$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft File: rUMyA4JywtsyFd2jrfsBU1QVaRM.mft (raw, json) Hash identifier: /JqQEs+q4/VTJdqQYrSF+7vQsh1/xdwKLuPoTbQiJBs= Subject key identifier: E9:71:A8:E2:AB:F8:46:39:DE:5C:D3:83:97:99:E4:AC:A8:78:8C:47 Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 Certificate issuer: /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft Manifest number: C1 Signing time: Mon 21 Jul 2025 06:01:43 +0000 Manifest this update: Mon 21 Jul 2025 06:01:42 +0000 Manifest next update: Mon 28 Jul 2025 06:01:42 +0000 Files and hashes: 1: rUMyA4JywtsyFd2jrfsBU1QVaRM.crl (hash: KIJpzfl3A44+Ze68Q0hMzHl8/HR1shFXewfyl4eKWBE=) 2: F74324B0464511EFA4CCFA6DC4F9AE02.roa (hash: JKn9arrhKIKLCkrCm7PBh/6X6a8i3r2H/xvsTIl/UOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064, serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Validity Not Before: Jul 21 06:01:42 2025 GMT Not After : Jul 28 06:01:42 2025 GMT Subject: CN=687dd7c6-be04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:54:ad:33:c7:9b:e3:60:1a:53:07:5e:95:a3: 0e:65:c3:96:26:6b:a6:c9:ec:eb:53:db:27:6a:b0: 30:7c:ed:2a:a6:b0:a1:25:59:45:81:08:4a:3b:16: 88:ac:6b:67:92:da:f1:48:fc:73:38:69:dd:43:e2: 71:27:62:88:70:db:75:f3:9f:04:b7:2d:6a:7e:51: f2:98:c8:79:d3:5c:0e:93:ce:15:38:ab:be:97:41: 11:1d:5d:af:2f:d3:34:6d:7f:e3:32:d2:f8:48:15: 45:c1:43:2b:16:92:c2:59:fe:32:65:d8:ed:e1:4c: df:83:84:d2:ee:03:91:2c:8f:6c:8b:b0:19:10:31: 58:1f:c4:ff:0c:7f:3c:94:09:c6:a3:21:34:3f:e3: 95:c8:37:e8:01:12:24:0b:cb:e6:14:54:08:50:27: 11:52:c9:ab:81:58:ba:a1:15:68:a1:a0:ac:3b:41: f6:14:86:ac:e9:bc:eb:fd:3d:d3:5d:41:d8:97:8a: d7:e8:87:4a:3f:88:96:be:b6:2c:a1:17:df:6a:25: 4b:60:ab:dd:c3:cf:f6:2c:44:f1:52:06:f4:74:c9: 12:7c:53:d0:7a:f6:86:c1:14:52:a6:68:a6:ef:43: 94:cb:16:04:6e:16:d6:af:2e:92:92:f7:a0:0d:6a: 2f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:71:A8:E2:AB:F8:46:39:DE:5C:D3:83:97:99:E4:AC:A8:78:8C:47 X509v3 Authority Key Identifier: keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:4f:6f:8f:ed:21:56:a8:49:29:89:60:60:79:fb:4d:d4:d0: b3:96:02:e8:68:1c:f4:29:e4:dc:d6:b5:a8:ca:f2:f3:5d:4f: f6:fd:78:1e:9d:8f:4b:b5:c3:a2:91:0c:6f:47:b9:51:c5:58: 38:17:56:1d:13:f3:a5:70:2d:34:9e:cd:cf:b9:d0:16:28:7f: fa:ed:50:21:15:63:85:c8:93:8f:ac:5b:cd:2a:85:07:55:87: dd:15:fc:bf:f1:dd:42:2c:67:8f:03:11:c5:d3:b6:a9:68:ea: ab:10:9b:a4:b2:82:7f:6c:66:de:25:78:b7:53:b4:72:37:c1: 95:ce:52:ef:8c:48:f6:33:e0:b7:56:74:6e:3f:de:f4:66:90: 1a:f0:e1:2a:0d:24:85:ef:78:f1:0e:35:e3:da:e2:a9:2c:bc: 5d:de:60:9f:93:0c:02:ac:2f:29:a4:b0:b3:93:e8:6a:39:ea: 25:4b:5e:10:d6:ba:c7:02:21:8e:43:4b:e7:e4:ea:50:5a:9b: c1:9a:73:c9:51:70:57:d2:f3:38:8d:d1:2f:43:3a:64:d8:2e: 56:61:b2:bd:ea:c5:a9:89:23:52:9d:c1:ba:d6:06:d1:c8:80: 88:94:58:7b:c1:1c:1a:f0:39:a4:27:e5:b1:42:77:7a:48:a8: fd:7f:f0:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEFENDMzMjAzODI3MkMyREIzMjE1RERBM0FERkIwMTUz NTQxNTY5MTMwHhcNMjUwNzIxMDYwMTQyWhcNMjUwNzI4MDYwMTQyWjAYMRYwFAYD VQQDEw02ODdkZDdjNi1iZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1StM8eb42AaUwdelaMOZcOWJmumyezrU9snarAwfO0qprChJVlFgQhKOxaI rGtnktrxSPxzOGndQ+JxJ2KIcNt1858Ety1qflHymMh501wOk84VOKu+l0ERHV2v L9M0bX/jMtL4SBVFwUMrFpLCWf4yZdjt4Uzfg4TS7gORLI9si7AZEDFYH8T/DH88 lAnGoyE0P+OVyDfoARIkC8vmFFQIUCcRUsmrgVi6oRVooaCsO0H2FIas6bzr/T3T XUHYl4rX6IdKP4iWvrYsoRffaiVLYKvdw8/2LETxUgb0dMkSfFPQevaGwRRSpmim 70OUyxYEbhbWry6SkvegDWov/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlxqOKr +EY53lzTg5eZ5KyoeIxHMB8GA1UdIwQYMBaAFK1DMgOCcsLbMhXdo637AVNUFWkT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GM0NBNjE3MjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0c3lGZDJqcmZzQlUxUVZh Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjA2NC9GM0NBNjE3MjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0 c3lGZDJqcmZzQlUxUVZhUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyT2+P7SFWqEkpiWBgeftN1NCzlgLoaBz0KeTc1rWoyvLzXU/2/Xge nY9LtcOikQxvR7lRxVg4F1YdE/OlcC00ns3PudAWKH/67VAhFWOFyJOPrFvNKoUH VYfdFfy/8d1CLGePAxHF07apaOqrEJuksoJ/bGbeJXi3U7RyN8GVzlLvjEj2M+C3 VnRuP970ZpAa8OEqDSSF73jxDjXj2uKpLLxd3mCfkwwCrC8ppLCzk+hqOeolS14Q 1rrHAiGOQ0vn5OpQWpvBmnPJUXBX0vM4jdEvQzpk2C5WYbK96sWpiSNSncG61gbR yICIlFh7wRwa8DmkJ+WxQnd6SKj9f/Dm -----END CERTIFICATE-----Generated at Tue Jul 22 00:02:21 2025 by rpki-client