$ rpki-client -vvf rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft File: uRm6CzrV4m_DHTlL4TK7yof8yFI.mft (raw, json) Hash identifier: lWRqp/AqbWaoR8m8bNwHpX5MUmuRNOPxuWUXXwSWzPc= Subject key identifier: C5:DF:90:75:CB:0E:6A:DF:F3:9F:BC:22:F1:64:4D:70:D7:26:89:6B Authority key identifier: B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 Certificate issuer: /CN=A919E4C6/serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft Manifest number: 0258 Signing time: Thu 19 Jun 2025 01:39:11 +0000 Manifest this update: Thu 19 Jun 2025 01:39:11 +0000 Manifest next update: Thu 26 Jun 2025 01:39:11 +0000 Files and hashes: 1: uRm6CzrV4m_DHTlL4TK7yof8yFI.crl (hash: i0vpfxl+DY5PVLOWfOW6D5LA29dk6XpSGGjiDWOLSS4=) 2: 4C0F405E1E1C11EDA19CF560C4F9AE02.roa (hash: Mjvz0g/6VHNBx1WBrf/RAQ24UJcGDEU3e3YasLXb4ZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E4C6, serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Validity Not Before: Jun 19 01:39:11 2025 GMT Not After : Jun 26 01:39:11 2025 GMT Subject: CN=68536a3f-6a67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:69:cf:67:0b:8c:18:52:27:a6:6d:f4:b1:78: 1f:c6:fe:eb:f3:66:35:49:fc:1d:56:26:4e:31:b2: fb:b2:2e:ef:97:a5:4b:fe:cb:7e:22:84:ae:1e:dc: a6:7f:a6:21:e7:34:1f:f0:d8:98:e1:a5:5b:dd:ed: 54:ff:07:52:6a:3b:a5:29:5a:a5:f8:f0:3c:90:af: fc:a6:10:f5:10:09:31:43:e8:8a:79:b9:6d:08:2e: 89:ff:45:84:71:ae:a9:2c:4d:69:d7:c2:64:eb:94: c6:f9:4b:be:03:a9:48:fa:23:5f:51:ed:0a:ce:4e: 23:c1:59:f1:9d:f5:e2:1c:65:b5:16:b7:eb:c5:0a: 40:85:d5:4a:56:95:32:80:50:21:6a:65:f4:dc:8e: 78:70:85:de:1b:af:26:0d:6e:5f:36:87:39:06:57: 4e:71:f1:70:11:95:af:e7:f7:85:4f:f9:30:47:09: a3:53:b9:69:1c:d0:e4:c7:84:57:4c:21:0d:28:db: 6d:76:b3:d9:0b:29:d4:81:ba:16:98:40:3c:f8:96: 7f:68:16:94:0d:d3:16:de:fb:ae:8f:1f:f4:a7:3d: 39:80:f9:f3:1d:84:ad:63:45:fd:b3:b6:02:e2:41: 64:22:5c:a4:1a:cd:3f:be:a5:1a:da:57:0f:1f:b1: 44:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:DF:90:75:CB:0E:6A:DF:F3:9F:BC:22:F1:64:4D:70:D7:26:89:6B X509v3 Authority Key Identifier: keyid:B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:0b:de:a3:61:80:05:ce:d9:d3:fb:69:75:84:2e:82:68:fc: cf:e6:f0:0e:c2:29:de:9d:e9:51:28:cd:1c:92:d0:84:9c:4a: 72:c4:6d:bd:39:82:2c:de:82:e1:99:68:88:f3:bd:81:b9:fd: a6:41:f7:9c:15:e0:09:e5:3c:9e:dc:70:38:83:1d:b4:eb:63: 4f:c0:2e:ee:62:02:1d:10:f0:60:b0:ce:e8:bc:30:3a:77:d7: 3d:74:63:20:2b:55:db:ca:f7:07:ae:b5:e6:df:ad:6b:fa:71: 24:8f:3a:38:62:dc:0e:eb:41:94:6c:53:7b:72:84:2d:71:8e: 78:36:86:43:3e:45:63:65:d5:34:9a:f4:96:c6:fb:c1:84:14: b5:94:53:0b:5f:13:54:eb:80:ca:4e:57:01:92:92:5e:e4:e0: 85:d9:f7:ba:bc:98:f9:ce:ca:27:23:49:25:83:cc:46:9a:30: dc:d4:4c:1a:d1:d8:5b:84:57:f9:f6:ee:f1:c1:b3:27:cb:45: 55:ce:68:a4:0e:b7:e4:0c:f4:fb:c6:12:3e:77:3f:cd:4c:ce: 95:dd:3f:c7:07:e6:0d:26:8c:ac:88:61:5f:e1:46:a9:37:e4: de:b2:24:f9:7b:3b:77:94:7a:db:1c:24:a3:56:42:fc:0d:3c: b9:4a:f8:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU0QzYxMTAvBgNVBAUTKEI5MTlCQTBCM0FENUUyNkZDMzFEMzk0QkUxMzJCQkNB ODdGQ0M4NTIwHhcNMjUwNjE5MDEzOTExWhcNMjUwNjI2MDEzOTExWjAYMRYwFAYD VQQDEw02ODUzNmEzZi02YTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmnPZwuMGFInpm30sXgfxv7r82Y1SfwdViZOMbL7si7vl6VL/st+IoSuHtym f6Yh5zQf8NiY4aVb3e1U/wdSajulKVql+PA8kK/8phD1EAkxQ+iKebltCC6J/0WE ca6pLE1p18Jk65TG+Uu+A6lI+iNfUe0Kzk4jwVnxnfXiHGW1FrfrxQpAhdVKVpUy gFAhamX03I54cIXeG68mDW5fNoc5BldOcfFwEZWv5/eFT/kwRwmjU7lpHNDkx4RX TCENKNttdrPZCynUgboWmEA8+JZ/aBaUDdMW3vuujx/0pz05gPnzHYStY0X9s7YC 4kFkIlykGs0/vqUa2lcPH7FEdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXfkHXL Dmrf85+8IvFkTXDXJolrMB8GA1UdIwQYMBaAFLkZugs61eJvwx05S+Eyu8qH/MhS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTRDNi9FQUI5NDdBODFF MTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRtX0RIVGxMNFRLN3lvZjh5 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VSbTZDenJWNG1fREhUbEw0VEs3eW9mOHlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTRDNi9FQUI5NDdBODFFMTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRt X0RIVGxMNFRLN3lvZjh5RkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMC96jYYAFztnT+2l1hC6CaPzP5vAOwinenelRKM0cktCEnEpyxG29 OYIs3oLhmWiI872Buf2mQfecFeAJ5Tye3HA4gx2062NPwC7uYgIdEPBgsM7ovDA6 d9c9dGMgK1XbyvcHrrXm361r+nEkjzo4YtwO60GUbFN7coQtcY54NoZDPkVjZdU0 mvSWxvvBhBS1lFMLXxNU64DKTlcBkpJe5OCF2fe6vJj5zsonI0klg8xGmjDc1Ewa 0dhbhFf59u7xwbMny0VVzmikDrfkDPT7xhI+dz/NTM6V3T/HB+YNJoysiGFf4Uap N+TesiT5ezt3lHrbHCSjVkL8DTy5SvgY -----END CERTIFICATE-----Generated at Thu Jun 19 05:53:11 2025 by rpki-client