$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: P6I6h1umooiApAp/W2zmISIQRgIKLPHLsfrnNZXXb2c= Subject key identifier: B8:1D:CD:67:B3:7E:8A:97:70:1A:8F:C2:37:7A:9E:87:7E:A6:BF:0C Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0C12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0C0B Signing time: Sun 20 Jul 2025 18:48:45 +0000 Manifest this update: Sun 20 Jul 2025 18:48:45 +0000 Manifest next update: Sun 27 Jul 2025 18:48:45 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: fzoQwFXmCeFcLRhzThQX7z+kAwm9ZuMbIJlHPzy6Kcw=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3090 (0xc12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Jul 20 18:48:45 2025 GMT Not After : Jul 27 18:48:45 2025 GMT Subject: CN=687d3a0d-d88e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:80:28:46:8a:ef:3e:26:76:f7:96:9a:ca:1a: 53:65:77:35:2b:4c:17:b8:54:6d:84:10:93:ef:be: 5e:40:00:2f:79:d6:2e:fb:4a:97:f3:9b:e5:48:2e: a7:36:75:96:7e:58:41:04:df:87:9a:dd:0c:1f:97: 54:e7:6c:85:e9:6e:90:f7:67:53:ed:40:81:5e:57: 41:a0:7d:d8:8f:08:94:ed:65:bd:84:58:34:6b:19: df:f4:c0:72:e5:ef:cc:ff:93:a5:cd:0b:eb:d5:ed: 6b:99:21:41:90:b4:00:06:84:29:5c:2c:c1:1d:78: c9:d0:7d:83:78:10:47:cd:5c:98:78:18:42:3a:73: a8:0b:a4:02:5c:be:60:43:45:4e:fe:94:97:1c:76: 61:e6:20:c3:7b:6b:d2:79:8d:b8:42:19:16:6c:35: 66:eb:25:2f:1a:3d:e0:ff:52:e7:f3:43:a9:95:2f: 06:48:ba:85:7d:cd:91:6e:1d:d2:dd:4e:ed:29:3f: 7b:fc:49:95:97:d2:c1:46:2a:ad:02:dd:bd:ed:e5: a1:0f:50:8d:0c:a7:2c:ee:41:e7:08:b8:9f:8e:27: b2:d5:a8:e1:46:b4:3e:ed:6f:77:0e:95:4c:62:31: 39:76:90:83:8a:66:02:ec:a3:ef:bc:a3:5c:37:f7: 7c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1D:CD:67:B3:7E:8A:97:70:1A:8F:C2:37:7A:9E:87:7E:A6:BF:0C X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:20:fb:af:3d:23:53:98:37:b0:f1:b1:6c:5a:ce:fd:0b:9c: de:d1:ba:a0:be:f8:0c:72:97:5c:ad:90:16:f3:2a:9e:74:ea: 84:e6:d9:00:5d:14:cb:a0:7f:fc:03:69:00:03:78:c7:25:db: db:cd:70:52:4b:5b:c6:60:7c:4f:02:d5:c5:f3:9a:34:d6:34: 71:60:09:e1:21:8c:4b:6a:ce:08:a2:fa:0f:2d:a8:2e:2e:98: e2:3e:f3:20:f9:e7:94:0a:7f:10:df:82:b9:cb:11:bc:24:5e: ad:21:c8:a2:f0:ca:d2:ce:fd:9f:ce:f9:29:4d:fd:cf:43:83: 74:53:f4:59:48:89:96:4b:68:fd:06:20:8d:70:f8:cb:dd:7a: f4:f5:c5:72:a2:3e:85:32:54:e0:56:c2:d4:83:f4:ce:2d:fa: 9c:8a:3a:0d:73:b7:04:91:f6:34:93:97:0e:51:9d:7d:5f:ea: 4f:33:82:f1:15:cd:47:0d:1c:c5:22:0a:6a:75:da:5b:17:27: c0:77:7f:6c:8d:bb:c3:67:3d:6f:48:a8:83:bd:bb:d8:a6:51: a1:00:a1:a9:8b:fe:3f:87:ac:d3:ba:fe:43:9e:74:4a:fc:d7: 31:0c:e8:1a:d2:b1:2b:9e:77:82:bb:7b:5e:20:76:38:57:e5: 95:44:19:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUwNzIwMTg0ODQ1WhcNMjUwNzI3MTg0ODQ1WjAYMRYwFAYD VQQDEw02ODdkM2EwZC1kODhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+YAoRorvPiZ295aayhpTZXc1K0wXuFRthBCT775eQAAvedYu+0qX85vlSC6n NnWWflhBBN+Hmt0MH5dU52yF6W6Q92dT7UCBXldBoH3YjwiU7WW9hFg0axnf9MBy 5e/M/5OlzQvr1e1rmSFBkLQABoQpXCzBHXjJ0H2DeBBHzVyYeBhCOnOoC6QCXL5g Q0VO/pSXHHZh5iDDe2vSeY24QhkWbDVm6yUvGj3g/1Ln80OplS8GSLqFfc2Rbh3S 3U7tKT97/EmVl9LBRiqtAt297eWhD1CNDKcs7kHnCLifjiey1ajhRrQ+7W93DpVM YjE5dpCDimYC7KPvvKNcN/d8ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgdzWez foqXcBqPwjd6nod+pr8MMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAIPuvPSNTmDew8bFsWs79C5ze0bqgvvgMcpdcrZAW8yqedOqE5tkA XRTLoH/8A2kAA3jHJdvbzXBSS1vGYHxPAtXF85o01jRxYAnhIYxLas4IovoPLagu LpjiPvMg+eeUCn8Q34K5yxG8JF6tIcii8MrSzv2fzvkpTf3PQ4N0U/RZSImWS2j9 BiCNcPjL3Xr09cVyoj6FMlTgVsLUg/TOLfqcijoNc7cEkfY0k5cOUZ19X+pPM4Lx Fc1HDRzFIgpqddpbFyfAd39sjbvDZz1vSKiDvbvYplGhAKGpi/4/h6zTuv5DnnRK /NcxDOga0rErnneCu3teIHY4V+WVRBlq -----END CERTIFICATE-----Generated at Sun Jul 20 21:50:03 2025 by rpki-client