$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: Gz6hd63yAmp2QEohcqgs1txHyRPW2Qnu6FGjgdzEq2w= Subject key identifier: 5E:94:65:24:14:67:D6:26:34:72:8A:DF:29:34:96:87:D0:EE:CA:AF Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: 015D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: 015A Signing time: Mon 21 Jul 2025 04:08:14 +0000 Manifest this update: Mon 21 Jul 2025 04:08:13 +0000 Manifest next update: Mon 28 Jul 2025 04:08:13 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: fLF2JNVRVI7sUrXbJxDCUOyIn6zxZx8cJU7m7p+jiNQ=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: 33db+G2HmqK4GM+/q2Pot6yftpHMysN5n0HwgMWkack=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C, serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Validity Not Before: Jul 21 04:08:13 2025 GMT Not After : Jul 28 04:08:13 2025 GMT Subject: CN=687dbd2d-91a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:03:73:62:a0:f0:5d:46:f5:0e:54:34:3b:dd: ef:ec:40:10:52:60:e6:3c:1e:59:91:8a:88:ec:14: 71:a8:79:44:6d:60:b4:40:a8:8b:11:99:99:27:f6: dc:c7:b3:c5:9b:3b:99:77:6c:61:a1:2e:d9:e4:b5: a9:15:a0:de:85:ec:04:76:6a:62:5a:0a:02:a2:f4: 89:b1:2f:1c:b5:94:81:e1:1b:dd:8c:13:d0:2b:3c: a0:1b:82:64:e3:49:c2:cb:55:20:ca:27:7f:4c:f4: b4:9f:a4:60:1c:4b:8f:58:59:b5:74:97:25:7b:a6: 0d:e5:df:88:81:cf:c1:63:4f:f3:de:ae:3c:c6:1d: 43:29:9d:d7:56:ba:d3:26:64:d1:92:37:7b:cf:e0: f5:07:11:bf:46:76:1e:80:d7:be:8d:15:db:bc:23: 9d:09:46:59:2b:0c:8a:db:8e:da:a8:a8:16:d2:48: 7d:fb:44:5b:0a:30:91:f1:31:69:be:0c:02:0b:e3: 3a:36:56:61:36:75:6c:9e:4b:a5:67:72:68:e1:35: 27:78:68:b4:1b:77:c2:63:a0:56:2b:f9:75:c8:44: 45:80:e2:77:8e:6d:37:e2:de:51:f6:1b:f8:97:e8: bd:00:2b:78:d8:62:18:48:75:a7:1b:5c:b4:24:ae: db:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:94:65:24:14:67:D6:26:34:72:8A:DF:29:34:96:87:D0:EE:CA:AF X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:7c:a2:76:33:94:da:bc:cb:cb:c9:af:09:0a:2c:8a:41:b0: 8b:69:89:4e:4c:e8:76:d2:14:32:2c:61:b3:98:1c:86:ff:8d: af:9e:e1:bb:a7:66:e2:7b:5a:53:60:03:b7:69:2f:33:9f:bc: 02:61:78:9f:f1:8c:04:e8:f1:0d:f2:8d:a1:7a:74:44:ae:56: 78:91:7f:4d:59:5d:76:41:ee:7b:9c:99:29:1f:32:07:da:c1: 5e:05:10:13:eb:9e:4f:58:d6:7f:c8:46:c7:6c:71:0e:42:c1: 83:2b:6c:0c:8d:1b:f8:1a:e7:85:7f:ce:4a:00:63:a5:67:cd: b8:c1:70:0e:4d:2f:b2:c6:a9:9d:fe:5b:8d:98:35:62:a1:93: 5e:88:b8:09:cf:4e:8f:bd:1d:96:fe:c9:31:7f:79:53:91:73: bb:b4:4e:69:76:b2:a5:ef:e5:7a:25:32:95:0c:0b:8a:bd:2d: aa:c1:0b:98:6f:21:17:d9:f6:1b:46:5d:2a:e9:fc:f5:5e:0e: ae:fb:fd:c7:0f:89:d1:49:65:58:30:a3:49:aa:82:0b:bf:1c: 7a:c1:ff:1e:16:c5:9f:0c:02:fb:ba:ec:36:8b:56:fc:01:09: e5:8d:34:d6:76:c4:20:65:af:44:9c:96:54:9b:30:f8:aa:2b: a9:06:08:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjUwNzIxMDQwODEzWhcNMjUwNzI4MDQwODEzWjAYMRYwFAYD VQQDEw02ODdkYmQyZC05MWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwNzYqDwXUb1DlQ0O93v7EAQUmDmPB5ZkYqI7BRxqHlEbWC0QKiLEZmZJ/bc x7PFmzuZd2xhoS7Z5LWpFaDehewEdmpiWgoCovSJsS8ctZSB4RvdjBPQKzygG4Jk 40nCy1Ugyid/TPS0n6RgHEuPWFm1dJcle6YN5d+Igc/BY0/z3q48xh1DKZ3XVrrT JmTRkjd7z+D1BxG/RnYegNe+jRXbvCOdCUZZKwyK247aqKgW0kh9+0RbCjCR8TFp vgwCC+M6NlZhNnVsnkulZ3Jo4TUneGi0G3fCY6BWK/l1yERFgOJ3jm034t5R9hv4 l+i9ACt42GIYSHWnG1y0JK7bqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6UZSQU Z9YmNHKK3yk0lofQ7sqvMB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBafKJ2M5TavMvLya8JCiyKQbCLaYlOTOh20hQyLGGzmByG/42vnuG7 p2bie1pTYAO3aS8zn7wCYXif8YwE6PEN8o2henRErlZ4kX9NWV12Qe57nJkpHzIH 2sFeBRAT655PWNZ/yEbHbHEOQsGDK2wMjRv4GueFf85KAGOlZ824wXAOTS+yxqmd /luNmDVioZNeiLgJz06PvR2W/skxf3lTkXO7tE5pdrKl7+V6JTKVDAuKvS2qwQuY byEX2fYbRl0q6fz1Xg6u+/3HD4nRSWVYMKNJqoILvxx6wf8eFsWfDAL7uuw2i1b8 AQnljTTWdsQgZa9EnJZUmzD4qiupBgiZ -----END CERTIFICATE-----Generated at Mon Jul 21 08:05:58 2025 by rpki-client