$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: LmQ0Y89Jr8s/y9p0zyVnwsG1YuVBq6BxJCdx2nXMU7c= Subject key identifier: CB:4A:88:53:EC:14:8F:70:90:0D:6A:3D:D6:78:E5:4F:69:9B:56:FC Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 0640 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 063E Signing time: Sat 14 Jun 2025 22:22:22 +0000 Manifest this update: Sat 14 Jun 2025 22:22:21 +0000 Manifest next update: Sat 21 Jun 2025 22:22:21 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: 9Vn0mLoU8fHaZd033l5X6s+5J3Madz1iR2E7RQ2zrxM=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: JGxMB26ttBekYTYeINbF/ZGgUOz7c1MGNzdVG0LlGY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1600 (0x640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Jun 14 22:22:21 2025 GMT Not After : Jun 21 22:22:21 2025 GMT Subject: CN=684df61e-bfdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:af:27:61:08:e7:54:37:45:44:eb:ae:14: ff:74:65:a6:7e:c9:58:84:bb:18:d6:ad:a5:d9:92: 5d:49:c3:02:7f:ae:0f:a1:38:f1:e7:65:d2:2f:56: 5a:e9:be:27:ac:8d:1f:a2:29:97:f4:cb:80:c6:fb: a6:4a:ad:a1:f9:b0:9f:94:2a:22:27:0e:52:9f:53: 73:15:ee:a4:ce:44:bb:1c:cf:6b:85:95:9b:10:44: 41:56:f7:bd:90:71:3d:9a:e9:e3:61:5d:b3:f1:85: 28:61:80:ff:d3:08:34:44:95:7f:13:bd:e3:16:26: 20:32:df:99:69:1c:31:9d:96:b6:4a:97:ae:50:f8: af:8b:e0:af:a5:f0:30:0f:0b:cf:24:34:cc:4c:a5: 67:dd:92:a6:9b:ef:44:fc:dc:c9:04:01:d3:72:09: bc:7c:17:7f:7b:b3:ed:25:b1:14:75:6b:76:8f:9d: e0:7d:0c:5d:c7:77:ac:b8:8e:9b:41:76:0a:ea:fb: 0b:cc:28:7b:df:e4:2e:77:38:d5:2f:cb:ed:15:b2: d7:07:ad:e2:80:e1:02:f8:8b:26:b7:e0:9f:5e:15: 61:87:2b:d7:74:c1:b9:df:e0:3a:21:92:11:6c:e4: 3e:0a:cb:7b:b9:83:65:6c:c8:1a:00:fc:c0:54:40: 43:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4A:88:53:EC:14:8F:70:90:0D:6A:3D:D6:78:E5:4F:69:9B:56:FC X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f5:9c:15:ce:0e:7b:a3:5a:34:62:9e:a9:6c:c8:ed:00:49: f6:e6:57:f1:f8:23:31:e1:b7:67:b8:6f:b8:25:ab:4c:43:e5: d9:e6:f9:10:1c:6a:b9:21:73:cc:32:e3:53:7e:3e:3f:8f:fb: c3:bd:18:b5:94:72:2f:12:46:27:7e:f7:fc:20:12:b3:b5:3e: 0f:86:72:80:24:78:5b:83:0f:ba:8a:dc:23:07:d6:ab:63:4e: 4b:45:da:8c:06:33:4d:db:1b:9b:ba:3b:0c:52:49:55:e0:a4: 8e:2a:a1:7e:6b:a4:63:34:77:8f:e7:1d:70:83:db:ef:69:3d: b0:f6:d2:3a:70:aa:55:c0:c9:72:9d:ac:b2:a3:ca:c7:d0:71: 9e:43:cd:01:a2:ee:21:a0:32:e2:41:53:85:e2:0c:b6:9e:cb: a1:72:b4:2a:d3:7a:bc:fd:9a:eb:30:ba:32:df:c7:38:8b:42: 4a:5b:32:f8:a5:82:24:f5:ed:87:d2:aa:0a:9c:9a:0d:ba:7b: db:7d:06:42:15:e1:12:ac:2b:96:5b:11:fc:58:6d:4f:4b:1c: a2:7a:be:da:68:0f:45:5c:5a:07:8d:db:e3:d2:b5:ea:06:51: e1:99:28:28:b9:bf:a0:f5:6d:34:83:1c:fe:3b:20:90:44:8c: 0a:f2:f3:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUwNjE0MjIyMjIxWhcNMjUwNjIxMjIyMjIxWjAYMRYwFAYD VQQDEw02ODRkZjYxZS1iZmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6mvJ2EI51Q3RUTrrhT/dGWmfslYhLsY1q2l2ZJdScMCf64PoTjx52XSL1Za 6b4nrI0foimX9MuAxvumSq2h+bCflCoiJw5Sn1NzFe6kzkS7HM9rhZWbEERBVve9 kHE9munjYV2z8YUoYYD/0wg0RJV/E73jFiYgMt+ZaRwxnZa2SpeuUPivi+CvpfAw DwvPJDTMTKVn3ZKmm+9E/NzJBAHTcgm8fBd/e7PtJbEUdWt2j53gfQxdx3esuI6b QXYK6vsLzCh73+QudzjVL8vtFbLXB63igOEC+Ismt+CfXhVhhyvXdMG53+A6IZIR bOQ+Cst7uYNlbMgaAPzAVEBDswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtKiFPs FI9wkA1qPdZ45U9pm1b8MB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI9ZwVzg57o1o0Yp6pbMjtAEn25lfx+CMx4bdnuG+4JatMQ+XZ5vkQ HGq5IXPMMuNTfj4/j/vDvRi1lHIvEkYnfvf8IBKztT4PhnKAJHhbgw+6itwjB9ar Y05LRdqMBjNN2xubujsMUklV4KSOKqF+a6RjNHeP5x1wg9vvaT2w9tI6cKpVwMly nayyo8rH0HGeQ80Bou4hoDLiQVOF4gy2nsuhcrQq03q8/ZrrMLoy38c4i0JKWzL4 pYIk9e2H0qoKnJoNunvbfQZCFeESrCuWWxH8WG1PSxyier7aaA9FXFoHjdvj0rXq BlHhmSgoub+g9W00gxz+OyCQRIwK8vOF -----END CERTIFICATE-----Generated at Sun Jun 15 08:44:44 2025 by rpki-client