$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft File: UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft (raw, json) Hash identifier: 5oRQqeEHODxml2/4JbiGrk31iK9rpKM2No/EhfV4wUc= Subject key identifier: 44:19:03:38:9B:FF:FD:FB:C6:CE:59:37:2B:13:3D:50:04:23:1C:9A Authority key identifier: 51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB Certificate issuer: /CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Certificate serial: 2272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft Manifest number: 2233 Signing time: Sat 14 Jun 2025 15:51:21 +0000 Manifest this update: Sat 14 Jun 2025 15:51:21 +0000 Manifest next update: Sat 21 Jun 2025 15:51:21 +0000 Files and hashes: 1: UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl (hash: JO1DSdXc0vU7zhJcrQuRraaXjkpzJsguYvrtIC4YeBw=) 2: 6E12CFE0D6D511EEB73F802EC4F9AE02.roa (hash: fu2Y/ef9m4hYpradbNhhquwt+T6O3zblslaEMelPVBA=) 3: 8D93B9E0D8E911EE85D9881FC4F9AE02.roa (hash: AmGEU/vI25utL7crZoKrtfl5OSwvLwWyEhptdWMwqps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:51:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8818 (0x2272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA1C, serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Validity Not Before: Jun 14 15:51:21 2025 GMT Not After : Jun 21 15:51:21 2025 GMT Subject: CN=684d9a79-514c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5e:61:68:94:db:b6:c7:d8:9d:39:a5:c7:a7: ee:ab:0d:cf:93:ae:7d:dd:cf:da:a0:55:df:c4:19: c5:f1:86:79:97:19:0d:f2:46:38:8c:f0:1a:8f:81: 60:97:29:a9:7c:29:91:10:bb:25:d8:7a:bd:e8:f9: 52:18:8b:e5:83:80:2b:9b:82:af:1e:ac:d2:52:f5: 13:8b:26:74:d7:65:64:dd:75:92:c4:d9:a9:4c:b8: da:65:cb:6d:13:bb:a8:a5:40:11:5f:cc:d3:65:3b: 1e:ef:24:5d:47:7b:c0:21:04:2d:ac:f5:c6:e3:79: d1:39:a1:dd:16:55:16:e0:87:93:00:a7:24:fb:82: 57:2a:6b:bd:f3:80:d6:14:6c:31:48:3c:6e:13:e1: b5:50:43:72:22:71:1c:69:e4:0d:6f:38:ba:59:3a: 14:06:7c:97:b4:d5:d3:bb:36:26:f7:98:0d:8f:52: e2:f5:dd:51:14:01:cb:b8:3e:89:b2:ce:02:07:95: 88:62:7c:d4:0b:c6:90:b1:8b:f7:11:64:dd:9e:b1: fd:f1:1e:ad:db:ab:ed:20:e5:0b:58:12:32:55:50: 6d:b4:04:35:28:3b:f7:e5:67:7b:b4:85:74:e8:e3: 8e:9b:48:bc:83:fb:48:f8:26:22:e4:e0:a6:8f:c3: ae:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:19:03:38:9B:FF:FD:FB:C6:CE:59:37:2B:13:3D:50:04:23:1C:9A X509v3 Authority Key Identifier: keyid:51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:7e:6e:74:60:72:3e:f6:a1:33:90:3e:a4:7d:aa:57:3b:73: 1c:29:e3:81:81:c5:65:d5:76:fc:01:92:a9:16:dd:f0:d2:4a: 42:56:ad:4f:e3:ad:1c:c3:72:09:c1:b4:59:e9:eb:ac:6e:e7: f1:11:a4:c5:6a:57:2e:08:1a:69:66:0b:72:80:35:c1:8a:e4: 4d:4b:5e:6e:c3:57:96:be:50:f5:92:0f:8b:b4:bc:58:e6:d5: 68:31:cd:21:46:de:74:b2:10:c0:fe:4b:81:54:6c:b7:ea:e6: b4:f5:a0:31:87:53:b5:19:c5:dd:b6:90:6e:2c:37:a9:d6:b7: cf:d2:c1:df:74:7d:76:c4:d8:5f:fc:5c:99:b3:5b:bc:53:13: 60:cf:b6:85:e1:f9:98:8c:95:d1:3f:e6:f8:10:2a:f5:bc:24: ee:f9:88:d2:68:61:40:dd:28:e6:2e:2f:36:47:86:7b:66:21: 24:ef:fb:9d:9f:1f:3c:14:3e:70:1d:6a:65:9c:e0:a4:d2:8d: 18:e1:5e:30:81:03:9f:4f:9a:63:97:62:22:b9:73:67:54:4d: af:95:fb:a7:80:ba:03:bc:d9:a1:4b:b1:01:43:5c:7a:23:7e: 92:29:98:93:b7:75:97:ba:2a:16:2e:5c:dc:7f:3c:b7:7f:a0: ff:68:34:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICInIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMUMxMTAvBgNVBAUTKDUxQzI2MTFCNDYxREQ1MTE4MzVBNTE0MUY4QUVFNTAy RDNBMzlBRUIwHhcNMjUwNjE0MTU1MTIxWhcNMjUwNjIxMTU1MTIxWjAYMRYwFAYD VQQDEw02ODRkOWE3OS01MTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu15haJTbtsfYnTmlx6fuqw3Pk6593c/aoFXfxBnF8YZ5lxkN8kY4jPAaj4Fg lympfCmRELsl2Hq96PlSGIvlg4Arm4KvHqzSUvUTiyZ012Vk3XWSxNmpTLjaZctt E7uopUARX8zTZTse7yRdR3vAIQQtrPXG43nROaHdFlUW4IeTAKck+4JXKmu984DW FGwxSDxuE+G1UENyInEcaeQNbzi6WToUBnyXtNXTuzYm95gNj1Li9d1RFAHLuD6J ss4CB5WIYnzUC8aQsYv3EWTdnrH98R6t26vtIOULWBIyVVBttAQ1KDv35Wd7tIV0 6OOOm0i8g/tI+CYi5OCmj8OucQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQZAzib //37xs5ZNysTPVAEIxyaMB8GA1UdIwQYMBaAFFHCYRtGHdURg1pRQfiu5QLTo5rr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkExQy82M0IyMTRBMkM4 MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFSR0RXbEZCLUs3bEF0T2pt dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VjSmhHMFlkMVJHRFdsRkItSzdsQXRPam11cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkExQy82M0IyMTRBMkM4MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFS R0RXbEZCLUs3bEF0T2ptdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAefm50YHI+9qEzkD6kfapXO3McKeOBgcVl1Xb8AZKpFt3w0kpCVq1P 460cw3IJwbRZ6eusbufxEaTFalcuCBppZgtygDXBiuRNS15uw1eWvlD1kg+LtLxY 5tVoMc0hRt50shDA/kuBVGy36ua09aAxh1O1GcXdtpBuLDep1rfP0sHfdH12xNhf /FyZs1u8UxNgz7aF4fmYjJXRP+b4ECr1vCTu+YjSaGFA3SjmLi82R4Z7ZiEk7/ud nx88FD5wHWplnOCk0o0Y4V4wgQOfT5pjl2IiuXNnVE2vlfungLoDvNmhS7EBQ1x6 I36SKZiTt3WXuioWLlzcfzy3f6D/aDTW -----END CERTIFICATE-----Generated at Sun Jun 15 09:29:33 2025 by rpki-client