$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: XKPvRpOOGnV111ET9qwlb3hDRXJdJaNGEkas39EVUwk= Subject key identifier: C5:B6:BC:94:B9:0F:D9:6B:DE:50:DF:BE:91:19:5B:77:03:44:91:C9 Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1DFE Signing time: Mon 02 Jun 2025 16:16:56 +0000 Manifest this update: Mon 02 Jun 2025 16:16:56 +0000 Manifest next update: Mon 09 Jun 2025 16:16:56 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: uWNGG8pU2+StWxbmDIgK3U8E46p6/6RTMzeQQGH0xdU=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: rt/eyNRwh3HSmHt+oMSmnpP/31deXcLSwt8yukP8jbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7699 (0x1e13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Jun 2 16:16:56 2025 GMT Not After : Jun 9 16:16:56 2025 GMT Subject: CN=683dce78-709d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1f:00:30:97:1d:1b:65:c8:96:cb:74:f0:5d: 0e:b2:f9:e4:53:ce:b9:9d:97:9d:e2:9a:7f:17:cd: 9e:17:c5:39:55:df:b2:f1:85:dd:63:6a:d3:eb:58: aa:c7:b0:46:a8:fa:40:46:48:77:9e:cf:4b:1a:1d: e6:42:e8:37:43:fb:8d:7e:7e:ac:fc:51:1a:b2:f9: 97:24:98:c3:bd:54:5d:44:f9:e8:03:79:7a:7b:0f: 13:2d:5e:f8:9f:17:2d:93:b0:2f:08:cd:bf:aa:d9: 6b:8f:37:fd:e6:da:37:e4:75:57:46:41:4a:60:c0: b7:4c:0a:30:1c:c2:03:14:a3:dc:b0:20:cf:d5:eb: 50:1c:f1:26:0e:b3:6c:3c:5e:d6:70:db:97:78:77: 5a:10:f0:3b:1d:34:aa:86:ae:ef:bc:86:3a:e2:10: 7a:fd:4f:7f:d8:87:17:9f:22:67:d8:e2:81:96:fb: 9a:ab:a7:58:87:3e:d4:74:5b:b4:2b:bc:c3:d0:f0: c0:08:6b:78:be:fc:fb:7d:06:bc:05:20:7f:84:e5: 8a:be:f9:be:a5:99:a1:15:0c:ab:cc:b1:b6:70:f8: 9f:c0:48:24:bb:fb:bf:a7:e7:84:72:07:60:16:2c: 8d:93:8a:ab:2b:f5:ba:d5:f6:05:56:ec:99:43:a8: 43:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B6:BC:94:B9:0F:D9:6B:DE:50:DF:BE:91:19:5B:77:03:44:91:C9 X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:3a:4b:af:87:1f:1c:6f:61:0d:2d:39:e6:ef:82:6a:db:89: 5e:fa:c0:c6:8d:5b:a2:3a:49:bd:0e:21:83:02:98:0d:2d:6a: b0:91:92:1c:ae:9d:5c:16:de:c6:27:d7:e2:a4:19:26:65:62: 17:cc:0a:60:a6:ab:cc:2d:36:c5:d3:ba:d9:b7:ee:47:80:2c: f9:62:91:95:bf:71:3f:23:e9:d8:ca:ee:14:74:8a:74:2a:bf: 9d:eb:54:c6:61:e6:41:cd:44:c8:83:49:ae:4a:8d:66:ab:a8: 9b:d6:cd:a3:1b:26:e4:b3:49:94:46:bb:4e:e3:ee:63:ee:b0: 04:1f:f7:70:68:9f:4b:a0:63:4d:f5:8c:a1:6a:a9:ac:f2:a8: 59:26:5f:3c:fd:09:0d:f2:37:b0:25:cd:d3:aa:6f:25:40:10: 1e:a1:1a:99:ab:ed:77:31:1c:cd:fd:5c:36:a9:80:64:3f:bb: e7:19:56:e5:82:a6:0c:c6:ad:01:e6:4c:ca:5e:16:0c:12:d0: c4:d0:05:e8:1e:61:19:92:f6:e7:34:99:e4:7b:a7:40:52:6b: fb:b2:8f:ca:91:22:57:f1:24:60:b8:89:7b:cf:60:b0:e7:6f: d0:95:a2:dc:61:65:56:98:88:e9:6c:bf:5b:63:b8:8b:8b:c7: dd:16:21:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUwNjAyMTYxNjU2WhcNMjUwNjA5MTYxNjU2WjAYMRYwFAYD VQQDEw02ODNkY2U3OC03MDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlB8AMJcdG2XIlst08F0OsvnkU865nZed4pp/F82eF8U5Vd+y8YXdY2rT61iq x7BGqPpARkh3ns9LGh3mQug3Q/uNfn6s/FEasvmXJJjDvVRdRPnoA3l6ew8TLV74 nxctk7AvCM2/qtlrjzf95to35HVXRkFKYMC3TAowHMIDFKPcsCDP1etQHPEmDrNs PF7WcNuXeHdaEPA7HTSqhq7vvIY64hB6/U9/2IcXnyJn2OKBlvuaq6dYhz7UdFu0 K7zD0PDACGt4vvz7fQa8BSB/hOWKvvm+pZmhFQyrzLG2cPifwEgku/u/p+eEcgdg FiyNk4qrK/W61fYFVuyZQ6hDowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMW2vJS5 D9lr3lDfvpEZW3cDRJHJMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0Okuvhx8cb2ENLTnm74Jq24le+sDGjVuiOkm9DiGDApgNLWqwkZIc rp1cFt7GJ9fipBkmZWIXzApgpqvMLTbF07rZt+5HgCz5YpGVv3E/I+nYyu4UdIp0 Kr+d61TGYeZBzUTIg0muSo1mq6ib1s2jGybks0mURrtO4+5j7rAEH/dwaJ9LoGNN 9Yyhaqms8qhZJl88/QkN8jewJc3Tqm8lQBAeoRqZq+13MRzN/Vw2qYBkP7vnGVbl gqYMxq0B5kzKXhYMEtDE0AXoHmEZkvbnNJnke6dAUmv7so/KkSJX8SRguIl7z2Cw 52/QlaLcYWVWmIjpbL9bY7iLi8fdFiHp -----END CERTIFICATE-----Generated at Mon Jun 2 21:06:18 2025 by rpki-client