$ rpki-client -vvf rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft File: uMGYUq7H2lGkUL59p9lYc77eNzQ.mft (raw, json) Hash identifier: ghcsaQFNugTphg2/dYvaosjmGw/BsBDbK09JX8i1nT0= Subject key identifier: 47:3F:A2:86:1E:75:9B:2F:7B:39:45:30:C6:A4:A4:A8:F1:97:56:34 Authority key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 Certificate issuer: /CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft Manifest number: 9F Signing time: Mon 11 Aug 2025 06:30:39 +0000 Manifest this update: Mon 11 Aug 2025 06:30:39 +0000 Manifest next update: Mon 18 Aug 2025 06:30:39 +0000 Files and hashes: 1: uMGYUq7H2lGkUL59p9lYc77eNzQ.crl (hash: 7dtMKKw6NOgPGUqnrjaNw55nlShTu4NW50nr99sJIEQ=) 2: 91F29F5E86DD11EFB3D7A929C4F9AE02.roa (hash: ZCgG7FYX4Z+FrZu/NpwbDBG7rLXKjEvv9WpnC42UALI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C78E, serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Validity Not Before: Aug 11 06:30:39 2025 GMT Not After : Aug 18 06:30:39 2025 GMT Subject: CN=68998e0f-618f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:36:d5:06:87:05:9e:af:b7:c8:8a:a3:2a:94: d2:92:28:02:49:58:a3:77:ef:df:a9:5a:35:5d:a2: ba:f8:fc:85:a4:31:cd:c6:b1:55:28:cf:6d:63:2d: 28:b3:27:45:76:fd:98:1f:dc:a4:a3:f7:41:fc:80: 8e:70:de:cf:38:c8:02:ad:00:fd:c3:d2:ef:72:8a: 3f:4a:64:99:a5:71:ef:d9:27:a3:86:43:58:a4:46: 6d:81:74:dc:17:9f:5d:c9:1c:64:8f:e4:48:4f:ca: 04:3d:01:28:5c:58:f6:09:10:0f:6d:1b:39:12:63: b3:fa:9d:99:4f:d0:58:7a:97:cf:1c:3d:17:e3:5d: cf:95:d1:39:6d:20:a1:8b:0d:d2:01:2b:a9:00:a2: 94:2d:4b:6c:09:52:7a:f7:48:6f:2a:e5:0f:24:51: b8:35:0d:03:a1:e4:87:5c:02:12:c0:21:fe:06:8d: b6:c8:ef:8a:6b:fb:a4:d7:2d:41:4c:bb:da:58:6e: e0:1b:ed:21:18:9c:32:14:fb:be:88:cc:f2:13:e5: c5:2c:d1:64:e2:8f:66:24:45:a6:4a:57:4c:98:ac: c7:fc:10:cf:8c:6b:12:5e:db:6c:88:e1:cf:a5:1e: 74:dc:0b:1d:44:84:94:8a:01:52:a3:c7:4c:a8:f9: cb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3F:A2:86:1E:75:9B:2F:7B:39:45:30:C6:A4:A4:A8:F1:97:56:34 X509v3 Authority Key Identifier: keyid:B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c4:28:25:7e:45:e3:66:86:0f:77:2a:7e:0b:5b:e3:10:8e: a7:d6:98:3a:b1:fd:56:f9:70:c7:f0:6a:c9:06:dc:bd:49:d4: dd:3b:ef:aa:93:26:67:74:e3:19:25:37:c5:d2:fd:f1:f9:04: 5f:8d:68:20:34:1f:e7:54:1b:b7:81:6e:71:82:33:8b:20:ef: f7:15:81:b0:2c:ad:33:aa:0e:06:30:1e:b5:ac:94:55:c6:92: 58:40:43:e0:8c:13:d9:94:34:12:ee:7b:e1:f1:4e:14:18:5e: 28:fd:d5:21:fc:ce:b7:67:29:16:b0:c1:19:62:17:a8:0c:75: dc:1e:1d:b9:32:93:b7:22:9c:e2:5e:c0:6a:da:40:40:36:7c: 1c:4f:a6:e2:36:6e:ff:6c:12:f4:0b:33:0b:61:d9:78:fc:80: 7a:93:89:74:8a:73:bf:68:3b:eb:4b:47:dc:8d:3f:24:5a:81: c4:2e:45:f6:4e:51:38:36:aa:12:3d:7d:13:5a:b3:64:8c:14: 2f:e2:4f:21:da:7c:1c:7d:e0:91:63:89:e6:03:d0:28:e4:5b: 71:6e:9f:f5:48:32:4a:80:54:04:00:b6:03:04:83:c4:37:73: 29:7a:b0:f7:c7:65:26:c4:a9:23:b7:b6:02:44:7d:9b:c9:1e: fe:5d:e3:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3OEUxMTAvBgNVBAUTKEI4QzE5ODUyQUVDN0RBNTFBNDUwQkU3REE3RDk1ODcz QkVERTM3MzQwHhcNMjUwODExMDYzMDM5WhcNMjUwODE4MDYzMDM5WjAYMRYwFAYD VQQDEw02ODk5OGUwZi02MThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zbVBocFnq+3yIqjKpTSkigCSVijd+/fqVo1XaK6+PyFpDHNxrFVKM9tYy0o sydFdv2YH9yko/dB/ICOcN7POMgCrQD9w9Lvcoo/SmSZpXHv2SejhkNYpEZtgXTc F59dyRxkj+RIT8oEPQEoXFj2CRAPbRs5EmOz+p2ZT9BYepfPHD0X413PldE5bSCh iw3SASupAKKULUtsCVJ690hvKuUPJFG4NQ0DoeSHXAISwCH+Bo22yO+Ka/uk1y1B TLvaWG7gG+0hGJwyFPu+iMzyE+XFLNFk4o9mJEWmSldMmKzH/BDPjGsSXttsiOHP pR503AsdRISUigFSo8dMqPnLMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEc/ooYe dZsvezlFMMakpKjxl1Y0MB8GA1UdIwQYMBaAFLjBmFKux9pRpFC+fafZWHO+3jc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Qzc4RS9BMDIwMUIyMDg2 REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJsR2tVTDU5cDlsWWM3N2VO elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VNR1lVcTdIMmxHa1VMNTlwOWxZYzc3ZU56US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Qzc4RS9BMDIwMUIyMDg2REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJs R2tVTDU5cDlsWWM3N2VOelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAixCglfkXjZoYPdyp+C1vjEI6n1pg6sf1W+XDH8GrJBty9SdTdO++q kyZndOMZJTfF0v3x+QRfjWggNB/nVBu3gW5xgjOLIO/3FYGwLK0zqg4GMB61rJRV xpJYQEPgjBPZlDQS7nvh8U4UGF4o/dUh/M63ZykWsMEZYheoDHXcHh25MpO3Ipzi XsBq2kBANnwcT6biNm7/bBL0CzMLYdl4/IB6k4l0inO/aDvrS0fcjT8kWoHELkX2 TlE4NqoSPX0TWrNkjBQv4k8h2nwcfeCRY4nmA9Ao5Ftxbp/1SDJKgFQEALYDBIPE N3MperD3x2UmxKkjt7YCRH2byR7+XeP6 -----END CERTIFICATE-----Generated at Wed Aug 13 00:30:01 2025 by rpki-client