$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: ou2H0NxtUc6NnxbLEPwmQhYd6pjavTq4th4W9N+yTAA= Subject key identifier: AD:C3:46:EB:1E:A5:FC:E4:FC:D2:C3:04:93:67:84:FE:E6:4E:CE:EC Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 2270 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 223E Signing time: Sat 14 Jun 2025 15:50:42 +0000 Manifest this update: Sat 14 Jun 2025 15:50:41 +0000 Manifest next update: Sat 21 Jun 2025 15:50:41 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: 0Q2oUZVQY8Gz8oskpZQpPHlqg7SKU/Ifpgv8IQm1k9I=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8816 (0x2270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Jun 14 15:50:41 2025 GMT Not After : Jun 21 15:50:41 2025 GMT Subject: CN=684d9a52-6caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5f:a6:75:c8:b4:0e:48:b3:ca:e4:d3:e0:49: 4b:6b:51:be:55:b5:24:0e:52:a4:48:2f:76:8e:80: 9c:c4:d1:15:e8:f9:ec:e7:5b:ff:82:93:99:7e:0b: 0b:55:36:fc:0f:da:d1:cc:fa:3c:e5:20:30:b0:8e: 26:cb:c5:ed:5e:30:30:8c:0d:e4:5f:20:bb:41:7c: 8f:70:93:1d:a2:2d:26:f4:5f:81:19:57:38:bb:e8: 76:76:e9:64:4a:b1:42:64:b8:cf:da:0a:23:ba:29: dc:9b:5f:36:37:c1:96:15:83:85:ec:87:92:28:f6: 32:d4:22:51:f9:3d:0f:4f:ad:b0:94:e8:f4:86:d8: 8c:33:03:c7:b8:0a:c7:49:62:83:fb:a3:ac:36:5e: 03:a1:2b:59:ba:26:57:e2:f8:48:3c:69:d0:58:ef: 3e:ae:d3:cd:d6:96:50:1f:50:73:e9:0c:fd:1e:7f: fe:95:de:ec:34:a2:2d:2f:26:80:b0:a7:25:31:c2: 9d:ee:a6:a5:d5:2d:0a:04:53:80:80:d3:b1:15:73: bb:ad:b1:09:1f:0f:15:c6:52:69:23:8a:ca:72:f4: 3b:94:ab:fc:0f:93:77:d3:b0:d4:da:8d:53:fc:15: 03:c3:bd:5a:9b:25:3b:4d:2e:2d:61:5b:ac:f6:d0: b8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C3:46:EB:1E:A5:FC:E4:FC:D2:C3:04:93:67:84:FE:E6:4E:CE:EC X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:8b:ef:0d:ac:b5:82:3f:09:58:47:80:72:a0:98:26:ce:71: bb:12:6d:36:ef:a8:45:7a:bd:1b:40:d5:b5:f2:f2:1b:0b:df: 99:11:87:ec:e5:40:ba:1e:e2:0c:91:47:53:39:1d:dd:f8:56: 52:de:4a:66:7f:32:a8:ba:a9:0b:56:55:52:f1:34:02:ec:32: 6e:47:2e:bb:10:46:3a:51:97:ce:1a:e1:51:07:02:5d:a2:90: 0d:5c:7d:66:84:1f:6e:a5:df:45:78:43:24:31:84:0e:67:e4: b3:5e:ac:1b:1c:cc:71:8d:ac:86:2e:35:1d:80:d2:1d:83:85: 3c:62:98:26:39:f5:d1:22:ff:78:0e:11:3c:f1:45:a8:ca:e5: 06:4c:99:a7:c4:6f:0a:1d:4a:1f:2e:7f:dc:d8:0c:c2:13:7f: f7:bb:1a:c1:9d:46:bb:df:c5:1f:d9:70:95:92:3a:f9:a8:b3: 65:93:ce:ad:45:b4:ad:80:8b:37:16:64:1c:25:85:a6:70:c3: 35:d0:9c:79:d9:65:0d:23:76:6b:0b:1c:cc:b9:0b:95:09:7f: e1:d3:bc:e8:47:27:1a:34:9f:c2:01:d1:f2:64:3e:88:6f:1c: 52:e8:cf:48:8f:57:84:ef:bf:a0:c4:a4:a8:89:e5:ec:42:ef: cd:d0:d3:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICInAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUwNjE0MTU1MDQxWhcNMjUwNjIxMTU1MDQxWjAYMRYwFAYD VQQDEw02ODRkOWE1Mi02Y2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArF+mdci0DkizyuTT4ElLa1G+VbUkDlKkSC92joCcxNEV6Pns51v/gpOZfgsL VTb8D9rRzPo85SAwsI4my8XtXjAwjA3kXyC7QXyPcJMdoi0m9F+BGVc4u+h2dulk SrFCZLjP2gojuincm182N8GWFYOF7IeSKPYy1CJR+T0PT62wlOj0htiMMwPHuArH SWKD+6OsNl4DoStZuiZX4vhIPGnQWO8+rtPN1pZQH1Bz6Qz9Hn/+ld7sNKItLyaA sKclMcKd7qal1S0KBFOAgNOxFXO7rbEJHw8VxlJpI4rKcvQ7lKv8D5N307DU2o1T /BUDw71amyU7TS4tYVus9tC4mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3DRuse pfzk/NLDBJNnhP7mTs7sMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMi+8NrLWCPwlYR4ByoJgmznG7Em0276hFer0bQNW18vIbC9+ZEYfs 5UC6HuIMkUdTOR3d+FZS3kpmfzKouqkLVlVS8TQC7DJuRy67EEY6UZfOGuFRBwJd opANXH1mhB9upd9FeEMkMYQOZ+SzXqwbHMxxjayGLjUdgNIdg4U8YpgmOfXRIv94 DhE88UWoyuUGTJmnxG8KHUofLn/c2AzCE3/3uxrBnUa738Uf2XCVkjr5qLNlk86t RbStgIs3FmQcJYWmcMM10Jx52WUNI3ZrCxzMuQuVCX/h07zoRycaNJ/CAdHyZD6I bxxS6M9Ij1eE77+gxKSoieXsQu/N0NNA -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:25 2025 by rpki-client