$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft File: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft (raw, json) Hash identifier: kfnASq+WhlG5LhT4d/LyaYGPforXZL8RkrFlKBCFTTg= Subject key identifier: 42:61:3E:CA:0F:16:8C:39:10:7A:88:3E:65:4D:F3:9D:43:72:52:FC Authority key identifier: 50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3 Certificate issuer: /CN=A91E5191/serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3 Certificate serial: 079E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft Manifest number: 0795 Signing time: Fri 08 Aug 2025 21:49:21 +0000 Manifest this update: Fri 08 Aug 2025 21:49:20 +0000 Manifest next update: Fri 15 Aug 2025 21:49:20 +0000 Files and hashes: 1: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl (hash: grbuYp0j6+/+YAxB4i3Bp2i1Wt7er8nabC/4tUMKCeU=) 2: 3E78F3541E2D11EB95754317C4F9AE02.roa (hash: L4y/BSdD8jixu1gcFYl1/VYG0pr8T2e5WODxblJYDOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5191, serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3 Validity Not Before: Aug 8 21:49:20 2025 GMT Not After : Aug 15 21:49:20 2025 GMT Subject: CN=689670e1-cba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:40:26:c3:f5:78:35:c7:58:fb:6e:f8:e5:6d: c7:40:8b:26:9e:28:3f:70:4c:b2:58:84:7f:ee:b5: 08:1b:58:05:f1:7b:9f:2d:0e:8d:ea:2e:b7:74:36: 05:02:13:83:8d:22:0c:3d:7f:ba:68:79:89:83:51: 86:62:17:80:a0:bb:a3:28:aa:32:85:9d:6c:a2:a3: 9e:b1:d0:ff:08:f4:42:d6:2d:6b:0f:bb:61:fd:4a: 0d:18:2a:fc:59:ad:f4:31:89:92:c6:c6:ac:cf:fc: 50:0e:ad:06:6a:e2:92:b0:8e:91:bb:5e:61:50:03: bf:18:2f:d7:27:85:7d:b0:a3:58:06:c1:ac:9a:8f: 16:63:8c:eb:7e:d0:34:ad:8c:91:7e:d1:c0:ba:17: 4e:a4:f3:12:21:cb:b2:60:ef:16:cb:c2:fa:52:ea: 61:31:92:65:55:b3:fb:7c:5b:a2:b2:ef:2a:1d:67: 9b:81:be:1c:4a:1f:b5:b2:ad:d3:d6:b7:e7:c2:93: ac:ba:2b:00:42:87:f1:52:1f:8b:4f:66:f8:15:52: 79:57:b0:c6:df:e2:1f:14:38:a1:a1:90:a1:70:76: b3:00:da:51:17:08:52:34:c0:5d:30:78:55:80:6a: f2:87:e9:cd:43:89:08:91:56:3f:d6:c3:7b:7e:54: 51:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:61:3E:CA:0F:16:8C:39:10:7A:88:3E:65:4D:F3:9D:43:72:52:FC X509v3 Authority Key Identifier: keyid:50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ae:07:dd:9a:e9:3f:38:cb:db:7e:87:3e:59:65:92:73:30: 99:6c:90:32:ea:ed:28:f1:95:0c:ed:2b:2f:ac:12:6b:fd:9d: b3:f6:8c:ae:ec:c5:70:32:f6:0b:fa:ec:4d:8e:89:01:91:9b: af:52:26:b7:23:d2:5f:0a:c9:12:7d:2c:ce:ee:99:a4:cd:b8: 43:f7:50:8c:17:42:c8:59:d7:af:c7:93:52:53:93:b3:20:dc: 32:85:4e:8f:aa:4f:3e:21:3c:e8:af:1a:da:8a:e9:ec:0e:df: 77:63:64:55:71:b9:56:9d:c5:23:b0:79:f2:f1:5b:0b:36:0f: 7f:5c:4a:7d:90:fa:0a:e4:29:f0:24:cf:6e:92:76:cf:ea:1d: 65:d0:e1:72:33:c4:53:28:d5:c7:8a:85:3c:8b:de:bf:8d:2f: 77:ee:67:3a:ed:0b:5f:bd:1f:27:10:8d:9d:c3:0e:db:2d:15: 42:08:f9:ef:52:c6:83:55:c7:89:57:5a:87:22:30:d3:01:f6: 7e:2e:b6:cd:6e:ae:d3:5b:83:9d:6a:92:c4:a8:cc:fe:f3:21: 06:5d:97:b1:b5:08:71:41:31:b9:e4:d8:b9:07:a8:65:7c:1c: 46:02:5e:14:09:cd:3d:ec:5f:15:f5:33:5f:3d:b6:7b:56:e4: 78:9e:28:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUxOTExMTAvBgNVBAUTKDUwQTcxMTZCQjlGMzY5N0JDNUUzRTIyMkVGMDM1Rjcw MzQyQ0REQTMwHhcNMjUwODA4MjE0OTIwWhcNMjUwODE1MjE0OTIwWjAYMRYwFAYD VQQDEw02ODk2NzBlMS1jYmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0Amw/V4NcdY+2745W3HQIsmnig/cEyyWIR/7rUIG1gF8XufLQ6N6i63dDYF AhODjSIMPX+6aHmJg1GGYheAoLujKKoyhZ1soqOesdD/CPRC1i1rD7th/UoNGCr8 Wa30MYmSxsasz/xQDq0GauKSsI6Ru15hUAO/GC/XJ4V9sKNYBsGsmo8WY4zrftA0 rYyRftHAuhdOpPMSIcuyYO8Wy8L6UuphMZJlVbP7fFuisu8qHWebgb4cSh+1sq3T 1rfnwpOsuisAQofxUh+LT2b4FVJ5V7DG3+IfFDihoZChcHazANpRFwhSNMBdMHhV gGryh+nNQ4kIkVY/1sN7flRRSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJhPsoP Fow5EHqIPmVN851DclL8MB8GA1UdIwQYMBaAFFCnEWu582l7xePiIu8DX3A0LN2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTE5MS80OEFBMDcwNjE5 NzIxMUVCODA1RTZCN0ZDNEY5QUUwMi9VS2NSYTduemFYdkY0LUlpN3dOZmNEUXMz YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLY1JhN256YVh2RjQtSWk3d05mY0RRczNhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTE5MS80OEFBMDcwNjE5NzIxMUVCODA1RTZCN0ZDNEY5QUUwMi9VS2NSYTduemFY dkY0LUlpN3dOZmNEUXMzYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIrgfdmuk/OMvbfoc+WWWSczCZbJAy6u0o8ZUM7SsvrBJr/Z2z9oyu 7MVwMvYL+uxNjokBkZuvUia3I9JfCskSfSzO7pmkzbhD91CMF0LIWdevx5NSU5Oz INwyhU6Pqk8+ITzorxraiunsDt93Y2RVcblWncUjsHny8VsLNg9/XEp9kPoK5Cnw JM9uknbP6h1l0OFyM8RTKNXHioU8i96/jS937mc67QtfvR8nEI2dww7bLRVCCPnv UsaDVceJV1qHIjDTAfZ+LrbNbq7TW4OdapLEqMz+8yEGXZextQhxQTG55Ni5B6hl fBxGAl4UCc097F8V9TNfPbZ7VuR4nijk -----END CERTIFICATE-----Generated at Sun Aug 10 13:47:33 2025 by rpki-client