$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: Jbt8029cXrHWcq8asN58UjSsvxtLt17YwONlV546ie8= Subject key identifier: 8B:86:11:68:8F:1F:6C:DB:FA:7B:86:A1:30:7D:3B:EC:91:45:A3:0B Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: A3 Signing time: Thu 19 Jun 2025 05:34:10 +0000 Manifest this update: Thu 19 Jun 2025 05:34:09 +0000 Manifest next update: Thu 26 Jun 2025 05:34:09 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: C8jWY7sLkBWh9/PhbXbO4zC9knCtxHN/JFD+38U9oLI=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:34:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Jun 19 05:34:09 2025 GMT Not After : Jun 26 05:34:09 2025 GMT Subject: CN=6853a152-a5dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d9:91:90:08:ba:76:e4:59:52:59:1a:df:ac: b6:6e:58:2d:53:a3:dc:5d:d7:1a:a1:c6:53:2d:be: 18:1b:8e:d3:b2:00:af:d4:ce:78:c4:5a:10:d2:a5: 19:bc:e6:62:14:d0:71:9d:8e:f2:a3:9e:dd:04:f2: 33:ae:10:c9:7e:6b:6e:40:01:4a:2d:73:73:53:f3: a7:a6:97:db:e5:71:1c:17:33:98:9d:7c:70:98:4c: 5c:2c:06:33:60:3a:03:ed:f8:f8:11:76:06:f4:f4: 8e:0b:62:b0:dc:80:7a:a1:d9:a2:a9:31:a0:59:6c: dc:bb:9f:78:3a:94:3f:1a:e4:53:bd:74:ff:46:3d: 01:1d:ef:8e:d1:b1:eb:4f:a3:7c:3f:74:80:fd:07: e2:e4:50:ef:04:b4:20:92:dd:f8:b8:40:92:90:56: fd:3d:29:d0:f4:e2:f4:04:49:c2:6d:29:92:33:ae: 79:f6:7e:a7:bc:65:db:30:0d:7a:30:a6:28:38:61: 79:d4:b2:63:a4:8e:95:6c:f0:3d:68:72:99:2f:48: 5d:f7:13:08:35:23:89:7a:4a:12:88:92:00:be:a0: 46:97:b2:e5:df:73:6a:52:59:70:e7:a6:80:b2:a1: 63:a1:2d:3d:d0:25:81:e5:9d:70:0c:c2:d7:2b:0b: a8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:86:11:68:8F:1F:6C:DB:FA:7B:86:A1:30:7D:3B:EC:91:45:A3:0B X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:85:23:f8:e4:2e:11:cb:39:e4:12:c3:8a:b5:8a:ae:98:0b: ef:07:0a:89:9b:9f:e2:6c:7e:da:ce:44:90:cc:c3:98:d4:99: 6a:e4:87:00:f6:ec:6d:11:e0:db:b9:76:0e:8e:0e:51:02:a8: f3:15:50:f6:c3:85:22:9a:06:50:24:0e:dd:f7:12:2e:3c:2b: 4d:9c:01:df:22:cd:7d:29:22:ae:b7:a3:8c:23:b4:a6:89:f0: cb:79:7c:fd:b3:eb:3a:82:a2:00:77:63:e3:8f:4b:f6:08:08: 02:55:e4:ae:33:b8:c7:0a:08:6e:1b:cb:5f:33:57:07:48:10: 8f:4e:68:bc:64:82:78:9d:e9:3e:e4:10:f4:ed:c3:86:67:48: 73:29:da:7b:3b:50:4f:d0:49:25:68:e7:4b:3c:8d:0c:bb:39: e4:d4:e6:f1:6c:45:ea:5d:54:86:08:22:27:59:f7:4c:0a:f2: 09:fd:25:c7:28:21:1b:74:73:da:56:90:9b:1e:2d:9a:fc:1d: e3:c5:fc:a1:b8:47:35:4d:e5:9f:e7:12:8c:ae:47:ce:1b:20: e3:71:30:77:25:74:13:1f:0c:10:da:14:56:a4:a4:7f:3a:d2: 25:ba:09:39:ca:66:f0:3f:c9:d6:33:c4:8e:db:81:cc:81:a8: de:14:c0:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUwNjE5MDUzNDA5WhcNMjUwNjI2MDUzNDA5WjAYMRYwFAYD VQQDEw02ODUzYTE1Mi1hNWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59mRkAi6duRZUlka36y2blgtU6PcXdcaocZTLb4YG47TsgCv1M54xFoQ0qUZ vOZiFNBxnY7yo57dBPIzrhDJfmtuQAFKLXNzU/Onppfb5XEcFzOYnXxwmExcLAYz YDoD7fj4EXYG9PSOC2Kw3IB6odmiqTGgWWzcu594OpQ/GuRTvXT/Rj0BHe+O0bHr T6N8P3SA/Qfi5FDvBLQgkt34uECSkFb9PSnQ9OL0BEnCbSmSM6559n6nvGXbMA16 MKYoOGF51LJjpI6VbPA9aHKZL0hd9xMINSOJekoSiJIAvqBGl7Ll33NqUllw56aA sqFjoS090CWB5Z1wDMLXKwuoXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuGEWiP H2zb+nuGoTB9O+yRRaMLMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2hSP45C4RyznkEsOKtYqumAvvBwqJm5/ibH7azkSQzMOY1Jlq5IcA 9uxtEeDbuXYOjg5RAqjzFVD2w4UimgZQJA7d9xIuPCtNnAHfIs19KSKut6OMI7Sm ifDLeXz9s+s6gqIAd2Pjj0v2CAgCVeSuM7jHCghuG8tfM1cHSBCPTmi8ZIJ4nek+ 5BD07cOGZ0hzKdp7O1BP0EklaOdLPI0Muznk1ObxbEXqXVSGCCInWfdMCvIJ/SXH KCEbdHPaVpCbHi2a/B3jxfyhuEc1TeWf5xKMrkfOGyDjcTB3JXQTHwwQ2hRWpKR/ OtIlugk5ymbwP8nWM8SO24HMgajeFMA8 -----END CERTIFICATE-----Generated at Fri Jun 20 21:27:39 2025 by rpki-client