$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: yoKa0kZo4H0P6whlz8pAicUI7vXooYF98d0d6qOj4Fo= Subject key identifier: 07:22:D6:7F:5D:7E:DA:B0:28:5A:24:CC:0C:86:7A:96:19:1B:A6:9E Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 02E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 02E1 Signing time: Fri 25 Jul 2025 01:43:52 +0000 Manifest this update: Fri 25 Jul 2025 01:43:51 +0000 Manifest next update: Fri 01 Aug 2025 01:43:51 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: 7ROz0HYBgYf0/TmWUgt5nl6JYHsMbvmZ+2HThFDXuy0=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 23:53:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 739 (0x2e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: Jul 25 01:43:51 2025 GMT Not After : Aug 1 01:43:51 2025 GMT Subject: CN=6882e157-25ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:40:87:fe:2c:57:a9:27:06:f8:2a:fa:d1: f1:2e:a2:2b:eb:a5:64:41:27:f3:5a:ae:af:02:94: 37:0b:d7:67:67:57:8d:00:45:35:88:ce:20:f6:d3: a2:eb:d7:07:36:6e:c0:0f:da:b6:09:d8:7c:e5:07: 63:b1:e9:bf:d2:1e:04:ef:1e:20:13:cc:68:df:23: 54:e1:e6:d8:22:79:44:23:b1:4c:1a:d5:f0:71:fc: d6:68:74:14:8e:bb:63:3a:1e:be:7c:89:88:9d:3c: aa:d3:53:c5:e7:fa:fd:91:4c:85:63:ab:e9:dc:f1: 8c:37:50:80:3f:c6:33:a8:52:6f:3d:6b:a6:90:6e: 7c:b2:75:72:b0:12:34:ea:6f:13:ca:04:90:c0:44: cd:0f:fb:f2:44:d1:2f:ad:c2:5e:a6:b7:7a:8c:41: e7:d5:bd:7e:80:e6:d3:93:0b:e2:83:25:bf:b1:a4: 0c:5e:96:33:6a:d9:1b:50:21:1e:5e:20:61:c0:5a: 45:b9:67:d9:cb:c6:6a:95:f2:51:87:85:0a:05:69: 7f:21:52:8b:46:56:9c:c5:85:77:7b:06:2d:b6:b4: 29:7e:20:26:91:e1:a9:fd:64:63:0b:4e:a3:08:7e: 56:ad:7f:a0:1e:46:b4:c3:a8:98:df:57:5a:6c:a3: 8f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:22:D6:7F:5D:7E:DA:B0:28:5A:24:CC:0C:86:7A:96:19:1B:A6:9E X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:37:80:61:ff:8b:85:69:89:ba:c0:25:2f:49:bf:34:99:0c: 98:02:65:62:2b:5f:4d:57:2f:a6:b8:eb:f9:12:a7:05:1c:cb: 1d:05:dd:79:ab:dd:72:52:d6:51:fd:89:91:88:d8:50:f8:6a: 0f:8b:98:d5:df:98:f8:10:ca:af:ee:89:80:ae:06:53:b7:d0: 68:40:ad:03:db:e6:f5:74:c8:70:a5:af:b5:af:1e:34:05:6f: 4e:f4:95:af:0d:8e:d6:40:44:75:d3:c2:af:65:32:53:d0:87: 17:4c:7a:9d:82:7b:1e:70:47:5f:9a:a6:70:3a:c0:52:46:79: 3f:4e:ae:b8:e0:8e:1f:58:a2:96:a3:26:6f:08:e1:63:d5:e7: f0:fc:86:47:f9:6b:14:38:71:c6:f9:f1:85:6c:cd:ef:9f:d5: 2b:17:56:39:b0:09:4d:ef:6a:c9:e3:72:99:d0:a9:5d:6e:fd: e6:8c:05:29:66:7d:b5:a2:59:42:1d:1e:54:02:c3:68:6e:b4: f7:ce:01:c8:68:fd:db:2b:3e:46:16:c1:7f:c2:7c:f1:cf:0e: 7f:c9:65:6e:22:4d:ab:e7:4e:67:70:52:92:fc:c4:b2:cf:fb: e5:0c:91:9e:c4:1c:e6:ec:e0:2b:b7:66:e8:dd:2b:15:44:a6: f8:08:0b:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjUwNzI1MDE0MzUxWhcNMjUwODAxMDE0MzUxWjAYMRYwFAYD VQQDEw02ODgyZTE1Ny0yNWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoJAh/4sV6knBvgq+tHxLqIr66VkQSfzWq6vApQ3C9dnZ1eNAEU1iM4g9tOi 69cHNm7AD9q2Cdh85Qdjsem/0h4E7x4gE8xo3yNU4ebYInlEI7FMGtXwcfzWaHQU jrtjOh6+fImInTyq01PF5/r9kUyFY6vp3PGMN1CAP8YzqFJvPWumkG58snVysBI0 6m8TygSQwETND/vyRNEvrcJeprd6jEHn1b1+gObTkwvigyW/saQMXpYzatkbUCEe XiBhwFpFuWfZy8ZqlfJRh4UKBWl/IVKLRlacxYV3ewYttrQpfiAmkeGp/WRjC06j CH5WrX+gHka0w6iY31dabKOPfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAci1n9d ftqwKFokzAyGepYZG6aeMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+N4Bh/4uFaYm6wCUvSb80mQyYAmViK19NVy+muOv5EqcFHMsdBd15 q91yUtZR/YmRiNhQ+GoPi5jV35j4EMqv7omArgZTt9BoQK0D2+b1dMhwpa+1rx40 BW9O9JWvDY7WQER108KvZTJT0IcXTHqdgnsecEdfmqZwOsBSRnk/Tq644I4fWKKW oyZvCOFj1efw/IZH+WsUOHHG+fGFbM3vn9UrF1Y5sAlN72rJ43KZ0Kldbv3mjAUp Zn21ollCHR5UAsNobrT3zgHIaP3bKz5GFsF/wnzxzw5/yWVuIk2r505ncFKS/MSy z/vlDJGexBzm7OArt2bo3SsVRKb4CAte -----END CERTIFICATE-----Generated at Fri Jul 25 04:05:57 2025 by rpki-client