$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft File: Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft (raw, json) Hash identifier: u2hUUijDsfk4s9o2sAd2/e7TwqOfbpHhrzQZ2eyKX7I= Subject key identifier: 85:79:0C:51:AD:08:E5:F8:79:94:13:48:63:8E:5C:8F:A0:90:C3:FC Authority key identifier: 51:AE:BA:23:FB:74:5A:55:3A:5E:49:96:DF:1C:81:73:47:3F:17:98 Certificate issuer: /CN=A9183B33/serialNumber=51AEBA23FB745A553A5E4996DF1C8173473F1798 Certificate serial: 0669 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft Manifest number: 0660 Signing time: Tue 22 Jul 2025 22:54:25 +0000 Manifest this update: Tue 22 Jul 2025 22:54:24 +0000 Manifest next update: Tue 29 Jul 2025 22:54:24 +0000 Files and hashes: 1: Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl (hash: G6d0dWZLn8zx8ueN2rQuOqoIvy1S6AfFpDjdvLMPBTw=) 2: 59018DEE340611ED9C72786AC4F9AE02.roa (hash: rP6Pu7EfL4ZTfd4hkNZXRMND1x04kCFhfmQKKfFcDnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:54:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1641 (0x669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B33, serialNumber=51AEBA23FB745A553A5E4996DF1C8173473F1798 Validity Not Before: Jul 22 22:54:24 2025 GMT Not After : Jul 29 22:54:24 2025 GMT Subject: CN=688016a0-4e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e9:47:a6:2d:a8:2f:47:de:53:1d:c2:99:84: 58:9c:b2:c3:99:03:cb:e8:d2:20:51:bf:54:27:29: 07:e2:69:22:de:d1:83:a1:9b:6e:1e:57:f6:23:57: 8f:70:65:f2:d8:4a:eb:12:27:23:42:77:01:d7:d4: b5:08:9d:47:38:e4:1e:8b:6d:77:83:ad:16:20:36: 72:43:5e:7c:8c:75:f1:47:73:9f:0f:06:1e:d8:33: 42:1d:aa:16:a4:71:29:f7:4b:8b:b8:83:90:ab:f4: a9:56:0d:bd:b6:81:77:13:b7:d6:79:de:66:c9:1a: 4a:f7:3e:6b:6d:1d:c3:0b:b6:8f:28:3d:26:c1:57: b1:17:e1:33:23:d2:d2:c7:74:ab:f2:4c:e9:57:6d: e3:fa:91:f8:57:d8:e1:2c:32:4c:24:21:85:62:a0: 98:10:db:f7:6d:b5:55:fb:35:5d:cc:54:8d:98:05: 92:6a:a5:ef:dd:54:11:c3:91:2f:8d:9a:cf:1b:2b: a5:f4:33:3c:48:f8:9c:b0:ab:1f:6a:c5:8e:09:9e: cb:43:33:a0:a8:cc:a7:65:98:fa:f1:fb:11:64:0e: 8e:6d:23:ac:23:41:ab:0e:28:7c:b8:c1:26:29:d3: 36:d3:06:3b:c0:8d:a8:ab:f4:4c:d4:c4:0b:24:c4: 8a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:79:0C:51:AD:08:E5:F8:79:94:13:48:63:8E:5C:8F:A0:90:C3:FC X509v3 Authority Key Identifier: keyid:51:AE:BA:23:FB:74:5A:55:3A:5E:49:96:DF:1C:81:73:47:3F:17:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:e4:2e:12:40:71:59:96:f9:4e:bb:c1:ea:c1:77:75:cf:6e: 81:eb:29:e1:33:6a:f6:1a:57:82:f3:14:80:fe:bf:5a:fb:cc: 6b:eb:7f:a7:3b:50:75:22:8a:c0:3a:d8:57:84:32:10:51:19: 62:36:ef:56:01:c1:1a:e9:39:e7:03:4b:83:ea:8b:6b:19:f0: ee:a0:30:ba:88:64:e6:75:b9:0b:87:d9:7b:ef:44:0e:c3:8a: de:a2:60:79:2e:9c:ea:c8:55:8b:b6:cc:5a:c9:85:96:9f:49: f7:2c:3e:3b:88:ce:af:7d:39:4a:df:6c:19:2c:b5:bd:71:46: 36:32:57:ce:2e:9b:d1:58:fb:da:31:39:b3:66:06:b5:60:a2: d8:3a:18:a3:95:e3:14:24:45:03:62:72:59:03:b8:54:6d:19: 47:cd:e4:b8:00:93:34:44:aa:3e:37:79:fd:8b:27:97:c9:87: 11:be:b3:42:a1:0a:95:ac:60:a8:d1:c8:b4:15:ef:93:12:73: a0:4d:22:a9:b2:33:b1:96:5d:5f:65:18:44:c1:5a:97:49:54: b5:c6:7f:5e:94:6b:74:ea:25:c8:30:72:7e:83:30:5f:7d:0b: 1a:f0:05:94:40:07:3b:73:d5:6c:5b:c3:d7:c8:30:b3:c7:8b: b5:09:2c:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCMzMxMTAvBgNVBAUTKDUxQUVCQTIzRkI3NDVBNTUzQTVFNDk5NkRGMUM4MTcz NDczRjE3OTgwHhcNMjUwNzIyMjI1NDI0WhcNMjUwNzI5MjI1NDI0WjAYMRYwFAYD VQQDEw02ODgwMTZhMC00ZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxulHpi2oL0feUx3CmYRYnLLDmQPL6NIgUb9UJykH4mki3tGDoZtuHlf2I1eP cGXy2ErrEicjQncB19S1CJ1HOOQei213g60WIDZyQ158jHXxR3OfDwYe2DNCHaoW pHEp90uLuIOQq/SpVg29toF3E7fWed5myRpK9z5rbR3DC7aPKD0mwVexF+EzI9LS x3Sr8kzpV23j+pH4V9jhLDJMJCGFYqCYENv3bbVV+zVdzFSNmAWSaqXv3VQRw5Ev jZrPGyul9DM8SPicsKsfasWOCZ7LQzOgqMynZZj68fsRZA6ObSOsI0GrDih8uMEm KdM20wY7wI2oq/RM1MQLJMSK0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIV5DFGt COX4eZQTSGOOXI+gkMP8MB8GA1UdIwQYMBaAFFGuuiP7dFpVOl5Jlt8cgXNHPxeY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0IzMy9DRDM1REIxQTkx MjQxMUVCOUI3MjkwM0FDNEY5QUUwMi9VYTY2SV90MFdsVTZYa21XM3h5QmMwY19G NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhNjZJX3QwV2xVNlhrbVczeHlCYzBjX0Y1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0IzMy9DRDM1REIxQTkxMjQxMUVCOUI3MjkwM0FDNEY5QUUwMi9VYTY2SV90MFds VTZYa21XM3h5QmMwY19GNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS5C4SQHFZlvlOu8HqwXd1z26B6ynhM2r2GleC8xSA/r9a+8xr63+n O1B1IorAOthXhDIQURliNu9WAcEa6TnnA0uD6otrGfDuoDC6iGTmdbkLh9l770QO w4reomB5LpzqyFWLtsxayYWWn0n3LD47iM6vfTlK32wZLLW9cUY2MlfOLpvRWPva MTmzZga1YKLYOhijleMUJEUDYnJZA7hUbRlHzeS4AJM0RKo+N3n9iyeXyYcRvrNC oQqVrGCo0ci0Fe+TEnOgTSKpsjOxll1fZRhEwVqXSVS1xn9elGt06iXIMHJ+gzBf fQsa8AWUQAc7c9VsW8PXyDCzx4u1CSyl -----END CERTIFICATE-----Generated at Thu Jul 24 05:03:47 2025 by rpki-client