$ rpki-client -vvf rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft File: u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft (raw, json) Hash identifier: SwiNjXIgicyD+/OW/3Rm3JMTuurNjiwlp05Ahmq03lw= Subject key identifier: 0D:51:E6:D3:94:46:B4:98:14:B7:A3:AB:23:4B:2A:C2:50:B5:B2:74 Authority key identifier: BB:DB:7B:D0:B8:E9:65:6E:71:E1:99:4E:19:61:87:45:70:8F:CE:F1 Certificate issuer: /CN=A919B824/serialNumber=BBDB7BD0B8E9656E71E1994E19618745708FCEF1 Certificate serial: 0912 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft Manifest number: 090C Signing time: Thu 12 Jun 2025 20:04:56 +0000 Manifest this update: Thu 12 Jun 2025 20:04:56 +0000 Manifest next update: Thu 19 Jun 2025 20:04:55 +0000 Files and hashes: 1: u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl (hash: qBJBERK64awu5MpcpXCvZ9U9LSA0SoJQxpkZ4myHeFI=) 2: EEC7D1CAA6C911EA8079FD17C4F9AE02.roa (hash: 1XpEnw/JwEEBYh3nZmy2aqDGrwdu6fQDgmNMuCskbDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2322 (0x912) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B824, serialNumber=BBDB7BD0B8E9656E71E1994E19618745708FCEF1 Validity Not Before: Jun 12 20:04:56 2025 GMT Not After : Jun 19 20:04:55 2025 GMT Subject: CN=684b32e8-bc75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e2:a1:7b:19:e0:85:5f:90:05:34:bf:1b:ed: 35:fd:ff:fb:05:19:72:5a:80:26:ba:1c:0f:a0:ec: f1:15:a2:a8:36:fb:c8:8e:28:db:11:59:d7:1b:05: 8e:db:59:4e:4a:47:60:20:a7:4f:3c:f2:83:4e:19: 84:04:c7:52:93:0f:d5:5f:b8:ac:64:ae:d2:0e:0c: cc:87:6a:05:de:a4:3f:59:b1:5a:41:84:7a:6e:ee: 53:2d:00:05:d9:bd:68:bd:a7:fb:6e:c0:03:3b:fb: 00:92:a6:7f:3d:89:fc:19:9a:76:14:92:c0:01:3c: cd:dd:92:de:66:d5:63:22:5e:4e:68:ca:2d:08:11: 85:6b:66:d2:94:4a:9d:ee:cc:b0:5f:8e:4d:97:81: e1:97:e2:3d:ce:aa:27:b9:e7:5f:74:d3:a6:f0:84: a8:d0:07:dc:24:8b:3c:34:7a:26:35:a9:3a:99:9f: 33:3a:67:60:53:8e:d4:22:0e:a5:24:ed:69:5f:78: 30:01:e8:be:a4:10:a4:1b:9a:4d:ad:5f:5d:49:cf: 70:cc:86:9f:32:18:45:d1:d8:4d:39:d1:5a:f5:09: c8:9a:af:80:1a:45:1e:56:49:2f:9c:5c:2f:38:8a: 20:a2:e3:b1:9b:2a:19:5d:ce:76:79:3a:c7:a0:82: 24:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:51:E6:D3:94:46:B4:98:14:B7:A3:AB:23:4B:2A:C2:50:B5:B2:74 X509v3 Authority Key Identifier: keyid:BB:DB:7B:D0:B8:E9:65:6E:71:E1:99:4E:19:61:87:45:70:8F:CE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:6f:8f:d7:e4:23:6d:a2:1f:be:3d:29:da:71:f3:7d:06:fd: a0:be:13:64:a5:64:a2:72:c4:52:2f:d9:dc:11:4f:75:d5:9e: b1:7e:40:3a:48:fd:b0:82:ea:b9:50:e4:6f:15:ab:7a:fe:19: 6e:a3:21:16:a8:c8:c4:f5:32:df:02:a8:4e:e9:90:7f:1e:fe: 8d:5a:17:be:7a:00:7f:f7:00:49:e0:fd:fe:55:35:5a:f7:4c: 9c:dd:1f:53:23:55:49:d5:65:3d:76:c3:74:de:5c:74:e9:91: a4:27:7f:25:00:74:d2:7f:7f:cc:ee:4a:ea:40:4e:9d:54:a4: 0c:76:c3:8c:39:f6:db:24:40:aa:50:88:31:81:6a:39:3e:91: 54:63:e4:2b:44:fa:6e:f3:51:f6:aa:90:3d:b8:7d:74:b4:23: f7:da:22:b9:19:7a:7a:1e:37:7f:8f:cd:53:37:01:47:0f:b9: a5:09:ad:5e:b5:03:c8:d8:b0:ed:6b:69:1a:c6:89:07:57:bc: bb:a2:4c:6a:83:30:22:ac:36:fd:e7:11:31:a0:f2:9f:c8:c3: 8a:17:75:c9:a8:b8:d5:98:2a:17:05:7f:0c:b3:52:7e:87:98: c1:d4:17:eb:57:19:c7:1a:2c:04:63:37:db:f0:fb:db:1b:43: ee:53:d4:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI4MjQxMTAvBgNVBAUTKEJCREI3QkQwQjhFOTY1NkU3MUUxOTk0RTE5NjE4NzQ1 NzA4RkNFRjEwHhcNMjUwNjEyMjAwNDU2WhcNMjUwNjE5MjAwNDU1WjAYMRYwFAYD VQQDEw02ODRiMzJlOC1iYzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+KhexnghV+QBTS/G+01/f/7BRlyWoAmuhwPoOzxFaKoNvvIjijbEVnXGwWO 21lOSkdgIKdPPPKDThmEBMdSkw/VX7isZK7SDgzMh2oF3qQ/WbFaQYR6bu5TLQAF 2b1ovaf7bsADO/sAkqZ/PYn8GZp2FJLAATzN3ZLeZtVjIl5OaMotCBGFa2bSlEqd 7sywX45Nl4Hhl+I9zqonuedfdNOm8ISo0AfcJIs8NHomNak6mZ8zOmdgU47UIg6l JO1pX3gwAei+pBCkG5pNrV9dSc9wzIafMhhF0dhNOdFa9QnImq+AGkUeVkkvnFwv OIogouOxmyoZXc52eTrHoIIkOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1R5tOU RrSYFLejqyNLKsJQtbJ0MB8GA1UdIwQYMBaAFLvbe9C46WVuceGZThlhh0Vwj87x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjgyNC83MzRCQUQxNkE2 QzcxMUVBQkQzMDUwMTBDNEY5QUUwMi91OXQ3MExqcFpXNXg0WmxPR1dHSFJYQ1B6 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U5dDcwTGpwWlc1eDRabE9HV0dIUlhDUHp2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjgyNC83MzRCQUQxNkE2QzcxMUVBQkQzMDUwMTBDNEY5QUUwMi91OXQ3MExqcFpX NXg0WmxPR1dHSFJYQ1B6dkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvb4/X5CNtoh++PSnacfN9Bv2gvhNkpWSicsRSL9ncEU911Z6xfkA6 SP2wguq5UORvFat6/hluoyEWqMjE9TLfAqhO6ZB/Hv6NWhe+egB/9wBJ4P3+VTVa 90yc3R9TI1VJ1WU9dsN03lx06ZGkJ38lAHTSf3/M7krqQE6dVKQMdsOMOfbbJECq UIgxgWo5PpFUY+QrRPpu81H2qpA9uH10tCP32iK5GXp6Hjd/j81TNwFHD7mlCa1e tQPI2LDta2kaxokHV7y7okxqgzAirDb95xExoPKfyMOKF3XJqLjVmCoXBX8Ms1J+ h5jB1BfrVxnHGiwEYzfb8PvbG0PuU9Rg -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:59 2025 by rpki-client