$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: Ok9WhtpKIVZuXYVter79BzoKPtjaGIkxeu6KuyBbqjQ= Subject key identifier: 3E:A0:DA:2A:60:66:FC:C2:20:BB:1B:1B:96:0C:98:05:21:3B:32:26 Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1E16 Signing time: Sun 20 Jul 2025 16:07:21 +0000 Manifest this update: Sun 20 Jul 2025 16:07:20 +0000 Manifest next update: Sun 27 Jul 2025 16:07:20 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: s3xlNk1/6Fu0Mm106eijQvq2YIEUUykhtG6FYj5NsVU=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: rt/eyNRwh3HSmHt+oMSmnpP/31deXcLSwt8yukP8jbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7723 (0x1e2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Jul 20 16:07:20 2025 GMT Not After : Jul 27 16:07:20 2025 GMT Subject: CN=687d1438-8702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:bf:a2:c1:d9:fc:ba:e7:65:eb:d5:57:b0:13: 37:4f:49:1c:af:a5:38:3d:39:89:09:f1:f7:95:de: 86:d2:2e:40:6c:83:aa:bb:bb:37:d9:4d:16:c7:1f: 46:df:4a:14:67:d5:e7:3d:ed:ee:6b:b5:73:93:cc: ff:2e:0e:a5:f2:d3:59:3d:4f:c7:bb:10:03:ea:9a: bd:89:80:9a:57:17:cb:1f:28:78:85:5f:b5:b8:33: ef:be:78:bd:82:59:de:3f:34:c8:fc:f2:57:21:cf: d1:32:71:00:0b:08:b5:7a:24:4d:22:e0:85:af:af: a1:52:46:ad:4e:80:9c:f5:59:75:3d:21:5d:c2:ca: 92:d3:4a:0a:11:65:fd:05:ed:ff:26:d8:26:fa:98: 21:aa:26:ed:f3:60:41:f6:e6:00:9a:ce:9a:46:0f: f4:bb:3c:15:53:db:1a:82:e2:fe:22:0d:0f:4b:bd: f4:68:c2:d6:79:65:9f:82:55:f1:dc:f1:87:fe:34: 7d:ef:4b:31:10:05:58:73:72:90:a4:ba:9c:55:67: 10:4a:d9:d5:52:62:c4:f9:0c:ce:97:7d:5d:8a:65: 9d:e3:73:86:5a:e1:3b:cc:c1:d7:62:86:d7:26:53: dc:a9:17:1e:47:73:a2:0f:73:c8:43:9e:2c:e8:21: 74:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:A0:DA:2A:60:66:FC:C2:20:BB:1B:1B:96:0C:98:05:21:3B:32:26 X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:2e:8f:ba:f4:8f:19:7f:25:b7:1f:b4:a3:10:21:61:56:20: 82:4c:7f:68:15:62:29:d3:b2:ae:4d:37:ed:e8:a3:9c:a9:9f: 63:11:ac:02:26:1e:e8:46:18:f4:c9:26:f0:39:65:09:cf:31: ee:04:8d:c3:69:66:9c:cf:6b:a4:ea:a7:ff:8e:96:13:05:35: 03:3d:0f:9d:ff:0e:af:0c:51:d0:5a:28:8f:ea:ee:b8:d9:a4: 94:a4:6d:2c:b9:15:38:0b:d1:5e:7f:a3:c8:81:bd:5a:59:6d: 1a:20:18:20:ab:f7:c2:79:d8:2e:3e:d5:20:41:4d:0f:f8:64: 1e:b3:1a:3c:0a:df:85:cf:26:85:50:97:19:d1:e6:d8:9f:7c: 2c:5a:30:15:88:0b:ba:31:9b:99:33:b6:b5:9d:f3:e7:35:2a: 87:cb:13:b2:7b:02:61:3e:e2:60:5b:a7:0a:bb:5f:18:53:df: 52:9d:91:22:ec:d1:22:e5:b3:84:26:c8:51:83:9d:d2:5b:16: 3d:a7:0d:14:3c:ea:60:43:60:72:2c:b0:d9:dd:d8:6a:a0:03: ab:d8:49:e5:5f:d3:e7:1c:0a:f7:16:d4:96:93:10:b7:34:0c: 10:7f:c8:8c:f3:4d:bf:72:e4:f7:a8:0d:f8:8a:75:41:22:5c: a3:91:45:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUwNzIwMTYwNzIwWhcNMjUwNzI3MTYwNzIwWjAYMRYwFAYD VQQDEw02ODdkMTQzOC04NzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArr+iwdn8uudl69VXsBM3T0kcr6U4PTmJCfH3ld6G0i5AbIOqu7s32U0Wxx9G 30oUZ9XnPe3ua7Vzk8z/Lg6l8tNZPU/HuxAD6pq9iYCaVxfLHyh4hV+1uDPvvni9 glnePzTI/PJXIc/RMnEACwi1eiRNIuCFr6+hUkatToCc9Vl1PSFdwsqS00oKEWX9 Be3/Jtgm+pghqibt82BB9uYAms6aRg/0uzwVU9saguL+Ig0PS730aMLWeWWfglXx 3PGH/jR970sxEAVYc3KQpLqcVWcQStnVUmLE+QzOl31dimWd43OGWuE7zMHXYobX JlPcqRceR3OiD3PIQ54s6CF0DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6g2ipg ZvzCILsbG5YMmAUhOzImMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKLo+69I8ZfyW3H7SjECFhViCCTH9oFWIp07KuTTft6KOcqZ9jEawC Jh7oRhj0ySbwOWUJzzHuBI3DaWacz2uk6qf/jpYTBTUDPQ+d/w6vDFHQWiiP6u64 2aSUpG0suRU4C9Fef6PIgb1aWW0aIBggq/fCedguPtUgQU0P+GQesxo8Ct+FzyaF UJcZ0ebYn3wsWjAViAu6MZuZM7a1nfPnNSqHyxOyewJhPuJgW6cKu18YU99SnZEi 7NEi5bOEJshRg53SWxY9pw0UPOpgQ2ByLLDZ3dhqoAOr2EnlX9PnHAr3FtSWkxC3 NAwQf8iM802/cuT3qA34inVBIlyjkUU7 -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:46 2025 by rpki-client