$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft File: UAxgp_acBL6E_PPGVyPAeXDloSg.mft (raw, json) Hash identifier: ZUkKYNeFGJLEyQauBSZFS0SpnnAsspOQKoYZmdjclvM= Subject key identifier: A0:94:E3:03:6D:D2:89:1D:CC:6D:05:CB:88:2B:C2:4F:D8:16:57:71 Authority key identifier: 50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 Certificate issuer: /CN=A91A7978/serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft Manifest number: 55 Signing time: Sat 19 Jul 2025 07:31:12 +0000 Manifest this update: Sat 19 Jul 2025 07:31:11 +0000 Manifest next update: Sat 26 Jul 2025 07:31:11 +0000 Files and hashes: 1: UAxgp_acBL6E_PPGVyPAeXDloSg.crl (hash: +lV1Vfn4i0DLtNFh9iPXqrEWKuLjQuk3we7OqufZNb0=) 2: 1EF560BEEA6911EF9AE7CD14C4F9AE02.roa (hash: lILeGFy8FkS3op8pqtEQAN5f/QrMhRlzhtxTRP45JV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7978, serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Validity Not Before: Jul 19 07:31:11 2025 GMT Not After : Jul 26 07:31:11 2025 GMT Subject: CN=687b49bf-4acb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:63:34:37:65:37:cb:25:3f:5f:f1:95:bc:f1: d5:05:ff:89:f3:39:73:70:e8:e9:40:62:52:ad:aa: ee:72:d5:14:4c:cb:40:8f:98:cb:57:fe:6f:25:d4: aa:26:8f:6e:12:47:f0:18:cb:18:a1:16:0f:6a:75: bf:96:0f:d1:79:f7:05:6d:24:1b:b8:e5:07:e4:79: 94:db:56:ae:7c:9a:45:b3:ad:67:c2:cb:62:93:fc: db:7b:62:e7:3f:dd:25:de:7f:0b:a8:30:38:0d:45: 81:61:f6:02:59:54:7b:17:4a:8c:46:e2:ff:dd:27: e7:5b:89:70:1e:4a:f8:26:5f:17:bd:70:f6:2b:95: 49:c1:68:0a:78:0e:56:70:5f:8b:32:6b:ea:b4:78: 34:68:f6:34:54:f4:66:ea:dc:db:3c:14:83:56:7e: 68:85:c7:94:96:76:b3:5f:73:f2:ad:18:77:e3:76: cd:eb:c6:17:28:b0:43:6d:c5:3f:4a:9f:e5:12:86: 42:98:9b:09:f6:dc:0b:6a:fa:2e:c2:36:59:24:52: 9c:e4:6a:93:0e:ac:bf:1e:66:88:6a:8c:f2:2f:3f: 54:c0:e8:de:52:86:df:66:73:79:78:16:1b:85:26: 88:14:a7:a2:72:e3:c7:63:f5:ba:c2:85:98:3c:f6: 3f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:94:E3:03:6D:D2:89:1D:CC:6D:05:CB:88:2B:C2:4F:D8:16:57:71 X509v3 Authority Key Identifier: keyid:50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:45:6a:85:7f:83:86:c2:16:50:a1:13:76:85:18:23:8a:48: c2:fb:55:3c:4a:1b:99:d6:f1:44:59:7c:28:0f:eb:6d:c1:bc: 05:03:11:71:22:94:ab:35:d9:64:69:b2:8f:d4:f0:e8:bc:83: ed:00:40:86:73:99:a6:36:6f:e9:41:4e:d1:12:78:25:63:15: 0e:d2:0b:fd:3f:29:11:6e:32:6c:d0:c3:3e:12:59:17:21:d0: 91:67:fe:34:db:48:1c:03:1e:72:f0:5c:f8:39:95:69:fe:a9: 27:83:50:94:d7:53:2a:06:a0:4b:f4:51:b3:9e:fa:b6:ae:41: 2f:22:fc:1d:80:5a:88:10:16:5b:50:9c:e8:a4:1f:7b:6e:11: 8c:c0:35:85:19:ae:ff:6a:65:4a:23:29:c9:c4:69:ec:cb:74: 96:ea:da:6b:14:1a:3b:2d:64:41:90:69:cf:33:64:87:fd:06: c0:25:45:78:82:11:7f:4b:0c:b2:f8:21:7e:3d:86:00:e0:19: 99:b5:a8:38:69:de:46:8a:0d:4d:af:30:81:46:f0:f1:a9:4b: fd:3b:eb:ca:13:d4:00:53:ef:f1:7b:02:67:8e:70:ca:5d:f1: dc:97:19:ac:35:ca:ee:2f:a3:10:fc:ed:a5:e3:ad:ae:d5:42: 42:bc:a4:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB Nzk3ODExMC8GA1UEBRMoNTAwQzYwQTdGNjlDMDRCRTg0RkNGM0M2NTcyM0MwNzk3 MEU1QTEyODAeFw0yNTA3MTkwNzMxMTFaFw0yNTA3MjYwNzMxMTFaMBgxFjAUBgNV BAMTDTY4N2I0OWJmLTRhY2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBYzQ3ZTfLJT9f8ZW88dUF/4nzOXNw6OlAYlKtqu5y1RRMy0CPmMtX/m8l1Kom j24SR/AYyxihFg9qdb+WD9F59wVtJBu45QfkeZTbVq58mkWzrWfCy2KT/Nt7Yuc/ 3SXefwuoMDgNRYFh9gJZVHsXSoxG4v/dJ+dbiXAeSvgmXxe9cPYrlUnBaAp4DlZw X4sya+q0eDRo9jRU9Gbq3Ns8FINWfmiFx5SWdrNfc/KtGHfjds3rxhcosENtxT9K n+UShkKYmwn23Atq+i7CNlkkUpzkapMOrL8eZohqjPIvP1TA6N5Sht9mc3l4FhuF JogUp6Jy48dj9brChZg89j9VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoJTjA23S iR3MbQXLiCvCT9gWV3EwHwYDVR0jBBgwFoAUUAxgp/acBL6E/PPGVyPAeXDloSgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3OTc4LzU2MkJEQjIyRUE2 ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2RV9QUEdWeVBBZVhEbG9T Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUF4Z3BfYWNCTDZFX1BQR1Z5UEFlWERsb1NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 OTc4LzU2MkJEQjIyRUE2ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2 RV9QUEdWeVBBZVhEbG9TZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGlFaoV/g4bCFlChE3aFGCOKSML7VTxKG5nW8URZfCgP623BvAUDEXEi lKs12WRpso/U8Oi8g+0AQIZzmaY2b+lBTtESeCVjFQ7SC/0/KRFuMmzQwz4SWRch 0JFn/jTbSBwDHnLwXPg5lWn+qSeDUJTXUyoGoEv0UbOe+rauQS8i/B2AWogQFltQ nOikH3tuEYzANYUZrv9qZUojKcnEaezLdJbq2msUGjstZEGQac8zZIf9BsAlRXiC EX9LDLL4IX49hgDgGZm1qDhp3kaKDU2vMIFG8PGpS/0768oT1ABT7/F7AmeOcMpd 8dyXGaw1yu4voxD87aXjra7VQkK8pP4= -----END CERTIFICATE-----Generated at Sun Jul 20 11:21:27 2025 by rpki-client