$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: 8Eio8nyfhITYT7J34Blx/VmznZRy2hT8qNkv5VWqgRk= Subject key identifier: 22:D0:4D:A9:0A:CC:93:BA:7D:CB:C8:BA:57:63:91:0B:38:46:5C:22 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: A6 Signing time: Sat 31 May 2025 05:46:53 +0000 Manifest this update: Sat 31 May 2025 05:46:53 +0000 Manifest next update: Sat 07 Jun 2025 05:46:53 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: Nv8Bo4Nbne+Pm30kCkjObg6FIWIV7SQTffEe9zFELRE=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: Ge+55CQegGWCZISlkeWVyEDQbw8xhE1lFYLjXYnwl5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: May 31 05:46:53 2025 GMT Not After : Jun 7 05:46:53 2025 GMT Subject: CN=683a97cd-d87b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d2:76:13:e2:79:88:a1:c1:ec:38:d4:04:44: 4c:27:ab:61:d1:36:27:13:81:ac:d7:85:9b:cb:fa: 5b:93:94:e1:42:ac:e3:8d:84:0b:e0:ca:83:ec:86: 79:6e:a1:56:16:05:d7:42:52:08:4a:06:98:61:4d: ac:91:fa:99:e8:58:7a:ec:f9:ea:88:f1:8e:9c:3c: 4f:c1:9c:8a:d9:28:22:42:da:cc:06:f8:87:df:46: 14:38:f3:fb:62:d8:0a:a8:90:61:2b:12:2d:9c:f7: a1:dc:91:4a:19:2d:ab:10:f8:61:3b:99:92:07:30: f6:65:3f:b5:22:03:64:3d:a0:14:0a:fc:1d:03:29: 1d:bc:41:85:84:4c:86:c7:17:55:8d:af:60:b8:7d: 96:d8:14:4c:a2:35:94:21:b2:65:d6:38:34:18:ba: 94:6e:ef:f7:74:ab:dc:ab:33:19:b7:7e:4e:f5:8d: d4:65:7d:4d:a8:6a:50:da:43:ca:2e:b6:52:ba:dd: b9:b3:2c:07:2b:73:40:a0:a4:ba:28:57:e5:48:84: e6:19:a3:3f:89:f9:f1:ea:2a:b1:c2:a4:3a:6d:42: a5:f0:9a:44:a1:13:ac:b3:3b:1f:6d:2a:94:da:20: 6c:25:bf:85:ca:ea:09:f7:f8:6d:2e:9b:2c:fe:af: fb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D0:4D:A9:0A:CC:93:BA:7D:CB:C8:BA:57:63:91:0B:38:46:5C:22 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:19:a7:c7:54:6a:20:ea:a7:67:36:81:86:08:d9:26:2d:d0: 77:32:ba:1d:ff:ad:65:cf:66:60:c0:a7:54:50:19:12:47:35: e0:b2:1e:c6:af:3d:36:df:6b:ad:ea:77:36:73:54:ac:fc:a7: f1:2f:0d:c5:6a:59:72:e9:4f:6c:e8:27:fd:93:b0:92:01:fe: 6c:1f:6c:b5:58:4c:f2:67:0b:30:a7:18:08:3d:b6:47:25:eb: 5f:23:bf:f0:8b:e1:0a:34:86:b9:c2:f0:62:d9:bb:c5:b2:e5: f4:a2:96:d8:d7:ae:1a:94:4e:37:10:0f:05:f9:a8:0c:d9:8e: 2a:fd:cf:10:68:c6:74:f1:54:ff:8e:c3:31:64:8d:94:40:3b: a3:5a:c6:1d:88:b8:44:ed:eb:ac:14:24:51:c3:b3:cd:2e:9d: f9:2a:c0:16:4c:ca:7e:e3:c6:fe:9f:fc:60:29:57:7a:30:de: 9f:15:e6:c7:6a:31:68:ab:a2:63:dd:d2:52:23:86:32:84:83: 1b:67:30:99:ed:83:f7:48:4a:a8:d3:b6:d9:f6:0a:2f:e5:8a: e2:59:43:27:93:0d:51:50:0e:06:db:27:6a:7b:17:46:fd:17: 59:e0:3e:49:c4:39:da:73:55:3c:f1:0d:fb:a6:4a:bb:7e:92: 07:8a:74:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB RTI3MTExRjAwHhcNMjUwNTMxMDU0NjUzWhcNMjUwNjA3MDU0NjUzWjAYMRYwFAYD VQQDEw02ODNhOTdjZC1kODdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9J2E+J5iKHB7DjUBERMJ6th0TYnE4Gs14Wby/pbk5ThQqzjjYQL4MqD7IZ5 bqFWFgXXQlIISgaYYU2skfqZ6Fh67PnqiPGOnDxPwZyK2SgiQtrMBviH30YUOPP7 YtgKqJBhKxItnPeh3JFKGS2rEPhhO5mSBzD2ZT+1IgNkPaAUCvwdAykdvEGFhEyG xxdVja9guH2W2BRMojWUIbJl1jg0GLqUbu/3dKvcqzMZt35O9Y3UZX1NqGpQ2kPK LrZSut25sywHK3NAoKS6KFflSITmGaM/ifnx6iqxwqQ6bUKl8JpEoROsszsfbSqU 2iBsJb+FyuoJ9/htLpss/q/7kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLQTakK zJO6fcvIuldjkQs4RlwiMB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1 QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF ZlRJRVZGSVllM1N1SnhFZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXGafHVGog6qdnNoGGCNkmLdB3Mrod/61lz2ZgwKdUUBkSRzXgsh7G rz0232ut6nc2c1Ss/KfxLw3Fally6U9s6Cf9k7CSAf5sH2y1WEzyZwswpxgIPbZH JetfI7/wi+EKNIa5wvBi2bvFsuX0opbY164alE43EA8F+agM2Y4q/c8QaMZ08VT/ jsMxZI2UQDujWsYdiLhE7eusFCRRw7PNLp35KsAWTMp+48b+n/xgKVd6MN6fFebH ajFoq6Jj3dJSI4YyhIMbZzCZ7YP3SEqo07bZ9gov5YriWUMnkw1RUA4G2ydqexdG /RdZ4D5JxDnac1U88Q37pkq7fpIHinQU -----END CERTIFICATE-----Generated at Sat May 31 16:47:45 2025 by rpki-client