$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: WJZD86ewSapUQyzoT+EPqgOyAddWiSMIMyk425/XRVg= Subject key identifier: E5:DC:F5:C8:3A:2E:4A:82:AA:95:FA:F2:FD:2C:65:48:0F:1B:BF:1F Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 04FF Signing time: Sat 14 Jun 2025 23:25:08 +0000 Manifest this update: Sat 14 Jun 2025 23:25:08 +0000 Manifest next update: Sat 21 Jun 2025 23:25:08 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: 8HT5eoVbcMcy5NIQPeW7BRqhOnVd4wnNq+ARBHxkMhg=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: clmx/oQr73cJ/dvXJjULbQlKZ0MXrmzLfgGRONsfwYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Jun 14 23:25:08 2025 GMT Not After : Jun 21 23:25:08 2025 GMT Subject: CN=684e04d4-4b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:81:57:e2:fb:33:d0:2e:ff:05:92:a9:3b:a0: cd:90:f7:88:55:a3:92:37:3f:ba:24:c3:57:e1:8c: a9:0b:a5:c8:31:f4:fd:1c:05:0a:df:a5:14:f1:8e: b4:68:c0:81:49:a0:da:f4:bc:3e:d3:6a:44:58:3f: e1:36:1f:12:37:ca:df:f1:e9:fe:e4:00:57:31:78: 78:91:7a:6c:c0:8a:7f:67:69:b8:62:6a:d1:80:4c: 71:a1:7f:28:9d:ad:5a:82:e8:06:2a:60:c0:83:d2: 37:e5:1d:4d:4b:ec:84:50:ec:40:0a:18:f7:0d:b3: 8f:e0:44:2e:8a:0a:bc:5f:a1:15:7e:0f:5b:26:1c: 22:8f:c2:8b:82:65:72:fd:0f:17:a3:e5:5d:56:af: b0:72:76:a7:be:2f:56:6f:ff:81:84:bc:78:3c:37: a6:b5:6f:2c:6a:2d:05:9f:09:f8:c3:f1:db:e3:8b: f8:8c:c3:7f:f6:7e:46:d8:e0:4e:fb:52:0c:88:1f: 19:3a:c4:e6:8e:f7:58:96:69:e9:6a:86:b4:04:f2: 0e:31:c4:8f:13:3d:c2:ef:af:bb:d1:2b:f2:2e:15: c8:60:20:2b:ae:0b:a1:7a:1c:be:81:bc:83:e9:44: 91:4a:17:66:4c:9a:4c:ab:5f:c4:61:48:c0:6f:4a: 1d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:DC:F5:C8:3A:2E:4A:82:AA:95:FA:F2:FD:2C:65:48:0F:1B:BF:1F X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:bf:e7:80:23:68:ef:aa:0e:a6:60:70:04:ad:30:96:e7:db: b4:e6:9c:a5:16:76:78:84:00:b2:4e:06:c4:9b:f1:87:20:b1: 87:5a:3c:df:58:6c:da:af:b1:75:63:a6:e2:2e:f3:24:54:46: a9:d5:08:ff:45:68:3d:d2:db:9b:61:89:e7:4b:bb:04:2a:06: 71:3f:9f:23:06:39:ce:da:c1:d9:c4:c5:12:e5:d4:04:3f:f3: ee:25:95:a3:48:4f:de:02:b3:e6:5a:8a:ca:a1:dd:5c:25:13: 7a:51:72:85:d4:3c:46:7f:4b:17:f0:7a:ff:fe:e2:5a:71:77: e9:b3:06:e1:11:4c:79:d1:17:3e:fb:40:45:ed:ae:f4:6e:f8: a7:c1:86:e3:95:ae:02:ef:78:0f:34:13:40:cf:71:3e:30:ce: d9:90:8f:d5:46:ad:57:2e:0d:8b:f8:66:25:49:a1:b6:17:65: e1:38:2f:eb:6f:da:af:51:e2:e2:da:5e:f8:55:0c:d2:88:68: 45:9e:1b:69:b5:7d:c2:1c:70:4b:ba:7f:80:26:eb:ec:f0:4f: a6:a0:d0:0c:46:63:46:ed:cb:7f:80:54:fe:ed:8f:b5:e9:5b: 47:0b:aa:6c:6c:06:75:83:17:c6:56:f8:66:bd:dd:85:f8:e0: bb:e4:9a:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUwNjE0MjMyNTA4WhcNMjUwNjIxMjMyNTA4WjAYMRYwFAYD VQQDEw02ODRlMDRkNC00YjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIFX4vsz0C7/BZKpO6DNkPeIVaOSNz+6JMNX4YypC6XIMfT9HAUK36UU8Y60 aMCBSaDa9Lw+02pEWD/hNh8SN8rf8en+5ABXMXh4kXpswIp/Z2m4YmrRgExxoX8o na1agugGKmDAg9I35R1NS+yEUOxAChj3DbOP4EQuigq8X6EVfg9bJhwij8KLgmVy /Q8Xo+VdVq+wcnanvi9Wb/+BhLx4PDemtW8sai0Fnwn4w/Hb44v4jMN/9n5G2OBO +1IMiB8ZOsTmjvdYlmnpaoa0BPIOMcSPEz3C76+70SvyLhXIYCArrguhehy+gbyD 6USRShdmTJpMq1/EYUjAb0odRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXc9cg6 LkqCqpX68v0sZUgPG78fMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1v+eAI2jvqg6mYHAErTCW59u05pylFnZ4hACyTgbEm/GHILGHWjzf WGzar7F1Y6biLvMkVEap1Qj/RWg90tubYYnnS7sEKgZxP58jBjnO2sHZxMUS5dQE P/PuJZWjSE/eArPmWorKod1cJRN6UXKF1DxGf0sX8Hr//uJacXfpswbhEUx50Rc+ +0BF7a70bvinwYbjla4C73gPNBNAz3E+MM7ZkI/VRq1XLg2L+GYlSaG2F2XhOC/r b9qvUeLi2l74VQzSiGhFnhtptX3CHHBLun+AJuvs8E+moNAMRmNG7ct/gFT+7Y+1 6VtHC6psbAZ1gxfGVvhmvd2F+OC75Jqu -----END CERTIFICATE-----Generated at Sun Jun 15 10:07:38 2025 by rpki-client