$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: QcxsOHb/fhtTmTWjWQNfJRf4XAVibM8sMH1wvAVHq8A= Subject key identifier: 39:1B:3E:90:46:10:8D:09:33:53:52:A8:DD:20:EF:74:2C:3E:A0:01 Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 0654 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 0651 Signing time: Fri 18 Jul 2025 22:53:44 +0000 Manifest this update: Fri 18 Jul 2025 22:53:43 +0000 Manifest next update: Fri 25 Jul 2025 22:53:43 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: wehzQ/4GPWOGMmbrdQkO8bLHZkSrtN+xxqR2HyQxtTo=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: hzbXrtnctw9RaO4u4LO+M5su44TkMPAo6wV59Ue+QJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1620 (0x654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Jul 18 22:53:43 2025 GMT Not After : Jul 25 22:53:43 2025 GMT Subject: CN=687ad077-55a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d2:34:05:c4:15:b6:22:08:47:31:00:39:68: 18:c2:56:6d:3c:a2:0b:fd:80:7d:91:1a:77:34:cd: b3:d1:c5:09:02:0d:f7:fb:e5:ad:e9:c2:dd:5e:50: 2e:50:31:90:a5:54:3c:f4:28:85:6f:e5:3d:be:81: 88:14:5a:e5:13:f3:f8:9e:bc:e4:3a:2b:78:41:e5: 23:d0:bf:19:78:a5:1e:44:50:57:7b:f1:df:3c:b1: 25:c4:0b:1d:ba:15:17:5e:2c:8c:08:a1:1c:5f:97: 42:b6:0b:ac:5a:7a:50:56:5c:c2:e0:62:9d:9f:8b: e2:37:83:f8:56:67:eb:8e:e6:3f:6b:51:9e:b7:ae: 5f:f4:f2:ca:6a:1f:7c:39:bc:16:93:ac:aa:88:da: e5:b2:4e:b1:90:c7:0a:22:69:19:f5:92:68:cc:ea: aa:11:77:d5:38:9a:27:de:23:97:54:1b:3c:a0:5b: 93:f5:94:82:13:cd:f2:91:23:80:1c:35:80:06:68: 63:08:b3:93:1f:9d:dc:71:36:ed:6a:85:a3:20:10: 71:78:db:4e:a6:6c:7f:c9:44:9c:ed:82:48:bf:c7: 7e:cb:c5:5b:11:2f:ee:11:97:bd:1c:ba:77:6f:4d: cb:6b:7e:a1:24:26:92:69:5e:b9:84:a8:5c:24:5b: 59:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:1B:3E:90:46:10:8D:09:33:53:52:A8:DD:20:EF:74:2C:3E:A0:01 X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b7:bc:75:ff:72:c0:34:8a:b6:e3:c6:af:db:66:a7:71:df: ff:1d:49:e6:67:5c:f5:f2:88:c2:e3:86:a2:4b:56:f3:42:43: f3:2a:59:cd:b8:fb:70:74:35:b8:8a:44:af:d9:86:f5:89:83: 2f:c9:57:e4:0d:e6:5a:7b:2e:41:c5:d5:a0:84:99:cf:d4:46: 88:42:04:ef:cc:6a:18:f0:a8:26:af:6c:bd:a6:f4:45:fa:a9: 2c:7f:03:d1:c2:bc:57:b2:d0:a1:60:15:43:87:20:b5:2f:ea: cb:fa:15:47:53:40:04:22:77:24:d1:9c:a2:b2:1c:02:bc:78: 0e:5c:72:fd:9a:82:74:f9:7b:6b:b9:10:94:93:e2:6e:b4:62: 5b:3a:8e:a2:7a:47:31:7e:16:a4:0c:67:02:0c:fb:c8:06:89: a5:12:69:8b:b0:fe:99:7d:0c:44:77:83:8f:8b:64:8b:53:79: c3:8a:4e:80:49:df:5c:cd:dd:51:4e:6c:a3:ee:eb:bb:c1:a5: eb:0a:0b:60:e9:d0:05:17:da:e2:2e:11:3e:ea:94:75:34:54: 56:87:89:1f:8b:5a:5f:27:91:12:27:95:f5:d0:19:58:96:db: 4f:00:0f:a3:8b:7c:8e:07:86:b1:e5:69:40:ad:37:78:ed:d5: 6d:7a:a7:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUwNzE4MjI1MzQzWhcNMjUwNzI1MjI1MzQzWjAYMRYwFAYD VQQDEw02ODdhZDA3Ny01NWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtI0BcQVtiIIRzEAOWgYwlZtPKIL/YB9kRp3NM2z0cUJAg33++Wt6cLdXlAu UDGQpVQ89CiFb+U9voGIFFrlE/P4nrzkOit4QeUj0L8ZeKUeRFBXe/HfPLElxAsd uhUXXiyMCKEcX5dCtgusWnpQVlzC4GKdn4viN4P4VmfrjuY/a1Get65f9PLKah98 ObwWk6yqiNrlsk6xkMcKImkZ9ZJozOqqEXfVOJon3iOXVBs8oFuT9ZSCE83ykSOA HDWABmhjCLOTH53ccTbtaoWjIBBxeNtOpmx/yUSc7YJIv8d+y8VbES/uEZe9HLp3 b03La36hJCaSaV65hKhcJFtZHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkbPpBG EI0JM1NSqN0g73QsPqABMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7t7x1/3LANIq248av22ancd//HUnmZ1z18ojC44aiS1bzQkPzKlnN uPtwdDW4ikSv2Yb1iYMvyVfkDeZaey5BxdWghJnP1EaIQgTvzGoY8Kgmr2y9pvRF +qksfwPRwrxXstChYBVDhyC1L+rL+hVHU0AEInck0ZyishwCvHgOXHL9moJ0+Xtr uRCUk+JutGJbOo6iekcxfhakDGcCDPvIBomlEmmLsP6ZfQxEd4OPi2SLU3nDik6A Sd9czd1RTmyj7uu7waXrCgtg6dAFF9riLhE+6pR1NFRWh4kfi1pfJ5ESJ5X10BlY lttPAA+ji3yOB4ax5WlArTd47dVteqcp -----END CERTIFICATE-----Generated at Sun Jul 20 11:29:05 2025 by rpki-client