$ rpki-client -vvf rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft File: _UnAZPyj6S3swYqPUElLIfwB8lY.mft (raw, json) Hash identifier: LQ5h/3+J08hijZQalVcn04vAXYGmwtxAKuEBb8DVcig= Subject key identifier: 46:44:5F:6D:57:33:FC:01:FE:47:7D:FF:83:73:37:07:A8:82:23:D8 Authority key identifier: FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 Certificate issuer: /CN=A91934DE/serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft Manifest number: 01A2 Signing time: Sun 15 Jun 2025 02:39:44 +0000 Manifest this update: Sun 15 Jun 2025 02:39:44 +0000 Manifest next update: Sun 22 Jun 2025 02:39:44 +0000 Files and hashes: 1: _UnAZPyj6S3swYqPUElLIfwB8lY.crl (hash: 1sQdyK4meeLuVdVfs03E+SHVeW3Gqlk2DbQg3uJFMRo=) 2: 358556D2D98F11EDA9A38028C4F9AE02.roa (hash: w60npFN7Kaoau14A8nUumKIk6Z7FI9jzoRmBuAraQgw=) 3: 05F11BACDF4A11EDA4190947C4F9AE02.roa (hash: xNw6lqRZVzml6zGHz7sRyZFWQnA5LMwPw8PJ9UjVWeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91934DE, serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Validity Not Before: Jun 15 02:39:44 2025 GMT Not After : Jun 22 02:39:44 2025 GMT Subject: CN=684e3270-a7a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:73:d7:a1:30:87:bc:0c:95:dd:3b:c5:24:df: 7b:b3:24:3b:44:e1:7a:17:ec:a9:08:7a:f5:92:8f: 68:62:61:eb:88:1e:7e:5d:9a:7a:07:d3:2d:47:25: ca:d3:39:23:a7:56:77:a9:94:0d:cd:d1:30:9e:b7: f7:a2:7b:e5:cb:d7:72:23:ee:d0:03:97:18:52:66: 56:d6:34:ec:ca:85:b7:0b:1c:33:32:83:5a:54:23: e6:d8:ac:c7:d1:02:ac:b6:19:3c:c5:de:0d:90:87: 3d:a2:f6:1d:f2:12:bd:59:6b:8b:f4:8f:ad:82:29: 2e:47:00:07:c1:7f:e1:53:48:6d:b4:76:f9:05:95: e4:c2:cd:50:1f:b9:8a:7a:c6:ee:5d:7d:5f:96:f9: 40:f6:29:53:94:2b:fd:6a:98:34:59:fa:b2:e3:4a: 0c:72:22:db:93:6e:de:cb:e5:d5:1a:a5:d1:dd:67: 5c:42:e4:9b:4c:51:b8:b0:63:b1:16:ce:57:d5:c4: d8:3c:72:ee:ee:c6:68:42:32:d0:22:db:8b:21:26: e8:5d:00:8c:b8:9a:8c:dc:2e:4a:0d:b3:55:3f:35: 67:08:08:72:ee:a6:93:5e:83:f9:91:1b:75:b5:e8: f2:9b:77:bf:09:62:fc:39:e5:fd:b2:ac:27:23:4c: 77:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:44:5F:6D:57:33:FC:01:FE:47:7D:FF:83:73:37:07:A8:82:23:D8 X509v3 Authority Key Identifier: keyid:FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:9b:a1:71:8f:af:de:cc:cd:33:ba:12:60:f9:8e:8b:5b:0f: 69:e9:77:a2:47:ab:59:ba:d5:84:c1:cf:ec:d6:99:43:c4:05: f1:ed:4f:8c:f9:0e:3a:99:29:86:65:30:6d:64:91:81:3c:ae: ab:ee:9e:d5:64:74:f8:87:b6:42:2a:73:d1:d3:5e:a4:50:70: d0:98:9d:42:0e:3a:b0:26:27:94:aa:75:be:9d:6f:33:0a:3c: e6:80:e6:f5:02:6e:4a:b0:c6:53:df:c3:3a:09:66:f3:6d:e9: 73:69:b3:4b:0f:6c:ef:41:00:83:26:a3:ab:e7:ee:a6:d5:5c: 8d:eb:84:49:1a:ec:92:c6:85:ea:6e:dd:72:08:ef:54:3d:7e: 0e:b2:22:d6:4c:fd:55:7e:69:30:f7:b2:a3:d3:8a:13:af:23: bf:42:35:4a:73:6c:19:0f:85:25:fb:4b:2b:55:bf:38:3b:26: d7:bc:26:65:2e:6b:ee:bd:e9:04:f6:44:d1:e9:05:fe:e7:5a: 73:59:a4:20:8c:76:9d:1b:b8:a0:8b:18:36:d4:da:5d:96:78: bc:d9:1c:7e:ff:41:0b:3f:c4:1d:f5:76:a9:ec:f1:b2:fd:77: a9:69:2d:42:82:31:5b:fc:e1:3d:7a:0b:e3:3f:2b:70:93:6c: 44:0b:34:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM0REUxMTAvBgNVBAUTKEZENDlDMDY0RkNBM0U5MkRFQ0MxOEE4RjUwNDk0QjIx RkMwMUYyNTYwHhcNMjUwNjE1MDIzOTQ0WhcNMjUwNjIyMDIzOTQ0WjAYMRYwFAYD VQQDEw02ODRlMzI3MC1hN2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHPXoTCHvAyV3TvFJN97syQ7ROF6F+ypCHr1ko9oYmHriB5+XZp6B9MtRyXK 0zkjp1Z3qZQNzdEwnrf3onvly9dyI+7QA5cYUmZW1jTsyoW3CxwzMoNaVCPm2KzH 0QKsthk8xd4NkIc9ovYd8hK9WWuL9I+tgikuRwAHwX/hU0httHb5BZXkws1QH7mK esbuXX1flvlA9ilTlCv9apg0Wfqy40oMciLbk27ey+XVGqXR3WdcQuSbTFG4sGOx Fs5X1cTYPHLu7sZoQjLQItuLISboXQCMuJqM3C5KDbNVPzVnCAhy7qaTXoP5kRt1 tejym3e/CWL8OeX9sqwnI0x3PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZEX21X M/wB/kd9/4NzNweogiPYMB8GA1UdIwQYMBaAFP1JwGT8o+kt7MGKj1BJSyH8AfJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzRERS9BOTQxRDVFMkQ4 RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZTM3N3WXFQVUVsTElmd0I4 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VbkFaUHlqNlMzc3dZcVBVRWxMSWZ3QjhsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzRERS9BOTQxRDVFMkQ4RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZT M3N3WXFQVUVsTElmd0I4bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMm6Fxj6/ezM0zuhJg+Y6LWw9p6XeiR6tZutWEwc/s1plDxAXx7U+M +Q46mSmGZTBtZJGBPK6r7p7VZHT4h7ZCKnPR016kUHDQmJ1CDjqwJieUqnW+nW8z CjzmgOb1Am5KsMZT38M6CWbzbelzabNLD2zvQQCDJqOr5+6m1VyN64RJGuySxoXq bt1yCO9UPX4OsiLWTP1Vfmkw97Kj04oTryO/QjVKc2wZD4Ul+0srVb84OybXvCZl LmvuvekE9kTR6QX+51pzWaQgjHadG7igixg21Npdlni82Rx+/0ELP8Qd9Xap7PGy /XepaS1CgjFb/OE9egvjPytwk2xECzRG -----END CERTIFICATE-----Generated at Sun Jun 15 08:09:38 2025 by rpki-client