$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft File: ULpjuT-CkSle5HAxuWtFzaXCSw0.mft (raw, json) Hash identifier: 26C2DhJQFu195/RuLXj60NAAcKdibwauz9dBJ4PrPtQ= Subject key identifier: 97:49:9A:14:9A:31:0B:19:2E:14:41:6F:20:31:1E:FB:F4:C0:9F:FE Authority key identifier: 50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D Certificate issuer: /CN=A9199CFF/serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft Manifest number: 5C Signing time: Sat 19 Jul 2025 07:22:21 +0000 Manifest this update: Sat 19 Jul 2025 07:22:20 +0000 Manifest next update: Sat 26 Jul 2025 07:22:20 +0000 Files and hashes: 1: ULpjuT-CkSle5HAxuWtFzaXCSw0.crl (hash: WhC9wIkPuw/nA5SnYo7T4vuPPNYH7IRiWaoP0d4iMQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CFF, serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Validity Not Before: Jul 19 07:22:20 2025 GMT Not After : Jul 26 07:22:20 2025 GMT Subject: CN=687b47ad-7b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bf:f8:3d:87:5b:ed:bd:e2:09:85:55:54:73: cc:78:5c:42:05:5e:e5:1c:a2:30:32:da:fb:a4:99: 5c:09:32:16:f2:12:e4:4d:e6:ac:11:22:b8:9c:09: 4f:00:70:20:55:67:23:e8:72:b2:ab:45:a2:32:e2: 34:f4:4f:25:92:e4:68:ae:48:0e:43:54:ad:d6:62: 0d:90:97:1d:9e:f7:86:f3:63:6d:0d:ad:80:35:86: c7:8d:1e:08:0e:57:0b:0d:50:27:1a:b5:18:c3:2e: e8:6f:07:6e:aa:cd:25:12:ba:5d:56:2e:70:ca:57: b9:36:be:be:57:60:fe:90:0f:9d:37:b2:7f:a7:50: 62:41:e7:89:a7:f4:58:ba:a1:34:15:6b:15:5a:a5: ce:d8:d9:e9:a1:ea:3d:61:b7:a0:62:d9:a2:12:6a: aa:91:dd:c0:91:e1:fa:5a:3f:62:cf:32:f6:42:12: b6:9c:54:6f:7e:57:19:94:79:8c:57:6a:de:cb:4a: 1a:ae:7c:38:4e:a7:1c:10:d5:74:bc:d0:a9:8a:64: 09:f2:e2:20:00:ab:0d:3e:27:f9:46:6a:4c:21:09: 14:c3:1c:bb:2c:64:7b:a5:3b:a0:bd:c5:1d:13:ca: 73:8d:a1:ab:eb:9c:5d:e8:12:a4:cd:66:28:40:7d: 1b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:49:9A:14:9A:31:0B:19:2E:14:41:6F:20:31:1E:FB:F4:C0:9F:FE X509v3 Authority Key Identifier: keyid:50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:bb:a8:12:4b:cc:f6:c1:52:94:9c:de:e2:8d:2e:05:61:7b: 4e:87:a9:36:de:9a:e3:26:fe:5f:f0:b8:59:bd:43:11:cc:5b: 34:72:bc:bb:19:54:ca:e5:27:be:cf:02:56:62:06:ca:8d:0b: b7:2e:fb:86:d9:4c:08:33:10:c8:1a:96:5f:90:7e:fb:cd:42: 82:96:f4:53:22:e5:12:ba:b0:69:62:f2:6e:a9:0d:f2:c1:70: 7a:77:b1:e2:ab:30:ad:f7:75:20:65:34:96:9a:9d:24:5a:0d: 1d:3c:37:a9:1b:c0:1d:d1:ad:16:d8:dd:3c:74:ce:8a:32:14: 57:45:71:21:67:89:9e:fb:5d:0c:e2:8e:7e:8a:6e:3a:f8:ba: ee:2c:d3:38:a7:6a:95:34:10:e8:5d:03:e3:4c:a2:c6:60:c4: 94:b0:0b:32:cb:00:99:1f:06:6d:0f:8c:2e:94:91:a1:13:b7: 81:a1:8b:e9:c4:3a:fa:59:c3:e5:ae:15:84:d3:f4:cf:21:54: 96:bd:03:09:7c:0b:5d:d2:aa:7c:04:37:69:79:b7:dd:db:91: 46:e2:99:5e:5e:8e:0c:97:29:d7:93:b9:56:0b:8b:b3:dd:1a: aa:bf:86:ad:bc:07:84:a4:a3:08:1e:3d:a5:34:95:2f:22:4f: 93:ed:78:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OUNGRjExMC8GA1UEBRMoNTBCQTYzQjkzRjgyOTEyOTVFRTQ3MDMxQjk2QjQ1Q0RB NUMyNEIwRDAeFw0yNTA3MTkwNzIyMjBaFw0yNTA3MjYwNzIyMjBaMBgxFjAUBgNV BAMTDTY4N2I0N2FkLTdiNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWv/g9h1vtveIJhVVUc8x4XEIFXuUcojAy2vukmVwJMhbyEuRN5qwRIricCU8A cCBVZyPocrKrRaIy4jT0TyWS5GiuSA5DVK3WYg2Qlx2e94bzY20NrYA1hseNHggO VwsNUCcatRjDLuhvB26qzSUSul1WLnDKV7k2vr5XYP6QD503sn+nUGJB54mn9Fi6 oTQVaxVapc7Y2emh6j1ht6Bi2aISaqqR3cCR4fpaP2LPMvZCEracVG9+VxmUeYxX at7LShqufDhOpxwQ1XS80KmKZAny4iAAqw0+J/lGakwhCRTDHLssZHulO6C9xR0T ynONoavrnF3oEqTNZihAfRvVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl0maFJox CxkuFEFvIDEe+/TAn/4wHwYDVR0jBBgwFoAUULpjuT+CkSle5HAxuWtFzaXCSw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5Q0ZGLzJBRTE2QTU4RDdF MDExRUY4QjE3M0QyRkM0RjlBRTAyL1VMcGp1VC1Da1NsZTVIQXh1V3RGemFYQ1N3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUxwanVULUNrU2xlNUhBeHVXdEZ6YVhDU3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5 Q0ZGLzJBRTE2QTU4RDdFMDExRUY4QjE3M0QyRkM0RjlBRTAyL1VMcGp1VC1Da1Ns ZTVIQXh1V3RGemFYQ1N3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG+7qBJLzPbBUpSc3uKNLgVhe06HqTbemuMm/l/wuFm9QxHMWzRyvLsZ VMrlJ77PAlZiBsqNC7cu+4bZTAgzEMgall+QfvvNQoKW9FMi5RK6sGli8m6pDfLB cHp3seKrMK33dSBlNJaanSRaDR08N6kbwB3RrRbY3Tx0zooyFFdFcSFniZ77XQzi jn6Kbjr4uu4s0zinapU0EOhdA+NMosZgxJSwCzLLAJkfBm0PjC6UkaETt4Ghi+nE OvpZw+WuFYTT9M8hVJa9Awl8C13SqnwEN2l5t93bkUbimV5ejgyXKdeTuVYLi7Pd Gqq/hq28B4SkowgePaU0lS8iT5PteHs= -----END CERTIFICATE-----Generated at Sun Jul 20 03:26:02 2025 by rpki-client