$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft File: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft (raw, json) Hash identifier: S3i2x6tGghnniHDJV+bI/j9zwNJfrqqRxg2evHvuwlk= Subject key identifier: BD:3E:E5:01:8B:0B:57:55:73:0B:2E:0E:E2:80:82:4A:9E:24:1E:DA Authority key identifier: 50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3 Certificate issuer: /CN=A91E5191/serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3 Certificate serial: 0780 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft Manifest number: 0778 Signing time: Mon 16 Jun 2025 21:15:07 +0000 Manifest this update: Mon 16 Jun 2025 21:15:06 +0000 Manifest next update: Mon 23 Jun 2025 21:15:06 +0000 Files and hashes: 1: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl (hash: Z8FTWgqFKfdG+17AL52PNPfCZE8GhpS8q0tGRLDVerI=) 2: 3E78F3541E2D11EB95754317C4F9AE02.roa (hash: zj2/IQcxrFfQP3sb/0xMN/kSgo/BiJLwAfEBd9gJdG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 21:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5191, serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3 Validity Not Before: Jun 16 21:15:06 2025 GMT Not After : Jun 23 21:15:06 2025 GMT Subject: CN=6850895b-ee1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:86:38:dd:4d:97:03:ce:55:a0:3e:99:15:02: 65:c4:e2:08:79:70:e3:e4:73:54:98:02:d3:14:02: 98:ae:67:5c:93:d7:cd:fa:2c:a2:6f:b8:96:42:79: 71:4b:f0:51:93:53:d5:b4:2b:98:f4:d6:c7:1e:28: 8e:65:c6:58:d3:f1:e2:8d:05:6b:26:e5:a4:ea:26: 6a:e1:61:aa:78:c4:7e:f0:a1:7f:fe:06:e8:70:0a: b0:6d:49:d0:7a:3e:5d:5d:93:ba:ed:c5:56:7a:0d: e8:23:c7:3e:16:75:b5:56:ae:ca:e4:8c:b8:4c:52: 95:be:28:16:9d:4d:d8:6c:04:ab:a9:99:da:8e:fd: 63:47:14:b9:a3:a0:29:88:ce:53:e1:3f:9f:43:eb: 8b:96:92:85:ea:c5:c1:87:fe:3d:ad:5f:6a:3e:68: a9:66:17:08:80:72:ef:0f:b7:b0:a7:94:62:b8:c4: ab:4f:84:ff:18:6a:1e:36:78:66:29:87:e6:9a:47: 5e:4c:97:04:bf:f6:60:d8:b8:1b:5c:4f:0f:db:6f: 09:65:16:06:19:19:63:6b:66:74:8e:ae:e1:58:08: 95:f5:bb:40:4a:38:4b:e0:e3:d4:92:f0:56:40:22: 0c:6f:7c:0f:66:55:34:2c:83:08:b0:a9:03:87:f4: fc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:3E:E5:01:8B:0B:57:55:73:0B:2E:0E:E2:80:82:4A:9E:24:1E:DA X509v3 Authority Key Identifier: keyid:50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:84:f3:cc:43:e0:c9:d3:67:b8:00:de:9c:70:d0:6d:c0:a7: 43:11:56:9d:b4:e1:ee:80:29:1a:9b:e1:a2:39:56:ad:bb:78: fc:82:8f:b9:94:e2:15:ab:6a:bd:b0:a1:16:e3:50:94:9c:d8: 90:01:1c:8e:dc:ac:70:12:37:9c:de:b1:cb:28:9c:3c:4f:f0: 24:77:1c:8f:4a:86:18:36:df:7b:e7:6e:d5:87:1a:90:a5:c8: 97:7e:4e:06:06:8d:c6:80:72:b3:b6:1b:90:f7:1a:ac:d1:81: 5d:89:be:a2:d4:e9:4c:ea:25:19:43:79:c3:4a:0b:59:41:dc: bf:d2:21:5b:f8:91:0d:5e:b1:cf:fc:b1:6c:6c:a6:75:cb:65: e2:17:f1:ad:1d:de:b8:c3:1f:a0:a1:a4:81:31:b6:01:49:ec: 4b:0f:fe:04:5f:14:dd:8e:e0:47:dc:b1:46:f8:63:85:f4:7e: 83:0b:48:21:3e:31:a6:90:62:54:cb:1f:c5:b7:53:7a:f1:39: 04:b3:aa:1c:8a:89:f6:b7:2b:64:0c:a0:67:20:c6:21:0a:66: 24:1e:6d:4f:41:15:f4:30:d3:83:59:68:86:14:b1:23:e8:90: e8:b5:f8:ee:a8:10:49:27:1e:46:15:f5:2d:7b:ed:d7:52:88: d1:76:bb:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUxOTExMTAvBgNVBAUTKDUwQTcxMTZCQjlGMzY5N0JDNUUzRTIyMkVGMDM1Rjcw MzQyQ0REQTMwHhcNMjUwNjE2MjExNTA2WhcNMjUwNjIzMjExNTA2WjAYMRYwFAYD VQQDEw02ODUwODk1Yi1lZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIY43U2XA85VoD6ZFQJlxOIIeXDj5HNUmALTFAKYrmdck9fN+iyib7iWQnlx S/BRk1PVtCuY9NbHHiiOZcZY0/HijQVrJuWk6iZq4WGqeMR+8KF//gbocAqwbUnQ ej5dXZO67cVWeg3oI8c+FnW1Vq7K5Iy4TFKVvigWnU3YbASrqZnajv1jRxS5o6Ap iM5T4T+fQ+uLlpKF6sXBh/49rV9qPmipZhcIgHLvD7ewp5RiuMSrT4T/GGoeNnhm KYfmmkdeTJcEv/Zg2LgbXE8P228JZRYGGRlja2Z0jq7hWAiV9btASjhL4OPUkvBW QCIMb3wPZlU0LIMIsKkDh/T8IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0+5QGL C1dVcwsuDuKAgkqeJB7aMB8GA1UdIwQYMBaAFFCnEWu582l7xePiIu8DX3A0LN2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTE5MS80OEFBMDcwNjE5 NzIxMUVCODA1RTZCN0ZDNEY5QUUwMi9VS2NSYTduemFYdkY0LUlpN3dOZmNEUXMz YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLY1JhN256YVh2RjQtSWk3d05mY0RRczNhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTE5MS80OEFBMDcwNjE5NzIxMUVCODA1RTZCN0ZDNEY5QUUwMi9VS2NSYTduemFY dkY0LUlpN3dOZmNEUXMzYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIhPPMQ+DJ02e4AN6ccNBtwKdDEVadtOHugCkam+GiOVatu3j8go+5 lOIVq2q9sKEW41CUnNiQARyO3KxwEjec3rHLKJw8T/AkdxyPSoYYNt97527VhxqQ pciXfk4GBo3GgHKzthuQ9xqs0YFdib6i1OlM6iUZQ3nDSgtZQdy/0iFb+JENXrHP /LFsbKZ1y2XiF/GtHd64wx+goaSBMbYBSexLD/4EXxTdjuBH3LFG+GOF9H6DC0gh PjGmkGJUyx/Ft1N68TkEs6ocion2tytkDKBnIMYhCmYkHm1PQRX0MNODWWiGFLEj 6JDotfjuqBBJJx5GFfUte+3XUojRdrt4 -----END CERTIFICATE-----Generated at Tue Jun 17 15:29:23 2025 by rpki-client