$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft File: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft (raw, json) Hash identifier: 7+Q93SWjVEJvR+fDSwl6dFQrLAbSky9YiT5rNHj5kO8= Subject key identifier: 6E:D9:DC:47:19:66:6B:DB:82:7E:50:86:CB:AD:9F:6D:3E:86:02:1F Authority key identifier: 51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 Certificate issuer: /CN=A91A7761/serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Certificate serial: 0608 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft Manifest number: 05E8 Signing time: Thu 12 Jun 2025 22:39:16 +0000 Manifest this update: Thu 12 Jun 2025 22:39:16 +0000 Manifest next update: Thu 19 Jun 2025 22:39:16 +0000 Files and hashes: 1: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl (hash: 6kzcV9ULMFQcr8MM7e7f9tMlDTSlM4seZgRYFcOKAgM=) 2: C9BA671C3A2611F0908A2B20C4F9AE02.roa (hash: hAsOFqLGhlXPlJQqq8o+TJ1lqU96PHU1fRQ8ll9kM1c=) 3: F44E1EECCD8411EF88CD1464C4F9AE02.roa (hash: RAzhHtW1VH/eUjgZQiEsm0Ej6j+0F6PlwpjTpjOi8Jo=) 4: F4C73FCACD8411EF88CD1464C4F9AE02.roa (hash: EkzwfsPvhq1FP6pm5CT4LDCnqWr4szU6ESASOp0o6DU=) 5: DBF856463A3011F0B0C6F437C4F9AE02.roa (hash: 3y3NqdGA4Yb7KDxIbZnutCZORNmNgdB027E2G7UT98A=) 6: F559B7E2CD8411EF88CD1464C4F9AE02.roa (hash: 1YFs0Zqq59OdTTfQ9TRBhg+ye+627iyYVeuBlex3Kfk=) 7: 044C4ED6A26711ED8095F74DC4F9AE02.roa (hash: ehyJGIeBDK390bSFLx2HamOEcgKmw6zu6VhcLaVRD/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1544 (0x608) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7761, serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Validity Not Before: Jun 12 22:39:16 2025 GMT Not After : Jun 19 22:39:16 2025 GMT Subject: CN=684b5714-501f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b0:ed:e9:57:fd:87:1f:80:45:15:cb:69:82: fd:87:4e:fe:98:29:20:c2:16:ac:31:50:d6:76:5f: d2:9c:f8:9e:05:17:67:49:33:af:03:61:e0:a3:22: a7:b5:20:53:0a:09:08:1c:d1:fa:ee:0f:60:37:87: 7c:3d:fa:df:8e:ac:16:6d:79:ea:7b:15:49:b9:17: 5c:5e:b1:b2:80:fd:fa:e3:7e:b8:83:9e:b2:66:da: 5c:95:b6:a5:43:2a:9f:29:a0:3f:71:24:24:02:44: 0f:d6:18:1a:42:0e:25:5d:18:9c:dd:bf:78:5c:3a: 80:14:fe:6b:42:f6:d3:a2:c8:a7:6a:c4:ba:fc:77: c8:f3:a0:1c:ba:0c:8c:2e:17:0e:56:be:50:b0:f7: a6:66:71:ad:e2:16:0c:64:17:85:60:33:ef:44:f5: 05:11:54:0b:dc:d4:01:6b:c6:4f:f4:3a:e5:e5:6c: f2:18:d7:f3:14:2a:32:91:8b:87:37:77:53:75:b8: 58:80:08:48:eb:36:4f:df:b8:6c:b6:15:38:9f:20: e6:67:4c:c7:38:03:04:7a:61:f7:5b:b4:2d:81:d0: 20:91:0b:c2:31:de:93:71:74:8d:c3:36:3c:18:ef: d8:44:2b:fc:70:ca:a0:ca:25:6e:d9:c1:41:6e:66: 0e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D9:DC:47:19:66:6B:DB:82:7E:50:86:CB:AD:9F:6D:3E:86:02:1F X509v3 Authority Key Identifier: keyid:51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:75:25:b5:27:1a:c8:23:27:92:8d:04:ef:0a:61:96:fe:83: c6:0b:ce:8c:20:7c:ae:4a:51:0a:ce:15:92:04:f8:39:81:3d: f0:e5:0c:cf:f3:15:83:1d:72:24:72:1c:70:cd:99:91:63:ed: c1:a3:4f:ff:15:e6:05:dd:5a:21:02:e1:fa:07:4f:66:ea:7e: 71:f0:bc:4d:00:12:ef:c2:5f:e2:11:d0:9e:ec:9c:d2:5e:0c: 7e:4d:b4:f3:0f:38:01:57:db:2c:30:90:5a:13:c7:57:43:36: cc:d5:02:05:bd:02:d5:22:c6:e3:d2:51:65:1f:ef:d3:66:af: bc:9a:cc:3b:45:2a:38:7e:7f:86:20:0d:33:e7:54:7b:76:d5: ce:0c:d4:87:78:92:ae:9d:5f:14:5d:0a:e9:90:1c:2e:9c:14: a2:60:ad:f6:db:a2:81:29:6e:94:f6:34:8c:29:53:8f:6c:a2: a6:04:f8:e5:8b:41:91:50:87:de:04:86:c3:f5:c5:cd:dd:38: 5e:77:0a:d0:38:71:9d:e6:48:0e:27:2d:04:b1:d4:c5:d4:65: 6c:0b:83:13:3f:9f:56:9d:1b:a6:94:21:31:45:f8:94:d1:f5: 41:e3:d6:79:9e:5a:9a:e3:0a:d1:66:a4:d0:81:4f:50:cf:ab: ae:f7:3f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3NjExMTAvBgNVBAUTKDUxRDVDQzJENUU0MjhGQzk1NTE0OUY1NzYyMTE5MDRG MDVCQUYyMTEwHhcNMjUwNjEyMjIzOTE2WhcNMjUwNjE5MjIzOTE2WjAYMRYwFAYD VQQDEw02ODRiNTcxNC01MDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7Dt6Vf9hx+ARRXLaYL9h07+mCkgwhasMVDWdl/SnPieBRdnSTOvA2HgoyKn tSBTCgkIHNH67g9gN4d8PfrfjqwWbXnqexVJuRdcXrGygP364364g56yZtpclbal QyqfKaA/cSQkAkQP1hgaQg4lXRic3b94XDqAFP5rQvbTosinasS6/HfI86AcugyM LhcOVr5QsPemZnGt4hYMZBeFYDPvRPUFEVQL3NQBa8ZP9Drl5WzyGNfzFCoykYuH N3dTdbhYgAhI6zZP37hsthU4nyDmZ0zHOAMEemH3W7QtgdAgkQvCMd6TcXSNwzY8 GO/YRCv8cMqgyiVu2cFBbmYOQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7Z3EcZ Zmvbgn5Qhsutn20+hgIfMB8GA1UdIwQYMBaAFFHVzC1eQo/JVRSfV2IRkE8FuvIR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzc2MS8wRTRCOTE2OEJE MzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4bFZGSjlYWWhHUVR3VzY4 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VkWE1MVjVDajhsVkZKOVhZaEdRVHdXNjhoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzc2MS8wRTRCOTE2OEJEMzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4 bFZGSjlYWWhHUVR3VzY4aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCodSW1JxrIIyeSjQTvCmGW/oPGC86MIHyuSlEKzhWSBPg5gT3w5QzP 8xWDHXIkchxwzZmRY+3Bo0//FeYF3VohAuH6B09m6n5x8LxNABLvwl/iEdCe7JzS Xgx+TbTzDzgBV9ssMJBaE8dXQzbM1QIFvQLVIsbj0lFlH+/TZq+8msw7RSo4fn+G IA0z51R7dtXODNSHeJKunV8UXQrpkBwunBSiYK3226KBKW6U9jSMKVOPbKKmBPjl i0GRUIfeBIbD9cXN3ThedwrQOHGd5kgOJy0EsdTF1GVsC4MTP59WnRumlCExRfiU 0fVB49Z5nlqa4wrRZqTQgU9Qz6uu9z82 -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:52 2025 by rpki-client