$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: Kg7j6tK9tfklLzE2AEj7a1op4JNrMHmptLtOfdaNqSs= Subject key identifier: 75:26:1C:44:2E:CC:9F:CD:6D:9A:D5:9F:09:A8:C3:56:9B:81:B3:17 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 0413 Signing time: Mon 16 Jun 2025 23:59:55 +0000 Manifest this update: Mon 16 Jun 2025 23:59:54 +0000 Manifest next update: Mon 23 Jun 2025 23:59:54 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: ZdheSUdC+G9Qc58+SpTPSw8pq9lhKjSMpbmbzB1J9mw=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Jun 16 23:59:54 2025 GMT Not After : Jun 23 23:59:54 2025 GMT Subject: CN=6850affb-73a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:95:e7:e1:71:a8:4f:cd:82:82:a3:be:24:34: de:78:a9:d7:a2:47:dd:e2:72:89:4d:1c:d8:40:46: 72:b0:47:4f:a8:86:34:98:70:a1:55:8f:32:57:65: ff:bd:28:29:38:ee:27:cf:22:1d:11:9e:f2:38:b5: e1:a5:f2:ec:db:76:ac:77:f3:23:6a:f9:a1:b9:59: 04:65:2f:06:25:44:15:4b:1b:6b:55:ee:c6:4d:72: d2:01:2a:f3:7b:68:ba:7e:35:19:db:e8:b6:fa:07: 6e:2e:07:2b:e1:e5:ab:50:f0:53:e3:84:79:3a:c2: 40:1d:89:65:cb:90:aa:e9:c4:0c:16:f5:fc:9d:e6: 26:fa:82:86:69:d3:7b:10:2f:05:9f:bd:c7:3b:a6: 5f:b9:eb:22:e0:1c:58:26:7a:75:6d:9b:80:86:ea: 38:2a:c9:07:91:fa:83:bb:84:0b:da:53:d4:55:36: 06:dd:36:71:d2:9e:2a:bd:3f:b6:4f:99:71:55:c6: fb:d1:e0:00:df:17:35:f6:16:29:40:10:12:19:f4: ae:9a:71:e0:0e:ae:f8:fd:5e:5c:c5:87:6c:5f:09: dc:95:40:46:eb:c8:31:f4:f9:fe:9d:fc:69:4c:1d: 6c:07:ac:38:dc:52:3f:88:86:8a:5b:1f:3f:9b:ce: f0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:26:1C:44:2E:CC:9F:CD:6D:9A:D5:9F:09:A8:C3:56:9B:81:B3:17 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:9f:3b:d5:1c:ce:91:ef:48:7f:0d:a7:2b:a4:0a:97:5e:de: aa:17:03:70:7e:09:d6:ac:20:44:72:b9:bb:ae:af:b8:19:47: 83:27:9f:ae:9d:90:2a:8a:2d:80:cd:ec:e6:bd:f6:54:03:54: 01:10:a4:cc:70:fb:71:40:fd:ea:1e:0e:b6:22:c2:9d:c5:49: 1f:87:f5:64:be:68:f9:dc:c6:79:1a:07:d4:9a:f9:f9:24:ad: a4:c7:cf:a9:49:74:3e:c6:65:5c:04:63:84:34:27:b2:a0:03: 77:cf:06:33:08:a7:63:69:13:e8:3c:90:28:46:99:8f:10:ad: fa:eb:98:18:d0:85:0b:0f:b1:6a:f0:b9:d2:94:7f:ae:10:ab: 2f:3b:49:a4:56:4d:a4:ca:bc:3f:63:f5:af:b2:7f:15:2a:4e: 85:9e:d2:26:69:34:f2:8f:a7:9c:79:18:2c:10:3e:8f:1e:47: 56:e1:3c:c5:47:4b:3e:79:1e:79:45:37:83:70:96:71:80:0e: 1c:51:df:b7:d1:43:96:a9:a8:c9:57:f9:ef:1f:c2:7f:7d:9a: 17:5b:56:0c:93:a2:94:d6:c3:0f:e4:97:9f:c7:45:a3:10:cb: ea:cb:06:b1:20:12:29:23:4c:af:b2:ed:64:60:ae:aa:25:a1: 05:5a:ea:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwNjE2MjM1OTU0WhcNMjUwNjIzMjM1OTU0WjAYMRYwFAYD VQQDEw02ODUwYWZmYi03M2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJXn4XGoT82CgqO+JDTeeKnXokfd4nKJTRzYQEZysEdPqIY0mHChVY8yV2X/ vSgpOO4nzyIdEZ7yOLXhpfLs23asd/MjavmhuVkEZS8GJUQVSxtrVe7GTXLSASrz e2i6fjUZ2+i2+gduLgcr4eWrUPBT44R5OsJAHYlly5Cq6cQMFvX8neYm+oKGadN7 EC8Fn73HO6Zfuesi4BxYJnp1bZuAhuo4KskHkfqDu4QL2lPUVTYG3TZx0p4qvT+2 T5lxVcb70eAA3xc19hYpQBASGfSumnHgDq74/V5cxYdsXwnclUBG68gx9Pn+nfxp TB1sB6w43FI/iIaKWx8/m87wlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUmHEQu zJ/NbZrVnwmow1abgbMXMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQnzvVHM6R70h/DacrpAqXXt6qFwNwfgnWrCBEcrm7rq+4GUeDJ5+u nZAqii2AzezmvfZUA1QBEKTMcPtxQP3qHg62IsKdxUkfh/Vkvmj53MZ5GgfUmvn5 JK2kx8+pSXQ+xmVcBGOENCeyoAN3zwYzCKdjaRPoPJAoRpmPEK3665gY0IULD7Fq 8LnSlH+uEKsvO0mkVk2kyrw/Y/Wvsn8VKk6FntImaTTyj6eceRgsED6PHkdW4TzF R0s+eR55RTeDcJZxgA4cUd+30UOWqajJV/nvH8J/fZoXW1YMk6KU1sMP5Jefx0Wj EMvqywaxIBIpI0yvsu1kYK6qJaEFWuq5 -----END CERTIFICATE-----Generated at Wed Jun 18 13:04:09 2025 by rpki-client