$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: wXNtFabQHT4+X0a3vgetjY+JWnSI51b53UGRsNrQ8J4= Subject key identifier: 19:52:EC:09:0F:9A:A8:76:99:C8:44:F9:F6:E1:94:67:0A:FB:BE:FB Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 0421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 0416 Signing time: Fri 13 Jun 2025 00:00:15 +0000 Manifest this update: Fri 13 Jun 2025 00:00:15 +0000 Manifest next update: Fri 20 Jun 2025 00:00:15 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: uuujulXYGX85PeUYC7xMXeNCW6TvdurV5VTARk7fbi4=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: tjoX2rKURmmp0SIpilUWla3AD/nRXhfocceVz0iL1og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Jun 13 00:00:15 2025 GMT Not After : Jun 20 00:00:15 2025 GMT Subject: CN=684b6a0f-ad2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:85:41:1a:61:79:9b:4f:94:f9:77:c6:2b:76: b7:38:8d:c0:9a:5f:25:63:03:8d:7a:f5:f7:a6:1c: f5:1b:fe:2a:1e:3c:dc:cc:33:4c:6b:ac:c2:96:76: 8c:c4:f8:69:96:b0:ae:77:45:b2:4b:f4:8f:a0:42: 0e:52:fc:cb:ff:6a:ba:6e:98:c1:d4:97:94:92:09: e7:98:ab:f7:f1:16:fb:84:c0:3e:93:25:7b:ea:38: 8b:5e:43:18:ee:e4:f4:fb:fc:27:37:79:b7:33:89: 4b:6f:c0:fd:6d:5e:6a:02:98:bb:36:1f:91:7e:e9: 23:30:91:da:da:28:b2:ff:ea:e8:96:77:39:23:3e: e0:a5:b1:30:55:32:71:13:88:13:97:2b:19:88:87: ec:28:57:01:db:38:dd:8a:3c:9c:2d:58:09:cb:15: e0:8c:43:01:96:66:6e:1c:03:75:40:b5:16:00:13: a7:0f:5e:17:63:bb:a9:17:8b:92:98:29:be:cc:4b: 93:b2:2f:f8:bb:d7:b5:00:b2:3f:15:7a:04:51:59: 2b:c5:eb:b7:fa:e4:54:8f:b5:3c:fa:de:2c:08:6c: 64:2f:9f:3f:9a:a8:66:07:8e:9d:e6:20:d3:a5:36: bc:b3:0b:ce:a8:09:b1:8b:9b:b5:7a:1b:c6:67:c2: 55:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:52:EC:09:0F:9A:A8:76:99:C8:44:F9:F6:E1:94:67:0A:FB:BE:FB X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:dc:bb:84:3b:c6:a2:cf:73:a1:33:a3:18:12:f7:8d:6f:43: b9:ff:0e:28:b3:34:68:90:3e:de:0e:10:5e:ae:4f:e3:1b:88: 76:9a:78:c4:68:c2:e5:74:f2:fc:44:fe:f5:4c:55:ad:cf:a9: 38:ed:a0:6d:fa:97:76:56:a4:a5:9a:dc:f5:f5:a8:c4:6a:ca: a8:5f:81:09:47:28:8f:fe:08:fb:43:58:ea:92:9d:6a:46:8d: 44:28:97:17:85:8b:8b:97:22:3f:39:1a:58:3c:5a:b1:1f:fe: 92:58:64:30:61:49:09:87:b2:91:51:37:94:b4:88:e7:64:e5: 66:b6:c3:4e:8e:1e:d6:dc:a1:a5:f9:6a:8d:80:59:0e:b3:11: 7f:79:fb:65:91:8f:9d:f0:2e:56:ad:f9:66:f9:dd:9b:8d:7b: ad:78:40:90:ba:76:2e:83:28:5c:28:eb:cd:4c:5b:34:37:bb: a0:a5:e9:56:1e:ef:46:d3:24:92:27:3c:94:65:86:86:72:dd: 3b:f9:b4:d9:79:1f:0a:11:7e:b4:d8:24:05:34:53:9e:f0:7a: 16:9c:7f:7f:19:8c:79:a0:ab:75:b5:0d:92:5f:0a:18:e4:53: 8c:00:71:d0:5e:9f:e4:35:d6:41:21:c5:69:c0:8e:8e:74:db: 55:a1:70:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjUwNjEzMDAwMDE1WhcNMjUwNjIwMDAwMDE1WjAYMRYwFAYD VQQDEw02ODRiNmEwZi1hZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIVBGmF5m0+U+XfGK3a3OI3Aml8lYwONevX3phz1G/4qHjzczDNMa6zClnaM xPhplrCud0WyS/SPoEIOUvzL/2q6bpjB1JeUkgnnmKv38Rb7hMA+kyV76jiLXkMY 7uT0+/wnN3m3M4lLb8D9bV5qApi7Nh+RfukjMJHa2iiy/+rolnc5Iz7gpbEwVTJx E4gTlysZiIfsKFcB2zjdijycLVgJyxXgjEMBlmZuHAN1QLUWABOnD14XY7upF4uS mCm+zEuTsi/4u9e1ALI/FXoEUVkrxeu3+uRUj7U8+t4sCGxkL58/mqhmB46d5iDT pTa8swvOqAmxi5u1ehvGZ8JVkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlS7AkP mqh2mchE+fbhlGcK+777MB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq3LuEO8aiz3OhM6MYEveNb0O5/w4oszRokD7eDhBerk/jG4h2mnjE aMLldPL8RP71TFWtz6k47aBt+pd2VqSlmtz19ajEasqoX4EJRyiP/gj7Q1jqkp1q Ro1EKJcXhYuLlyI/ORpYPFqxH/6SWGQwYUkJh7KRUTeUtIjnZOVmtsNOjh7W3KGl +WqNgFkOsxF/eftlkY+d8C5Wrflm+d2bjXuteECQunYugyhcKOvNTFs0N7ugpelW Hu9G0ySSJzyUZYaGct07+bTZeR8KEX602CQFNFOe8HoWnH9/GYx5oKt1tQ2SXwoY 5FOMAHHQXp/kNdZBIcVpwI6OdNtVoXA4 -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:56 2025 by rpki-client