$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft File: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft (raw, json) Hash identifier: RRhRo8gNE79aWLr97T46bdh0dFSo2aVxIvIS4uTjRWU= Subject key identifier: 02:98:B0:5F:04:4F:CF:58:85:6A:C0:B4:BD:38:86:DE:08:35:E4:BB Authority key identifier: B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 Certificate issuer: /CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Certificate serial: 0E62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft Manifest number: 0E58 Signing time: Wed 18 Jun 2025 17:41:08 +0000 Manifest this update: Wed 18 Jun 2025 17:41:07 +0000 Manifest next update: Wed 25 Jun 2025 17:41:07 +0000 Files and hashes: 1: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl (hash: BSdq6kIRnTMV00iafQSISWH+mrfyprkqwAL/6wJMR2o=) 2: BD22841E9E4911E9A136D25AC4F9AE02.roa (hash: Gdmjy4eOm23bZo0u+QNI+KYIouesOlIiUyP5E+hvG08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1149, serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Validity Not Before: Jun 18 17:41:07 2025 GMT Not After : Jun 25 17:41:07 2025 GMT Subject: CN=6852fa33-f2cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2d:cd:5f:68:01:a5:fd:2e:5c:96:78:2c:9b: f1:4d:bd:c4:d5:c5:ec:0a:0e:64:54:58:4c:04:d2: c0:64:15:3c:ff:46:f3:e4:84:d4:ab:95:ae:59:02: 84:c9:e6:8e:27:8f:4f:5e:9c:83:db:36:2a:a2:8f: 0d:3a:96:e3:61:03:5f:18:01:42:3b:4b:62:e9:eb: ce:92:50:e1:32:f4:8d:4f:72:79:44:78:e8:21:5c: 91:e4:6d:01:ea:2f:9b:37:92:ce:e5:90:f8:50:54: 22:31:17:d8:1c:8f:39:1f:a0:8c:50:f1:9a:16:4a: 98:a9:8e:d5:92:c3:30:bb:e6:bd:46:56:2d:f3:2f: 53:bb:87:50:56:97:75:03:f3:c7:15:c0:fb:08:3d: 75:ee:33:0e:c4:77:ef:aa:c5:69:41:f2:0f:80:a0: fe:10:78:93:46:13:cf:fd:57:79:03:d2:66:db:9d: 67:77:3f:bc:f0:70:71:a6:e9:77:1a:3d:fb:b6:1f: 9e:a1:9a:40:20:be:89:84:18:b3:9b:dd:07:18:1c: e0:d8:b8:43:e5:1c:de:c5:24:8a:7a:8a:34:ce:71: e0:95:11:03:0e:75:39:54:dd:b2:88:19:8a:82:97: 9a:d5:1e:39:27:3f:a6:f5:02:d6:f4:e3:5c:40:52: fc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:98:B0:5F:04:4F:CF:58:85:6A:C0:B4:BD:38:86:DE:08:35:E4:BB X509v3 Authority Key Identifier: keyid:B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:1a:da:a3:cb:33:c4:fe:a2:a0:89:c9:c0:ef:7d:63:86:72: e9:85:f1:65:66:94:82:8f:38:ef:f9:9b:cf:31:1e:ac:bd:74: fa:ba:d1:bf:3b:eb:bc:4d:17:8a:a5:f3:89:b2:1c:18:55:d9: cb:7a:2a:76:cb:6a:0b:b0:e3:3e:ac:d2:e5:8d:7d:e3:0c:dc: eb:01:eb:f9:f1:1d:7a:ba:76:63:9b:e4:9f:46:c3:3e:79:7f: ee:36:ed:d7:ea:ac:5b:eb:9f:a6:e9:e5:a0:c2:86:38:4a:c3: 0c:2c:8a:fd:9f:69:7d:5c:e3:87:72:b9:4a:ce:19:20:50:59: 19:14:f7:ee:4b:6c:1d:8b:18:c2:dd:86:16:ef:69:6e:14:fc: 80:33:97:b8:cf:50:fb:e4:fa:00:4e:99:7b:05:cd:28:4d:30: 34:11:98:02:9c:1f:cc:68:ec:cd:eb:ee:18:00:7e:9c:98:42: e8:50:c4:2d:d7:4b:f1:b6:3f:74:41:f7:1b:58:20:04:39:81: 62:61:6a:9a:1f:7f:c7:13:d6:6e:37:6c:e1:f4:c3:42:a8:d9: 4e:dc:88:5e:a5:24:84:5e:98:47:b8:ad:d0:02:de:38:ac:40: e1:5c:b4:c3:c2:29:3e:66:65:5c:44:1d:f1:10:b7:f2:a2:ec: df:c0:ea:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExNDkxMTAvBgNVBAUTKEI4MzQwMUNGQkM0MDVDRkI1MkZEQTBGRUJENEEwMkI3 QjFDRTI3NjIwHhcNMjUwNjE4MTc0MTA3WhcNMjUwNjI1MTc0MTA3WjAYMRYwFAYD VQQDEw02ODUyZmEzMy1mMmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoy3NX2gBpf0uXJZ4LJvxTb3E1cXsCg5kVFhMBNLAZBU8/0bz5ITUq5WuWQKE yeaOJ49PXpyD2zYqoo8NOpbjYQNfGAFCO0ti6evOklDhMvSNT3J5RHjoIVyR5G0B 6i+bN5LO5ZD4UFQiMRfYHI85H6CMUPGaFkqYqY7VksMwu+a9RlYt8y9Tu4dQVpd1 A/PHFcD7CD117jMOxHfvqsVpQfIPgKD+EHiTRhPP/Vd5A9Jm251ndz+88HBxpul3 Gj37th+eoZpAIL6JhBizm90HGBzg2LhD5RzexSSKeoo0znHglREDDnU5VN2yiBmK gpea1R45Jz+m9QLW9ONcQFL8JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKYsF8E T89YhWrAtL04ht4INeS7MB8GA1UdIwQYMBaAFLg0Ac+8QFz7Uv2g/r1KArexzidi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTE0OS8yNEJCMjRDRTlF NDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQdFNfYUQtdlVvQ3Q3SE9K MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VEUUJ6N3hBWFB0U19hRC12VW9DdDdIT0oySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTE0OS8yNEJCMjRDRTlFNDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQ dFNfYUQtdlVvQ3Q3SE9KMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuGtqjyzPE/qKgicnA731jhnLphfFlZpSCjzjv+ZvPMR6svXT6utG/ O+u8TReKpfOJshwYVdnLeip2y2oLsOM+rNLljX3jDNzrAev58R16unZjm+SfRsM+ eX/uNu3X6qxb65+m6eWgwoY4SsMMLIr9n2l9XOOHcrlKzhkgUFkZFPfuS2wdixjC 3YYW72luFPyAM5e4z1D75PoATpl7Bc0oTTA0EZgCnB/MaOzN6+4YAH6cmELoUMQt 10vxtj90QfcbWCAEOYFiYWqaH3/HE9ZuN2zh9MNCqNlO3IhepSSEXphHuK3QAt44 rEDhXLTDwik+ZmVcRB3xELfyouzfwOpt -----END CERTIFICATE-----Generated at Fri Jun 20 17:21:50 2025 by rpki-client