$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft File: UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft (raw, json) Hash identifier: LAFcc0bgdgtRkf1g69ZAa/F6O4efME5Kciyw7f1PGWY= Subject key identifier: 10:6C:9F:36:6B:AD:CD:18:F7:BB:F8:D0:8C:82:A9:4A:DD:64:BD:71 Authority key identifier: 50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74 Certificate issuer: /CN=A91AF2D9/serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft Manifest number: 98 Signing time: Sun 15 Jun 2025 05:30:05 +0000 Manifest this update: Sun 15 Jun 2025 05:30:04 +0000 Manifest next update: Sun 22 Jun 2025 05:30:04 +0000 Files and hashes: 1: UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl (hash: KpNJJYV74m8yNHnaq1TPePdP/g2exhuD8hhh8ZdZqcw=) 2: D48472829E9011EF84D96F7DC4F9AE02.roa (hash: DWOCYh9U3Wi0CtHFM/de9pIBC9zRoaOkBAZXQGO2U2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 05:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2D9, serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74 Validity Not Before: Jun 15 05:30:04 2025 GMT Not After : Jun 22 05:30:04 2025 GMT Subject: CN=684e5a5d-69af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:36:c2:3a:e5:f2:34:a9:89:ed:4b:9f:b4:26: 8c:f6:db:64:83:6a:29:a9:c0:9f:60:96:c4:a4:f2: 56:74:5c:59:22:11:6e:10:69:50:69:ba:70:42:90: d5:48:d1:bb:2e:b4:19:81:ff:58:56:b6:7f:ef:5d: 7d:61:6a:17:07:ee:a0:61:c5:46:d3:cc:fa:8e:3e: 3b:e2:df:b7:0e:ab:8a:f7:c0:35:cb:0d:fd:97:f4: 3c:fe:35:b6:cb:c8:a5:70:dd:47:f4:cc:0e:3d:1e: 9d:d5:6d:77:75:c0:de:25:d9:fc:ae:54:b0:83:75: e8:48:35:e6:88:11:c2:d7:b9:37:5d:4d:d7:ba:a0: 93:7e:34:1f:50:af:3d:92:ac:d9:bc:38:0f:01:0f: 33:1e:eb:0a:1d:02:65:e7:b1:7c:64:d8:b4:a1:5d: ac:38:2c:78:01:88:86:3e:fe:c8:ce:7a:5d:22:db: eb:ad:28:be:b9:57:82:84:2b:42:71:6f:81:fc:f9: b9:5a:e8:c5:d0:8a:94:cb:87:74:01:4f:b4:62:9f: f9:8a:be:70:4e:9a:de:7c:ef:01:99:42:41:96:e1: 6c:c2:ce:53:30:4d:eb:15:4f:bc:4f:46:f6:bc:d8: fc:3b:38:f5:39:57:97:e4:99:38:b6:28:c3:e7:38: 4a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6C:9F:36:6B:AD:CD:18:F7:BB:F8:D0:8C:82:A9:4A:DD:64:BD:71 X509v3 Authority Key Identifier: keyid:50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:fa:f4:ee:a8:bd:9b:03:0f:04:34:bb:cf:49:4b:78:45:59: 5b:b3:a3:33:b6:e7:c7:15:da:68:c4:5a:1f:3e:6c:0a:fe:f3: 60:6a:a1:03:8e:0f:1b:1d:54:4a:c5:d6:14:fd:8f:72:f0:b8: fa:fe:0a:b0:0f:cc:76:9b:52:0f:c9:dc:21:7a:78:f0:cf:df: 73:d4:b3:59:94:ff:a7:df:28:68:ce:38:5a:ee:3a:05:e5:14: e4:bc:7d:0e:05:72:96:56:65:56:d1:04:ac:0b:b5:0c:e7:bc: 74:e0:c2:be:ec:4c:c3:5d:ec:d2:83:e3:a7:c4:e3:36:4c:5d: 9b:45:00:0a:26:38:e8:83:6b:23:74:96:7c:bb:19:d7:49:be: 57:59:e6:aa:e5:e7:a3:a5:e9:66:ae:6e:59:a1:cf:87:f7:82: 72:6d:1e:62:06:e4:62:e3:8a:d0:ef:eb:42:04:78:a7:f1:0b: d3:7c:e3:da:3e:c2:5e:94:74:4e:66:7b:cb:65:ab:07:c7:45: 29:5c:f4:06:76:c2:16:72:ab:80:e2:b6:bb:88:1c:8a:68:48: 93:d3:0d:c0:c8:41:5b:26:20:7b:60:36:42:b0:0b:97:c9:37: cd:10:04:da:77:ed:8f:f3:50:23:ec:19:ce:e7:1d:8a:90:bd: 0b:40:dc:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyRDkxMTAvBgNVBAUTKDUwRDI0MDQyQTRBNjVFRUU2N0E3RUE0RDNGQzQ4OTQ0 M0EzOUFBNzQwHhcNMjUwNjE1MDUzMDA0WhcNMjUwNjIyMDUzMDA0WjAYMRYwFAYD VQQDEw02ODRlNWE1ZC02OWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDbCOuXyNKmJ7UuftCaM9ttkg2opqcCfYJbEpPJWdFxZIhFuEGlQabpwQpDV SNG7LrQZgf9YVrZ/7119YWoXB+6gYcVG08z6jj474t+3DquK98A1yw39l/Q8/jW2 y8ilcN1H9MwOPR6d1W13dcDeJdn8rlSwg3XoSDXmiBHC17k3XU3XuqCTfjQfUK89 kqzZvDgPAQ8zHusKHQJl57F8ZNi0oV2sOCx4AYiGPv7IznpdItvrrSi+uVeChCtC cW+B/Pm5WujF0IqUy4d0AU+0Yp/5ir5wTprefO8BmUJBluFsws5TME3rFU+8T0b2 vNj8Ozj1OVeX5Jk4tijD5zhKiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBsnzZr rc0Y97v40IyCqUrdZL1xMB8GA1UdIwQYMBaAFFDSQEKkpl7uZ6fqTT/EiUQ6Oap0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJEOS9BOTlDMTYyODY3 QUExMUVGOEY0OThBMjdDNEY5QUUwMi9VTkpBUXFTbVh1NW5wLXBOUDhTSlJEbzVx blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VOSkFRcVNtWHU1bnAtcE5QOFNKUkRvNXFuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjJEOS9BOTlDMTYyODY3QUExMUVGOEY0OThBMjdDNEY5QUUwMi9VTkpBUXFTbVh1 NW5wLXBOUDhTSlJEbzVxblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg+vTuqL2bAw8ENLvPSUt4RVlbs6MztufHFdpoxFofPmwK/vNgaqED jg8bHVRKxdYU/Y9y8Lj6/gqwD8x2m1IPydwhenjwz99z1LNZlP+n3yhozjha7joF 5RTkvH0OBXKWVmVW0QSsC7UM57x04MK+7EzDXezSg+OnxOM2TF2bRQAKJjjog2sj dJZ8uxnXSb5XWeaq5eejpelmrm5Zoc+H94JybR5iBuRi44rQ7+tCBHin8QvTfOPa PsJelHROZnvLZasHx0UpXPQGdsIWcquA4ra7iByKaEiT0w3AyEFbJiB7YDZCsAuX yTfNEATad+2P81Aj7BnO5x2KkL0LQNyn -----END CERTIFICATE-----Generated at Mon Jun 16 07:47:29 2025 by rpki-client