$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft File: UgupTND7nnwUDfvAzFi5PPVMIvM.mft (raw, json) Hash identifier: G9nWWBbeT0iQuA0doMQ1YyCPKC8zrzoqmVaq2IXFq/Y= Subject key identifier: CB:02:1B:C8:75:D3:10:28:11:14:67:BB:F7:5F:8C:94:D4:4A:24:81 Authority key identifier: 52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 Certificate issuer: /CN=A91F8981/serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft Manifest number: BC Signing time: Fri 05 Sep 2025 06:22:18 +0000 Manifest this update: Fri 05 Sep 2025 06:22:18 +0000 Manifest next update: Fri 12 Sep 2025 06:22:18 +0000 Files and hashes: 1: UgupTND7nnwUDfvAzFi5PPVMIvM.crl (hash: sbbXB304EYX66k/eIdGJW8jgNWmKV/6Iha2bX5IU77w=) 2: D79D112E6C7F11EF92105459C4F9AE02.roa (hash: taSipunEH/A4JKib1d15PbUF8sLm4qJrajeTCDOlA48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981, serialNumber=520BA94CD0FB9E7C140DFBC0CC58B93CF54C22F3 Validity Not Before: Sep 5 06:22:18 2025 GMT Not After : Sep 12 06:22:18 2025 GMT Subject: CN=68ba819a-a9be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e8:17:61:32:4b:76:51:41:9a:d5:e3:9a:7a: e3:7d:ca:d0:27:cf:33:0c:29:43:a7:34:0c:1b:e3: b2:04:ed:ba:90:c4:1f:ee:66:33:25:89:2e:2c:a4: 0c:62:24:8d:d4:de:8e:92:d3:14:02:8b:74:4a:23: 73:d9:b7:a8:d5:35:fe:8d:56:3b:eb:99:fa:36:2f: 42:52:a3:bb:0c:d4:79:8a:a4:17:41:a0:d0:5c:d1: ff:75:f3:31:4d:a5:7c:1c:3c:75:8b:cd:84:09:e5: 8c:63:65:c3:30:d7:18:79:2e:8e:28:5a:23:4c:8b: b2:ad:7a:b6:11:c1:f0:20:b2:e5:66:60:8a:f3:0d: de:f7:63:59:81:6c:89:cb:c8:8a:fc:60:67:41:d4: ca:38:86:f9:f0:d5:bb:75:12:6c:13:49:8e:f0:ef: 44:24:73:89:38:ae:cf:7e:ff:3c:09:2e:13:48:49: f0:8a:1a:d6:e6:26:c1:68:88:03:9f:58:dd:1c:a7: 51:71:aa:65:7c:0f:a5:62:cf:63:d4:2a:f7:16:19: e6:fd:7b:4a:7a:41:03:cb:89:ab:da:36:21:88:27: 31:52:69:01:8b:5b:46:42:83:a6:4f:e0:2f:ab:c1: ba:76:20:3d:e3:8c:93:51:ae:ec:e2:c5:fb:0f:e8: 79:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:02:1B:C8:75:D3:10:28:11:14:67:BB:F7:5F:8C:94:D4:4A:24:81 X509v3 Authority Key Identifier: keyid:52:0B:A9:4C:D0:FB:9E:7C:14:0D:FB:C0:CC:58:B9:3C:F5:4C:22:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UgupTND7nnwUDfvAzFi5PPVMIvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/1CF6CD746C7F11EF914D7D57C4F9AE02/UgupTND7nnwUDfvAzFi5PPVMIvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:19:8f:f5:c9:f0:32:27:86:4a:08:c1:92:a1:0d:1d:3c:b6: 7f:c7:73:86:96:f5:0f:15:bf:97:68:9f:9b:fd:e9:2b:c5:24: b6:67:65:a1:1d:ca:90:8f:c0:fe:55:d2:bf:f2:5e:7f:cb:89: 6a:c5:89:f3:d5:a2:90:ae:e0:5b:59:18:27:44:66:2f:04:6e: a7:44:53:67:b3:d9:d3:3a:92:52:5a:f6:76:c5:67:1d:12:5a: 33:22:4b:b4:57:f5:b4:28:b8:de:d3:1a:a0:3e:0c:25:68:0b: 8c:0b:66:42:67:4a:ad:69:1f:e4:f0:51:bd:df:89:a4:26:cd: ab:e8:b3:9f:97:88:f3:fa:1b:2f:de:0b:1b:29:8f:64:9c:12: cb:f8:c4:35:fa:27:3c:73:d5:f5:a2:04:e8:5a:4e:fb:3f:fe: 28:f3:c4:49:31:96:98:dc:b7:04:2b:d7:70:ae:23:65:7e:8c: 2c:80:2e:62:b5:da:26:10:25:f2:92:e3:e1:93:de:29:85:16: a1:f8:6f:25:77:58:ff:55:47:3c:59:47:a8:01:a0:da:1e:76: 37:80:f9:3c:ab:d4:7d:5e:46:1b:dc:f8:29:e6:05:04:7d:44: eb:39:d7:01:a2:80:20:f3:58:09:ab:64:2a:ef:1f:20:db:6b: ec:f7:94:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5ODExMTAvBgNVBAUTKDUyMEJBOTRDRDBGQjlFN0MxNDBERkJDMENDNThCOTND RjU0QzIyRjMwHhcNMjUwOTA1MDYyMjE4WhcNMjUwOTEyMDYyMjE4WjAYMRYwFAYD VQQDEw02OGJhODE5YS1hOWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0egXYTJLdlFBmtXjmnrjfcrQJ88zDClDpzQMG+OyBO26kMQf7mYzJYkuLKQM YiSN1N6OktMUAot0SiNz2beo1TX+jVY765n6Ni9CUqO7DNR5iqQXQaDQXNH/dfMx TaV8HDx1i82ECeWMY2XDMNcYeS6OKFojTIuyrXq2EcHwILLlZmCK8w3e92NZgWyJ y8iK/GBnQdTKOIb58NW7dRJsE0mO8O9EJHOJOK7Pfv88CS4TSEnwihrW5ibBaIgD n1jdHKdRcaplfA+lYs9j1Cr3Fhnm/XtKekEDy4mr2jYhiCcxUmkBi1tGQoOmT+Av q8G6diA944yTUa7s4sX7D+h53wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsCG8h1 0xAoERRnu/dfjJTUSiSBMB8GA1UdIwQYMBaAFFILqUzQ+558FA37wMxYuTz1TCLz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODk4MS8xQ0Y2Q0Q3NDZD N0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25ud1VEZnZBekZpNVBQVk1J dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VndXBUTkQ3bm53VURmdkF6Rmk1UFBWTUl2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODk4MS8xQ0Y2Q0Q3NDZDN0YxMUVGOTE0RDdENTdDNEY5QUUwMi9VZ3VwVE5EN25u d1VEZnZBekZpNVBQVk1Jdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3GY/1yfAyJ4ZKCMGSoQ0dPLZ/x3OGlvUPFb+XaJ+b/ekrxSS2Z2Wh HcqQj8D+VdK/8l5/y4lqxYnz1aKQruBbWRgnRGYvBG6nRFNns9nTOpJSWvZ2xWcd ElozIku0V/W0KLje0xqgPgwlaAuMC2ZCZ0qtaR/k8FG934mkJs2r6LOfl4jz+hsv 3gsbKY9knBLL+MQ1+ic8c9X1ogToWk77P/4o88RJMZaY3LcEK9dwriNlfowsgC5i tdomECXykuPhk94phRah+G8ld1j/VUc8WUeoAaDaHnY3gPk8q9R9XkYb3Pgp5gUE fUTrOdcBooAg81gJq2Qq7x8g22vs95QX -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:53 2025 by rpki-client