$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft File: UCfzGS691UlQo5w9EwlKcfHTMmY.mft (raw, json) Hash identifier: d/rdMkqK1LSWznTKIVZ6YrhRqDmHcBxcsyC7fxCc3YQ= Subject key identifier: 00:7A:3A:39:5E:31:86:25:F0:0D:F1:3A:A9:17:CB:24:E5:A6:DD:5D Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0B0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft Manifest number: 0AEF Signing time: Thu 12 Jun 2025 19:12:41 +0000 Manifest this update: Thu 12 Jun 2025 19:12:41 +0000 Manifest next update: Thu 19 Jun 2025 19:12:41 +0000 Files and hashes: 1: UCfzGS691UlQo5w9EwlKcfHTMmY.crl (hash: aLXUj0LPjRGCXdhnPm+sIyyRzlvXMt3ColnbCbqFp1I=) 2: F3F7D2B0CE9711ECA2477C19C4F9AE02.roa (hash: YSanlXPMFGlUc59onSU43QiRooXV0uHeNRhQl6sQvzs=) 3: CDD62642854E11EBA2CFDC87C4F9AE02.roa (hash: EMIkCzah8q7OcQkgGcb8CJSovHyJ1MV1+D6g6V84DdU=) 4: CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa (hash: neskcJ2ryIraX5yGhHnDKoHimVr5nfZfeUgF/8p7xpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2830 (0xb0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078, serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Validity Not Before: Jun 12 19:12:41 2025 GMT Not After : Jun 19 19:12:41 2025 GMT Subject: CN=684b26a9-e0e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c3:4f:b9:4c:3d:dd:ff:8d:17:67:b1:dd:eb: 63:80:80:7b:f8:d0:7c:c0:57:84:9d:58:eb:3b:51: 7e:71:e8:2f:b7:55:d3:93:c7:56:87:0a:d7:87:3e: 05:16:a7:96:6f:19:37:2f:b8:6c:3d:25:b5:3a:07: 50:f7:cb:c7:f2:50:48:ea:f6:3f:a1:50:25:33:26: cd:fa:63:c9:1a:c7:98:44:44:c7:6e:d3:38:d3:f2: ad:17:a7:ad:9a:71:3a:72:f5:7d:0c:e4:42:7c:87: ed:c8:63:94:98:9a:88:5a:6d:c3:b8:3b:a3:86:e8: 6a:09:6b:58:fb:40:8a:6f:fc:a5:e9:2d:35:46:78: 78:b5:ce:89:b1:95:d6:4e:d5:30:15:f6:5e:91:41: 72:cc:bc:b4:92:48:51:ec:29:65:de:c0:2e:00:ce: 76:d1:4a:fb:93:c0:76:24:b3:a5:91:45:9e:49:b9: 39:77:37:1b:4a:63:af:dd:1d:85:4e:c6:9c:52:4b: 49:c2:73:f8:e5:08:e9:b3:ce:86:86:96:7f:bf:f2: 7e:b4:db:82:ad:71:40:e1:ad:00:fa:55:6b:4c:48: e6:de:8c:0e:00:86:de:ad:68:fa:fd:dc:ae:08:16: 13:e7:55:b8:0f:b4:7f:d8:59:0e:d4:e2:80:9d:f9: 04:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7A:3A:39:5E:31:86:25:F0:0D:F1:3A:A9:17:CB:24:E5:A6:DD:5D X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:e3:d8:66:18:b4:a8:3f:bb:ce:0b:4b:73:de:7b:2a:bf:bb: d2:5d:85:17:84:5f:96:a3:42:e4:6f:19:fe:83:6f:0c:9e:90: d1:32:16:15:e6:68:a3:d9:33:8c:d5:f0:1e:4f:ef:40:7e:b2: 2f:7b:e6:66:7b:d7:24:08:cc:39:d9:20:99:aa:30:ce:7c:71: 2c:a4:0a:09:2a:e6:f3:58:c5:bd:db:3d:fb:72:3e:68:51:25: d1:18:4a:a2:e3:11:f4:71:83:b5:50:23:f8:b5:25:11:fb:1f: 33:4a:f8:83:30:e4:b3:d8:9f:ec:2b:ed:85:ac:48:52:a2:b2: 30:ce:a1:ec:a9:55:5d:19:c7:8c:84:59:1f:42:b2:ee:b0:62: b7:a8:3e:92:87:9c:c1:86:9e:5b:2d:42:28:54:a9:05:91:c3: b4:e1:70:9a:22:81:6e:08:1a:08:f4:33:25:19:f3:50:cc:ad: a4:b3:d4:4b:3c:bd:0a:3a:c0:35:d1:ed:d2:ae:76:29:25:c1: c6:9b:8b:b5:a7:b5:cf:09:e6:91:76:8b:61:3c:7a:00:54:1b: d5:3b:7b:62:40:ac:b7:ef:e8:7d:9d:64:34:d4:f3:3b:4a:17: 79:ef:e6:e1:a4:ff:12:2e:f4:f1:ad:bb:16:7e:64:0c:6b:6c: dc:d7:88:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjUwNjEyMTkxMjQxWhcNMjUwNjE5MTkxMjQxWjAYMRYwFAYD VQQDEw02ODRiMjZhOS1lMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38NPuUw93f+NF2ex3etjgIB7+NB8wFeEnVjrO1F+cegvt1XTk8dWhwrXhz4F FqeWbxk3L7hsPSW1OgdQ98vH8lBI6vY/oVAlMybN+mPJGseYRETHbtM40/KtF6et mnE6cvV9DORCfIftyGOUmJqIWm3DuDujhuhqCWtY+0CKb/yl6S01Rnh4tc6JsZXW TtUwFfZekUFyzLy0kkhR7Cll3sAuAM520Ur7k8B2JLOlkUWeSbk5dzcbSmOv3R2F TsacUktJwnP45Qjps86GhpZ/v/J+tNuCrXFA4a0A+lVrTEjm3owOAIberWj6/dyu CBYT51W4D7R/2FkO1OKAnfkEhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAB6Ojle MYYl8A3xOqkXyyTlpt1dMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA3OC84NjMwQjFDODRDOEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFV bFFvNXc5RXdsS2NmSFRNbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA149hmGLSoP7vOC0tz3nsqv7vSXYUXhF+Wo0Lkbxn+g28MnpDRMhYV 5mij2TOM1fAeT+9AfrIve+Zme9ckCMw52SCZqjDOfHEspAoJKubzWMW92z37cj5o USXRGEqi4xH0cYO1UCP4tSUR+x8zSviDMOSz2J/sK+2FrEhSorIwzqHsqVVdGceM hFkfQrLusGK3qD6Sh5zBhp5bLUIoVKkFkcO04XCaIoFuCBoI9DMlGfNQzK2ks9RL PL0KOsA10e3SrnYpJcHGm4u1p7XPCeaRdothPHoAVBvVO3tiQKy37+h9nWQ01PM7 Shd57+bhpP8SLvTxrbsWfmQMa2zc14io -----END CERTIFICATE-----Generated at Sat Jun 14 19:12:03 2025 by rpki-client