$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft File: UyaKJzal_1VLlAcD83T8NXkijDA.mft (raw, json) Hash identifier: RAoj9ebVTYHs9TOIo798DRuJAUuGtyn7W9AZqSHt4uw= Subject key identifier: 1B:A8:61:EE:E4:46:90:60:EB:EE:96:D8:8D:BD:82:C9:DC:FE:CC:BD Authority key identifier: 53:26:8A:27:36:A5:FF:55:4B:94:07:03:F3:74:FC:35:79:22:8C:30 Certificate issuer: /CN=A91DCBAD/serialNumber=53268A2736A5FF554B940703F374FC3579228C30 Certificate serial: 0A3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft Manifest number: 0A31 Signing time: Wed 18 Jun 2025 19:38:47 +0000 Manifest this update: Wed 18 Jun 2025 19:38:46 +0000 Manifest next update: Wed 25 Jun 2025 19:38:46 +0000 Files and hashes: 1: UyaKJzal_1VLlAcD83T8NXkijDA.crl (hash: fvXOOtQHolgD/xwkHgUzWAeDQUcH9Y/7R1HQtS65Xzw=) 2: CF072592709211EAB1D2FA0FC4F9AE02.roa (hash: qgPwBHuJNODFhkIhrJVb9VAEuenY+/fH1u9JlBx0mT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.crl rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:38:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2618 (0xa3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCBAD, serialNumber=53268A2736A5FF554B940703F374FC3579228C30 Validity Not Before: Jun 18 19:38:46 2025 GMT Not After : Jun 25 19:38:46 2025 GMT Subject: CN=685315c6-7e70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a7:5d:b5:cf:17:4f:59:f2:56:75:a9:2d:07: 5a:1b:10:a9:10:75:5f:92:c5:fb:a4:2b:be:0f:2b: c8:63:a6:92:87:55:1d:c8:3a:ee:81:d1:ae:3a:21: 12:cf:46:87:ce:bf:71:c2:88:47:9d:1b:25:f9:28: 0d:31:63:fa:cd:40:ca:cd:31:b7:0c:da:ff:c5:23: 6a:c0:65:19:14:fd:98:67:f7:df:fa:78:ff:64:ad: 21:41:e6:51:ab:35:b7:5d:65:04:aa:59:b9:33:2c: 13:22:8e:88:23:1a:6a:04:68:f9:88:93:9b:5a:68: f8:50:a0:d7:67:71:60:96:23:2d:a3:e0:2e:70:12: 43:39:53:d2:fc:d5:6b:f5:cf:66:c7:51:a9:bc:42: 4c:f8:2f:7b:7c:82:8f:a9:76:8c:70:c9:52:ec:d6: 0a:aa:de:4c:71:35:4f:f9:21:cb:99:52:47:fc:a1: 9e:e4:c4:1f:df:c0:73:57:d0:56:ba:1f:b9:e4:54: 2d:c1:59:06:8f:0c:c4:0e:12:3a:1f:b3:88:51:39: ac:58:bc:57:be:67:90:46:b8:26:10:b8:63:99:e3: 17:73:3c:88:55:55:f0:e3:40:f6:c0:ed:e3:77:39: 51:ef:50:6b:42:ab:b8:6e:a8:31:73:5a:63:b0:c5: 43:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A8:61:EE:E4:46:90:60:EB:EE:96:D8:8D:BD:82:C9:DC:FE:CC:BD X509v3 Authority Key Identifier: keyid:53:26:8A:27:36:A5:FF:55:4B:94:07:03:F3:74:FC:35:79:22:8C:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:52:e7:77:99:15:40:56:f5:47:8b:4d:33:d7:6a:be:9f:5e: 1d:3f:cd:e3:16:7a:bc:ec:de:e4:45:ff:bd:1f:3f:94:c1:ad: ad:ad:2b:3c:07:3f:3b:47:69:8e:33:91:fb:15:cd:ca:80:3b: 16:70:b9:b0:07:0b:5f:b1:39:cf:7b:d0:47:43:5f:0a:32:53: 0c:9e:02:4d:7e:be:c0:0b:de:2a:91:d2:d5:a5:1d:d4:67:19: ac:86:db:93:f2:3f:9f:16:9b:0d:5c:2a:84:97:ea:3a:45:76: 22:a5:9c:92:86:12:13:09:7b:2a:ce:8d:99:2c:dd:76:2e:fb: 03:d3:17:8f:5b:d0:ba:73:4e:d5:3b:5e:ac:72:de:28:97:bf: 2b:2a:bd:46:7d:5d:a9:c0:81:09:7b:dc:a9:c5:7d:23:59:70: 30:3e:0e:bc:d7:83:d0:1e:d8:1f:39:13:72:dd:ff:8c:1e:91: 72:6b:95:14:35:16:85:40:3a:b2:1c:0c:41:fd:38:b4:6a:52: 53:65:49:00:74:ce:b1:49:0c:20:f9:e0:5c:31:b0:4a:f7:12: 92:a8:d6:ed:c1:86:84:eb:73:37:b2:83:20:2b:10:0b:49:4e: f2:83:eb:66:49:b8:0b:97:3b:90:a9:a2:1f:da:f2:ee:8a:f9: ba:d3:9b:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCQUQxMTAvBgNVBAUTKDUzMjY4QTI3MzZBNUZGNTU0Qjk0MDcwM0YzNzRGQzM1 NzkyMjhDMzAwHhcNMjUwNjE4MTkzODQ2WhcNMjUwNjI1MTkzODQ2WjAYMRYwFAYD VQQDEw02ODUzMTVjNi03ZTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraddtc8XT1nyVnWpLQdaGxCpEHVfksX7pCu+DyvIY6aSh1UdyDrugdGuOiES z0aHzr9xwohHnRsl+SgNMWP6zUDKzTG3DNr/xSNqwGUZFP2YZ/ff+nj/ZK0hQeZR qzW3XWUEqlm5MywTIo6IIxpqBGj5iJObWmj4UKDXZ3FgliMto+AucBJDOVPS/NVr 9c9mx1GpvEJM+C97fIKPqXaMcMlS7NYKqt5McTVP+SHLmVJH/KGe5MQf38BzV9BW uh+55FQtwVkGjwzEDhI6H7OIUTmsWLxXvmeQRrgmELhjmeMXczyIVVXw40D2wO3j dzlR71BrQqu4bqgxc1pjsMVDJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBuoYe7k RpBg6+6W2I29gsnc/sy9MB8GA1UdIwQYMBaAFFMmiic2pf9VS5QHA/N0/DV5Ioww MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0JBRC8zNjU5RTdBRTcw OTExMUVBOEE5QjRFMERDNEY5QUUwMi9VeWFLSnphbF8xVkxsQWNEODNUOE5Ya2lq REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5YUtKemFsXzFWTGxBY0Q4M1Q4TlhraWpEQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0JBRC8zNjU5RTdBRTcwOTExMUVBOEE5QjRFMERDNEY5QUUwMi9VeWFLSnphbF8x VkxsQWNEODNUOE5Ya2lqREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsUud3mRVAVvVHi00z12q+n14dP83jFnq87N7kRf+9Hz+Uwa2trSs8 Bz87R2mOM5H7Fc3KgDsWcLmwBwtfsTnPe9BHQ18KMlMMngJNfr7AC94qkdLVpR3U ZxmshtuT8j+fFpsNXCqEl+o6RXYipZyShhITCXsqzo2ZLN12LvsD0xePW9C6c07V O16sct4ol78rKr1GfV2pwIEJe9ypxX0jWXAwPg6814PQHtgfORNy3f+MHpFya5UU NRaFQDqyHAxB/Ti0alJTZUkAdM6xSQwg+eBcMbBK9xKSqNbtwYaE63M3soMgKxAL SU7yg+tmSbgLlzuQqaIf2vLuivm605uS -----END CERTIFICATE-----Generated at Fri Jun 20 20:55:48 2025 by rpki-client