$ rpki-client -vvf rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft File: rUk9yaPSQDSDYoWHBR93lRWJFnk.mft (raw, json) Hash identifier: vLrsblGaOAjVw1d1mM2y0RmljfbN0jh75fI8LNMHZ60= Subject key identifier: B1:48:EE:03:C7:73:29:FC:A1:9E:9B:0F:6E:78:E7:A0:BE:5E:BA:B1 Authority key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 Certificate issuer: /CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679 Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft Manifest number: 0257 Signing time: Fri 13 Jun 2025 01:18:54 +0000 Manifest this update: Fri 13 Jun 2025 01:18:53 +0000 Manifest next update: Fri 20 Jun 2025 01:18:53 +0000 Files and hashes: 1: rUk9yaPSQDSDYoWHBR93lRWJFnk.crl (hash: 5TXz2hean3Kg9BE/gmEnuZTJkASkZZ+VBLWHY3Df4Tc=) 2: 8275E1721C5311EDA75CF137C4F9AE02.roa (hash: ylAjtSurS2AriNqYAWDXwI4mJ+u3ceX6ZX3mIJq8z+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:18:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B418, serialNumber=AD493DC9A3D2403483628587051F779515891679 Validity Not Before: Jun 13 01:18:53 2025 GMT Not After : Jun 20 01:18:53 2025 GMT Subject: CN=684b7c7d-7aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:97:0f:64:e0:d7:1b:ce:02:80:e0:34:5a:26: 24:32:ee:1a:81:20:b9:a1:df:ec:b5:69:f9:68:84: ef:53:d0:32:e1:52:02:b3:32:ea:6f:99:5b:cc:bf: 60:66:56:b9:25:3f:cf:3d:2f:3a:29:c8:0f:5a:ef: ce:4c:0b:fc:70:69:17:a4:bb:5d:dd:7a:a7:08:3e: f4:6d:9d:f7:0d:09:a8:9c:9f:9d:aa:57:2a:d9:d6: 03:30:27:c9:65:59:14:32:eb:f6:12:2d:06:ad:8a: ec:6c:81:24:38:05:c7:a4:3e:1a:09:4d:03:22:fa: 9a:57:c2:72:58:b2:83:23:32:c8:e9:40:2a:44:54: 21:58:0a:ae:45:ef:c6:df:c7:f3:94:2d:6e:35:e0: c1:7a:6b:05:84:3e:7b:1d:a5:2b:88:c2:07:a6:59: 86:61:46:90:05:56:43:40:e4:da:5e:f5:13:73:ae: 76:e6:2c:b2:22:89:80:bb:24:ba:8e:e8:ee:a6:06: 40:38:54:2a:fc:24:8f:8d:ac:20:02:16:52:d5:2c: 29:97:e1:74:66:20:62:b5:c0:eb:5a:02:45:19:7c: 77:3b:48:12:0e:ed:2c:af:cc:48:8e:7d:42:50:3e: e9:dd:aa:cc:70:0c:be:c4:4b:53:42:9d:ab:26:30: 89:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:48:EE:03:C7:73:29:FC:A1:9E:9B:0F:6E:78:E7:A0:BE:5E:BA:B1 X509v3 Authority Key Identifier: keyid:AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:78:fe:61:61:1f:90:c3:34:06:15:e5:ee:1c:df:17:7b:94: 05:d8:ac:56:07:98:14:00:1c:06:e4:09:b3:e9:8c:0b:49:b9: e6:05:4c:ba:2c:ac:76:06:13:b4:31:05:c6:33:da:c3:13:a8: 5e:ca:85:26:f4:2c:0a:7b:9c:17:bd:f5:84:cc:4d:29:4b:7e: 3c:dd:fe:42:59:d2:eb:f9:5a:60:7a:0f:fa:96:e1:a1:44:18: 0d:ac:54:6a:92:90:73:37:b6:a4:c6:71:f0:d1:a9:47:79:c0: 45:dc:89:d1:18:4b:35:3a:d6:49:0b:74:4e:f2:21:68:51:d6: ad:c7:94:2e:2b:1a:a4:95:3c:88:ab:e0:5d:9a:1d:f2:c3:3c: 6e:fd:25:25:7f:ab:4f:e1:53:18:d5:f1:70:37:72:e9:c9:84: 58:49:11:00:d3:c6:1b:df:7f:1d:dd:68:18:df:f8:0a:7c:ab: 4a:cc:b5:94:ab:a0:ec:d6:57:70:3a:41:96:aa:4e:88:21:ea: 3f:c3:28:84:3e:1c:11:77:bf:19:34:06:ac:90:9f:3d:c9:9e: 2f:31:49:2c:84:b3:92:02:05:0c:1c:c9:df:ca:0b:3c:53:17: 6b:65:ac:b9:b8:16:30:69:22:2c:58:60:5b:27:d0:e3:bd:f9: f4:83:91:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4NzA1MUY3Nzk1 MTU4OTE2NzkwHhcNMjUwNjEzMDExODUzWhcNMjUwNjIwMDExODUzWjAYMRYwFAYD VQQDEw02ODRiN2M3ZC03YWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JcPZODXG84CgOA0WiYkMu4agSC5od/stWn5aITvU9Ay4VICszLqb5lbzL9g Zla5JT/PPS86KcgPWu/OTAv8cGkXpLtd3XqnCD70bZ33DQmonJ+dqlcq2dYDMCfJ ZVkUMuv2Ei0GrYrsbIEkOAXHpD4aCU0DIvqaV8JyWLKDIzLI6UAqRFQhWAquRe/G 38fzlC1uNeDBemsFhD57HaUriMIHplmGYUaQBVZDQOTaXvUTc6525iyyIomAuyS6 jujupgZAOFQq/CSPjawgAhZS1Swpl+F0ZiBitcDrWgJFGXx3O0gSDu0sr8xIjn1C UD7p3arMcAy+xEtTQp2rJjCJuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFI7gPH cyn8oZ6bD25456C+XrqxMB8GA1UdIwQYMBaAFK1JPcmj0kA0g2KFhwUfd5UViRZ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQxOC9BRDBEQzQ4MDFD NEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FEU0RZb1dIQlI5M2xSV0pG bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVazl5YVBTUURTRFlvV0hCUjkzbFJXSkZuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FE U0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjeP5hYR+QwzQGFeXuHN8Xe5QF2KxWB5gUABwG5Amz6YwLSbnmBUy6 LKx2BhO0MQXGM9rDE6heyoUm9CwKe5wXvfWEzE0pS3483f5CWdLr+Vpgeg/6luGh RBgNrFRqkpBzN7akxnHw0alHecBF3InRGEs1OtZJC3RO8iFoUdatx5QuKxqklTyI q+Bdmh3ywzxu/SUlf6tP4VMY1fFwN3LpyYRYSREA08Yb338d3WgY3/gKfKtKzLWU q6Ds1ldwOkGWqk6IIeo/wyiEPhwRd78ZNAaskJ89yZ4vMUkshLOSAgUMHMnfygs8 UxdrZay5uBYwaSIsWGBbJ9Djvfn0g5G6 -----END CERTIFICATE-----Generated at Sat Jun 14 19:01:33 2025 by rpki-client