$ rpki-client -vvf rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft File: UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft (raw, json) Hash identifier: xHv266MR4AwQBtl9AUr+VQ+td7yvgH3sedHNQRxGYpw= Subject key identifier: 99:B6:C0:07:2B:17:77:B2:33:7C:2D:41:AE:71:9D:6F:0A:49:FE:4E Authority key identifier: 52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 Certificate issuer: /CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft Manifest number: 067F Signing time: Fri 08 Aug 2025 22:47:22 +0000 Manifest this update: Fri 08 Aug 2025 22:47:21 +0000 Manifest next update: Fri 15 Aug 2025 22:47:21 +0000 Files and hashes: 1: UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl (hash: FDx2CzPvQFt06/QY1IlwG8UnFAHU2m+NJYBIy8/RXN0=) 2: C3FEC56C855711EB871D267FC4F9AE02.roa (hash: y8hsODPDu9mxz9gFgQEr+IEal2qwbZYp1jlJlCiW6og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911902E, serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Validity Not Before: Aug 8 22:47:21 2025 GMT Not After : Aug 15 22:47:21 2025 GMT Subject: CN=68967e79-11b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5b:78:82:f5:a1:2d:dc:48:a1:2a:59:60:f1: a7:4d:3d:e9:56:a5:74:24:5a:2d:4f:6a:e5:b7:57: 21:de:61:d0:06:39:36:3b:0e:1b:61:33:2b:f9:56: 36:66:f8:1b:5b:86:f9:bb:76:d7:a6:69:30:c1:4a: 2a:78:d1:fd:1d:b4:5e:2b:43:48:15:bd:38:71:cb: 2c:b0:36:f5:46:22:b9:99:50:fa:70:84:21:ee:81: 28:7a:2a:34:44:75:14:ea:33:03:d7:18:c1:e0:7d: 53:07:c7:0b:b4:b9:aa:20:43:aa:02:e2:11:1d:a7: 08:07:0a:5e:cc:0c:44:73:50:bd:aa:bb:e1:d5:97: 10:c7:0b:dd:bc:bb:89:69:7a:72:c4:fd:98:15:6c: 66:dc:91:93:18:14:ef:77:09:1b:04:9a:91:66:f2: fb:e1:1f:b1:b1:49:d4:05:90:4b:0d:b1:67:44:d0: 57:84:d2:10:ec:df:ca:bf:b0:6e:8a:b3:aa:7c:54: 14:33:d5:82:75:49:6f:2f:fe:18:d1:52:28:a2:bf: 38:9c:53:62:ef:94:08:e0:ef:92:94:09:33:ba:6d: 47:be:1e:b4:85:a5:e7:d6:9e:20:a6:8d:b5:cb:93: 9e:8d:20:0a:91:51:c0:13:4a:6d:c1:97:81:c2:37: bf:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B6:C0:07:2B:17:77:B2:33:7C:2D:41:AE:71:9D:6F:0A:49:FE:4E X509v3 Authority Key Identifier: keyid:52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:41:a3:8d:99:5f:6e:c3:53:91:8b:ca:53:2f:c7:02:5b:3e: e9:02:ac:89:a4:68:14:ed:40:7d:91:25:0b:84:d0:f6:16:f6: 04:e2:e8:63:5c:fa:99:85:f8:41:15:fb:da:df:a9:4f:82:7b: 31:8a:03:7c:89:04:8f:b5:a0:90:eb:d2:3d:17:f4:ef:f8:5f: 20:7a:71:0b:d9:89:24:ed:8b:2d:df:ac:42:a8:d2:a9:9d:36: df:f9:95:e0:5c:11:67:98:30:e4:47:90:8a:29:37:78:58:70: 2d:75:91:61:f9:6f:bf:15:06:df:84:39:9c:93:1d:a8:e7:25: c0:09:35:d6:90:7d:72:05:21:99:78:81:27:aa:61:ea:5e:9c: 47:d3:23:0c:cf:5f:d0:98:82:1e:27:69:f8:c5:f7:05:48:0a: 20:b6:6b:13:b6:1c:68:bf:c5:61:00:2e:10:1e:a8:60:27:9d: 83:6d:e1:79:4e:f9:f3:5d:5d:b6:3c:e0:f1:2d:0e:5e:e3:db: ba:a6:38:f2:78:56:0e:1a:de:a6:3b:4b:1e:1e:e9:f1:44:b9: e5:07:a2:dd:78:3f:be:fd:2d:3c:2a:2e:01:04:b0:92:c1:5e: bb:95:1c:8e:12:d6:82:c1:b5:ff:e0:cd:91:ef:5a:e4:06:ac: 13:a5:9d:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMkUxMTAvBgNVBAUTKDUyMUIwNkMyOTExMDI4NEFBQUZFMDg3NUFBNjE4NkIw MDA2RDI3NjcwHhcNMjUwODA4MjI0NzIxWhcNMjUwODE1MjI0NzIxWjAYMRYwFAYD VQQDEw02ODk2N2U3OS0xMWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1t4gvWhLdxIoSpZYPGnTT3pVqV0JFotT2rlt1ch3mHQBjk2Ow4bYTMr+VY2 ZvgbW4b5u3bXpmkwwUoqeNH9HbReK0NIFb04ccsssDb1RiK5mVD6cIQh7oEoeio0 RHUU6jMD1xjB4H1TB8cLtLmqIEOqAuIRHacIBwpezAxEc1C9qrvh1ZcQxwvdvLuJ aXpyxP2YFWxm3JGTGBTvdwkbBJqRZvL74R+xsUnUBZBLDbFnRNBXhNIQ7N/Kv7Bu irOqfFQUM9WCdUlvL/4Y0VIoor84nFNi75QI4O+SlAkzum1Hvh60haXn1p4gpo21 y5OejSAKkVHAE0ptwZeBwje/7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJm2wAcr F3eyM3wtQa5xnW8KSf5OMB8GA1UdIwQYMBaAFFIbBsKREChKqv4IdaphhrAAbSdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAyRS81N0FGREIyODg1 NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtFcXFfZ2gxcW1HR3NBQnRK MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Voc0d3cEVRS0VxcV9naDFxbUdHc0FCdEoyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTAyRS81N0FGREIyODg1NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtF cXFfZ2gxcW1HR3NBQnRKMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOQaONmV9uw1ORi8pTL8cCWz7pAqyJpGgU7UB9kSULhND2FvYE4uhj XPqZhfhBFfva36lPgnsxigN8iQSPtaCQ69I9F/Tv+F8genEL2Ykk7Yst36xCqNKp nTbf+ZXgXBFnmDDkR5CKKTd4WHAtdZFh+W+/FQbfhDmckx2o5yXACTXWkH1yBSGZ eIEnqmHqXpxH0yMMz1/QmIIeJ2n4xfcFSAogtmsTthxov8VhAC4QHqhgJ52DbeF5 TvnzXV22PODxLQ5e49u6pjjyeFYOGt6mO0seHunxRLnlB6LdeD++/S08Ki4BBLCS wV67lRyOEtaCwbX/4M2R71rkBqwTpZ0j -----END CERTIFICATE-----Generated at Sat Aug 9 01:10:21 2025 by rpki-client