$ rpki-client -vvf rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.mft File: _un91LDoMTGIoIn3qH-30BUyU4g.mft (raw, json) Hash identifier: 87I99hNi5rxiTN7oavGAvGIFqsAbaC4zn58x++7g4TY= Subject key identifier: 17:02:0B:5C:A9:35:5E:81:03:E6:32:6B:55:AF:A0:21:D0:7D:BA:67 Authority key identifier: FE:E9:FD:D4:B0:E8:31:31:88:A0:89:F7:A8:7F:B7:D0:15:32:53:88 Certificate issuer: /CN=A918C673/serialNumber=FEE9FDD4B0E8313188A089F7A87FB7D015325388 Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_un91LDoMTGIoIn3qH-30BUyU4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.mft Manifest number: 0669 Signing time: Thu 12 Jun 2025 22:03:18 +0000 Manifest this update: Thu 12 Jun 2025 22:03:18 +0000 Manifest next update: Thu 19 Jun 2025 22:03:17 +0000 Files and hashes: 1: _un91LDoMTGIoIn3qH-30BUyU4g.crl (hash: smx6L80sykrAcWoKU4h+qmnNe6fpKn/jdezEyZ1soRA=) 2: 5803FE3880CD11EB83E8035FC4F9AE02.roa (hash: NgLitwn58Hzqdz8jFqI6KtHUu7WwdEhFCnvHC3Qm5IU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.crl rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_un91LDoMTGIoIn3qH-30BUyU4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C673, serialNumber=FEE9FDD4B0E8313188A089F7A87FB7D015325388 Validity Not Before: Jun 12 22:03:18 2025 GMT Not After : Jun 19 22:03:17 2025 GMT Subject: CN=684b4ea6-1d93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d9:82:d0:51:8f:5c:b5:70:e9:55:86:8a:ed: 80:72:fc:c0:ca:84:25:8c:3c:54:fa:67:ea:b9:c9: fd:45:de:ed:54:b2:25:28:16:29:d1:7e:3d:22:b9: fd:52:37:7b:19:ac:8d:e9:d9:da:34:eb:89:7b:05: 4a:4c:55:ff:45:70:6d:fb:3b:23:8d:04:e3:1b:be: 36:bd:38:b5:67:33:85:cc:a8:7f:55:2c:29:fc:78: 6d:26:0b:d8:1b:bb:82:3a:6f:29:75:a3:76:6f:51: ee:ba:d1:ec:90:7f:0d:4c:95:0e:32:36:2d:a3:31: e0:3d:f7:b5:17:f8:29:dd:f9:b0:51:57:9c:61:49: ab:0c:08:75:40:9a:0e:c2:7f:9e:7c:5d:17:09:6a: 8c:ff:b7:ee:10:56:d3:11:21:a5:d8:f1:b4:97:4e: 6d:80:4c:b8:0f:9a:a9:48:ae:64:6e:e9:c2:d1:35: 10:cd:40:0c:81:60:d8:7c:fa:54:0a:aa:02:aa:00: 65:af:42:d0:25:1d:e3:72:76:85:81:62:eb:87:cb: 33:2d:6e:a5:d5:a5:35:28:5d:e5:1f:ba:29:95:d7: 12:46:5d:67:b1:fa:2d:18:9c:49:3b:00:7b:cf:3d: 82:da:98:27:5f:b7:8d:a7:a2:cb:c2:ca:7b:fe:6a: bc:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:02:0B:5C:A9:35:5E:81:03:E6:32:6B:55:AF:A0:21:D0:7D:BA:67 X509v3 Authority Key Identifier: keyid:FE:E9:FD:D4:B0:E8:31:31:88:A0:89:F7:A8:7F:B7:D0:15:32:53:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_un91LDoMTGIoIn3qH-30BUyU4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C673/AE5FB10280CB11EBB77AB85DC4F9AE02/_un91LDoMTGIoIn3qH-30BUyU4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:03:be:26:a8:63:28:0e:05:f7:d0:17:42:cb:53:8c:88:1c: 6f:dd:d2:2c:27:88:98:15:d3:ba:a4:54:d9:3b:b7:a0:a4:f9: 2b:9d:12:49:25:6b:95:cd:6e:d8:6b:55:2d:f2:cd:ad:8d:e7: d3:62:34:9c:e8:6f:95:e3:d8:1d:c2:07:92:2e:22:3a:a2:07: 00:6e:6d:73:5b:8e:fc:d6:a9:fa:a3:76:4f:8c:19:57:df:6a: ff:9a:83:99:15:da:44:3e:fa:b0:97:df:fb:72:0e:66:10:70: 34:e1:6f:d8:41:a5:3b:ef:09:5e:17:dc:99:29:2e:ec:2b:87: eb:98:bd:95:a9:93:5a:47:3d:60:d4:7b:9a:8e:b5:a9:b7:70: 41:62:7e:aa:d4:a1:d3:2c:2a:05:9e:ea:d8:74:25:56:63:62: 9b:9e:73:75:ce:51:dc:35:34:a5:8f:56:0c:5d:99:ea:5e:0c: cd:e3:3d:94:f3:e4:c3:d3:b4:49:da:04:06:85:d9:ba:3b:3e: c2:f5:ba:b5:9c:8d:aa:7c:cd:bd:be:6f:01:3f:31:69:6b:04: 6e:55:ce:f0:2a:28:21:78:95:ac:22:36:7f:c1:0c:ea:b1:e5: 4c:18:88:98:04:b6:dc:46:17:35:73:f8:e6:11:43:4e:a6:26: a6:e4:95:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM2NzMxMTAvBgNVBAUTKEZFRTlGREQ0QjBFODMxMzE4OEEwODlGN0E4N0ZCN0Qw MTUzMjUzODgwHhcNMjUwNjEyMjIwMzE4WhcNMjUwNjE5MjIwMzE3WjAYMRYwFAYD VQQDEw02ODRiNGVhNi0xZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztmC0FGPXLVw6VWGiu2AcvzAyoQljDxU+mfqucn9Rd7tVLIlKBYp0X49Irn9 Ujd7GayN6dnaNOuJewVKTFX/RXBt+zsjjQTjG742vTi1ZzOFzKh/VSwp/HhtJgvY G7uCOm8pdaN2b1HuutHskH8NTJUOMjYtozHgPfe1F/gp3fmwUVecYUmrDAh1QJoO wn+efF0XCWqM/7fuEFbTESGl2PG0l05tgEy4D5qpSK5kbunC0TUQzUAMgWDYfPpU CqoCqgBlr0LQJR3jcnaFgWLrh8szLW6l1aU1KF3lH7opldcSRl1nsfotGJxJOwB7 zz2C2pgnX7eNp6LLwsp7/mq8mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcCC1yp NV6BA+Yya1WvoCHQfbpnMB8GA1UdIwQYMBaAFP7p/dSw6DExiKCJ96h/t9AVMlOI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzY3My9BRTVGQjEwMjgw Q0IxMUVCQjc3QUI4NURDNEY5QUUwMi9fdW45MUxEb01UR0lvSW4zcUgtMzBCVXlV NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL191bjkxTERvTVRHSW9JbjNxSC0zMEJVeVU0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzY3My9BRTVGQjEwMjgwQ0IxMUVCQjc3QUI4NURDNEY5QUUwMi9fdW45MUxEb01U R0lvSW4zcUgtMzBCVXlVNGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeA74mqGMoDgX30BdCy1OMiBxv3dIsJ4iYFdO6pFTZO7egpPkrnRJJ JWuVzW7Ya1Ut8s2tjefTYjSc6G+V49gdwgeSLiI6ogcAbm1zW4781qn6o3ZPjBlX 32r/moOZFdpEPvqwl9/7cg5mEHA04W/YQaU77wleF9yZKS7sK4frmL2VqZNaRz1g 1HuajrWpt3BBYn6q1KHTLCoFnurYdCVWY2KbnnN1zlHcNTSlj1YMXZnqXgzN4z2U 8+TD07RJ2gQGhdm6Oz7C9bq1nI2qfM29vm8BPzFpawRuVc7wKigheJWsIjZ/wQzq seVMGIiYBLbcRhc1c/jmEUNOpiam5JVL -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:32 2025 by rpki-client