$ rpki-client -vvf rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft File: uMGYUq7H2lGkUL59p9lYc77eNzQ.mft (raw, json) Hash identifier: tj/5gFFyKFM31ZCEJZSEex8kqrbqAmoOIEPis9jvcMQ= Subject key identifier: A5:0C:84:46:95:3D:29:69:19:5E:18:65:74:A9:4E:A2:34:FB:E0:4F Authority key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 Certificate issuer: /CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft Manifest number: 93 Signing time: Sat 19 Jul 2025 06:39:47 +0000 Manifest this update: Sat 19 Jul 2025 06:39:47 +0000 Manifest next update: Sat 26 Jul 2025 06:39:47 +0000 Files and hashes: 1: uMGYUq7H2lGkUL59p9lYc77eNzQ.crl (hash: oknD0ZNN6dk0ZTemm0KPdAYpU6rVE755msZpZVDuKTY=) 2: 91F29F5E86DD11EFB3D7A929C4F9AE02.roa (hash: ZCgG7FYX4Z+FrZu/NpwbDBG7rLXKjEvv9WpnC42UALI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C78E, serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Validity Not Before: Jul 19 06:39:47 2025 GMT Not After : Jul 26 06:39:47 2025 GMT Subject: CN=687b3db3-c05c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5a:ba:e6:6e:d3:45:27:57:7d:5b:d3:69:6d: eb:02:dc:04:41:68:52:3e:74:c0:38:76:11:ff:51: d0:6e:ca:87:e4:fe:6c:5d:79:e4:c2:88:ab:e3:8b: 33:63:11:86:cb:aa:2c:33:16:aa:68:01:4f:4b:d7: 07:f5:e6:9d:af:69:c7:7b:7b:88:b3:85:13:e2:65: 6b:ec:d1:30:e5:33:15:fc:93:50:39:70:f8:2f:5e: 3f:ea:8b:7d:65:b2:a7:a9:b3:12:b0:9e:82:fd:9f: 99:18:30:06:db:65:e6:6d:77:7c:b6:a8:fc:0b:1a: 36:74:45:55:01:5f:48:96:de:60:e3:3d:a9:6e:81: 84:64:99:65:a0:7a:97:38:62:ec:f3:b4:a4:05:5f: 7a:13:44:a3:cc:4c:da:5f:5a:f2:46:b9:72:04:c4: f4:e5:63:01:89:9a:84:f5:21:be:87:e0:6b:f1:2d: 92:ae:5a:c9:ca:d7:7b:b8:ab:d3:92:05:92:c8:5e: 62:4a:06:70:83:25:40:07:e4:e6:1c:d1:7a:b1:de: e0:e7:e8:6a:4d:68:d6:e9:c6:d6:56:da:79:f5:33: 95:35:84:bb:16:39:84:fe:23:3a:65:78:84:78:17: ea:b9:75:d2:8a:66:04:f4:47:88:7a:96:42:b4:c8: 4d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0C:84:46:95:3D:29:69:19:5E:18:65:74:A9:4E:A2:34:FB:E0:4F X509v3 Authority Key Identifier: keyid:B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:0b:9a:92:38:c7:c3:87:1b:b3:a3:f9:68:d2:36:b7:b7:d2: eb:ba:40:fc:4f:08:bd:ca:b4:e5:33:16:91:6a:97:fa:03:4a: a6:52:bf:ee:03:28:ce:bd:36:81:88:53:d0:65:ac:99:ae:ee: f5:f0:26:15:f1:7d:04:7b:e3:d0:b5:2f:bf:53:66:fd:fe:43: 26:01:f2:18:8b:ff:b9:97:28:d5:7c:c4:17:81:f1:3b:92:6a: ea:67:ab:c8:24:0d:1c:2f:67:f4:ae:78:d1:fe:4a:4d:a7:1f: ef:78:66:28:d6:30:29:ec:c8:26:a8:1e:12:e0:79:8f:64:e8: c1:43:25:94:e8:8b:e7:fd:c9:30:90:ef:9e:9f:3b:e3:21:fe: ca:f5:7b:6b:86:fa:a3:ea:76:a6:d1:ad:ee:b5:89:fa:7a:1b: 44:79:41:bd:24:13:3b:f5:25:b9:81:8e:d7:a5:5b:07:1c:8a: 02:94:00:ef:e9:a4:9a:f1:0d:44:f5:d0:67:48:e3:a1:4f:5c: 67:27:3e:ae:81:f3:d8:d8:2a:80:6b:bc:62:81:05:f1:6f:94: 30:ca:a3:f5:29:0b:64:8e:4c:66:57:c2:02:72:28:2e:14:cc: 5d:76:56:73:e1:cb:5d:d8:9f:5a:ed:11:d0:85:37:b9:eb:08: 2e:6c:18:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3OEUxMTAvBgNVBAUTKEI4QzE5ODUyQUVDN0RBNTFBNDUwQkU3REE3RDk1ODcz QkVERTM3MzQwHhcNMjUwNzE5MDYzOTQ3WhcNMjUwNzI2MDYzOTQ3WjAYMRYwFAYD VQQDEw02ODdiM2RiMy1jMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Fq65m7TRSdXfVvTaW3rAtwEQWhSPnTAOHYR/1HQbsqH5P5sXXnkwoir44sz YxGGy6osMxaqaAFPS9cH9eadr2nHe3uIs4UT4mVr7NEw5TMV/JNQOXD4L14/6ot9 ZbKnqbMSsJ6C/Z+ZGDAG22XmbXd8tqj8Cxo2dEVVAV9Ilt5g4z2pboGEZJlloHqX OGLs87SkBV96E0SjzEzaX1ryRrlyBMT05WMBiZqE9SG+h+Br8S2SrlrJytd7uKvT kgWSyF5iSgZwgyVAB+TmHNF6sd7g5+hqTWjW6cbWVtp59TOVNYS7FjmE/iM6ZXiE eBfquXXSimYE9EeIepZCtMhNAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUMhEaV PSlpGV4YZXSpTqI0++BPMB8GA1UdIwQYMBaAFLjBmFKux9pRpFC+fafZWHO+3jc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Qzc4RS9BMDIwMUIyMDg2 REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJsR2tVTDU5cDlsWWM3N2VO elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VNR1lVcTdIMmxHa1VMNTlwOWxZYzc3ZU56US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Qzc4RS9BMDIwMUIyMDg2REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJs R2tVTDU5cDlsWWM3N2VOelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuC5qSOMfDhxuzo/lo0ja3t9LrukD8Twi9yrTlMxaRapf6A0qmUr/u AyjOvTaBiFPQZayZru718CYV8X0Ee+PQtS+/U2b9/kMmAfIYi/+5lyjVfMQXgfE7 kmrqZ6vIJA0cL2f0rnjR/kpNpx/veGYo1jAp7MgmqB4S4HmPZOjBQyWU6Ivn/ckw kO+enzvjIf7K9Xtrhvqj6nam0a3utYn6ehtEeUG9JBM79SW5gY7XpVsHHIoClADv 6aSa8Q1E9dBnSOOhT1xnJz6ugfPY2CqAa7xigQXxb5QwyqP1KQtkjkxmV8ICcigu FMxddlZz4ctd2J9a7RHQhTe56wgubBiP -----END CERTIFICATE-----Generated at Sun Jul 20 10:53:49 2025 by rpki-client