$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft File: Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft (raw, json) Hash identifier: Hds+6Bs59AP/9OKD58gmRu3o4IvaePVrxnZGrS01Pkw= Subject key identifier: 2D:EB:6C:44:37:41:11:78:5F:6F:0E:00:5C:B1:CD:9B:2A:D3:6F:59 Authority key identifier: 51:AE:BA:23:FB:74:5A:55:3A:5E:49:96:DF:1C:81:73:47:3F:17:98 Certificate issuer: /CN=A9183B33/serialNumber=51AEBA23FB745A553A5E4996DF1C8173473F1798 Certificate serial: 066A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft Manifest number: 0661 Signing time: Thu 24 Jul 2025 22:51:33 +0000 Manifest this update: Thu 24 Jul 2025 22:51:33 +0000 Manifest next update: Thu 31 Jul 2025 22:51:33 +0000 Files and hashes: 1: Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl (hash: rYvk+txCSjHtHzeTCIn0OnINWz4e17pSIpHzBFfRBwI=) 2: 59018DEE340611ED9C72786AC4F9AE02.roa (hash: rP6Pu7EfL4ZTfd4hkNZXRMND1x04kCFhfmQKKfFcDnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1642 (0x66a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B33, serialNumber=51AEBA23FB745A553A5E4996DF1C8173473F1798 Validity Not Before: Jul 24 22:51:33 2025 GMT Not After : Jul 31 22:51:33 2025 GMT Subject: CN=6882b8f5-74dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0f:86:82:eb:16:3a:1f:d8:3a:e7:01:ac:17: 35:03:ad:6d:b9:12:e7:fd:83:9c:fb:f6:eb:00:9c: e9:a6:03:3c:02:0d:47:1b:64:8b:d5:25:72:6c:3e: 87:fa:5f:f6:9c:21:cd:f4:1b:28:ad:aa:49:0f:10: a1:79:44:d9:4e:60:82:de:17:f5:bc:3a:79:ed:df: f6:47:43:25:b1:11:c0:50:31:19:06:8d:97:65:7d: c8:a8:ff:0f:a1:20:3e:15:48:76:3e:9d:40:73:43: b1:6b:18:cc:ab:ca:db:52:43:97:3c:22:8b:3c:83: 16:02:86:b5:e8:a3:c8:21:81:72:b9:b2:80:c1:ce: ed:84:3a:69:9a:01:9f:69:86:54:be:f6:cf:0b:07: 35:f8:4e:db:42:f4:79:fe:be:28:06:e1:df:36:8a: 1d:9c:71:0b:f5:8a:3f:92:e3:63:02:0a:03:5b:93: 96:d8:88:3b:0a:ff:68:1d:2e:1b:40:8f:f3:7b:55: dc:bd:79:9f:17:22:c7:d5:66:56:43:b3:8d:86:16: d7:82:e9:88:bc:1a:4e:ee:7b:89:a2:b3:98:8f:a3: a1:ed:75:27:4b:46:c3:d2:a9:a0:4f:1b:66:33:3c: 9c:65:92:dc:5b:df:43:b9:09:55:2e:ae:dd:c2:eb: 90:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EB:6C:44:37:41:11:78:5F:6F:0E:00:5C:B1:CD:9B:2A:D3:6F:59 X509v3 Authority Key Identifier: keyid:51:AE:BA:23:FB:74:5A:55:3A:5E:49:96:DF:1C:81:73:47:3F:17:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:c7:2d:70:62:d7:29:84:a0:8c:f1:74:ed:33:ce:85:27:1b: 60:93:78:f3:43:ec:5f:16:83:6d:ed:5a:b0:d0:b1:b2:fd:6b: e0:b0:66:bd:a4:6f:6d:26:ea:53:b7:e3:bd:16:85:41:19:66: 92:d7:a7:ac:f1:fb:c5:e5:47:37:4d:30:cf:19:32:50:06:80: e3:2f:a1:78:d2:a8:2a:38:87:70:62:bd:4b:9a:da:0f:6b:de: d8:a1:2d:6a:af:42:ae:9b:66:9a:b1:d3:15:2d:eb:f0:cc:dc: 93:cb:ed:2c:6f:d4:1e:0f:f7:55:2e:1d:1d:9d:a8:64:2b:81: 42:3c:ec:a3:04:22:74:d1:ae:28:a2:a2:77:ab:70:cf:ea:c6: 15:28:4b:7b:17:70:d9:c1:db:90:0e:c6:4b:cb:49:3f:28:7b: ae:3b:7f:af:21:de:f1:c0:3a:10:61:5a:e9:11:9b:dd:21:fc: 2b:60:04:a2:02:2e:35:a7:cb:4c:f5:47:d2:4b:f2:18:34:d7: 10:d1:ea:af:92:7b:ca:b9:d0:d6:18:99:38:0b:7e:c9:29:a6: f9:53:99:4a:a5:9e:47:3b:33:32:f9:d5:fc:8a:aa:72:29:b7: 45:40:b6:d7:1d:72:91:ca:7c:e6:20:cd:ec:c6:95:fb:9e:ee: 6b:c8:c7:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCMzMxMTAvBgNVBAUTKDUxQUVCQTIzRkI3NDVBNTUzQTVFNDk5NkRGMUM4MTcz NDczRjE3OTgwHhcNMjUwNzI0MjI1MTMzWhcNMjUwNzMxMjI1MTMzWjAYMRYwFAYD VQQDEw02ODgyYjhmNS03NGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArA+GgusWOh/YOucBrBc1A61tuRLn/YOc+/brAJzppgM8Ag1HG2SL1SVybD6H +l/2nCHN9BsorapJDxCheUTZTmCC3hf1vDp57d/2R0MlsRHAUDEZBo2XZX3IqP8P oSA+FUh2Pp1Ac0OxaxjMq8rbUkOXPCKLPIMWAoa16KPIIYFyubKAwc7thDppmgGf aYZUvvbPCwc1+E7bQvR5/r4oBuHfNoodnHEL9Yo/kuNjAgoDW5OW2Ig7Cv9oHS4b QI/ze1XcvXmfFyLH1WZWQ7ONhhbXgumIvBpO7nuJorOYj6Oh7XUnS0bD0qmgTxtm MzycZZLcW99DuQlVLq7dwuuQnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3rbEQ3 QRF4X28OAFyxzZsq029ZMB8GA1UdIwQYMBaAFFGuuiP7dFpVOl5Jlt8cgXNHPxeY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0IzMy9DRDM1REIxQTkx MjQxMUVCOUI3MjkwM0FDNEY5QUUwMi9VYTY2SV90MFdsVTZYa21XM3h5QmMwY19G NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhNjZJX3QwV2xVNlhrbVczeHlCYzBjX0Y1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0IzMy9DRDM1REIxQTkxMjQxMUVCOUI3MjkwM0FDNEY5QUUwMi9VYTY2SV90MFds VTZYa21XM3h5QmMwY19GNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnxy1wYtcphKCM8XTtM86FJxtgk3jzQ+xfFoNt7Vqw0LGy/WvgsGa9 pG9tJupTt+O9FoVBGWaS16es8fvF5Uc3TTDPGTJQBoDjL6F40qgqOIdwYr1LmtoP a97YoS1qr0Kum2aasdMVLevwzNyTy+0sb9QeD/dVLh0dnahkK4FCPOyjBCJ00a4o oqJ3q3DP6sYVKEt7F3DZwduQDsZLy0k/KHuuO3+vId7xwDoQYVrpEZvdIfwrYASi Ai41p8tM9UfSS/IYNNcQ0eqvknvKudDWGJk4C37JKab5U5lKpZ5HOzMy+dX8iqpy KbdFQLbXHXKRynzmIM3sxpX7nu5ryMdV -----END CERTIFICATE-----Generated at Fri Jul 25 07:10:33 2025 by rpki-client