$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: aR35SvXI+XRzXCs++6smVF+Tx/gmAVnhPOzMk73j3R8= Subject key identifier: 3D:F6:0C:44:35:E1:29:74:26:BD:F9:F9:B2:E7:8F:28:97:2C:4A:8C Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01D4 Signing time: Wed 23 Jul 2025 03:10:23 +0000 Manifest this update: Wed 23 Jul 2025 03:10:22 +0000 Manifest next update: Wed 30 Jul 2025 03:10:22 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: 0fJ9Uz4puKizHGQ5cMwCdXUiF7N6W4bY/9xWTKM9bnU=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 03:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Jul 23 03:10:22 2025 GMT Not After : Jul 30 03:10:22 2025 GMT Subject: CN=6880529f-0651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:a2:c8:5d:56:34:81:63:e0:53:5c:64:29:d8: b7:14:4f:90:01:a1:19:37:5f:95:32:2c:e7:3e:41: b8:a3:fc:60:3b:6c:0a:9f:63:9d:73:9b:76:49:15: 5f:35:bd:35:13:c7:c9:eb:b3:d3:b0:75:6e:4b:df: 91:58:cd:15:94:26:b3:2b:2e:0f:85:db:c3:83:12: 2b:77:57:ea:fa:1d:d8:d7:c9:af:1b:ed:80:f1:46: d1:a4:4f:36:0a:fb:3c:19:f7:a9:71:32:c9:12:f6: ed:4d:e7:d8:c2:ef:3b:1f:2b:a7:85:a8:90:84:f4: e4:dd:5b:25:eb:c8:5c:c0:be:ad:b4:66:46:02:98: c7:b4:36:e9:04:ba:0c:d8:1b:7a:47:3c:09:52:30: f2:42:64:3c:4d:c5:25:49:6d:1e:e9:38:32:76:df: fc:36:98:4f:05:94:8b:db:b3:c5:1a:33:a9:e5:e8: 17:45:18:db:59:f8:9b:15:16:eb:55:4b:9c:a8:39: 44:5b:8d:41:57:c4:50:5c:68:b8:0b:3b:a8:8e:ae: ba:92:ac:e6:86:c7:70:74:fc:57:98:4d:c7:90:67: a9:af:48:f6:61:f5:83:5d:b1:04:23:40:c2:f0:d3: c0:fe:60:47:ac:5a:fa:47:09:4a:d0:f8:f6:5e:2e: 04:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F6:0C:44:35:E1:29:74:26:BD:F9:F9:B2:E7:8F:28:97:2C:4A:8C X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:6a:0a:65:37:34:a4:ea:88:83:25:fb:53:ec:97:f9:6e:2d: 70:6e:f9:d0:ba:34:92:7d:77:04:d9:05:df:12:43:e1:e1:76: ab:06:55:3e:21:8f:aa:b5:3e:6d:78:9e:03:43:76:00:05:10: 7e:96:f1:bf:9b:95:e2:a4:db:f6:18:ef:b1:67:11:e2:01:3e: 51:98:93:5c:ec:92:74:00:bd:9a:97:bb:3d:19:f2:03:7f:13: 23:c1:01:f1:9f:e6:a4:c6:20:fb:fe:e1:7d:21:79:8c:ca:26: 2a:55:44:b7:e7:4d:32:b2:c9:ab:8e:69:12:1f:c2:b6:6c:86: 94:36:b1:f3:cf:d2:d6:2f:1b:13:74:82:6f:3f:42:81:05:30: 49:a7:8a:ab:50:a4:04:33:b1:7a:89:ea:e6:6b:f3:28:6c:15: b3:2d:1b:c2:31:e0:d7:ab:ec:da:9d:aa:76:46:62:95:1b:93: df:bf:78:fc:2d:53:62:fd:95:d5:d4:16:ef:55:7d:de:08:e4: 7b:41:a3:00:84:f6:d2:9e:85:b6:bb:fc:71:03:35:4f:6d:8e: 60:fc:07:40:40:03:ec:38:55:67:95:a3:09:94:57:1b:db:69: 19:13:9a:b4:9d:b6:d3:a8:95:eb:1c:af:0b:b0:32:f9:4e:e4: 8d:c9:26:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwNzIzMDMxMDIyWhcNMjUwNzMwMDMxMDIyWjAYMRYwFAYD VQQDEw02ODgwNTI5Zi0wNjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+KLIXVY0gWPgU1xkKdi3FE+QAaEZN1+VMiznPkG4o/xgO2wKn2Odc5t2SRVf Nb01E8fJ67PTsHVuS9+RWM0VlCazKy4PhdvDgxIrd1fq+h3Y18mvG+2A8UbRpE82 Cvs8GfepcTLJEvbtTefYwu87HyunhaiQhPTk3Vsl68hcwL6ttGZGApjHtDbpBLoM 2Bt6RzwJUjDyQmQ8TcUlSW0e6Tgydt/8NphPBZSL27PFGjOp5egXRRjbWfibFRbr VUucqDlEW41BV8RQXGi4Czuojq66kqzmhsdwdPxXmE3HkGepr0j2YfWDXbEEI0DC 8NPA/mBHrFr6RwlK0Pj2Xi4E8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD32DEQ1 4Sl0Jr35+bLnjyiXLEqMMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtagplNzSk6oiDJftT7Jf5bi1wbvnQujSSfXcE2QXfEkPh4XarBlU+ IY+qtT5teJ4DQ3YABRB+lvG/m5XipNv2GO+xZxHiAT5RmJNc7JJ0AL2al7s9GfID fxMjwQHxn+akxiD7/uF9IXmMyiYqVUS3500yssmrjmkSH8K2bIaUNrHzz9LWLxsT dIJvP0KBBTBJp4qrUKQEM7F6ierma/MobBWzLRvCMeDXq+zanap2RmKVG5Pfv3j8 LVNi/ZXV1BbvVX3eCOR7QaMAhPbSnoW2u/xxAzVPbY5g/AdAQAPsOFVnlaMJlFcb 22kZE5q0nbbTqJXrHK8LsDL5TuSNySbH -----END CERTIFICATE-----Generated at Thu Jul 24 12:19:00 2025 by rpki-client