$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: eFJe5/Rqpku2bRSJoTjFaKMsHSFto2NiMR8EZJ8VZ/E= Subject key identifier: BC:22:4B:58:98:C2:B8:D0:45:E1:B5:10:9F:31:AA:D6:C3:BD:57:4E Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01D3 Signing time: Mon 21 Jul 2025 03:01:04 +0000 Manifest this update: Mon 21 Jul 2025 03:01:04 +0000 Manifest next update: Mon 28 Jul 2025 03:01:04 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: iMaHqx8SmKInrte8creLtjIah49XGuSvhTViNBrZ5WQ=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Jul 21 03:01:04 2025 GMT Not After : Jul 28 03:01:04 2025 GMT Subject: CN=687dad70-b7de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6e:62:30:f5:7e:69:b5:3c:67:40:38:d7:14: c9:25:c6:a2:c2:7f:06:b2:fe:e6:73:58:05:74:08: 0e:b9:83:86:2c:ac:71:94:09:b2:63:67:5f:2b:be: d9:9b:0e:cd:b3:53:28:c1:c4:9d:3b:66:d3:72:8a: bf:cd:13:d7:88:a9:53:fe:ec:a9:7c:31:d9:6e:a2: 8a:f6:f2:76:7e:fd:33:3e:37:a3:1d:d0:8d:ec:e8: 49:18:19:2b:aa:6f:59:7e:46:f3:c0:a2:7b:92:f0: ca:3c:90:26:12:75:2a:e6:a9:77:a4:55:e0:8f:fb: 5b:1c:76:d0:d6:ee:ea:c6:11:b0:82:2a:49:55:a8: 6c:bf:a7:08:44:3f:ac:7e:d8:31:bd:55:26:d8:e3: 81:31:d2:67:ba:21:12:2e:ab:99:9f:53:af:e3:b5: a0:4f:33:49:c7:11:95:3e:bc:f5:62:87:95:51:fc: 66:a0:6e:0a:63:74:92:70:c1:11:71:58:99:49:60: 1e:f3:3d:69:19:13:ee:ec:34:26:f9:ad:31:d4:57: 68:b4:aa:49:00:fa:4c:52:a4:2b:89:21:19:b1:6b: 7d:b9:b7:f2:5e:3f:bc:18:48:42:6b:c5:06:20:c7: 58:cd:82:d2:45:38:3e:94:85:ae:e8:b3:ed:97:2c: 9f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:22:4B:58:98:C2:B8:D0:45:E1:B5:10:9F:31:AA:D6:C3:BD:57:4E X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:7d:70:83:0d:57:d5:60:c3:f5:f6:2e:03:8f:14:3d:c7:78: ee:04:d8:bb:47:a7:53:5f:8b:65:96:49:4c:1c:05:e0:9f:dc: 40:a7:2f:23:3c:80:59:13:c6:fa:d0:83:cf:8a:73:c3:98:a4: bd:04:ee:7c:b5:d3:ae:b9:e5:e7:69:01:ad:89:dc:86:2f:c4: cd:49:c5:4e:56:44:0c:03:7a:77:7f:db:7f:17:dc:9b:15:ba: 81:42:67:9d:cf:55:6f:f5:34:6b:71:5d:8e:f6:71:c7:c3:d2: 00:0c:f5:46:ae:e5:47:5c:de:de:18:7a:a2:e0:b9:08:42:81: 52:48:a1:5b:7f:6e:25:31:56:9e:78:74:63:92:a3:88:1f:2a: b9:91:74:bb:ea:15:7a:c8:96:f8:7c:c5:d0:a4:c4:4d:10:c1: a0:4d:1a:3f:49:3c:79:8d:63:f3:aa:91:db:cd:2b:d0:c1:cd: e4:2f:35:3b:d3:8d:75:85:4d:43:f5:dd:44:c9:e3:41:b8:04: 51:be:88:ed:bb:85:1a:f9:03:47:80:1d:3d:e4:c2:85:ed:81: 13:51:61:c1:77:46:5e:60:7c:3f:dc:3c:8c:27:b0:51:1f:4c: 51:2a:ac:47:5e:a7:e0:71:ea:44:17:c3:b5:37:32:b1:c2:87: 68:6e:c2:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwNzIxMDMwMTA0WhcNMjUwNzI4MDMwMTA0WjAYMRYwFAYD VQQDEw02ODdkYWQ3MC1iN2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu25iMPV+abU8Z0A41xTJJcaiwn8Gsv7mc1gFdAgOuYOGLKxxlAmyY2dfK77Z mw7Ns1MowcSdO2bTcoq/zRPXiKlT/uypfDHZbqKK9vJ2fv0zPjejHdCN7OhJGBkr qm9ZfkbzwKJ7kvDKPJAmEnUq5ql3pFXgj/tbHHbQ1u7qxhGwgipJVahsv6cIRD+s ftgxvVUm2OOBMdJnuiESLquZn1Ov47WgTzNJxxGVPrz1YoeVUfxmoG4KY3SScMER cViZSWAe8z1pGRPu7DQm+a0x1FdotKpJAPpMUqQriSEZsWt9ubfyXj+8GEhCa8UG IMdYzYLSRTg+lIWu6LPtlyyfLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwiS1iY wrjQReG1EJ8xqtbDvVdOMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6fXCDDVfVYMP19i4DjxQ9x3juBNi7R6dTX4tllklMHAXgn9xApy8j PIBZE8b60IPPinPDmKS9BO58tdOuueXnaQGtidyGL8TNScVOVkQMA3p3f9t/F9yb FbqBQmedz1Vv9TRrcV2O9nHHw9IADPVGruVHXN7eGHqi4LkIQoFSSKFbf24lMVae eHRjkqOIHyq5kXS76hV6yJb4fMXQpMRNEMGgTRo/STx5jWPzqpHbzSvQwc3kLzU7 0411hU1D9d1EyeNBuARRvojtu4Ua+QNHgB095MKF7YETUWHBd0ZeYHw/3DyMJ7BR H0xRKqxHXqfgcepEF8O1NzKxwodobsJD -----END CERTIFICATE-----Generated at Wed Jul 23 02:26:17 2025 by rpki-client