$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: j5H9BlJRjtNzqO1aF4Je46spWU5E7EK134l7wjR+RlA= Subject key identifier: BD:AE:C0:91:11:98:68:62:B5:7E:E6:18:AC:A8:00:8C:4A:FF:89:8F Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 0FE3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 0FDC Signing time: Mon 02 Jun 2025 15:52:54 +0000 Manifest this update: Mon 02 Jun 2025 15:52:54 +0000 Manifest next update: Mon 09 Jun 2025 15:52:54 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: cJ3q1iBPf082ZRkTAMaBdw5ftAbExojQ0zVSd8mO/CQ=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: OwotHwrsvHfL9c2xwdii3HVlS9hQiSq8fqoBsWtp67U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4067 (0xfe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: Jun 2 15:52:54 2025 GMT Not After : Jun 9 15:52:54 2025 GMT Subject: CN=683dc8d6-20a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5e:c9:42:f6:40:a8:9f:d9:46:19:32:1e:f9: 9d:4f:74:93:9e:a8:f5:5c:2a:14:9e:0b:89:5c:30: b4:55:7d:ff:15:f7:fc:c6:48:85:df:18:6f:e9:41: 37:b8:90:fb:07:08:a6:64:8f:97:84:95:87:47:35: 78:c1:1b:ca:53:fd:67:ac:91:3e:30:82:aa:1b:9e: bc:b0:f5:9f:c8:d0:60:ee:28:10:cc:28:2c:ac:1f: fa:66:76:d4:5b:2d:8e:78:38:4b:7a:0b:bd:a5:80: be:7c:d6:16:61:33:2a:0c:c2:bf:10:ea:5c:14:24: 4d:4a:84:9e:38:b6:3e:ed:1c:32:82:4b:30:8d:a3: 4a:88:99:c3:85:cb:8a:d7:44:91:3a:fe:96:a6:e8: 63:04:41:06:8c:55:4f:95:14:e9:87:8a:1a:e7:2c: f3:c7:61:cf:f6:84:9b:13:96:e0:8a:47:b3:d5:c9: f9:4e:ac:39:dd:43:95:88:3d:59:72:c9:d3:91:34: cf:e0:05:67:cc:94:c8:c7:8d:b9:53:8e:13:27:60: 29:8d:bb:43:80:ee:97:42:04:1b:66:49:d7:3a:1b: d1:0d:74:0c:cd:82:ff:0f:dd:29:df:ef:cc:43:05: 0c:34:a0:b7:9e:c9:3d:de:e5:3e:d8:b9:60:5a:83: 7d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AE:C0:91:11:98:68:62:B5:7E:E6:18:AC:A8:00:8C:4A:FF:89:8F X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:61:da:3b:fa:55:62:aa:bb:81:b4:1b:c4:64:7a:ee:3f:ff: dc:bc:aa:a8:e5:8a:09:97:a3:60:02:a3:e3:99:d5:f2:dd:38: 43:3e:e3:a8:1a:bf:f1:f7:74:26:1e:c5:eb:f5:42:37:92:73: 22:07:24:e8:c2:d2:16:8b:28:cf:91:20:4a:8f:78:cb:9a:60: 8d:af:20:fc:40:9e:eb:fe:63:e0:66:41:60:c0:a1:dd:35:7f: da:36:70:53:d0:9e:a3:7d:99:aa:18:07:a0:4e:a2:c1:ad:90: bb:55:21:b4:3d:ea:66:ae:3b:f3:ca:cf:c1:17:6a:f2:11:96: 52:5c:09:e3:af:9f:3c:85:12:d3:d0:f1:aa:6e:ce:b9:ff:17: 43:eb:ea:33:63:cd:ff:98:75:43:b4:40:0d:03:4e:61:10:98: 14:cd:66:8c:f8:93:7b:f0:fa:0a:2c:23:7a:32:f8:a9:95:30: df:31:1b:90:72:5e:e1:a2:ee:6d:e4:71:40:70:31:d6:10:de: 48:d6:49:38:bd:20:3d:46:b4:ac:61:fc:cf:2b:ac:30:ac:59: 96:bd:ff:a9:83:13:d4:49:eb:98:02:94:93:bf:1a:5a:5e:f3: be:47:71:3c:ba:6c:7d:12:9b:81:b8:ed:e8:4b:1b:a6:bb:1e: fd:28:b7:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjUwNjAyMTU1MjU0WhcNMjUwNjA5MTU1MjU0WjAYMRYwFAYD VQQDEw02ODNkYzhkNi0yMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA217JQvZAqJ/ZRhkyHvmdT3STnqj1XCoUnguJXDC0VX3/Fff8xkiF3xhv6UE3 uJD7BwimZI+XhJWHRzV4wRvKU/1nrJE+MIKqG568sPWfyNBg7igQzCgsrB/6ZnbU Wy2OeDhLegu9pYC+fNYWYTMqDMK/EOpcFCRNSoSeOLY+7RwygkswjaNKiJnDhcuK 10SROv6WpuhjBEEGjFVPlRTph4oa5yzzx2HP9oSbE5bgikez1cn5Tqw53UOViD1Z csnTkTTP4AVnzJTIx425U44TJ2ApjbtDgO6XQgQbZknXOhvRDXQMzYL/D90p3+/M QwUMNKC3nsk93uU+2LlgWoN9QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL2uwJER mGhitX7mGKyoAIxK/4mPMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDYdo7+lViqruBtBvEZHruP//cvKqo5YoJl6NgAqPjmdXy3ThDPuOo Gr/x93QmHsXr9UI3knMiByTowtIWiyjPkSBKj3jLmmCNryD8QJ7r/mPgZkFgwKHd NX/aNnBT0J6jfZmqGAegTqLBrZC7VSG0Pepmrjvzys/BF2ryEZZSXAnjr588hRLT 0PGqbs65/xdD6+ozY83/mHVDtEANA05hEJgUzWaM+JN78PoKLCN6MviplTDfMRuQ cl7hou5t5HFAcDHWEN5I1kk4vSA9RrSsYfzPK6wwrFmWvf+pgxPUSeuYApSTvxpa XvO+R3E8umx9EpuBuO3oSxumux79KLeO -----END CERTIFICATE-----Generated at Tue Jun 3 23:45:19 2025 by rpki-client