$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: ynfkGn22l+nsBQx31AeZU0HIkNtzpUdTXX3PmvmyJGo= Subject key identifier: 59:96:B1:3B:2F:CB:4A:86:DD:38:5A:F5:08:89:5D:63:B9:A2:D8:D5 Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E44 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1E2F Signing time: Sat 06 Sep 2025 16:08:32 +0000 Manifest this update: Sat 06 Sep 2025 16:08:32 +0000 Manifest next update: Sat 13 Sep 2025 16:08:32 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: JcVstND3vU92V6ukiYAFEYhPdbLGK8tLF+IrcBw51pk=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: rt/eyNRwh3HSmHt+oMSmnpP/31deXcLSwt8yukP8jbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7748 (0x1e44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Sep 6 16:08:32 2025 GMT Not After : Sep 13 16:08:32 2025 GMT Subject: CN=68bc5c80-f225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bf:d9:67:ce:fd:68:80:57:d7:6a:9c:eb:27: 73:ad:11:cf:1e:15:f8:5a:b4:04:79:6f:bf:00:af: ce:34:3a:8e:32:13:06:2d:27:5a:ec:64:88:09:c7: 84:5b:68:cb:cf:39:69:44:fa:f0:4c:04:b9:26:6e: cb:50:31:06:b9:86:68:9b:4a:04:7a:1d:4a:ab:04: 70:4d:be:c7:a6:3d:2b:fc:ed:9f:88:2b:1a:26:80: 6b:27:4b:00:01:7e:8d:6b:c4:2a:45:39:ba:29:d6: 73:f7:26:51:15:5d:d2:f0:3d:0f:e3:34:ce:5a:45: 69:11:d4:63:5b:a2:5f:48:f8:ee:83:cc:6e:70:86: 3e:cd:06:8f:63:7e:88:7e:d8:98:76:28:c0:54:fd: 17:5f:75:e0:5a:39:ea:5c:85:6a:28:70:a0:f2:15: e2:97:0e:fd:d2:20:57:4c:69:1c:8e:8e:d7:75:c1: 6b:b7:ee:f3:1d:ab:ea:64:e9:ff:a6:ff:ed:6e:5a: e1:29:5a:66:3a:7f:c4:bb:d6:30:da:ba:51:65:3a: 23:2f:64:76:52:ad:61:be:76:6c:5a:99:6b:b7:6b: 78:69:a1:61:a2:09:b9:95:39:f2:bc:30:b3:e4:23: cd:db:b1:da:49:28:77:17:89:60:b9:8e:31:d3:70: 54:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:96:B1:3B:2F:CB:4A:86:DD:38:5A:F5:08:89:5D:63:B9:A2:D8:D5 X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:40:5a:a4:65:b5:6a:3e:03:92:b3:40:88:9c:a1:57:aa:da: e1:14:7d:15:a4:55:37:97:ee:2f:1c:5c:0a:34:17:eb:be:96: 92:28:da:55:69:f6:d5:0e:19:54:0c:5b:80:c5:24:3e:ad:b4: 87:f2:bd:80:b4:2f:6c:16:c3:b9:54:97:93:5d:88:a3:3d:f0: 79:f8:89:1d:9a:cc:ba:6a:93:18:6b:7f:ac:33:ec:35:12:8e: f7:d5:73:75:7c:aa:cb:71:88:88:35:9b:ea:17:bb:ac:0a:45: cf:8f:37:de:9a:e4:9d:5c:a7:1e:df:0a:4c:b7:2e:de:a0:56: b6:52:2f:74:f1:12:a3:02:66:d4:d3:84:05:09:b7:86:b9:b5: cd:e4:e4:2c:60:4b:6c:61:ef:88:3d:f9:b9:96:c8:b9:b4:ab: 68:9a:57:88:75:3f:98:bc:55:93:3c:ae:44:02:db:13:d2:d2: e0:de:a1:f9:1b:27:02:ee:b2:2d:44:11:f4:d1:a1:7c:70:b7: 78:38:24:5c:e5:46:09:a0:85:23:bd:76:29:5c:e9:7f:ae:2e: cb:58:c5:e2:b2:e5:80:51:27:17:7c:4d:70:89:cc:14:12:33: 26:81:4d:e2:ca:54:27:65:c3:55:94:c0:dc:4a:96:35:18:b8: ae:d4:cf:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUwOTA2MTYwODMyWhcNMjUwOTEzMTYwODMyWjAYMRYwFAYD VQQDEw02OGJjNWM4MC1mMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApL/ZZ879aIBX12qc6ydzrRHPHhX4WrQEeW+/AK/ONDqOMhMGLSda7GSICceE W2jLzzlpRPrwTAS5Jm7LUDEGuYZom0oEeh1KqwRwTb7Hpj0r/O2fiCsaJoBrJ0sA AX6Na8QqRTm6KdZz9yZRFV3S8D0P4zTOWkVpEdRjW6JfSPjug8xucIY+zQaPY36I ftiYdijAVP0XX3XgWjnqXIVqKHCg8hXilw790iBXTGkcjo7XdcFrt+7zHavqZOn/ pv/tblrhKVpmOn/Eu9Yw2rpRZTojL2R2Uq1hvnZsWplrt2t4aaFhogm5lTnyvDCz 5CPN27HaSSh3F4lguY4x03BUsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmWsTsv y0qG3Tha9QiJXWO5otjVMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAQFqkZbVqPgOSs0CInKFXqtrhFH0VpFU3l+4vHFwKNBfrvpaSKNpV afbVDhlUDFuAxSQ+rbSH8r2AtC9sFsO5VJeTXYijPfB5+Ikdmsy6apMYa3+sM+w1 Eo731XN1fKrLcYiINZvqF7usCkXPjzfemuSdXKce3wpMty7eoFa2Ui908RKjAmbU 04QFCbeGubXN5OQsYEtsYe+IPfm5lsi5tKtomleIdT+YvFWTPK5EAtsT0tLg3qH5 GycC7rItRBH00aF8cLd4OCRc5UYJoIUjvXYpXOl/ri7LWMXisuWAUScXfE1wicwU EjMmgU3iylQnZcNVlMDcSpY1GLiu1M+Z -----END CERTIFICATE-----Generated at Sat Sep 6 21:37:06 2025 by rpki-client