$ rpki-client -vvf rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft File: uftCI-sDug7mzge0ZgIXr69xbV0.mft (raw, json) Hash identifier: baLkSpXCQM3Ij1HqnIF1fL4FBXayrG32IIFd6PDMQMI= Subject key identifier: 78:4C:82:E6:17:B7:63:AC:CB:1A:A9:F0:01:45:2C:61:BF:2F:98:05 Authority key identifier: B9:FB:42:23:EB:03:BA:0E:E6:CE:07:B4:66:02:17:AF:AF:71:6D:5D Certificate issuer: /CN=A916D5A2/serialNumber=B9FB4223EB03BA0EE6CE07B4660217AFAF716D5D Certificate serial: 066C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft Manifest number: 0667 Signing time: Fri 06 Jun 2025 22:28:23 +0000 Manifest this update: Fri 06 Jun 2025 22:28:22 +0000 Manifest next update: Fri 13 Jun 2025 22:28:22 +0000 Files and hashes: 1: uftCI-sDug7mzge0ZgIXr69xbV0.crl (hash: Sgw6wAO8RmlUap2A1xOqpoDfYjUYaO57O4vBWp3/bzE=) 2: 179D126A80BB11EB8827C40AC4F9AE02.roa (hash: Z2FHnDXg4Ip1mKaBZDT4wmtIm4sbvDrPsJ6u/yKuqxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.crl rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 22:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1644 (0x66c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D5A2, serialNumber=B9FB4223EB03BA0EE6CE07B4660217AFAF716D5D Validity Not Before: Jun 6 22:28:22 2025 GMT Not After : Jun 13 22:28:22 2025 GMT Subject: CN=68436b86-8fa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:38:b4:5c:be:11:52:26:11:fb:ef:cf:53:84: 66:bf:7e:29:00:ac:6b:82:ab:9c:f6:61:7e:76:7b: 19:68:1f:15:95:12:2f:36:0d:37:60:71:c5:26:1d: 68:ea:5d:fb:81:2e:d7:29:ff:fe:ac:27:f7:3d:8b: 8d:5e:68:9b:6e:13:b9:73:75:85:58:a9:a3:99:8f: f5:44:a6:56:3a:b4:6a:63:a2:1b:34:28:f0:7b:33: 92:3a:ce:34:2a:22:5b:60:cd:1f:44:e1:bd:dd:fc: 6a:92:0a:55:4a:c4:a0:b2:ba:b4:ac:6f:14:30:f3: f0:1d:0f:60:01:9f:12:89:0a:1c:91:77:59:14:fe: 83:c8:35:86:60:c7:c1:c9:74:a0:86:03:87:4b:9c: 28:0d:15:64:44:47:a1:71:2f:bf:68:9f:cf:ee:21: 7a:9b:f6:62:63:eb:6c:87:0c:82:4f:61:0c:62:da: b9:d0:fb:af:61:1d:d4:e1:36:d2:62:39:8d:c1:03: 17:46:60:2c:9c:75:d6:f0:ae:6b:2d:8c:f5:22:87: 26:ee:fd:12:09:bf:42:67:5d:73:7c:57:7c:2c:39: 91:2b:83:39:18:ce:48:41:b2:8d:de:8a:09:d2:22: 73:0a:9d:36:cc:2a:fa:77:9d:9b:57:81:9c:eb:1b: f6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:4C:82:E6:17:B7:63:AC:CB:1A:A9:F0:01:45:2C:61:BF:2F:98:05 X509v3 Authority Key Identifier: keyid:B9:FB:42:23:EB:03:BA:0E:E6:CE:07:B4:66:02:17:AF:AF:71:6D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ef:11:57:aa:6f:ca:11:1b:bf:fa:ab:dd:ea:a9:8e:b5:fe: 19:78:74:35:64:49:21:05:2d:5f:9a:3d:d8:ec:cf:76:60:d6: 88:3b:29:ca:97:ac:b8:6e:8e:66:e6:c3:3d:f0:9c:df:6b:2a: c9:15:f9:ad:fc:37:92:44:e5:5a:8e:c1:74:b4:b8:0c:18:52: 60:76:60:5f:70:3c:97:03:c8:80:a8:dc:5c:f8:21:c1:63:10: f6:a0:3d:ce:83:66:1f:9d:fc:3f:48:d7:4d:b8:39:f8:72:3b: 24:41:12:8a:5a:08:f2:41:ef:53:5f:9b:23:15:bf:db:b8:c5: 56:45:39:43:0a:99:95:81:a1:cd:3e:35:8e:b6:1f:35:b9:68: 92:c1:cc:0d:dc:d2:cd:2e:c1:43:bb:05:b1:df:76:53:14:cb: 9e:4b:c5:ee:a8:df:4f:ad:82:48:bd:35:be:81:86:96:1b:e1: 8d:73:c7:87:d7:1d:d3:2a:09:7c:8b:aa:3e:5b:ac:ba:2d:f1: 9f:39:ca:42:b6:59:50:2d:6d:9c:94:e3:d1:91:f0:d6:82:17: 96:6a:9f:ec:bc:ba:ae:72:d0:c0:6d:82:c1:46:4d:6d:28:24: d2:a6:37:c0:fb:a4:f4:91:30:80:bb:56:32:ca:15:3b:33:78: 41:00:30:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ1QTIxMTAvBgNVBAUTKEI5RkI0MjIzRUIwM0JBMEVFNkNFMDdCNDY2MDIxN0FG QUY3MTZENUQwHhcNMjUwNjA2MjIyODIyWhcNMjUwNjEzMjIyODIyWjAYMRYwFAYD VQQDEw02ODQzNmI4Ni04ZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzi0XL4RUiYR++/PU4Rmv34pAKxrgquc9mF+dnsZaB8VlRIvNg03YHHFJh1o 6l37gS7XKf/+rCf3PYuNXmibbhO5c3WFWKmjmY/1RKZWOrRqY6IbNCjwezOSOs40 KiJbYM0fROG93fxqkgpVSsSgsrq0rG8UMPPwHQ9gAZ8SiQockXdZFP6DyDWGYMfB yXSghgOHS5woDRVkREehcS+/aJ/P7iF6m/ZiY+tshwyCT2EMYtq50PuvYR3U4TbS YjmNwQMXRmAsnHXW8K5rLYz1Iocm7v0SCb9CZ11zfFd8LDmRK4M5GM5IQbKN3ooJ 0iJzCp02zCr6d52bV4Gc6xv2ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhMguYX t2Osyxqp8AFFLGG/L5gFMB8GA1UdIwQYMBaAFLn7QiPrA7oO5s4HtGYCF6+vcW1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDVBMi9DMjFBNTM4Njgw QjgxMUVCQkVCMTlFODNDNEY5QUUwMi91ZnRDSS1zRHVnN216Z2UwWmdJWHI2OXhi VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VmdENJLXNEdWc3bXpnZTBaZ0lYcjY5eGJWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDVBMi9DMjFBNTM4NjgwQjgxMUVCQkVCMTlFODNDNEY5QUUwMi91ZnRDSS1zRHVn N216Z2UwWmdJWHI2OXhiVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz7xFXqm/KERu/+qvd6qmOtf4ZeHQ1ZEkhBS1fmj3Y7M92YNaIOynK l6y4bo5m5sM98JzfayrJFfmt/DeSROVajsF0tLgMGFJgdmBfcDyXA8iAqNxc+CHB YxD2oD3Og2Yfnfw/SNdNuDn4cjskQRKKWgjyQe9TX5sjFb/buMVWRTlDCpmVgaHN PjWOth81uWiSwcwN3NLNLsFDuwWx33ZTFMueS8XuqN9PrYJIvTW+gYaWG+GNc8eH 1x3TKgl8i6o+W6y6LfGfOcpCtllQLW2clOPRkfDWgheWap/svLquctDAbYLBRk1t KCTSpjfA+6T0kTCAu1YyyhU7M3hBADCY -----END CERTIFICATE-----Generated at Sun Jun 8 15:24:45 2025 by rpki-client