$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft File: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft (raw, json) Hash identifier: R3HNlYzPImPki6OIdby9f457tXMCpgeoTm7rueuWN1w= Subject key identifier: 06:56:3A:25:B7:8A:D2:D8:3C:E9:1B:45:D3:A6:83:DE:D4:14:F8:8E Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft Manifest number: 4D Signing time: Fri 13 Jun 2025 06:16:22 +0000 Manifest this update: Fri 13 Jun 2025 06:16:22 +0000 Manifest next update: Fri 20 Jun 2025 06:16:22 +0000 Files and hashes: 1: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl (hash: ZioGJNP+lO2kfvx3b3f6tYRwrl1rw9RoTtuIUpJmlqk=) 2: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (hash: e53H18n/zt4tMpCTzx/LyyJ5rGfSmD0vKN+ZK6rIQ0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: Jun 13 06:16:22 2025 GMT Not After : Jun 20 06:16:22 2025 GMT Subject: CN=684bc236-15d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1d:2d:f1:58:d1:9a:22:ec:57:cd:51:40:56: 5b:e0:33:2d:63:25:c5:6d:04:80:f7:30:c8:4c:08: 98:52:3e:8e:fa:f8:4d:2d:24:b4:97:ce:2a:92:5f: f2:56:ee:f0:ba:0f:01:35:ad:37:75:da:0e:4f:bf: 08:80:51:d2:5d:3b:d0:e8:6a:99:1c:6c:89:04:df: f2:5e:e7:61:82:3d:7f:85:6b:a4:16:a3:3f:6b:bb: 76:32:d9:ef:61:2f:23:1e:03:ba:98:d0:a7:2d:35: ef:b1:9e:57:5c:82:10:6e:9b:5d:32:78:ce:ab:79: cf:fa:26:1d:fe:6f:d1:e4:e4:ad:58:70:e7:63:a9: 92:65:48:fb:a3:1c:8b:6c:b9:6c:7e:e2:48:7b:18: 6a:6a:29:d0:6d:5b:f3:aa:04:9a:3f:a7:80:35:be: 51:d3:4d:b1:c0:ff:70:d3:46:ab:45:32:8b:ef:71: 2c:4d:b0:52:3e:d3:74:af:16:83:00:cf:8f:42:17: 80:d1:75:1c:78:88:ec:80:5b:40:d4:da:6a:47:0a: c0:09:f1:6f:7f:a9:39:1a:4e:f0:30:dc:6d:ad:7e: a4:14:79:84:f6:59:c2:d0:43:a5:49:5b:1c:0d:cb: 6c:de:46:8b:aa:77:f7:ce:6a:9f:62:93:b0:df:d4: 6d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:56:3A:25:B7:8A:D2:D8:3C:E9:1B:45:D3:A6:83:DE:D4:14:F8:8E X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:a9:20:37:ff:fc:04:d8:9b:e4:71:df:8e:98:79:3f:28:55: cb:d2:73:e6:13:f0:ae:fe:24:e7:ef:ba:be:5a:ba:74:6f:d2: 61:48:33:ee:b6:99:16:b9:fc:01:50:d1:83:cc:11:db:f8:ae: 18:b6:36:64:2d:06:63:0a:ca:21:11:b6:54:c8:bb:65:83:79: 64:d4:06:c8:3a:1b:cc:0c:92:96:71:01:1f:4d:2e:83:4b:df: a5:ef:e9:26:f9:9c:c0:31:16:73:b5:b9:40:14:1b:b8:21:09: 49:74:fb:4f:8d:a1:d0:7b:b7:8e:61:4e:32:51:a3:ea:d8:36: 2d:d8:96:c7:f9:be:c3:93:92:8b:ab:3a:9e:1e:58:4d:34:30: 60:3e:1b:47:28:7b:1b:d4:94:08:1b:f8:33:df:22:1d:cd:00: eb:31:41:d4:81:d9:df:bc:6a:1c:3a:26:78:d2:a6:0e:f7:b2: a2:a1:69:b6:bc:34:ad:fb:9b:05:bd:4b:07:33:67:58:05:f4: ea:2a:b1:90:14:5a:25:f5:6b:42:c5:45:b1:f6:9b:b0:e3:ac: 82:c8:55:76:91:71:77:cc:fa:2a:4b:b0:20:cd:70:6a:bb:35: 57:eb:ab:d5:71:70:d7:60:54:df:c7:81:3c:ee:9d:4a:b9:b5: 6c:05:33:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODc0OTExMC8GA1UEBRMoOTU0NTlENUQxRUIwNDA5NUZEMTYzRjBEODREMUYzQTQ2 QzE1RTRGMDAeFw0yNTA2MTMwNjE2MjJaFw0yNTA2MjAwNjE2MjJaMBgxFjAUBgNV BAMTDTY4NGJjMjM2LTE1ZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNHS3xWNGaIuxXzVFAVlvgMy1jJcVtBID3MMhMCJhSPo76+E0tJLSXziqSX/JW 7vC6DwE1rTd12g5PvwiAUdJdO9DoapkcbIkE3/Je52GCPX+Fa6QWoz9ru3Yy2e9h LyMeA7qY0KctNe+xnldcghBum10yeM6rec/6Jh3+b9Hk5K1YcOdjqZJlSPujHIts uWx+4kh7GGpqKdBtW/OqBJo/p4A1vlHTTbHA/3DTRqtFMovvcSxNsFI+03SvFoMA z49CF4DRdRx4iOyAW0DU2mpHCsAJ8W9/qTkaTvAw3G2tfqQUeYT2WcLQQ6VJWxwN y2zeRouqd/fOap9ik7Df1G0/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBlY6JbeK 0tg86RtF06aD3tQU+I4wHwYDVR0jBBgwFoAUlUWdXR6wQJX9Fj8NhNHzpGwV5PAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NzQ5L0JBNTdEQkE2REMy MDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFVXZFhSNndRSlg5Rmo4TmhOSHpwR3dWNVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NzQ5L0JBNTdEQkE2REMyMDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpY OUZqOE5oTkh6cEd3VjVQQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM+pIDf//ATYm+Rx346YeT8oVcvSc+YT8K7+JOfvur5aunRv0mFIM+62 mRa5/AFQ0YPMEdv4rhi2NmQtBmMKyiERtlTIu2WDeWTUBsg6G8wMkpZxAR9NLoNL 36Xv6Sb5nMAxFnO1uUAUG7ghCUl0+0+NodB7t45hTjJRo+rYNi3Ylsf5vsOTkour Op4eWE00MGA+G0coexvUlAgb+DPfIh3NAOsxQdSB2d+8ahw6JnjSpg73sqKhaba8 NK37mwW9SwczZ1gF9OoqsZAUWiX1a0LFRbH2m7DjrILIVXaRcXfM+ipLsCDNcGq7 NVfrq9VxcNdgVN/HgTzunUq5tWwFM/4= -----END CERTIFICATE-----Generated at Sat Jun 14 18:48:06 2025 by rpki-client