$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: xP0Z8k5I5kZfQCYZphXuHjPonXlKE0qibXRgl9RszzI= Subject key identifier: 1D:4C:15:2B:FF:2B:39:EA:12:1A:3B:CA:91:6A:12:CF:BF:0C:94:14 Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1E07 Signing time: Fri 20 Jun 2025 16:08:12 +0000 Manifest this update: Fri 20 Jun 2025 16:08:11 +0000 Manifest next update: Fri 27 Jun 2025 16:08:11 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: 4P1q0y5HaSMifA4IQ22W5iL31Zjc3U/Vop/0i3zUvGY=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: rt/eyNRwh3HSmHt+oMSmnpP/31deXcLSwt8yukP8jbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7708 (0x1e1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Jun 20 16:08:11 2025 GMT Not After : Jun 27 16:08:11 2025 GMT Subject: CN=6855876c-0a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:f7:9a:97:e5:d6:ea:9f:95:41:da:3e:c6: af:09:1a:07:58:f3:f0:4c:ba:39:bf:da:f7:e8:0b: d5:c9:01:0d:2b:ab:ae:5a:52:9f:ad:59:45:3b:3e: 7c:67:69:e7:82:ef:d8:f1:30:68:67:9a:e1:ab:b8: 20:c2:6a:fd:f9:df:a1:23:0b:20:19:79:e1:01:c0: 32:d0:2a:0c:a2:63:d4:8e:38:ba:5e:e9:f5:80:b6: 06:ae:d7:9c:d2:77:93:cc:af:a5:c3:fa:6b:5a:a5: f1:00:61:75:2c:65:b1:50:4c:e4:ae:a2:a6:ed:d8: c9:b7:f8:19:19:27:f1:34:d2:63:26:e2:d1:3a:b9: 23:74:94:53:23:9a:ed:af:ca:9e:c1:a8:f2:10:00: 8f:4a:7b:ec:7b:52:45:18:59:e2:52:17:fa:4f:5b: 19:1b:e9:07:08:bc:39:7f:6d:47:d0:a9:17:07:3e: b4:2a:c2:ec:4e:e4:58:6b:11:ed:42:9f:8c:7f:a8: 5d:0e:3d:94:88:e3:5c:55:05:e1:b2:5d:fc:1d:28: 2a:1e:02:c8:b2:b3:e0:d0:2e:f3:e5:0f:76:13:7c: 7c:86:9b:c6:58:db:97:42:6c:c8:65:c3:5d:15:60: 57:dd:5d:84:6d:49:a3:e2:ba:92:5f:4e:56:bb:36: 74:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:4C:15:2B:FF:2B:39:EA:12:1A:3B:CA:91:6A:12:CF:BF:0C:94:14 X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:1b:e9:e4:38:3d:e1:2d:35:5d:a4:e0:66:56:ab:12:e7:ab: 26:b3:f4:87:96:3c:fa:61:42:87:19:99:5c:22:56:62:95:e5: 29:88:0d:06:87:f5:f3:a3:d0:91:98:95:57:03:aa:cd:78:59: c0:3d:c3:ee:8d:e4:31:74:01:09:72:02:70:cf:82:20:61:5d: 9f:b6:06:8e:bd:1c:70:d2:9e:13:55:13:1f:7d:16:60:29:8b: 0c:a0:e8:ef:5a:6e:ee:fd:cc:81:0d:c5:90:95:7a:ab:32:e7: af:16:00:47:55:a6:49:ed:dd:bd:61:43:cd:8f:c2:ba:f8:b3: 4a:56:6b:30:4d:0f:c0:54:bd:e5:d1:56:72:ec:a8:5e:b8:cb: ad:1d:96:b9:56:4c:1e:a5:a2:53:0b:6d:0e:2a:6b:dd:6f:c4: 42:37:ab:27:2a:87:8a:53:9e:ef:4e:9b:cd:5f:0b:e2:af:75: 26:77:f3:52:5e:6d:39:1f:c5:24:ba:86:18:1e:4d:1e:86:b8: 5c:b9:c3:68:83:87:87:e1:0f:b8:56:6b:00:3f:30:d7:c9:ad: 39:c4:e9:a9:d0:f5:0e:66:76:99:27:e8:d7:3f:87:fd:46:4e: bd:60:ac:12:00:1c:1c:34:7f:c6:0a:bf:e0:7d:5d:46:3b:73: c5:13:1a:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUwNjIwMTYwODExWhcNMjUwNjI3MTYwODExWjAYMRYwFAYD VQQDEw02ODU1ODc2Yy0wYTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+/3mpfl1uqflUHaPsavCRoHWPPwTLo5v9r36AvVyQENK6uuWlKfrVlFOz58 Z2nngu/Y8TBoZ5rhq7ggwmr9+d+hIwsgGXnhAcAy0CoMomPUjji6Xun1gLYGrtec 0neTzK+lw/prWqXxAGF1LGWxUEzkrqKm7djJt/gZGSfxNNJjJuLROrkjdJRTI5rt r8qewajyEACPSnvse1JFGFniUhf6T1sZG+kHCLw5f21H0KkXBz60KsLsTuRYaxHt Qp+Mf6hdDj2UiONcVQXhsl38HSgqHgLIsrPg0C7z5Q92E3x8hpvGWNuXQmzIZcNd FWBX3V2EbUmj4rqSX05WuzZ0/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1MFSv/ KznqEho7ypFqEs+/DJQUMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXG+nkOD3hLTVdpOBmVqsS56sms/SHljz6YUKHGZlcIlZileUpiA0G h/Xzo9CRmJVXA6rNeFnAPcPujeQxdAEJcgJwz4IgYV2ftgaOvRxw0p4TVRMffRZg KYsMoOjvWm7u/cyBDcWQlXqrMuevFgBHVaZJ7d29YUPNj8K6+LNKVmswTQ/AVL3l 0VZy7KheuMutHZa5VkwepaJTC20OKmvdb8RCN6snKoeKU57vTpvNXwvir3Umd/NS Xm05H8UkuoYYHk0ehrhcucNog4eH4Q+4VmsAPzDXya05xOmp0PUOZnaZJ+jXP4f9 Rk69YKwSABwcNH/GCr/gfV1GO3PFExqy -----END CERTIFICATE-----Generated at Sat Jun 21 16:16:46 2025 by rpki-client