$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: y9V5QgZwOFqL6uxoiYNhjuUWcPlSSnlcC44a8tSNREA= Subject key identifier: 51:EA:BE:AF:E0:18:89:41:87:2C:04:13:CF:62:CA:98:DE:9A:C6:89 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 0126 Signing time: Sun 15 Jun 2025 03:53:40 +0000 Manifest this update: Sun 15 Jun 2025 03:53:39 +0000 Manifest next update: Sun 22 Jun 2025 03:53:39 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: 98n/uwsUz1FCF4pOCSg4aDX7nTORizZht4pzGpCeZDk=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Jun 15 03:53:39 2025 GMT Not After : Jun 22 03:53:39 2025 GMT Subject: CN=684e43c3-4e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a2:6a:c9:7c:62:a5:ec:7a:74:62:67:e6:c9: 07:c5:e8:32:25:b5:3a:aa:c4:06:74:05:cb:d9:a5: 1a:ed:09:f0:1d:44:c3:1f:35:ba:a8:88:c6:8b:fe: 70:5b:06:92:18:c0:f8:54:68:5c:09:b4:2f:c7:60: 7d:37:6f:ff:38:21:b7:b8:20:5e:71:c0:86:90:60: a1:1f:80:d9:d4:70:de:8b:52:31:b7:09:43:4b:ca: 84:4c:00:13:e3:65:b8:9f:0c:f3:0b:9b:7b:dc:89: d2:70:d1:b9:d9:6e:12:0e:39:b7:51:9d:5b:3d:d0: cb:97:42:b4:09:2b:6a:aa:8f:d6:ec:a3:b3:a7:0d: 84:90:9d:8a:00:03:9b:a0:c0:1c:87:d3:b8:a4:ec: fa:34:96:62:f1:7d:ac:55:a8:a7:1e:35:f6:af:c5: 38:e6:04:02:75:4c:fb:00:1c:5e:2a:b7:5e:46:21: 7d:12:f9:a8:a3:87:84:50:d0:b3:96:dc:b4:4e:0a: 29:e0:a0:11:53:c2:17:4c:6d:3a:16:43:af:13:7c: 32:34:32:1c:7b:da:55:6d:f2:02:bf:31:3d:e5:3f: e4:59:74:14:60:ed:75:cf:cf:09:c9:30:45:6a:9e: 54:50:48:33:2d:ac:58:e6:19:8c:45:b4:90:34:8a: 35:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:EA:BE:AF:E0:18:89:41:87:2C:04:13:CF:62:CA:98:DE:9A:C6:89 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:23:3c:f0:1e:51:f9:ac:09:99:b7:6e:29:27:71:ba:3e:14: 96:87:58:bc:e3:c0:c3:df:bb:33:3b:64:2b:01:37:fe:f5:2a: 87:80:16:b5:42:11:7a:7a:81:4d:76:ac:ae:40:e9:8d:07:97: c9:0e:50:c6:7a:65:cf:2a:c6:7e:1a:58:b9:a2:66:78:14:7f: 97:17:bb:22:47:8a:84:a2:6e:24:e8:2e:84:26:cb:54:6a:b6: e6:b6:1f:83:51:02:ab:cf:46:2d:45:57:b5:86:c6:5b:39:3a: 55:7c:83:ab:f8:56:f9:5f:8c:82:87:4d:17:8d:35:9b:57:31: df:a3:9b:cc:87:dc:e1:42:cc:01:82:94:63:9c:85:81:fe:97: 0a:10:38:a1:13:c9:9a:b4:3b:90:9a:08:2a:4f:b9:c4:60:1a: 36:7b:f6:93:dc:d3:ca:0f:ae:f8:67:f4:e4:7d:5b:e8:3e:c4: 16:e4:18:bf:e7:b6:67:9a:15:75:34:34:27:36:3c:1c:5f:b9: fa:c0:ba:99:2d:85:c7:75:cc:29:02:66:15:c9:75:43:e4:2f: ea:d5:09:a3:7a:11:46:65:b2:14:8d:0e:b7:92:3a:de:dd:49: 99:dc:6e:c0:9f:65:af:27:4a:97:e2:9b:a1:41:3d:e0:0b:24: e9:a7:12:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwNjE1MDM1MzM5WhcNMjUwNjIyMDM1MzM5WjAYMRYwFAYD VQQDEw02ODRlNDNjMy00ZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKJqyXxipex6dGJn5skHxegyJbU6qsQGdAXL2aUa7QnwHUTDHzW6qIjGi/5w WwaSGMD4VGhcCbQvx2B9N2//OCG3uCBeccCGkGChH4DZ1HDei1IxtwlDS8qETAAT 42W4nwzzC5t73InScNG52W4SDjm3UZ1bPdDLl0K0CStqqo/W7KOzpw2EkJ2KAAOb oMAch9O4pOz6NJZi8X2sVainHjX2r8U45gQCdUz7ABxeKrdeRiF9Evmoo4eEUNCz lty0Tgop4KARU8IXTG06FkOvE3wyNDIce9pVbfICvzE95T/kWXQUYO11z88JyTBF ap5UUEgzLaxY5hmMRbSQNIo1GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHqvq/g GIlBhywEE89iypjemsaJMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvIzzwHlH5rAmZt24pJ3G6PhSWh1i848DD37szO2QrATf+9SqHgBa1 QhF6eoFNdqyuQOmNB5fJDlDGemXPKsZ+Gli5omZ4FH+XF7siR4qEom4k6C6EJstU arbmth+DUQKrz0YtRVe1hsZbOTpVfIOr+Fb5X4yCh00XjTWbVzHfo5vMh9zhQswB gpRjnIWB/pcKEDihE8matDuQmggqT7nEYBo2e/aT3NPKD674Z/TkfVvoPsQW5Bi/ 57ZnmhV1NDQnNjwcX7n6wLqZLYXHdcwpAmYVyXVD5C/q1QmjehFGZbIUjQ63kjre 3UmZ3G7An2WvJ0qX4puhQT3gCyTppxKE -----END CERTIFICATE-----Generated at Sun Jun 15 09:43:06 2025 by rpki-client