$ rpki-client -vvf rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft File: uRokzwRxERfIw7omSjM5Xad_kbQ.mft (raw, json) Hash identifier: HtjqyliTfb8FOrt4vvgrEgGMJHYRefzvCxeqHQdl8D8= Subject key identifier: 12:60:DF:3D:E4:FA:08:A1:8E:25:63:91:AC:E0:36:1A:05:6F:78:A1 Authority key identifier: B9:1A:24:CF:04:71:11:17:C8:C3:BA:26:4A:33:39:5D:A7:7F:91:B4 Certificate issuer: /CN=A9133BB0/serialNumber=B91A24CF04711117C8C3BA264A33395DA77F91B4 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft Manifest number: A2 Signing time: Sat 21 Jun 2025 05:14:15 +0000 Manifest this update: Sat 21 Jun 2025 05:14:14 +0000 Manifest next update: Sat 28 Jun 2025 05:14:14 +0000 Files and hashes: 1: uRokzwRxERfIw7omSjM5Xad_kbQ.crl (hash: qOZjlojBAZVK8WPvCawF2nuPa6MKQslZcVLAwUfkBc4=) 2: 27995372566911EF9D53B517C4F9AE02.roa (hash: xq/tIHChRUQ/SVgEnorDvzsCIu9u4UcNJR+//ggbghs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.crl rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133BB0, serialNumber=B91A24CF04711117C8C3BA264A33395DA77F91B4 Validity Not Before: Jun 21 05:14:14 2025 GMT Not After : Jun 28 05:14:14 2025 GMT Subject: CN=68563fa7-5cf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a9:2a:d4:72:36:8b:ca:63:00:cb:e7:fa:60: a1:2a:14:7e:5f:3d:0c:35:9d:dc:d8:4b:09:b9:bc: 7a:c7:0f:b7:a8:dc:df:a9:ec:9e:1f:bd:b7:28:b4: 3f:5c:be:e1:00:b2:46:31:dd:ee:f0:aa:3a:2e:ed: b8:a7:45:29:e5:20:65:af:5b:cb:0e:3d:aa:15:db: a5:e6:29:b5:86:ab:ac:66:09:38:61:1a:9d:e3:ca: 91:88:5d:01:9c:0f:a2:fd:55:44:9a:0a:db:c2:d5: 2b:5f:6d:c3:b1:95:43:35:66:b2:2d:50:11:12:ac: 85:17:31:bb:e7:51:fc:30:b2:d9:1a:d8:b5:bf:74: a3:4d:0f:73:b9:66:40:9a:16:e7:96:b9:4f:29:bd: f1:99:46:16:5b:ae:dd:98:22:37:7e:8d:fd:8d:e8: 53:19:82:36:4a:8a:eb:54:51:b1:f1:c7:47:95:a6: 5b:66:39:d8:72:04:65:84:38:e3:55:43:f9:a1:bd: 7e:f1:67:1b:56:a2:6f:b7:98:b6:6e:6d:fe:e3:2d: 23:f8:59:e4:75:78:3b:f4:b1:07:c8:42:59:5c:4c: b6:65:f8:d0:66:56:0b:c2:68:73:7c:b7:17:66:18: 76:d2:47:cd:c5:7f:98:7e:88:e9:ab:52:bf:db:80: 75:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:60:DF:3D:E4:FA:08:A1:8E:25:63:91:AC:E0:36:1A:05:6F:78:A1 X509v3 Authority Key Identifier: keyid:B9:1A:24:CF:04:71:11:17:C8:C3:BA:26:4A:33:39:5D:A7:7F:91:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:9b:e4:0c:ca:03:2a:ff:e9:59:24:00:c5:b2:ef:e9:aa:f0: d3:79:9f:44:57:5b:29:fb:0f:00:8a:96:58:39:38:d1:4c:05: 66:ec:05:01:93:6f:ab:c4:55:17:07:6d:f3:b4:1c:ad:e2:2c: f8:50:80:f2:aa:8a:d9:6c:31:06:6d:f2:84:21:9d:fb:36:3a: 43:71:0b:29:d3:75:de:49:e5:1c:85:df:7f:51:c4:0b:d1:90: 4b:94:30:49:37:95:8b:97:46:6b:73:42:d1:2d:6e:87:3f:46: a7:23:59:65:12:ae:da:25:63:ba:30:08:19:7c:6f:a8:6d:5f: ad:28:17:e1:0c:02:1d:32:40:67:82:a6:06:ab:32:92:4e:8c: d1:70:9f:d9:2d:94:33:24:54:42:06:77:30:22:c8:a9:69:ed: 94:f6:b9:b5:ee:9e:19:0e:55:d1:89:0b:f0:eb:0e:fc:3b:76: 31:89:be:fa:f3:fb:6e:c7:17:3f:0f:07:a2:70:4b:48:da:7e: eb:4b:08:10:81:ef:c1:8a:9a:2a:4e:1e:aa:9c:f7:3f:f4:ab: 09:de:8d:a5:f2:32:28:ef:87:ea:9a:ce:f2:66:93:82:a6:dd: 3e:72:3a:57:bc:18:a1:4b:29:1f:a6:47:b7:66:1c:88:ae:47: 99:6c:82:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCQjAxMTAvBgNVBAUTKEI5MUEyNENGMDQ3MTExMTdDOEMzQkEyNjRBMzMzOTVE QTc3RjkxQjQwHhcNMjUwNjIxMDUxNDE0WhcNMjUwNjI4MDUxNDE0WjAYMRYwFAYD VQQDEw02ODU2M2ZhNy01Y2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxakq1HI2i8pjAMvn+mChKhR+Xz0MNZ3c2EsJubx6xw+3qNzfqeyeH723KLQ/ XL7hALJGMd3u8Ko6Lu24p0Up5SBlr1vLDj2qFdul5im1hqusZgk4YRqd48qRiF0B nA+i/VVEmgrbwtUrX23DsZVDNWayLVAREqyFFzG751H8MLLZGti1v3SjTQ9zuWZA mhbnlrlPKb3xmUYWW67dmCI3fo39jehTGYI2SorrVFGx8cdHlaZbZjnYcgRlhDjj VUP5ob1+8WcbVqJvt5i2bm3+4y0j+FnkdXg79LEHyEJZXEy2ZfjQZlYLwmhzfLcX Zhh20kfNxX+Yfojpq1K/24B1rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJg3z3k +gihjiVjkazgNhoFb3ihMB8GA1UdIwQYMBaAFLkaJM8EcREXyMO6JkozOV2nf5G0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0JCMC9CODY1QjM3RTU2 NjgxMUVGOEU2QTc3NURDNEY5QUUwMi91Um9rendSeEVSZkl3N29tU2pNNVhhZF9r YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VSb2t6d1J4RVJmSXc3b21Tak01WGFkX2tiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0JCMC9CODY1QjM3RTU2NjgxMUVGOEU2QTc3NURDNEY5QUUwMi91Um9rendSeEVS Zkl3N29tU2pNNVhhZF9rYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEm+QMygMq/+lZJADFsu/pqvDTeZ9EV1sp+w8AipZYOTjRTAVm7AUB k2+rxFUXB23ztByt4iz4UIDyqorZbDEGbfKEIZ37NjpDcQsp03XeSeUchd9/UcQL 0ZBLlDBJN5WLl0Zrc0LRLW6HP0anI1llEq7aJWO6MAgZfG+obV+tKBfhDAIdMkBn gqYGqzKSTozRcJ/ZLZQzJFRCBncwIsipae2U9rm17p4ZDlXRiQvw6w78O3Yxib76 8/tuxxc/DweicEtI2n7rSwgQge/BipoqTh6qnPc/9KsJ3o2l8jIo74fqms7yZpOC pt0+cjpXvBihSykfpke3ZhyIrkeZbIJJ -----END CERTIFICATE-----Generated at Sat Jun 21 09:52:21 2025 by rpki-client