$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: Xx2fvZWmNhivn6QDnAEI3Zq4hz+B5xmeFhkQMQ5Grnw= Subject key identifier: 43:2B:48:AB:F1:CC:BC:CC:D8:B9:1E:2C:B9:A5:71:68:38:B6:3F:5B Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 0376 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 0372 Signing time: Sat 21 Jun 2025 00:36:57 +0000 Manifest this update: Sat 21 Jun 2025 00:36:57 +0000 Manifest next update: Sat 28 Jun 2025 00:36:57 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: THUV7CESyYC65XXoLO822JwdM8CxMhc8EkAiSTFrqxU=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fCg3LsUh16wFnDfXkxVhThF2ZOUkgckgr+TaTcI9RIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 00:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 886 (0x376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Jun 21 00:36:57 2025 GMT Not After : Jun 28 00:36:57 2025 GMT Subject: CN=6855fea9-2950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:f6:1f:22:36:04:ca:6c:9b:e1:d5:a4:98: ae:c4:39:d9:1f:8d:59:9e:08:4a:4f:f3:89:38:7f: 57:d7:98:72:64:7a:c9:9b:cd:66:25:87:ed:2d:e2: a1:65:49:9b:fc:5b:c5:bb:24:4b:ba:df:9a:e4:f9: bf:8b:68:8f:db:05:55:d6:a6:95:ea:8a:67:4e:55: b3:82:69:27:47:bc:6e:ad:69:b4:05:cb:e7:78:ac: dd:75:2f:12:f0:78:2f:c2:dd:f0:db:56:e5:c0:1e: 4b:9f:30:6f:da:a2:2c:9a:4a:33:2d:58:22:a3:fb: 8d:ef:22:02:62:6e:13:c2:96:7c:20:e1:a9:cd:c9: 81:cc:f1:23:16:58:f5:a1:17:ac:00:12:96:b9:ea: 31:a5:7c:7c:e1:e8:e9:d4:a2:11:59:bb:90:29:0d: 7e:a4:e8:fe:9e:58:d0:3c:c6:4d:e3:48:c3:08:7f: 18:45:25:30:2d:2c:43:8d:1f:fc:69:18:a9:ab:e8: 3c:51:9e:01:c4:55:e1:be:99:6f:5c:3c:f6:51:26: f1:3d:c0:22:bf:63:29:94:89:7e:bb:66:ab:67:6c: 4b:12:6f:59:0c:8d:12:3e:be:55:88:0a:48:02:2f: 9c:26:99:b9:03:40:1b:05:69:17:64:a6:c5:7f:80: 81:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:2B:48:AB:F1:CC:BC:CC:D8:B9:1E:2C:B9:A5:71:68:38:B6:3F:5B X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:5d:d1:f8:20:65:a0:9e:a9:2f:03:fc:dc:27:6b:8d:25:64: fc:0a:5f:77:d2:7d:b7:42:d7:0f:c8:4e:97:20:bf:64:df:be: f2:8b:94:72:d7:b0:70:ca:36:22:72:bc:95:d6:96:01:2a:0d: e7:70:95:e5:ba:c2:1c:ab:be:2c:1d:2d:98:0e:4d:ef:47:e3: e9:99:b4:81:05:55:18:7e:79:20:83:08:66:21:22:99:13:5a: 5c:48:17:69:ea:fc:50:c4:f3:32:96:a4:c2:58:29:e7:25:7c: a2:f8:ad:e7:bf:f7:d9:87:21:e3:3b:88:1d:76:e2:df:65:85: b6:fa:96:33:09:f8:4b:61:42:b2:d9:30:38:07:58:0e:ac:dc: ae:14:9d:c2:23:1d:b6:f6:e0:2f:f5:95:b3:0f:5c:66:7d:0b: f9:ea:ad:33:f3:a8:e0:87:9b:42:0a:82:f6:b5:b8:b9:c2:06: fc:20:29:5c:be:0d:45:42:d5:f7:af:aa:6d:6c:92:04:f6:2f: 55:6f:3e:fe:cd:6a:04:ab:c8:26:c5:74:6c:2e:91:f9:6c:a9: ed:a3:f8:1e:25:84:94:0d:ca:12:00:52:bc:a4:d7:b6:cc:22: 58:79:8e:ab:1e:41:13:8d:95:5b:84:4c:5a:b5:2e:48:3b:2d: f8:ad:b2:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjUwNjIxMDAzNjU3WhcNMjUwNjI4MDAzNjU3WjAYMRYwFAYD VQQDEw02ODU1ZmVhOS0yOTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuij2HyI2BMpsm+HVpJiuxDnZH41ZnghKT/OJOH9X15hyZHrJm81mJYftLeKh ZUmb/FvFuyRLut+a5Pm/i2iP2wVV1qaV6opnTlWzgmknR7xurWm0BcvneKzddS8S 8Hgvwt3w21blwB5LnzBv2qIsmkozLVgio/uN7yICYm4TwpZ8IOGpzcmBzPEjFlj1 oResABKWueoxpXx84ejp1KIRWbuQKQ1+pOj+nljQPMZN40jDCH8YRSUwLSxDjR/8 aRipq+g8UZ4BxFXhvplvXDz2USbxPcAiv2MplIl+u2arZ2xLEm9ZDI0SPr5ViApI Ai+cJpm5A0AbBWkXZKbFf4CBKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMrSKvx zLzM2LkeLLmlcWg4tj9bMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyXdH4IGWgnqkvA/zcJ2uNJWT8Cl930n23QtcPyE6XIL9k377yi5Ry 17BwyjYicryV1pYBKg3ncJXlusIcq74sHS2YDk3vR+PpmbSBBVUYfnkggwhmISKZ E1pcSBdp6vxQxPMylqTCWCnnJXyi+K3nv/fZhyHjO4gdduLfZYW2+pYzCfhLYUKy 2TA4B1gOrNyuFJ3CIx229uAv9ZWzD1xmfQv56q0z86jgh5tCCoL2tbi5wgb8IClc vg1FQtX3r6ptbJIE9i9Vbz7+zWoEq8gmxXRsLpH5bKnto/geJYSUDcoSAFK8pNe2 zCJYeY6rHkETjZVbhExatS5IOy34rbJF -----END CERTIFICATE-----Generated at Sat Jun 21 09:31:18 2025 by rpki-client