$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft File: rUMyA4JywtsyFd2jrfsBU1QVaRM.mft (raw, json) Hash identifier: 4Ce6NqQQBulmEXAt6it4FF6Pb8S9yzmeTaUpfHfVJCE= Subject key identifier: 95:81:F2:EC:E9:08:4F:86:BD:42:E8:BD:C8:8A:9A:F0:CF:C9:5A:DA Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 Certificate issuer: /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft Manifest number: A9 Signing time: Tue 03 Jun 2025 05:57:29 +0000 Manifest this update: Tue 03 Jun 2025 05:57:28 +0000 Manifest next update: Tue 10 Jun 2025 05:57:28 +0000 Files and hashes: 1: rUMyA4JywtsyFd2jrfsBU1QVaRM.crl (hash: iHJegXqSdEmqJR4aE9rS9uelh/0ELN/uStk1hapDJc4=) 2: F74324B0464511EFA4CCFA6DC4F9AE02.roa (hash: JKn9arrhKIKLCkrCm7PBh/6X6a8i3r2H/xvsTIl/UOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064, serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Validity Not Before: Jun 3 05:57:28 2025 GMT Not After : Jun 10 05:57:28 2025 GMT Subject: CN=683e8ec9-cc9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:69:82:26:fb:39:6c:10:e9:e3:43:f9:8b:18: 96:c1:ba:8d:1a:87:11:e5:c5:41:02:a6:ae:e3:e1: 70:65:02:59:65:97:e1:7c:2b:26:9c:26:02:c4:56: 88:a9:b8:be:9d:10:79:ec:a2:ab:08:35:7a:8d:72: e4:16:47:1b:db:32:1a:59:94:a1:5d:97:fc:69:4c: e3:31:7e:48:91:38:e5:ce:da:61:34:86:9d:bd:7c: 37:ab:fd:cd:dd:d6:d2:ef:c3:61:31:65:92:67:fc: 6b:0b:1a:0e:d6:6f:00:f3:c5:82:14:89:6b:eb:bd: fd:56:85:69:96:ee:5c:9b:97:5b:cc:4a:8a:a5:20: 6c:68:62:4a:d4:4b:05:a2:1d:e9:2c:14:1d:72:c4: 75:15:76:b1:35:c2:13:4b:57:a7:e2:91:68:54:23: 8d:01:47:ac:79:8c:c6:73:36:8d:0b:79:43:91:27: 86:d5:f0:25:b8:3a:74:fb:86:21:26:94:e2:71:a0: c3:60:bf:80:5f:ee:60:93:f3:d2:89:9a:72:b5:98: dd:4f:4e:70:17:83:ae:fb:e6:75:20:ec:8f:56:69: fc:aa:e2:31:5b:58:e1:70:38:40:54:d0:df:b9:7a: dd:6f:0e:3b:1f:dc:1a:b9:6a:b1:9e:8f:d0:e1:42: 93:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:81:F2:EC:E9:08:4F:86:BD:42:E8:BD:C8:8A:9A:F0:CF:C9:5A:DA X509v3 Authority Key Identifier: keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:7b:2b:0a:17:3c:a9:27:9b:61:11:3e:69:2d:9f:a2:48:d7: 91:92:69:b3:7e:c3:8b:34:4c:cb:e3:78:26:fe:ba:89:38:16: cc:c2:dc:1b:42:3f:e6:9a:ad:aa:02:8b:f2:34:50:db:e6:b5: c0:ad:6d:54:c4:5f:54:93:01:50:64:5f:09:ef:17:c9:22:23: 2d:46:c1:1c:a9:f2:a1:43:e2:ee:30:c0:99:37:6a:70:b6:20: 7f:b9:83:c4:b8:a7:76:9e:17:c4:57:0c:b9:14:b2:7f:48:7c: d8:d3:70:44:e4:f8:57:b3:43:06:c9:d7:32:9a:e8:ea:6a:9b: 12:4f:89:9c:1c:01:25:88:4a:4d:41:89:11:9e:62:36:e6:99: db:44:6e:b5:27:cd:5a:eb:8a:21:e6:b6:ce:c3:3e:cd:89:80: 33:e7:1d:23:4f:0b:ea:ad:6c:b2:c0:46:38:99:03:d8:a5:f5: ba:dd:75:c9:d7:c7:b3:fd:a0:d4:b3:b9:a1:66:1d:76:58:81: 94:fe:d8:82:5c:ef:64:73:f9:32:99:06:00:ee:83:3e:ea:da: c7:f2:e6:0c:81:33:9a:02:9d:be:24:c1:23:d3:62:e0:a3:10: a6:31:45:d4:3b:d0:a8:2c:4f:0d:d1:49:ff:0f:04:38:a0:9a: 69:d2:79:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEFENDMzMjAzODI3MkMyREIzMjE1RERBM0FERkIwMTUz NTQxNTY5MTMwHhcNMjUwNjAzMDU1NzI4WhcNMjUwNjEwMDU1NzI4WjAYMRYwFAYD VQQDEw02ODNlOGVjOS1jYzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WmCJvs5bBDp40P5ixiWwbqNGocR5cVBAqau4+FwZQJZZZfhfCsmnCYCxFaI qbi+nRB57KKrCDV6jXLkFkcb2zIaWZShXZf8aUzjMX5IkTjlztphNIadvXw3q/3N 3dbS78NhMWWSZ/xrCxoO1m8A88WCFIlr6739VoVplu5cm5dbzEqKpSBsaGJK1EsF oh3pLBQdcsR1FXaxNcITS1en4pFoVCONAUeseYzGczaNC3lDkSeG1fAluDp0+4Yh JpTicaDDYL+AX+5gk/PSiZpytZjdT05wF4Ou++Z1IOyPVmn8quIxW1jhcDhAVNDf uXrdbw47H9wauWqxno/Q4UKTNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWB8uzp CE+GvULovciKmvDPyVraMB8GA1UdIwQYMBaAFK1DMgOCcsLbMhXdo637AVNUFWkT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GM0NBNjE3MjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0c3lGZDJqcmZzQlUxUVZh Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjA2NC9GM0NBNjE3MjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0 c3lGZDJqcmZzQlUxUVZhUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAReysKFzypJ5thET5pLZ+iSNeRkmmzfsOLNEzL43gm/rqJOBbMwtwb Qj/mmq2qAovyNFDb5rXArW1UxF9UkwFQZF8J7xfJIiMtRsEcqfKhQ+LuMMCZN2pw tiB/uYPEuKd2nhfEVwy5FLJ/SHzY03BE5PhXs0MGydcymujqapsST4mcHAEliEpN QYkRnmI25pnbRG61J81a64oh5rbOwz7NiYAz5x0jTwvqrWyywEY4mQPYpfW63XXJ 18ez/aDUs7mhZh12WIGU/tiCXO9kc/kymQYA7oM+6trH8uYMgTOaAp2+JMEj02Lg oxCmMUXUO9CoLE8N0Un/DwQ4oJpp0nlD -----END CERTIFICATE-----Generated at Wed Jun 4 00:17:59 2025 by rpki-client