$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: f3lwVvkVZcG37tx2zqRmvDiNZVkHRbD82qiCNQcID8s= Subject key identifier: AA:AA:19:3D:C8:24:00:45:2E:51:3A:6F:38:1A:C3:B9:16:50:FE:AB Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 036E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 036A Signing time: Thu 05 Jun 2025 00:47:28 +0000 Manifest this update: Thu 05 Jun 2025 00:47:28 +0000 Manifest next update: Thu 12 Jun 2025 00:47:28 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: nrl2FEo5fhsF3IRj8uGJ5eDhJRheSx/+JnbrSOqBwFY=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fCg3LsUh16wFnDfXkxVhThF2ZOUkgckgr+TaTcI9RIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 00:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 878 (0x36e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Jun 5 00:47:28 2025 GMT Not After : Jun 12 00:47:28 2025 GMT Subject: CN=6840e920-a8aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9f:6a:0c:d8:6e:28:a2:36:1a:08:8b:ce:9d: 24:c7:e1:a7:ab:35:31:7e:f8:3a:ee:54:79:d3:85: db:3b:a6:90:e4:fa:56:9d:b4:3a:eb:f7:3a:bb:3d: 27:1a:8a:16:28:ef:d5:de:ad:ee:bb:ba:f5:48:6d: 9c:8b:a4:0d:8e:8a:7e:75:f6:0c:1d:62:5d:08:2f: e7:1b:fd:ac:7e:2b:2e:e3:eb:04:9a:4c:06:1c:b5: f7:a2:41:50:2a:cc:47:7a:c3:48:e1:d9:f6:18:52: 66:bc:cf:7f:ae:2b:37:10:9c:8b:51:d4:b7:24:51: 26:66:c1:82:b0:3d:90:42:86:9d:fa:f4:f8:be:68: 9f:58:5b:58:fe:4e:36:6d:9a:29:70:6f:c8:35:33: 7e:50:e7:f1:cf:37:56:ba:3e:60:dc:94:e0:ea:10: 72:68:14:a9:e8:b6:53:04:c3:fd:ed:d6:bf:7b:75: cf:98:84:2a:b8:6c:78:51:b1:48:bd:e4:52:40:bb: 5b:9c:33:1a:38:b3:41:22:ef:98:7b:83:9e:c1:02: 30:ab:f6:b1:cc:56:74:e3:48:9d:65:db:9c:49:dc: 43:d6:cd:18:8d:4e:38:35:4f:b3:f4:f4:62:eb:e9: 19:4a:3b:02:bb:68:61:c2:16:71:7c:d2:45:1a:03: 6c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:AA:19:3D:C8:24:00:45:2E:51:3A:6F:38:1A:C3:B9:16:50:FE:AB X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:12:d4:35:bb:f0:10:ea:d1:e6:50:67:44:b9:c8:fc:37:ee: d1:49:6a:2d:00:06:9d:78:aa:bb:9e:5c:96:ad:1f:cf:09:6f: 4d:2c:e7:d7:85:39:7c:ad:96:b7:9e:a8:b8:ad:39:23:34:d3: 3d:f1:f4:8f:5e:e9:d9:45:cb:79:64:1f:45:79:12:a6:c7:18: 6d:39:16:2d:21:db:ce:e7:8b:e7:db:44:5c:bc:aa:a1:87:25: 33:63:f6:ee:72:97:61:d5:30:92:b8:31:2d:14:4c:0e:28:3b: 3d:28:3a:b3:2b:fd:1e:5c:a2:74:a6:4c:24:cf:66:74:b6:d4: b2:e8:d8:96:da:76:ef:be:4c:05:8f:dd:cd:a6:35:f7:36:30: 5e:61:c0:a3:e9:47:ee:e9:66:5c:1e:08:42:14:9d:4c:79:70: 67:14:4a:c6:93:83:bd:45:f1:31:82:37:cf:70:14:5e:c2:9f: 28:e2:c2:1c:16:89:70:9c:a0:b4:6c:6e:78:64:71:96:c4:81: 9b:d9:10:22:d9:50:ad:e3:78:72:10:70:8e:2b:3e:d5:22:ab: 3e:a7:24:e5:89:8f:ef:b2:09:3b:03:f0:22:34:b3:5a:53:f6: 24:4d:a7:b7:fc:74:5c:48:bc:69:ff:93:37:ac:11:97:ea:16: 51:d8:26:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjUwNjA1MDA0NzI4WhcNMjUwNjEyMDA0NzI4WjAYMRYwFAYD VQQDEw02ODQwZTkyMC1hOGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4J9qDNhuKKI2GgiLzp0kx+GnqzUxfvg67lR504XbO6aQ5PpWnbQ66/c6uz0n GooWKO/V3q3uu7r1SG2ci6QNjop+dfYMHWJdCC/nG/2sfisu4+sEmkwGHLX3okFQ KsxHesNI4dn2GFJmvM9/ris3EJyLUdS3JFEmZsGCsD2QQoad+vT4vmifWFtY/k42 bZopcG/INTN+UOfxzzdWuj5g3JTg6hByaBSp6LZTBMP97da/e3XPmIQquGx4UbFI veRSQLtbnDMaOLNBIu+Ye4OewQIwq/axzFZ040idZducSdxD1s0YjU44NU+z9PRi 6+kZSjsCu2hhwhZxfNJFGgNsYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqqGT3I JABFLlE6bzgaw7kWUP6rMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEEtQ1u/AQ6tHmUGdEucj8N+7RSWotAAadeKq7nlyWrR/PCW9NLOfX hTl8rZa3nqi4rTkjNNM98fSPXunZRct5ZB9FeRKmxxhtORYtIdvO54vn20RcvKqh hyUzY/bucpdh1TCSuDEtFEwOKDs9KDqzK/0eXKJ0pkwkz2Z0ttSy6NiW2nbvvkwF j93NpjX3NjBeYcCj6Ufu6WZcHghCFJ1MeXBnFErGk4O9RfExgjfPcBRewp8o4sIc FolwnKC0bG54ZHGWxIGb2RAi2VCt43hyEHCOKz7VIqs+pyTliY/vsgk7A/AiNLNa U/YkTae3/HRcSLxp/5M3rBGX6hZR2CY5 -----END CERTIFICATE-----Generated at Thu Jun 5 20:01:08 2025 by rpki-client