$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: NzHS8x1vBIi7LUfVM2N0Si8TfyWLLpk++k9m3tLGEHw= Subject key identifier: 14:FE:20:91:C8:B9:66:B1:39:8C:CB:9A:53:6D:24:5F:50:55:05:81 Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01C3 Signing time: Thu 19 Jun 2025 02:33:54 +0000 Manifest this update: Thu 19 Jun 2025 02:33:54 +0000 Manifest next update: Thu 26 Jun 2025 02:33:54 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: z9odZk+eiZNhKRpw5RjVyhIgaEhb+V+Y5pa1BK1Vy7c=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Jun 19 02:33:54 2025 GMT Not After : Jun 26 02:33:54 2025 GMT Subject: CN=68537712-a6e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:1c:84:2d:8f:f5:f4:66:17:bc:d2:83:a1:67: 8b:8b:3f:aa:3d:ff:db:81:35:2e:5f:d8:77:ca:e7: 4a:b7:8a:42:6f:fa:51:99:f0:51:20:6e:ab:fc:40: ca:a2:ad:52:7f:b4:5c:8a:19:a8:6e:47:aa:a6:61: d7:63:66:06:52:06:e7:67:04:66:9e:7c:d5:c0:c9: 45:41:03:d1:9a:cc:19:02:b3:9b:b1:f7:b4:0b:34: 57:b8:18:6a:b0:aa:50:71:75:4e:7e:19:46:e9:ff: 9d:53:be:4e:9f:76:ba:bc:9b:b8:51:39:dd:3d:11: 1d:d6:dd:67:a0:4c:01:b0:0f:8c:ec:61:9f:e2:e4: 87:09:99:c8:43:f3:ac:0f:f8:71:b2:db:f4:4b:a5: 28:7b:86:e9:f3:4d:52:57:bf:d3:11:28:48:ab:63: c9:45:e8:4f:6f:3c:c6:e9:cf:20:73:b6:23:5e:c8: 82:2b:de:4d:9c:f9:df:71:b2:c7:da:5c:72:56:0b: 27:bc:0c:0d:df:8d:b4:e3:8a:0a:1e:f4:51:f6:09: 7c:b6:1b:3a:cc:a6:1d:e7:e8:3e:38:b7:34:94:3d: 23:9f:a4:33:bd:a1:12:0f:e2:e8:72:64:65:f9:38: 2a:82:57:7e:c8:f3:06:30:82:4c:7d:41:f6:2c:ff: e8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:FE:20:91:C8:B9:66:B1:39:8C:CB:9A:53:6D:24:5F:50:55:05:81 X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:b8:26:3c:fc:72:c5:df:7d:02:3b:d6:b1:3f:bd:48:3f:79: 74:25:ab:09:09:9a:db:bd:49:29:c6:13:53:e7:50:02:17:ff: cb:9d:4a:97:86:4e:a2:2c:ca:0e:c2:d4:bb:a8:ea:66:ef:d9: 6a:39:d3:b2:29:8a:a0:80:ca:4a:ca:b1:01:b4:2f:a4:53:c8: ba:10:d6:44:a5:d7:e0:c5:7e:88:94:03:b4:7d:68:21:24:ae: 99:eb:78:ef:16:93:6b:49:e2:12:3e:00:9d:a2:da:88:8c:db: 22:b5:5c:ce:1e:c6:e3:9d:28:0e:4b:57:5c:53:22:cc:42:13: 24:be:59:3c:f3:6f:48:1e:f1:cf:77:4f:d2:a8:e8:ba:fd:54: 4f:e6:78:cc:76:4f:9c:50:f4:49:20:db:f7:ce:6b:05:1c:97: 16:b4:89:35:63:83:6c:b8:91:bf:c9:73:37:bf:a6:4f:24:bd: c1:7a:a3:d8:e5:bd:25:20:03:a8:48:16:fd:ff:d4:80:e2:d6: e7:68:ec:ae:68:ab:28:c3:79:54:03:43:ce:a3:90:62:a6:8a: 51:9a:7d:7c:f7:82:aa:64:75:62:df:4c:21:38:b7:a8:7b:58: 0a:84:b6:9c:a2:05:b6:95:65:48:92:9c:1a:9f:b4:03:3a:ab: 59:b1:66:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwNjE5MDIzMzU0WhcNMjUwNjI2MDIzMzU0WjAYMRYwFAYD VQQDEw02ODUzNzcxMi1hNmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkhyELY/19GYXvNKDoWeLiz+qPf/bgTUuX9h3yudKt4pCb/pRmfBRIG6r/EDK oq1Sf7RcihmobkeqpmHXY2YGUgbnZwRmnnzVwMlFQQPRmswZArObsfe0CzRXuBhq sKpQcXVOfhlG6f+dU75On3a6vJu4UTndPREd1t1noEwBsA+M7GGf4uSHCZnIQ/Os D/hxstv0S6Uoe4bp801SV7/TEShIq2PJRehPbzzG6c8gc7YjXsiCK95NnPnfcbLH 2lxyVgsnvAwN342044oKHvRR9gl8ths6zKYd5+g+OLc0lD0jn6QzvaESD+LocmRl +Tgqgld+yPMGMIJMfUH2LP/ogwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBT+IJHI uWaxOYzLmlNtJF9QVQWBMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbuCY8/HLF330CO9axP71IP3l0JasJCZrbvUkpxhNT51ACF//LnUqX hk6iLMoOwtS7qOpm79lqOdOyKYqggMpKyrEBtC+kU8i6ENZEpdfgxX6IlAO0fWgh JK6Z63jvFpNrSeISPgCdotqIjNsitVzOHsbjnSgOS1dcUyLMQhMkvlk8829IHvHP d0/SqOi6/VRP5njMdk+cUPRJINv3zmsFHJcWtIk1Y4NsuJG/yXM3v6ZPJL3BeqPY 5b0lIAOoSBb9/9SA4tbnaOyuaKsow3lUA0POo5BipopRmn1894KqZHVi30whOLeo e1gKhLacogW2lWVIkpwan7QDOqtZsWY2 -----END CERTIFICATE-----Generated at Fri Jun 20 06:47:50 2025 by rpki-client