$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: kFvEyoVWgYADM+0pmkHBhPA1hn5QxFMbOeVIPRpTr+k= Subject key identifier: 3C:16:5B:E4:8D:91:A3:35:C5:59:8F:B7:5B:AE:2C:04:41:13:F7:0A Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 0391 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 038B Signing time: Fri 13 Jun 2025 00:24:47 +0000 Manifest this update: Fri 13 Jun 2025 00:24:46 +0000 Manifest next update: Fri 20 Jun 2025 00:24:46 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: jcy6DYHyeOrFT40Kw4JgXgJRi5/4ezQvSfyKxYaJ5aI=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 913 (0x391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Jun 13 00:24:46 2025 GMT Not After : Jun 20 00:24:46 2025 GMT Subject: CN=684b6fcf-3745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:06:7a:06:70:ed:c3:d8:af:d7:c2:4f:87:fd: c0:20:43:da:9f:a3:d0:32:04:52:11:a7:27:bc:2e: d9:68:ea:24:b1:9d:c3:2e:46:19:21:33:18:9e:8e: 51:ba:a3:10:df:25:60:c7:f8:9d:37:b4:84:86:46: 08:58:fe:2a:42:7d:b9:e7:c3:cc:dc:0a:0c:df:47: 1a:92:08:ca:ee:dc:71:22:25:a9:9e:a9:f2:77:5f: 55:cd:79:0d:5d:98:9e:07:1b:1f:bf:63:ff:38:46: 05:ef:51:5f:25:e5:29:e6:cc:6e:1e:1f:16:4d:d3: 86:f5:4f:c4:39:03:23:83:76:e5:e1:ca:ec:a4:e3: dd:f1:1e:3e:4e:be:53:4c:54:07:ef:c6:8b:31:4c: 28:c9:30:12:43:91:87:16:19:2c:1c:c9:87:48:e4: 31:34:16:3d:52:1e:b5:dc:79:6b:15:a7:93:63:a1: f2:1c:ac:88:7a:a9:1f:06:79:f0:14:fa:71:73:c4: 18:13:cf:65:a2:85:75:a3:f7:44:91:bd:d6:1e:df: fd:cf:38:f1:68:73:4d:66:33:04:d1:66:6e:00:b3: 20:58:d6:fc:0f:11:b4:f3:e1:43:60:4f:da:33:9c: 9a:87:d3:f4:4e:08:af:0a:a2:a7:c9:4e:bf:17:6f: c4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:16:5B:E4:8D:91:A3:35:C5:59:8F:B7:5B:AE:2C:04:41:13:F7:0A X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:77:9b:21:26:6d:f6:78:17:de:ca:1b:0f:25:ee:5f:1a:22: 94:d4:cc:af:81:1c:fe:a4:48:bc:75:6e:55:35:83:1a:02:31: 36:f2:67:c9:67:21:01:f3:54:19:8a:2a:e7:c0:3a:a0:9e:7b: 77:6d:28:6b:6b:6f:91:ce:84:e9:09:4c:f2:11:63:b6:5c:89: 18:c5:23:ff:4f:71:00:27:4c:50:76:95:ce:90:02:cb:b9:89: 8a:7c:d6:aa:99:ee:dc:48:01:0d:0b:3d:30:56:a9:bc:1f:b5: 06:20:f6:c5:65:a6:26:71:90:b7:e7:93:92:d2:91:7d:22:f8: 09:6c:4c:ed:2c:bc:98:71:38:fd:75:95:4d:d4:4c:76:b5:26: 02:c9:e9:40:e6:40:f5:32:bf:b2:6e:ec:0e:ae:23:92:dc:60: 3d:ce:e0:22:70:99:24:51:bb:53:98:e9:26:e5:c5:46:40:79: 0e:98:bb:10:0d:14:01:09:06:31:e5:2c:6d:9c:18:51:1c:40: 9a:9a:2d:b3:8d:1e:63:88:f2:97:df:cf:1d:f5:bd:0f:87:15: c3:f5:fe:16:f6:57:19:9a:76:4b:a0:6b:3a:a1:79:09:8f:61: 71:af:1d:0a:19:21:b0:6e:18:04:b2:6d:43:43:ee:c3:e8:97: 33:7b:62:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUwNjEzMDAyNDQ2WhcNMjUwNjIwMDAyNDQ2WjAYMRYwFAYD VQQDEw02ODRiNmZjZi0zNzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlQZ6BnDtw9iv18JPh/3AIEPan6PQMgRSEacnvC7ZaOoksZ3DLkYZITMYno5R uqMQ3yVgx/idN7SEhkYIWP4qQn2558PM3AoM30cakgjK7txxIiWpnqnyd19VzXkN XZieBxsfv2P/OEYF71FfJeUp5sxuHh8WTdOG9U/EOQMjg3bl4crspOPd8R4+Tr5T TFQH78aLMUwoyTASQ5GHFhksHMmHSOQxNBY9Uh613HlrFaeTY6HyHKyIeqkfBnnw FPpxc8QYE89looV1o/dEkb3WHt/9zzjxaHNNZjME0WZuALMgWNb8DxG08+FDYE/a M5yah9P0TgivCqKnyU6/F2/EtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwWW+SN kaM1xVmPt1uuLARBE/cKMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/d5shJm32eBfeyhsPJe5fGiKU1MyvgRz+pEi8dW5VNYMaAjE28mfJ ZyEB81QZiirnwDqgnnt3bShra2+RzoTpCUzyEWO2XIkYxSP/T3EAJ0xQdpXOkALL uYmKfNaqme7cSAENCz0wVqm8H7UGIPbFZaYmcZC355OS0pF9IvgJbEztLLyYcTj9 dZVN1Ex2tSYCyelA5kD1Mr+ybuwOriOS3GA9zuAicJkkUbtTmOkm5cVGQHkOmLsQ DRQBCQYx5SxtnBhRHECami2zjR5jiPKX388d9b0PhxXD9f4W9lcZmnZLoGs6oXkJ j2Fxrx0KGSGwbhgEsm1DQ+7D6Jcze2Ko -----END CERTIFICATE-----Generated at Sat Jun 14 19:05:59 2025 by rpki-client