$ rpki-client -vvf rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft File: uMGYUq7H2lGkUL59p9lYc77eNzQ.mft (raw, json) Hash identifier: zn55AQKkH+g0Ms9BoeO7QalbMNVRbEnB6wRcLpRSd+g= Subject key identifier: 74:17:83:4B:5C:E0:E8:1C:5B:24:08:18:7E:FC:A3:4E:E4:4C:34:A9 Authority key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 Certificate issuer: /CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft Manifest number: 82 Signing time: Sun 15 Jun 2025 05:45:20 +0000 Manifest this update: Sun 15 Jun 2025 05:45:20 +0000 Manifest next update: Sun 22 Jun 2025 05:45:20 +0000 Files and hashes: 1: uMGYUq7H2lGkUL59p9lYc77eNzQ.crl (hash: vy4cbJ5U71GFJkXKlyNAUybqjWfMfmBeoBTl8vXFG28=) 2: 91F29F5E86DD11EFB3D7A929C4F9AE02.roa (hash: ZCgG7FYX4Z+FrZu/NpwbDBG7rLXKjEvv9WpnC42UALI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C78E, serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Validity Not Before: Jun 15 05:45:20 2025 GMT Not After : Jun 22 05:45:20 2025 GMT Subject: CN=684e5df0-fcae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ae:b7:12:1e:66:cd:10:d4:18:35:40:de:f0: 2f:f7:f6:a4:a8:c4:b8:b6:91:be:8a:23:04:97:9f: 30:e2:f0:b7:f9:c1:14:eb:d7:4e:dd:09:92:c6:96: 52:36:78:b5:80:10:12:3e:cb:45:c8:31:d7:ff:62: 12:f4:de:9b:00:62:94:af:77:15:6a:fb:48:7f:68: 15:b5:4a:26:6b:8a:40:ef:2b:1d:9f:1b:d9:1d:99: 71:d4:9f:e2:48:c1:c5:ab:cf:b1:2f:a3:5f:02:a4: 9c:10:ff:f9:d2:04:c4:93:a5:3b:77:73:f1:60:0d: e0:68:fb:d6:fa:a3:93:48:a4:7e:d2:ad:d5:bc:92: 0a:c9:44:ea:99:9c:8f:d3:df:aa:47:e5:84:39:50: 16:ba:90:32:f4:fa:8c:ae:6b:1f:1a:4c:86:49:db: 68:84:ab:2d:9a:c1:0a:1e:2f:23:a6:74:37:36:03: a7:f6:a3:7a:c1:96:9e:76:8d:c2:1a:d5:64:f9:49: 9e:c4:e3:77:6b:25:18:4d:df:21:50:f7:09:a2:ec: 8d:46:5e:e8:7e:b8:cc:c3:da:23:36:61:67:a6:ba: 5e:0f:c4:be:88:43:8b:34:8b:9b:ff:69:ad:79:ae: cf:17:f7:f7:e5:2c:22:1b:54:96:7b:67:b5:65:ad: 1b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:17:83:4B:5C:E0:E8:1C:5B:24:08:18:7E:FC:A3:4E:E4:4C:34:A9 X509v3 Authority Key Identifier: keyid:B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:d7:a7:cd:77:8d:94:4a:12:17:28:f6:e9:fa:b5:76:71:d7: ff:f6:1b:b2:f0:52:74:a1:68:99:39:e7:6e:7a:4a:c2:12:90: 6f:be:6d:88:a2:bc:3c:36:90:38:d5:bc:40:d6:f4:b9:fb:96: ac:67:c3:2e:2d:f8:5b:3f:b8:c9:b5:30:89:6a:9f:08:ee:a3: ce:ac:c1:f1:93:cd:9a:ac:cc:a8:e0:32:06:7d:2d:ef:3e:97: 32:d5:17:6b:66:2c:f2:29:ca:52:b5:2e:c2:a3:92:c1:cc:dd: 71:e3:e2:02:43:6c:ea:75:62:67:c7:67:c3:d9:f4:5f:95:e8: 8d:1e:ee:a3:31:29:7d:e2:8d:d9:7d:e3:11:e2:81:48:da:d6: f9:16:ec:10:db:82:dc:dd:96:ae:57:3d:9e:f8:7d:40:bc:d1: 79:bf:ad:d1:d3:cd:ae:03:e6:4c:8e:06:90:aa:15:45:23:fb: 4d:b1:7e:4a:66:87:af:de:97:b1:99:df:62:1f:d5:1b:d1:dc: 74:f4:f2:cb:f3:8d:4f:39:c2:cc:8e:d1:36:fc:9f:09:ee:b3: 90:e0:24:c9:ca:4a:32:16:8b:f3:6b:fd:b0:bd:d3:7f:d6:bd: 01:04:61:03:ff:2e:b3:48:02:b5:59:49:aa:57:b9:a8:32:7b: 60:3e:16:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3OEUxMTAvBgNVBAUTKEI4QzE5ODUyQUVDN0RBNTFBNDUwQkU3REE3RDk1ODcz QkVERTM3MzQwHhcNMjUwNjE1MDU0NTIwWhcNMjUwNjIyMDU0NTIwWjAYMRYwFAYD VQQDEw02ODRlNWRmMC1mY2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1q63Eh5mzRDUGDVA3vAv9/akqMS4tpG+iiMEl58w4vC3+cEU69dO3QmSxpZS Nni1gBASPstFyDHX/2IS9N6bAGKUr3cVavtIf2gVtUoma4pA7ysdnxvZHZlx1J/i SMHFq8+xL6NfAqScEP/50gTEk6U7d3PxYA3gaPvW+qOTSKR+0q3VvJIKyUTqmZyP 09+qR+WEOVAWupAy9PqMrmsfGkyGSdtohKstmsEKHi8jpnQ3NgOn9qN6wZaedo3C GtVk+UmexON3ayUYTd8hUPcJouyNRl7ofrjMw9ojNmFnprpeD8S+iEOLNIub/2mt ea7PF/f35SwiG1SWe2e1Za0bjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQXg0tc 4OgcWyQIGH78o07kTDSpMB8GA1UdIwQYMBaAFLjBmFKux9pRpFC+fafZWHO+3jc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Qzc4RS9BMDIwMUIyMDg2 REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJsR2tVTDU5cDlsWWM3N2VO elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VNR1lVcTdIMmxHa1VMNTlwOWxZYzc3ZU56US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Qzc4RS9BMDIwMUIyMDg2REMxMUVGQjlFQUQwMjdDNEY5QUUwMi91TUdZVXE3SDJs R2tVTDU5cDlsWWM3N2VOelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA816fNd42UShIXKPbp+rV2cdf/9huy8FJ0oWiZOeduekrCEpBvvm2I orw8NpA41bxA1vS5+5asZ8MuLfhbP7jJtTCJap8I7qPOrMHxk82arMyo4DIGfS3v Ppcy1RdrZizyKcpStS7Co5LBzN1x4+ICQ2zqdWJnx2fD2fRfleiNHu6jMSl94o3Z feMR4oFI2tb5FuwQ24Lc3ZauVz2e+H1AvNF5v63R082uA+ZMjgaQqhVFI/tNsX5K Zoev3pexmd9iH9Ub0dx09PLL841POcLMjtE2/J8J7rOQ4CTJykoyFovza/2wvdN/ 1r0BBGED/y6zSAK1WUmqV7moMntgPhZP -----END CERTIFICATE-----Generated at Sun Jun 15 10:03:25 2025 by rpki-client