$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: 9YEhR7Liz2+iYrw2mb8DZ2NSXCPfCVPUFUqqtDjNYvw= Subject key identifier: FD:C3:14:CA:DC:41:70:A4:18:A5:AB:C4:94:DF:34:C7:2B:29:BD:D9 Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 0FEA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 0FE3 Signing time: Mon 16 Jun 2025 15:48:44 +0000 Manifest this update: Mon 16 Jun 2025 15:48:44 +0000 Manifest next update: Mon 23 Jun 2025 15:48:44 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: htFuIt5GenEPTNo2DoAd2Fu4/+mlo9IMEKynnbuU7VM=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: OwotHwrsvHfL9c2xwdii3HVlS9hQiSq8fqoBsWtp67U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4074 (0xfea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: Jun 16 15:48:44 2025 GMT Not After : Jun 23 15:48:44 2025 GMT Subject: CN=68503cdc-a21f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f2:09:4c:34:16:c4:42:48:f8:f8:c2:6e:69: 0c:f4:58:c7:78:08:b3:32:a5:88:bd:bd:11:f9:13: 17:2c:18:d3:99:bd:c6:5a:15:3a:c9:3a:e2:46:86: 41:23:a6:8c:77:6c:75:99:fa:1f:b0:10:3d:25:27: 46:cb:dc:21:a9:b0:fa:0a:f5:6d:9e:56:6e:60:a6: 22:00:f8:6e:82:66:a9:6f:aa:c1:f2:d1:75:0a:1a: 56:bd:2f:c9:65:82:25:70:95:b7:56:b6:99:41:0a: 53:73:cd:1e:28:b1:8f:83:1b:43:4f:e8:c6:b1:2d: 49:6f:58:e8:f0:35:ad:1b:27:8b:7c:9c:00:ff:6b: f5:3a:7f:28:85:64:8d:2a:67:d6:5c:71:3b:d8:3a: d0:31:31:64:d1:3d:d7:6b:fd:84:14:31:a8:e3:76: df:f0:e3:49:06:07:85:83:82:8d:38:69:d3:84:e7: 78:e3:2a:d3:06:6c:0e:56:bc:a5:93:65:79:87:89: 96:3f:8c:80:9b:aa:de:8a:b4:5b:2d:53:21:81:78: 68:4a:c9:33:fc:66:87:11:a0:7c:e7:fa:ef:2f:fa: 98:cb:64:ff:23:d4:97:1f:a5:ea:2c:07:58:f5:c4: 35:4b:b7:69:39:b7:44:45:79:3d:28:7d:e4:0e:a8: a0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:C3:14:CA:DC:41:70:A4:18:A5:AB:C4:94:DF:34:C7:2B:29:BD:D9 X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:1c:b8:71:aa:6c:8b:26:c0:48:de:53:93:87:da:d1:74:06: eb:6b:94:02:c1:51:4e:bb:d0:9c:26:15:17:d3:f5:9e:ac:c4: 21:34:e3:a8:69:68:5b:b8:a9:77:6a:90:04:e6:42:81:12:30: ce:84:c7:3a:a5:68:65:c6:c7:e0:45:cc:06:38:e9:fc:37:37: f5:5b:4d:f4:9b:98:88:6f:b6:06:f0:b8:bb:eb:88:db:f4:3e: ee:18:61:45:03:f8:c2:15:3e:6b:d2:3c:45:b4:43:53:6b:2e: ec:7a:84:61:81:db:f6:b6:13:28:0d:a4:b6:2b:6e:45:cf:14: 48:cd:8d:05:de:1b:b3:69:94:b5:cd:be:cf:19:f2:eb:f6:11: ff:90:42:ba:b9:f2:b9:aa:1f:19:33:59:17:61:77:2f:37:da: 59:2c:98:99:f2:47:1d:86:dd:56:71:cb:3c:f6:87:bd:13:a2: 34:f0:e1:8b:42:47:6e:af:cb:ec:d0:34:98:79:40:58:3c:70: 3c:af:19:cd:76:fc:14:1b:0c:6a:c1:f0:ec:27:41:3d:d2:0f: b3:34:0e:6e:50:25:2c:2d:f7:ee:eb:aa:fd:eb:d8:0c:46:eb: 1c:1d:bb:14:c2:25:b5:2b:19:02:2d:10:38:c5:3e:0d:48:f2: 94:b8:b1:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjUwNjE2MTU0ODQ0WhcNMjUwNjIzMTU0ODQ0WjAYMRYwFAYD VQQDEw02ODUwM2NkYy1hMjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/IJTDQWxEJI+PjCbmkM9FjHeAizMqWIvb0R+RMXLBjTmb3GWhU6yTriRoZB I6aMd2x1mfofsBA9JSdGy9whqbD6CvVtnlZuYKYiAPhugmapb6rB8tF1ChpWvS/J ZYIlcJW3VraZQQpTc80eKLGPgxtDT+jGsS1Jb1jo8DWtGyeLfJwA/2v1On8ohWSN KmfWXHE72DrQMTFk0T3Xa/2EFDGo43bf8ONJBgeFg4KNOGnThOd44yrTBmwOVryl k2V5h4mWP4yAm6reirRbLVMhgXhoSskz/GaHEaB85/rvL/qYy2T/I9SXH6XqLAdY 9cQ1S7dpObdERXk9KH3kDqigFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3DFMrc QXCkGKWrxJTfNMcrKb3ZMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdHLhxqmyLJsBI3lOTh9rRdAbra5QCwVFOu9CcJhUX0/WerMQhNOOo aWhbuKl3apAE5kKBEjDOhMc6pWhlxsfgRcwGOOn8Nzf1W030m5iIb7YG8Li764jb 9D7uGGFFA/jCFT5r0jxFtENTay7seoRhgdv2thMoDaS2K25FzxRIzY0F3huzaZS1 zb7PGfLr9hH/kEK6ufK5qh8ZM1kXYXcvN9pZLJiZ8kcdht1Wccs89oe9E6I08OGL Qkdur8vs0DSYeUBYPHA8rxnNdvwUGwxqwfDsJ0E90g+zNA5uUCUsLffu66r969gM RuscHbsUwiW1KxkCLRA4xT4NSPKUuLEp -----END CERTIFICATE-----Generated at Tue Jun 17 06:12:39 2025 by rpki-client