$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: dTeLSaK2zcaK6AuaU5+5SbqGKPqrvdkNfKpGSKF05Qs= Subject key identifier: FA:D3:93:13:00:F5:77:0E:B1:21:76:5C:13:D8:18:BC:B9:C5:0E:45 Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 0646 Signing time: Wed 18 Jun 2025 22:28:46 +0000 Manifest this update: Wed 18 Jun 2025 22:28:45 +0000 Manifest next update: Wed 25 Jun 2025 22:28:45 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: kvseFUlOObY/x2FjER8Y0U0UQYsirlk6alGKLJfTLPw=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Jun 18 22:28:45 2025 GMT Not After : Jun 25 22:28:45 2025 GMT Subject: CN=68533d9e-7023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:8b:87:ae:e8:17:db:eb:0a:44:ef:89:75:90: 2c:07:da:06:6f:8b:8f:19:07:0b:3f:68:36:1b:a3: a3:46:c7:ee:6f:74:88:69:31:e8:b6:6e:b2:67:86: 73:7a:27:21:5a:19:52:af:03:4d:ce:4d:45:e6:5b: 5a:cc:82:af:53:0f:27:17:2b:fa:77:b9:4a:fe:39: 04:80:42:7f:ca:47:df:00:49:3e:47:73:4b:8d:f6: a6:06:ce:26:45:4c:0d:72:70:40:26:85:20:59:67: 21:2b:95:f2:23:c4:06:09:b1:4c:be:aa:0e:a7:bd: 1a:79:a3:d6:78:d7:dd:b0:23:c4:f8:58:fc:9d:4c: 2c:1d:2a:ae:9d:33:77:90:60:01:1c:63:e2:08:fe: 1e:bc:ad:1b:34:dc:6e:d7:36:36:32:0d:79:f3:5a: 82:a9:bf:b6:d7:3b:55:1c:72:e1:57:b6:35:fa:e5: b6:39:39:36:22:48:c7:41:f8:67:44:9c:63:39:75: 93:e3:1a:10:ad:d8:41:e6:cd:d4:a8:04:d4:58:71: d3:bb:21:8f:04:4e:fd:ce:e9:39:07:29:a4:51:f8: cf:9a:1d:1a:62:53:fc:68:75:6c:49:ca:e2:83:01: 8c:0f:7b:98:a7:cf:e0:3d:28:99:21:15:9c:52:6f: d2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D3:93:13:00:F5:77:0E:B1:21:76:5C:13:D8:18:BC:B9:C5:0E:45 X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:52:fb:8d:2c:ee:d1:d8:58:65:81:71:73:36:58:ed:29:12: 9c:ba:fb:75:06:c0:60:91:a1:5a:0b:39:bc:04:54:50:ea:71: 2f:12:4d:c1:1d:67:2d:db:75:ca:b3:fb:9c:cf:6b:80:49:d2: 4e:38:b6:33:a2:3b:4b:36:a7:8d:9f:81:24:40:a7:55:ee:59: 20:7e:1e:ab:9f:05:02:44:2f:06:ff:8f:eb:dc:b5:f8:7e:d5: ad:51:ba:6f:e3:81:23:e5:19:3a:7f:ee:5f:6a:a8:18:db:ad: 7f:7c:96:85:39:ce:c7:8a:e9:82:b6:94:a5:98:86:8b:c0:45: de:3e:3a:2f:67:76:94:71:43:f8:13:5e:20:f1:c0:51:e7:a8: 02:65:0f:9c:c6:d4:d8:39:93:34:97:8d:57:59:2b:8a:66:26: ee:51:5a:eb:35:49:bb:de:a5:43:59:30:fb:aa:10:ac:c7:e8: 08:ec:9f:44:e1:d9:0a:71:a4:39:a7:62:de:ff:87:e7:07:25: 93:6d:6c:20:a1:76:d5:bc:f2:e5:b5:72:62:90:4b:f4:8e:d6: 38:fe:38:8c:4a:2f:da:7a:b3:d6:81:e1:41:a8:d0:50:a7:3d: 6a:b2:6b:58:b4:79:0b:06:a1:d3:86:c6:b3:09:dd:85:da:f7: 15:47:53:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUwNjE4MjIyODQ1WhcNMjUwNjI1MjIyODQ1WjAYMRYwFAYD VQQDEw02ODUzM2Q5ZS03MDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApouHrugX2+sKRO+JdZAsB9oGb4uPGQcLP2g2G6OjRsfub3SIaTHotm6yZ4Zz eichWhlSrwNNzk1F5ltazIKvUw8nFyv6d7lK/jkEgEJ/ykffAEk+R3NLjfamBs4m RUwNcnBAJoUgWWchK5XyI8QGCbFMvqoOp70aeaPWeNfdsCPE+Fj8nUwsHSqunTN3 kGABHGPiCP4evK0bNNxu1zY2Mg1581qCqb+21ztVHHLhV7Y1+uW2OTk2IkjHQfhn RJxjOXWT4xoQrdhB5s3UqATUWHHTuyGPBE79zuk5BymkUfjPmh0aYlP8aHVsScri gwGMD3uYp8/gPSiZIRWcUm/SAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrTkxMA 9XcOsSF2XBPYGLy5xQ5FMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAUvuNLO7R2FhlgXFzNljtKRKcuvt1BsBgkaFaCzm8BFRQ6nEvEk3B HWct23XKs/ucz2uASdJOOLYzojtLNqeNn4EkQKdV7lkgfh6rnwUCRC8G/4/r3LX4 ftWtUbpv44Ej5Rk6f+5faqgY261/fJaFOc7HiumCtpSlmIaLwEXePjovZ3aUcUP4 E14g8cBR56gCZQ+cxtTYOZM0l41XWSuKZibuUVrrNUm73qVDWTD7qhCsx+gI7J9E 4dkKcaQ5p2Le/4fnByWTbWwgoXbVvPLltXJikEv0jtY4/jiMSi/aerPWgeFBqNBQ pz1qsmtYtHkLBqHThsazCd2F2vcVR1Ok -----END CERTIFICATE-----Generated at Fri Jun 20 19:39:13 2025 by rpki-client