$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft File: u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft (raw, json) Hash identifier: 33KKmKMsqkWqzJVIvLgWabtdT2dFQMATSl4I058+bh4= Subject key identifier: 30:33:5F:6A:F1:4C:DD:3E:CB:67:27:5D:82:CB:61:42:FF:23:26:4E Authority key identifier: BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 Certificate issuer: /CN=A919E3E3/serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Certificate serial: 069D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft Manifest number: 0698 Signing time: Sat 14 Jun 2025 21:56:15 +0000 Manifest this update: Sat 14 Jun 2025 21:56:14 +0000 Manifest next update: Sat 21 Jun 2025 21:56:14 +0000 Files and hashes: 1: u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl (hash: 2o0UPrbPYtSSZdRlKvB+WU/NSSgDlL8QjI3a1q5QQ+I=) 2: 58B04DD46F3C11EB924C4E2AC4F9AE02.roa (hash: hT6PiTq4VuebMVKql1Edg2h7UOqDcrvg8gjAvmzNu5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1693 (0x69d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3E3, serialNumber=BBCC760AFE3E9F0A9B88C8EC7A49ED7CDD0396F7 Validity Not Before: Jun 14 21:56:14 2025 GMT Not After : Jun 21 21:56:14 2025 GMT Subject: CN=684defff-66a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6f:cc:86:54:0a:5a:68:98:65:41:5b:6e:45: eb:0b:47:26:70:b2:95:55:64:43:16:a6:b7:08:9a: cf:b7:0d:f2:1a:ef:97:ff:d5:b6:42:6b:4a:21:71: 48:2a:57:8f:27:dd:e5:13:43:0c:59:cf:03:5a:60: fd:a1:66:ff:01:e1:b7:00:36:f1:ad:31:e8:3e:b5: f5:30:2c:1e:0b:de:61:95:55:83:42:d6:3c:36:10: b1:2e:3b:c5:f7:fa:bb:2a:97:6f:21:14:f0:a0:fe: d1:9c:10:99:ad:69:47:19:92:34:0e:3c:b0:d8:22: 55:d9:17:0c:d9:95:3e:e4:ad:01:b1:c9:7c:7d:82: 38:a0:18:17:f3:42:b6:66:a5:1d:00:bc:9f:0c:5b: 32:aa:80:01:84:34:2a:ea:f6:19:d6:19:1e:ce:78: a3:fe:57:7d:4d:b9:97:4a:2f:3c:97:87:18:bd:39: dd:f2:0b:9c:01:fe:87:7f:d7:c3:84:84:14:2f:4e: d8:3f:64:37:96:4a:c7:d4:81:e6:f2:c9:ca:91:f3: b4:1f:fe:88:8d:28:a5:65:2e:17:99:45:56:5d:a6: d2:1d:42:be:6d:bd:f1:a9:dc:f2:ae:7e:9c:3c:99: 92:6b:23:a1:6f:f0:92:f0:7e:3d:69:52:c4:13:63: 9c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:33:5F:6A:F1:4C:DD:3E:CB:67:27:5D:82:CB:61:42:FF:23:26:4E X509v3 Authority Key Identifier: keyid:BB:CC:76:0A:FE:3E:9F:0A:9B:88:C8:EC:7A:49:ED:7C:DD:03:96:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u8x2Cv4-nwqbiMjsekntfN0Dlvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3E3/08B8D0D26F3A11EBB113397EC4F9AE02/u8x2Cv4-nwqbiMjsekntfN0Dlvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:42:66:da:11:fb:0f:2b:1b:d9:46:82:f2:0c:93:9f:3f:43: f3:84:d5:76:7b:53:d2:9e:5d:e5:c7:02:4c:17:eb:51:a4:f1: a5:0e:81:e2:b0:1a:a7:b7:28:76:3d:51:6f:a7:c6:25:a8:bb: bc:f3:f4:18:5e:ba:2e:8a:6e:2c:ab:d8:1a:4c:a1:83:e3:34: 12:b7:4e:e9:bc:97:00:fb:9d:b3:7d:d3:6d:85:76:47:bc:ad: 82:3b:35:59:1a:3d:db:55:1d:49:df:84:6a:c9:1e:58:af:8e: 9f:c5:4d:e2:ba:f3:ce:b6:b7:84:17:cb:e1:83:15:c3:44:04: 90:41:92:f6:1f:09:ba:4e:19:36:e4:36:62:15:c4:b2:77:15: 8b:4f:16:3c:4f:89:d2:5f:17:9e:20:de:b7:f1:ec:71:1e:fc: 35:b1:ef:9f:d4:8d:0c:5f:74:e2:00:02:54:88:8f:fb:59:da: 53:05:f5:12:c0:51:23:28:ef:f2:cd:ea:8d:c5:13:cd:40:13: 85:0c:d0:db:f4:79:81:c3:b9:cf:c6:2e:be:16:b8:58:69:ea: 37:47:6f:37:2b:b7:14:08:a0:a5:b3:2d:dc:9f:f8:0e:fd:8e: af:4d:4a:1a:a8:a7:af:e9:8e:54:0a:e4:c9:db:55:ff:11:c7: a1:24:29:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRTMxMTAvBgNVBAUTKEJCQ0M3NjBBRkUzRTlGMEE5Qjg4QzhFQzdBNDlFRDdD REQwMzk2RjcwHhcNMjUwNjE0MjE1NjE0WhcNMjUwNjIxMjE1NjE0WjAYMRYwFAYD VQQDEw02ODRkZWZmZi02NmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW/MhlQKWmiYZUFbbkXrC0cmcLKVVWRDFqa3CJrPtw3yGu+X/9W2QmtKIXFI KlePJ93lE0MMWc8DWmD9oWb/AeG3ADbxrTHoPrX1MCweC95hlVWDQtY8NhCxLjvF 9/q7KpdvIRTwoP7RnBCZrWlHGZI0Djyw2CJV2RcM2ZU+5K0Bscl8fYI4oBgX80K2 ZqUdALyfDFsyqoABhDQq6vYZ1hkeznij/ld9TbmXSi88l4cYvTnd8gucAf6Hf9fD hIQUL07YP2Q3lkrH1IHm8snKkfO0H/6IjSilZS4XmUVWXabSHUK+bb3xqdzyrn6c PJmSayOhb/CS8H49aVLEE2Oc0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAzX2rx TN0+y2cnXYLLYUL/IyZOMB8GA1UdIwQYMBaAFLvMdgr+Pp8Km4jI7HpJ7XzdA5b3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNFMy8wOEI4RDBEMjZG M0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53cWJpTWpzZWtudGZOMERs dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U4eDJDdjQtbndxYmlNanNla250Zk4wRGx2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNFMy8wOEI4RDBEMjZGM0ExMUVCQjExMzM5N0VDNEY5QUUwMi91OHgyQ3Y0LW53 cWJpTWpzZWtudGZOMERsdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAQmbaEfsPKxvZRoLyDJOfP0PzhNV2e1PSnl3lxwJMF+tRpPGlDoHi sBqntyh2PVFvp8YlqLu88/QYXrouim4sq9gaTKGD4zQSt07pvJcA+52zfdNthXZH vK2COzVZGj3bVR1J34RqyR5Yr46fxU3iuvPOtreEF8vhgxXDRASQQZL2Hwm6Thk2 5DZiFcSydxWLTxY8T4nSXxeeIN638exxHvw1se+f1I0MX3TiAAJUiI/7WdpTBfUS wFEjKO/yzeqNxRPNQBOFDNDb9HmBw7nPxi6+FrhYaeo3R283K7cUCKClsy3cn/gO /Y6vTUoaqKev6Y5UCuTJ21X/EcehJCln -----END CERTIFICATE-----Generated at Sun Jun 15 08:42:02 2025 by rpki-client