndChubwINBKM1MEBzXY1+khypB82eKfGq84s4trIQSF48kAJ4s0HGn MgyZ54YpVUKyfaRmiaQU+YT5Z4r+8Nm5SMPxpErW3ueBYb6yGnJn/e//1yV4Ha+Q 9C4yROg05XMv8r+14ZEsUdXnLYoyxeFxUnVMaLYrWQWEv0VrirZKAD2jsk1vutj4 +TONLDW0XK53/o2n9MfX9NNAh3XhDQR2oZvRcrulh3fOjNp7F2sf6SzsP2LQnPZn Zxn3JIhSUEzz6mJwZkpjg0bP3H5l3sjtJlwkGbfXmYniIpwC7vGGtSMYsMMMpCh8 xv7wSUkKvkkhRoNF7PKTU05DWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRMbAbO JekEDKBEFkTyEkJ6chPVMB8GA1UdIwQYMBaAFLhy801VJR+ncOzDk9JnEhA9VQc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzYwNi83QzhCMTM3QThG QzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2ZHc3TU9UMG1jU0VEMVZC emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITHpUVlVsSDZkdzdNT1QwbWNTRUQxVkJ6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzYwNi83QzhCMTM3QThGQzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2 ZHc3TU9UMG1jU0VEMVZCemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ELVaOcMrb4Wjzu6sRS1EaUxBA+V63whsiMgbf/TyJoX9OeCg8/iY C1B221Izt4zL4kAEdSnVqPqMLPpf/1HHSRMWmKiu/iiMvhY+a2tzWXM8016qu6N5 LiELH1bmtfsYrMPUxi3HcwVNTYUjRU0Q8eMp2HTru2YSDwlDFxFF39G1bCm2p1st YnPuJ3wPId3hEqDAXpaZccbhmcP90jfYSfln5UBcyU/Z8RBDkW+DKKMnAUtAvve3 G9mLI0+zKdb3DVZCNXsG11nrQ3uCsDBPmP/V2DpMDTZsMfXEH/erzgJosIBe3CTC s3mxr7OaJ5JLG7GNGMluAYOxvq6OqTUy -----END CERTIFICATE-----Generated at Sun Jul 20 07:36:23 2025 by rpki-client