$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft File: UtXW_72oj1ReUbr5n32s4ZPAblc.mft (raw, json) Hash identifier: T9zbx5BfXuc5kVQ8ROlIJZgS4+eAoD3fV7YrOze4neo= Subject key identifier: CF:77:B8:20:8E:CF:CF:3D:3E:EF:BB:01:4E:63:13:97:73:DF:62:40 Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 07DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft Manifest number: 07D8 Signing time: Thu 12 Jun 2025 20:46:46 +0000 Manifest this update: Thu 12 Jun 2025 20:46:45 +0000 Manifest next update: Thu 19 Jun 2025 20:46:45 +0000 Files and hashes: 1: UtXW_72oj1ReUbr5n32s4ZPAblc.crl (hash: 12B1X/v/Q1EN6ZLDnq7/hhK45avYtGdediNggDjYAHE=) 2: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (hash: X3Zxmzy65RFAr4wRuSkQChvufHFA8zifcOkEqKI8dKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2015 (0x7df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6, serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: Jun 12 20:46:45 2025 GMT Not After : Jun 19 20:46:45 2025 GMT Subject: CN=684b3cb6-6a09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:73:5a:a6:d4:e3:c1:21:b2:cb:bc:c4:61:a5: 55:26:e6:09:41:8e:a8:2c:cc:59:e3:73:e3:35:d5: 3a:f7:dc:0d:aa:4c:d7:81:f3:6c:2f:e2:d6:ab:fb: 1e:6c:32:cb:01:e3:5b:1e:59:c7:01:e7:45:84:0f: 28:2b:55:a9:97:fd:50:d8:b6:38:dd:01:8a:58:d8: ca:4e:11:48:03:59:a3:cb:d7:9c:45:14:98:c6:ff: a5:2b:be:b1:64:8e:aa:91:a6:84:ac:9e:39:24:6d: 67:9b:eb:b6:13:c1:bb:63:dc:0b:e4:6d:7c:d7:0d: ae:3e:22:da:29:23:6b:b5:42:7f:e2:3c:6a:0f:31: 93:e5:b9:a0:c5:d0:42:1e:cd:73:be:84:bd:a0:04: e6:84:98:1a:25:c9:b5:c0:17:85:77:60:2a:1e:49: 79:49:30:b2:f6:5e:c8:e6:be:a7:0f:fe:4c:b6:d3: 73:d1:6e:99:b4:e3:2c:e2:44:8f:5f:01:07:c7:1a: 23:40:7c:6f:3b:48:e7:98:cb:78:e6:14:0d:ae:58: 22:c0:2c:be:ab:95:44:83:0b:4e:6d:1c:62:74:b8: ab:f1:6c:b8:65:f2:30:c6:f1:9d:6a:43:5f:67:ce: 0e:40:9d:f0:91:91:47:12:e6:74:9b:c4:5e:4c:95: e3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:77:B8:20:8E:CF:CF:3D:3E:EF:BB:01:4E:63:13:97:73:DF:62:40 X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:43:07:73:fe:0b:b1:08:d9:45:59:2d:11:23:41:44:5b:39: 8d:92:37:2f:29:0e:bd:e8:24:25:e8:92:a6:b6:7b:55:9b:01: 77:03:e1:3d:88:58:35:59:97:72:cb:b4:83:94:a0:bc:f4:ca: 54:b2:57:33:5b:af:ca:cc:e2:11:6f:0e:45:71:a6:02:bf:d6: ff:3f:9e:e2:f0:4d:6c:97:c5:bd:dc:bf:e6:a0:a3:24:f8:44: 14:51:43:db:f5:d8:81:8f:ad:73:e8:86:2e:5d:6b:81:95:93: a7:48:d6:07:3f:4a:4b:df:88:46:5d:36:97:5c:91:5b:46:21: 51:e5:11:9e:39:21:f5:b1:08:89:87:70:e3:a2:f6:f2:6b:4d: 93:9b:58:30:d8:18:88:39:3e:36:e8:c1:a8:de:91:9c:0d:22: 8e:e1:22:ab:51:43:b8:1a:d6:cc:02:ce:2e:54:67:a8:4e:2f: 55:54:c0:24:79:b8:79:85:28:6d:5a:18:48:86:5d:c9:bb:fb: c7:f3:4e:bc:08:28:0a:f6:8d:7c:f6:05:7c:71:18:4c:b5:8a: 01:14:83:8e:91:c1:9f:13:e7:06:b0:86:5d:e1:fb:51:41:7e: 66:81:29:cf:7c:ca:04:eb:c5:ca:3c:f2:cb:2d:82:d7:0f:bf: df:40:7c:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjUwNjEyMjA0NjQ1WhcNMjUwNjE5MjA0NjQ1WjAYMRYwFAYD VQQDEw02ODRiM2NiNi02YTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8XNaptTjwSGyy7zEYaVVJuYJQY6oLMxZ43PjNdU699wNqkzXgfNsL+LWq/se bDLLAeNbHlnHAedFhA8oK1Wpl/1Q2LY43QGKWNjKThFIA1mjy9ecRRSYxv+lK76x ZI6qkaaErJ45JG1nm+u2E8G7Y9wL5G181w2uPiLaKSNrtUJ/4jxqDzGT5bmgxdBC Hs1zvoS9oATmhJgaJcm1wBeFd2AqHkl5STCy9l7I5r6nD/5MttNz0W6ZtOMs4kSP XwEHxxojQHxvO0jnmMt45hQNrlgiwCy+q5VEgwtObRxidLir8Wy4ZfIwxvGdakNf Z84OQJ3wkZFHEuZ0m8ReTJXjFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM93uCCO z889Pu+7AU5jE5dz32JAMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdGNi9FRDkzQ0VFOEYyQjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2ox UmVVYnI1bjMyczRaUEFibGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Qwdz/guxCNlFWS0RI0FEWzmNkjcvKQ696CQl6JKmtntVmwF3A+E9 iFg1WZdyy7SDlKC89MpUslczW6/KzOIRbw5FcaYCv9b/P57i8E1sl8W93L/moKMk +EQUUUPb9diBj61z6IYuXWuBlZOnSNYHP0pL34hGXTaXXJFbRiFR5RGeOSH1sQiJ h3Djovbya02Tm1gw2BiIOT426MGo3pGcDSKO4SKrUUO4GtbMAs4uVGeoTi9VVMAk ebh5hShtWhhIhl3Ju/vH8068CCgK9o189gV8cRhMtYoBFIOOkcGfE+cGsIZd4ftR QX5mgSnPfMoE68XKPPLLLYLXD7/fQHyp -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:49 2025 by rpki-client