$ rpki-client -vvf rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft File: uNk1BsinkdH5_6W2fDiBbdwD7ms.mft (raw, json) Hash identifier: zI91axLrdk3auD8b/s86lBrIKuX42tNsiv+/RLRNlnU= Subject key identifier: AE:31:A3:EA:1E:7B:DE:00:10:11:7F:74:B9:02:7C:46:74:C3:FB:9B Authority key identifier: B8:D9:35:06:C8:A7:91:D1:F9:FF:A5:B6:7C:38:81:6D:DC:03:EE:6B Certificate issuer: /CN=A9110DEC/serialNumber=B8D93506C8A791D1F9FFA5B67C38816DDC03EE6B Certificate serial: 0A3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft Manifest number: 0A39 Signing time: Sat 14 Jun 2025 19:33:59 +0000 Manifest this update: Sat 14 Jun 2025 19:33:58 +0000 Manifest next update: Sat 21 Jun 2025 19:33:58 +0000 Files and hashes: 1: uNk1BsinkdH5_6W2fDiBbdwD7ms.crl (hash: 04pr38NgNaC83fqUOeZNyN/ufvkYUfUE4N5sbjtE3io=) 2: C01674A86BF011EA87B33D25C4F9AE02.roa (hash: 70ds0/DyF5wXCHSmR464rx4ZYg97rO4f023Z3VGG144=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.crl rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110DEC, serialNumber=B8D93506C8A791D1F9FFA5B67C38816DDC03EE6B Validity Not Before: Jun 14 19:33:58 2025 GMT Not After : Jun 21 19:33:58 2025 GMT Subject: CN=684dcea7-c71c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d1:a2:39:e0:9c:f9:ec:f1:7c:28:29:12:95: 3f:c1:27:b7:de:da:9b:cc:0f:fc:7b:5d:5e:6f:ed: 65:93:f2:e7:24:30:7a:20:af:21:21:62:c1:25:4b: 78:ca:a1:62:99:7b:ab:91:e1:ae:df:91:ff:15:d8: 4b:a3:d5:99:d3:a8:2f:30:7c:cf:fa:0a:f7:96:29: 05:fb:8f:f9:ed:6e:0e:97:b4:61:14:10:e2:b5:70: 7c:58:1e:cf:bd:3e:d1:46:b6:eb:bb:74:29:4b:1e: bd:77:16:22:54:28:f8:43:0e:26:6a:03:64:33:2e: a8:4a:3d:ea:dc:52:cc:01:f4:76:30:5f:bd:08:a1: 83:29:f7:ad:48:2f:a9:31:d3:d2:27:86:89:93:1c: 4c:8e:b2:c4:3d:9b:1d:68:ab:d8:0f:6d:ad:fd:3d: d9:b3:a8:7f:cd:fe:2b:6f:59:33:b4:f2:6d:9b:f7: 5f:28:1d:ef:11:01:99:67:48:3d:06:b2:b2:61:ce: 7c:f0:df:37:74:c3:66:67:67:4d:35:83:83:40:08: e1:ef:89:ae:66:7e:f8:35:e9:22:d0:c8:78:ef:18: 45:5f:a9:f8:34:af:da:31:67:a7:e3:4a:48:2a:27: e1:0d:fa:60:5a:a5:29:c0:62:48:ba:9e:3a:44:1c: 81:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:31:A3:EA:1E:7B:DE:00:10:11:7F:74:B9:02:7C:46:74:C3:FB:9B X509v3 Authority Key Identifier: keyid:B8:D9:35:06:C8:A7:91:D1:F9:FF:A5:B6:7C:38:81:6D:DC:03:EE:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:dc:28:92:c8:2a:16:04:d2:83:b0:8b:28:c9:ba:86:3e:38: 19:cd:8e:77:2f:d8:97:07:89:d5:24:cc:ce:b1:6f:d9:b1:10: 28:6e:f5:67:b0:aa:de:7e:63:1c:5a:7f:f5:e5:bc:d3:fe:c1: 18:8b:cc:d7:a4:4a:45:ce:64:c5:40:38:bd:8f:a4:b3:91:cb: cd:0d:87:ff:73:f8:54:d4:92:e0:df:81:8f:6a:df:d6:ba:e5: 9e:4b:02:4e:30:6b:4a:78:17:b1:74:97:d7:22:1c:af:7e:42: 41:3f:c6:0c:7d:b0:c7:fc:eb:ac:60:d9:c3:55:d4:b4:50:76: d5:75:b3:b9:fe:82:b8:62:4d:61:46:97:2d:64:96:09:35:b7: b5:15:0e:92:62:07:49:17:35:9b:4a:50:72:5a:09:06:0d:99: 87:dd:17:39:ef:c8:6f:88:0d:ed:d4:ca:92:8a:70:4f:99:e7: 56:01:63:bb:e0:3e:24:74:f7:ac:99:4d:cc:86:c8:01:a4:79: 9f:08:ee:a3:08:09:a8:dd:a2:3b:16:08:37:52:f9:28:c4:73: 23:6b:8b:6b:ef:d0:c2:b1:63:16:e0:be:b1:29:09:90:79:0b: 20:77:01:2b:9a:19:6b:d7:91:16:09:5e:2c:a4:a7:aa:8c:be: 7a:d2:b1:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBERUMxMTAvBgNVBAUTKEI4RDkzNTA2QzhBNzkxRDFGOUZGQTVCNjdDMzg4MTZE REMwM0VFNkIwHhcNMjUwNjE0MTkzMzU4WhcNMjUwNjIxMTkzMzU4WjAYMRYwFAYD VQQDEw02ODRkY2VhNy1jNzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39GiOeCc+ezxfCgpEpU/wSe33tqbzA/8e11eb+1lk/LnJDB6IK8hIWLBJUt4 yqFimXurkeGu35H/FdhLo9WZ06gvMHzP+gr3likF+4/57W4Ol7RhFBDitXB8WB7P vT7RRrbru3QpSx69dxYiVCj4Qw4magNkMy6oSj3q3FLMAfR2MF+9CKGDKfetSC+p MdPSJ4aJkxxMjrLEPZsdaKvYD22t/T3Zs6h/zf4rb1kztPJtm/dfKB3vEQGZZ0g9 BrKyYc588N83dMNmZ2dNNYODQAjh74muZn74Neki0Mh47xhFX6n4NK/aMWen40pI KifhDfpgWqUpwGJIup46RByBQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4xo+oe e94AEBF/dLkCfEZ0w/ubMB8GA1UdIwQYMBaAFLjZNQbIp5HR+f+ltnw4gW3cA+5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMERFQy8xNzJEMEEyNDZC RUYxMUVBQTI2QTVFMjJDNEY5QUUwMi91TmsxQnNpbmtkSDVfNlcyZkRpQmJkd0Q3 bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOazFCc2lua2RINV82VzJmRGlCYmR3RDdtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MERFQy8xNzJEMEEyNDZCRUYxMUVBQTI2QTVFMjJDNEY5QUUwMi91TmsxQnNpbmtk SDVfNlcyZkRpQmJkd0Q3bXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs3CiSyCoWBNKDsIsoybqGPjgZzY53L9iXB4nVJMzOsW/ZsRAobvVn sKrefmMcWn/15bzT/sEYi8zXpEpFzmTFQDi9j6SzkcvNDYf/c/hU1JLg34GPat/W uuWeSwJOMGtKeBexdJfXIhyvfkJBP8YMfbDH/OusYNnDVdS0UHbVdbO5/oK4Yk1h RpctZJYJNbe1FQ6SYgdJFzWbSlByWgkGDZmH3Rc578hviA3t1MqSinBPmedWAWO7 4D4kdPesmU3MhsgBpHmfCO6jCAmo3aI7Fgg3UvkoxHMja4tr79DCsWMW4L6xKQmQ eQsgdwErmhlr15EWCV4spKeqjL560rEn -----END CERTIFICATE-----Generated at Sun Jun 15 08:33:50 2025 by rpki-client