$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: qiOFYdA6y7peKmHO4EgvGHz7YKfd0bDFDkq1Ekh8nrY= Subject key identifier: 74:75:3B:8A:9F:1B:AF:D0:55:DF:1A:2B:30:D1:15:D0:5A:EF:E0:4F Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 092D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 0909 Signing time: Wed 18 Jun 2025 20:17:25 +0000 Manifest this update: Wed 18 Jun 2025 20:17:24 +0000 Manifest next update: Wed 25 Jun 2025 20:17:24 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: yMUqnSRcHqsG9T4BJQ7cD5ygD/Af1Uh/YMpSHPjD+NI=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2349 (0x92d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Jun 18 20:17:24 2025 GMT Not After : Jun 25 20:17:24 2025 GMT Subject: CN=68531ed4-477c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a5:d4:a6:54:40:c9:ad:ee:1f:48:b2:d8:1c: 33:2e:7b:03:61:5e:42:98:3a:81:9a:50:2f:33:26: d8:e9:c5:03:ff:ac:19:83:6b:57:fe:61:f7:74:08: b1:49:63:ce:fa:dd:97:42:72:9e:8b:e4:b3:08:6e: 35:e6:f4:dc:bd:eb:10:1e:85:2d:fc:99:0f:c0:bc: ec:93:19:50:1c:31:47:c3:a0:40:70:89:d0:e2:18: b3:11:fa:0f:f9:fe:b7:d2:8c:46:92:dd:af:e1:e1: df:34:e5:72:38:f6:be:bf:8e:02:de:6d:84:5f:07: 65:a1:79:99:9b:05:45:be:f2:6e:87:37:f3:0b:b1: 2e:f8:f4:13:bf:a0:14:40:5a:ee:20:aa:6d:10:a9: c6:89:0b:b5:4d:b9:da:e6:8a:e8:33:a6:80:29:29: 4d:8c:3e:cb:82:38:3e:5f:19:d1:f0:3f:27:b6:7d: ab:8c:4a:51:e5:f2:6c:d5:79:fe:08:b9:63:71:42: e9:73:fe:02:be:71:e3:e7:53:eb:92:7b:57:3e:18: 5d:0b:fa:28:b2:83:60:91:5e:b8:0f:98:a6:d2:e7: e8:7b:21:01:09:93:3c:1c:fa:4a:10:72:61:d7:b3: 9d:a3:37:68:26:4d:21:33:5b:7f:ef:a6:bb:78:fa: b9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:75:3B:8A:9F:1B:AF:D0:55:DF:1A:2B:30:D1:15:D0:5A:EF:E0:4F X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:bb:01:7a:57:4a:11:53:5b:3d:40:e4:d8:87:ae:8a:d2:a6: 41:4c:7f:6a:75:aa:e4:f2:3b:f0:52:1d:dd:39:37:23:dc:68: f6:52:08:a5:00:28:cc:a1:bd:63:9d:6e:d4:a4:5c:97:7b:88: f8:8d:bb:36:33:91:b3:d6:4b:11:1f:e1:b0:73:55:5a:84:71: f8:44:8f:21:3e:7e:c0:6d:2c:1d:14:85:9e:fb:1b:81:b3:7b: a0:b7:ce:3c:d3:44:a5:b0:3b:d4:c1:d3:c3:56:95:92:3b:92: 60:05:54:95:4b:d1:2f:ba:ef:2b:07:ed:10:11:bc:b3:bc:02: 40:02:65:85:18:20:21:02:d4:85:4b:07:c2:cf:62:1f:d5:fb: ee:cb:16:5f:76:2e:e5:3c:6d:5d:cc:0c:e0:66:e6:4b:e3:0d: c3:4c:fc:7e:5f:1b:f8:24:8f:26:ff:3e:3c:18:28:f2:fe:54: 57:8a:30:d3:ba:dc:93:65:b1:52:6a:6f:09:02:db:d0:74:09: d3:d9:db:ce:db:d3:7b:ff:8b:bb:d9:bc:f2:99:28:6c:c5:e5: ce:8f:95:b4:19:d0:46:98:af:ba:d5:97:b5:0e:52:37:44:10: 4d:99:01:24:aa:44:39:95:03:f2:f6:c0:3a:45:b9:e8:34:50: 82:7b:a9:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwNjE4MjAxNzI0WhcNMjUwNjI1MjAxNzI0WjAYMRYwFAYD VQQDEw02ODUzMWVkNC00NzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqXUplRAya3uH0iy2BwzLnsDYV5CmDqBmlAvMybY6cUD/6wZg2tX/mH3dAix SWPO+t2XQnKei+SzCG415vTcvesQHoUt/JkPwLzskxlQHDFHw6BAcInQ4hizEfoP +f630oxGkt2v4eHfNOVyOPa+v44C3m2EXwdloXmZmwVFvvJuhzfzC7Eu+PQTv6AU QFruIKptEKnGiQu1Tbna5oroM6aAKSlNjD7Lgjg+XxnR8D8ntn2rjEpR5fJs1Xn+ CLljcULpc/4CvnHj51PrkntXPhhdC/oosoNgkV64D5im0ufoeyEBCZM8HPpKEHJh 17OdozdoJk0hM1t/76a7ePq53QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHR1O4qf G6/QVd8aKzDRFdBa7+BPMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApuwF6V0oRU1s9QOTYh66K0qZBTH9qdark8jvwUh3dOTcj3Gj2Ugil ACjMob1jnW7UpFyXe4j4jbs2M5Gz1ksRH+Gwc1VahHH4RI8hPn7AbSwdFIWe+xuB s3ugt84800SlsDvUwdPDVpWSO5JgBVSVS9Evuu8rB+0QEbyzvAJAAmWFGCAhAtSF SwfCz2If1fvuyxZfdi7lPG1dzAzgZuZL4w3DTPx+Xxv4JI8m/z48GCjy/lRXijDT utyTZbFSam8JAtvQdAnT2dvO29N7/4u72bzymShsxeXOj5W0GdBGmK+61Ze1DlI3 RBBNmQEkqkQ5lQPy9sA6RbnoNFCCe6ke -----END CERTIFICATE-----Generated at Fri Jun 20 14:39:18 2025 by rpki-client