$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft (raw, json) Hash identifier: PLqdLE2bF6MC6vY8KeykzZwAX+v2XL3ls9HA8yTrniw= Subject key identifier: B1:B0:A1:D4:CB:AC:27:DC:C9:94:9A:F8:FF:ED:22:57:C0:B7:89:A9 Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 09E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft Manifest number: 09D9 Signing time: Thu 12 Jun 2025 19:42:22 +0000 Manifest this update: Thu 12 Jun 2025 19:42:21 +0000 Manifest next update: Thu 19 Jun 2025 19:42:21 +0000 Files and hashes: 1: UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl (hash: Rm7bOZiBW51AHEGE5uhjg5PkI0G1gWFD8i9gWKr8iGs=) 2: 21028CF67EF811EAAD47CD30C4F9AE02.roa (hash: +gB8ZHO5MMKVGP2yT3GNNhFPo53EwfTpImIrJ+ySljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2528 (0x9e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Jun 12 19:42:21 2025 GMT Not After : Jun 19 19:42:21 2025 GMT Subject: CN=684b2d9d-9131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0a:46:a5:00:6a:63:ef:64:64:e4:c7:ae:f9: 94:a6:27:97:f6:62:a7:fe:79:d8:c0:ac:92:86:d3: ee:7b:8f:7d:98:ac:40:b1:a0:ac:51:d6:03:fd:9f: a3:b3:ae:f2:8e:75:ca:e0:f7:d1:97:2e:e3:a1:29: ac:53:27:b1:16:54:c3:a2:4b:33:d1:73:95:1b:fd: 38:e5:b8:1d:52:7e:28:c7:ee:bd:27:d7:0b:28:4e: cc:36:d6:03:71:6e:15:7a:a1:0f:c9:08:89:65:b4: 9c:cc:c1:05:32:0c:ed:10:06:a4:69:d4:3a:20:1f: 6e:10:21:73:a4:e1:fc:5b:ba:9a:8d:38:f3:64:19: a3:bb:93:05:8b:09:5b:00:3e:14:04:50:b7:f4:87: fd:3c:b4:67:d4:7b:39:3f:32:cc:3b:04:11:65:9e: 37:8f:09:02:31:6b:a1:c3:d6:19:e0:4e:51:d4:3c: 3a:4c:3d:72:74:78:31:f3:e2:b6:68:98:63:45:04: b5:df:b5:e3:5d:ea:b3:66:d6:a0:4a:eb:06:cf:bc: b9:fb:f3:c7:85:c7:9e:c6:85:d4:4c:cd:1d:5c:ec: af:a6:74:df:40:ad:9f:f9:d8:68:71:da:bc:1e:22: 9f:56:50:6c:03:89:f3:ad:b5:99:7c:17:76:d2:d4: c8:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:B0:A1:D4:CB:AC:27:DC:C9:94:9A:F8:FF:ED:22:57:C0:B7:89:A9 X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:65:89:60:58:dc:f6:2d:a2:4c:5c:ff:c1:a0:57:94:21:5b: 29:4a:54:f1:51:3b:80:88:93:cc:93:90:94:69:e1:16:2b:2f: e1:3e:7f:b1:68:81:d4:53:f8:4e:e5:01:27:66:30:98:ba:67: d0:00:e2:34:99:7d:24:84:92:e0:b6:a6:02:e0:b7:9e:b9:13: 74:3a:79:19:40:39:26:e0:e6:b1:e6:3b:c4:19:7d:70:65:22: 85:58:b2:b7:6f:19:c6:59:f9:cb:e9:10:14:b8:11:34:6f:c3: fd:d7:79:f8:04:36:27:27:fe:87:4c:b2:5e:54:48:63:35:65: 6c:dd:78:4b:0f:1f:c8:57:1e:79:f6:37:2f:1a:0a:03:42:53: 81:05:06:8b:0f:48:ec:b7:bb:25:8c:1c:c9:a6:70:dc:fb:07: 95:bf:6a:c6:2d:71:2b:6d:77:ed:59:f3:7a:bd:33:94:b0:55: 00:f3:9c:85:66:d7:0e:9f:a1:a0:75:b6:d5:cc:2a:43:55:41: 67:c4:42:2c:7c:7a:db:e3:38:e4:a9:66:18:80:25:53:52:af: 4d:11:36:da:6c:c6:f2:ca:78:29:29:f0:9a:a4:67:a1:d3:f3: 1f:83:25:93:fb:ef:ae:b1:64:b5:35:32:12:ba:ec:dc:e5:a4: a6:12:c3:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjUwNjEyMTk0MjIxWhcNMjUwNjE5MTk0MjIxWjAYMRYwFAYD VQQDEw02ODRiMmQ5ZC05MTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwpGpQBqY+9kZOTHrvmUpieX9mKn/nnYwKyShtPue499mKxAsaCsUdYD/Z+j s67yjnXK4PfRly7joSmsUyexFlTDoksz0XOVG/045bgdUn4ox+69J9cLKE7MNtYD cW4VeqEPyQiJZbSczMEFMgztEAakadQ6IB9uECFzpOH8W7qajTjzZBmju5MFiwlb AD4UBFC39If9PLRn1Hs5PzLMOwQRZZ43jwkCMWuhw9YZ4E5R1Dw6TD1ydHgx8+K2 aJhjRQS137XjXeqzZtagSusGz7y5+/PHhceexoXUTM0dXOyvpnTfQK2f+dhocdq8 HiKfVlBsA4nzrbWZfBd20tTIYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGwodTL rCfcyZSa+P/tIlfAt4mpMB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQ aW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdZYlgWNz2LaJMXP/BoFeUIVspSlTxUTuAiJPMk5CUaeEWKy/hPn+x aIHUU/hO5QEnZjCYumfQAOI0mX0khJLgtqYC4LeeuRN0OnkZQDkm4Oax5jvEGX1w ZSKFWLK3bxnGWfnL6RAUuBE0b8P913n4BDYnJ/6HTLJeVEhjNWVs3XhLDx/IVx55 9jcvGgoDQlOBBQaLD0jst7sljBzJpnDc+weVv2rGLXErbXftWfN6vTOUsFUA85yF ZtcOn6GgdbbVzCpDVUFnxEIsfHrb4zjkqWYYgCVTUq9NETbabMbyyngpKfCapGeh 0/MfgyWT+++usWS1NTISuuzc5aSmEsNH -----END CERTIFICATE-----Generated at Sat Jun 14 19:27:33 2025 by rpki-client