$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft File: UgGonTDEgplFBBjJVrh3JJcG6Vc.mft (raw, json) Hash identifier: AtJtaelCyHBjIFmARM+MtiLPLljo9pxPrRFnaYm53JY= Subject key identifier: 32:58:95:36:35:91:D8:74:C0:44:86:77:AD:65:F9:B9:08:27:55:10 Authority key identifier: 52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 Certificate issuer: /CN=A91E7E94/serialNumber=5201A89D30C48299450418C956B877249706E957 Certificate serial: 0530 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft Manifest number: 052C Signing time: Fri 30 May 2025 23:42:59 +0000 Manifest this update: Fri 30 May 2025 23:42:59 +0000 Manifest next update: Fri 06 Jun 2025 23:42:59 +0000 Files and hashes: 1: UgGonTDEgplFBBjJVrh3JJcG6Vc.crl (hash: ZJumRf8naRkIYTb3ISKNJ80XFJRCuZE7SiV3J9EABWY=) 2: FAF4A0E0FB3211EB967B1759C4F9AE02.roa (hash: 8p1P4mNUhhk/yC7+ElhDZdRf1VN2ly1Yqll2ITw0L78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E94, serialNumber=5201A89D30C48299450418C956B877249706E957 Validity Not Before: May 30 23:42:59 2025 GMT Not After : Jun 6 23:42:59 2025 GMT Subject: CN=683a4283-1780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:48:a1:f4:d3:7c:85:09:56:82:1f:7f:19:c7: 6b:e2:31:e5:6c:20:dc:ad:3e:b7:7b:94:82:1c:5f: 96:12:4a:af:a9:8a:1b:0c:1c:8f:f1:f3:c0:f7:d4: 95:32:5f:7f:3e:ab:e8:3c:17:83:9b:ca:10:3f:56: f3:c2:22:8d:98:37:15:e2:7b:95:46:bf:c0:94:c3: c3:95:0b:ce:b5:2b:8c:1d:08:e2:c9:c7:65:59:c8: b7:2b:2a:c2:73:0b:8a:e2:92:56:0c:ab:08:be:f8: 00:96:7c:64:98:6c:89:ea:40:3e:da:4c:54:3a:7a: 97:d7:e8:59:0d:44:84:df:c4:3d:cf:94:95:05:84: 01:c4:ab:ec:47:64:eb:7f:f3:4a:0a:47:d3:6a:06: 40:3e:49:e8:6c:23:9a:de:ad:f5:93:a9:e6:e2:3f: 5b:9b:de:3f:8f:c5:ba:27:16:e2:32:36:d7:ad:e3: 99:a2:2e:06:2d:92:5e:f4:b2:e8:fb:8a:9d:a1:f1: 9b:33:1a:49:67:54:0d:16:a0:48:09:0f:2c:f5:fe: 2c:c1:3c:7c:e3:c2:5d:8b:67:13:16:0e:72:63:04: 74:57:94:b6:e7:03:5d:4e:d6:ca:e8:b3:66:1f:28: 76:71:c6:d0:3b:98:61:54:88:22:77:a3:94:8f:4d: f0:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:58:95:36:35:91:D8:74:C0:44:86:77:AD:65:F9:B9:08:27:55:10 X509v3 Authority Key Identifier: keyid:52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:65:73:92:b5:9b:bc:c9:aa:ca:e9:24:d9:e9:c1:bd:7c:17: 7d:a3:84:b5:b4:5b:85:4b:3c:7f:fd:e3:d6:51:b9:da:50:0c: d7:13:c1:91:f0:d0:59:4c:14:5e:3e:41:b7:86:09:65:c2:86: fb:ae:2c:8e:cc:b3:cf:78:f8:b5:32:25:f2:4c:07:4b:48:61: 16:2c:3f:cf:8c:67:bb:bf:d4:1c:1c:17:bb:d4:09:0c:7c:15: 6e:15:d4:fd:06:2d:dd:8e:b8:a3:cf:8d:73:50:57:90:a8:05: 21:a3:c5:6c:34:eb:ac:5b:ae:54:a7:9b:d2:98:58:b0:1c:01: 31:36:21:77:1c:c2:41:e6:e5:e9:ed:3d:b1:03:d6:69:51:bf: 64:dd:b7:d7:91:a4:0b:0b:fd:54:cb:f8:f0:1d:8e:27:c0:72: a7:4f:3f:dc:52:e6:be:40:ce:f9:43:44:ff:62:47:75:9b:2c: 99:54:0d:5e:be:1c:72:c3:cd:aa:63:a2:bb:49:54:1d:06:af: 69:a0:c5:66:e8:03:3b:3f:96:35:51:be:33:73:dd:67:91:b2: b9:1b:09:7c:ab:5b:b3:e1:5d:23:f8:f9:c7:b2:fa:5a:52:32: 26:a6:a8:18:89:64:5f:b5:f3:1c:10:37:58:ec:1e:34:4e:1e: 8a:59:4d:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFOTQxMTAvBgNVBAUTKDUyMDFBODlEMzBDNDgyOTk0NTA0MThDOTU2Qjg3NzI0 OTcwNkU5NTcwHhcNMjUwNTMwMjM0MjU5WhcNMjUwNjA2MjM0MjU5WjAYMRYwFAYD VQQDEw02ODNhNDI4My0xNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEih9NN8hQlWgh9/Gcdr4jHlbCDcrT63e5SCHF+WEkqvqYobDByP8fPA99SV Ml9/PqvoPBeDm8oQP1bzwiKNmDcV4nuVRr/AlMPDlQvOtSuMHQjiycdlWci3KyrC cwuK4pJWDKsIvvgAlnxkmGyJ6kA+2kxUOnqX1+hZDUSE38Q9z5SVBYQBxKvsR2Tr f/NKCkfTagZAPknobCOa3q31k6nm4j9bm94/j8W6JxbiMjbXreOZoi4GLZJe9LLo +4qdofGbMxpJZ1QNFqBICQ8s9f4swTx848Jdi2cTFg5yYwR0V5S25wNdTtbK6LNm Hyh2ccbQO5hhVIgid6OUj03wlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJYlTY1 kdh0wESGd61l+bkIJ1UQMB8GA1UdIwQYMBaAFFIBqJ0wxIKZRQQYyVa4dySXBulX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U5NC9BMkE3MEM1QUZC MkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdwbEZCQmpKVnJoM0pKY0c2 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VnR29uVERFZ3BsRkJCakpWcmgzSkpjRzZWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U5NC9BMkE3MEM1QUZCMkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdw bEZCQmpKVnJoM0pKY0c2VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWZXOStZu8yarK6STZ6cG9fBd9o4S1tFuFSzx//ePWUbnaUAzXE8GR 8NBZTBRePkG3hgllwob7riyOzLPPePi1MiXyTAdLSGEWLD/PjGe7v9QcHBe71AkM fBVuFdT9Bi3djrijz41zUFeQqAUho8VsNOusW65Up5vSmFiwHAExNiF3HMJB5uXp 7T2xA9ZpUb9k3bfXkaQLC/1Uy/jwHY4nwHKnTz/cUua+QM75Q0T/Ykd1myyZVA1e vhxyw82qY6K7SVQdBq9poMVm6AM7P5Y1Ub4zc91nkbK5Gwl8q1uz4V0j+PnHsvpa UjImpqgYiWRftfMcEDdY7B40Th6KWU3e -----END CERTIFICATE-----Generated at Sat May 31 16:39:46 2025 by rpki-client