$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft File: UgupTND7nnwUDfvAzFi5PPVMIvM.mft (raw, json) Hash identifier: 6Rfp7z4XAZNbNU8FAqNy5hS3JaFlPRf01RqHiaC2QGI= Subject key identifier: 09:21:B8:8A:B7:AE:01:F4:3A:C0:38:65:51:D1:37:3F:05:04:D3:2A Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft Manifest number: 89 Signing time: Sun 01 Jun 2025 06:15:20 +0000 Manifest this update: Sun 01 Jun 2025 06:15:19 +0000 Manifest next update: Sun 08 Jun 2025 06:15:19 +0000 Files and hashes: 1: UgupTND7nnwUDfvAzFi5PPVMIvM.crl (hash: sjK0HWmp67qxzZXEK5jRYHxFXJlus84QpSYz+vg85u4=) 2: D79D112E6C7F11EF92105459C4F9AE02.roa (hash: HfxBV0ZJ9ixuR1eesZIIiZUZrrfXBYTU4Z7Ry5c0lbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: Jun 1 06:15:19 2025 GMT Not After : Jun 8 06:15:19 2025 GMT Subject: CN=683beff8-5d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ae:48:a6:6b:48:a7:60:10:74:fe:bd:09:ac: 6d:84:14:02:a2:91:da:08:b4:68:af:70:0e:37:a5: be:ca:ef:4d:3a:13:9f:7c:ba:01:b5:3b:02:8d:fa: 5f:f2:d8:1b:13:55:71:6f:1b:65:62:c6:0c:94:6f: 71:42:60:9d:c7:0e:1a:02:95:28:99:5f:0d:3d:0a: fd:f2:a6:48:0f:0d:2e:ee:a4:f7:01:82:91:94:1e: a7:7b:1c:84:48:0a:9f:2d:b1:62:80:bd:d1:39:04: 96:9b:23:5e:ed:5e:35:d5:30:0f:ea:a9:0c:c7:68: 99:74:0a:93:45:ad:87:96:3e:59:42:d6:72:7d:d1: 5d:f8:48:7a:40:e4:a5:f0:39:fb:8a:ae:c5:fd:3e: 91:c6:f8:0a:0d:6c:88:33:46:bf:fc:e8:e2:e9:38: 53:00:2d:3f:fd:d6:ea:bd:98:1b:80:f0:7f:71:40: df:40:34:21:f9:21:60:80:3f:69:c3:9b:36:63:53: e6:d8:59:3a:51:76:3a:56:77:46:02:92:32:b5:46: c0:93:ae:c1:2c:2d:76:9a:cf:29:a4:2f:6d:e3:2f: cb:4c:b8:fb:a9:17:3e:53:72:92:f5:71:e4:b4:da: 23:55:a8:13:59:8b:0c:d0:b5:2c:c3:d3:4d:a1:66: b9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:21:B8:8A:B7:AE:01:F4:3A:C0:38:65:51:D1:37:3F:05:04:D3:2A X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:58:ed:cc:45:be:6c:25:b7:1e:6b:6d:b1:d9:2b:43:13:c1: f5:1f:59:7d:70:f4:84:a9:0d:9e:55:d2:14:ee:cb:3a:fe:21: 19:75:bf:06:58:c9:ff:a8:c0:73:df:9e:80:81:d9:8c:a7:96: 70:cc:c9:53:76:30:ed:d7:58:ff:46:5d:74:56:e3:00:f7:c4: 9e:b7:d0:11:c2:fd:30:be:1d:42:16:13:5e:81:22:18:93:70: 17:48:e7:ec:68:26:fd:50:74:21:36:c6:c4:2c:98:3b:1c:d0: c7:47:cd:1d:be:54:f6:0c:bf:b9:ea:7e:b6:13:ea:ce:c6:55: 6e:37:d1:83:58:3a:84:02:cb:dd:99:4d:dc:57:85:0f:34:ed: 9c:50:cc:f2:86:2c:06:83:93:97:78:db:1d:9b:88:a1:46:e5: c2:62:16:81:cf:b5:d3:75:1a:52:a7:45:7e:02:85:c7:49:b4: 42:d4:4c:7b:21:22:8c:66:8f:47:90:9c:78:46:f7:77:f1:02: f0:56:6e:1d:83:cc:7a:b4:ab:ff:1f:66:7e:54:0d:a2:a1:57: 7a:9e:6b:82:98:65:cb:23:30:13:35:5b:49:dc:7a:b2:df:25: 04:ec:cb:e2:68:51:b3:ec:07:bf:4d:c6:2d:46:98:3d:cd:c5: 7d:ce:2b:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDUyMEJBOTRDRDBGQjlFN0MxNDBERkJDMENDNThCOTND RjU0QzIyRjMwHhcNMjUwNjAxMDYxNTE5WhcNMjUwNjA4MDYxNTE5WjAYMRYwFAYD VQQDEw02ODNiZWZmOC01ZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAua5IpmtIp2AQdP69CaxthBQCopHaCLRor3AON6W+yu9NOhOffLoBtTsCjfpf 8tgbE1VxbxtlYsYMlG9xQmCdxw4aApUomV8NPQr98qZIDw0u7qT3AYKRlB6nexyE SAqfLbFigL3ROQSWmyNe7V411TAP6qkMx2iZdAqTRa2Hlj5ZQtZyfdFd+Eh6QOSl 8Dn7iq7F/T6RxvgKDWyIM0a//Oji6ThTAC0//dbqvZgbgPB/cUDfQDQh+SFggD9p w5s2Y1Pm2Fk6UXY6VndGApIytUbAk67BLC12ms8ppC9t4y/LTLj7qRc+U3KS9XHk tNojVagTWYsM0LUsw9NNoWa5xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkhuIq3 rgH0OsA4ZVHRNz8FBNMqMB8GA1UdIwQYMBaAFFILqUzQ+558FA37wMxYuTz1TCLz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8xQ0Y2Q0Q3NDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25ud1VEZnZBekZpNVBQVk1J dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8xQ0Y2Q0Q3NDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25u d1VEZnZBekZpNVBQVk1Jdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdWO3MRb5sJbcea22x2StDE8H1H1l9cPSEqQ2eVdIU7ss6/iEZdb8G WMn/qMBz356AgdmMp5ZwzMlTdjDt11j/Rl10VuMA98Set9ARwv0wvh1CFhNegSIY k3AXSOfsaCb9UHQhNsbELJg7HNDHR80dvlT2DL+56n62E+rOxlVuN9GDWDqEAsvd mU3cV4UPNO2cUMzyhiwGg5OXeNsdm4ihRuXCYhaBz7XTdRpSp0V+AoXHSbRC1Ex7 ISKMZo9HkJx4Rvd38QLwVm4dg8x6tKv/H2Z+VA2ioVd6nmuCmGXLIzATNVtJ3Hqy 3yUE7MviaFGz7Ae/TcYtRpg9zcV9zitp -----END CERTIFICATE-----Generated at Mon Jun 2 21:24:51 2025 by rpki-client