$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft File: Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft (raw, json) Hash identifier: 6gdy9AdcH8VNyFKM1GZp+6SuD7rHC+1p/kjGDdlY72A= Subject key identifier: C1:64:96:7E:24:5D:EB:EF:D9:A2:59:95:96:62:0B:ED:13:C4:E8:43 Authority key identifier: 52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B Certificate issuer: /CN=A91F9C95/serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B Certificate serial: 0BBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft Manifest number: 0BB5 Signing time: Sat 14 Jun 2025 18:47:27 +0000 Manifest this update: Sat 14 Jun 2025 18:47:26 +0000 Manifest next update: Sat 21 Jun 2025 18:47:26 +0000 Files and hashes: 1: Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl (hash: 3ZlFGWeGIoYSbG+ciwkxzc+VYta7fE+IsyQwjqgrLZU=) 2: C7F8C83C217311EA93A29F82C4F9AE02.roa (hash: r5uWTU+sYs/vGgm5oMxXApeoTDyzrDhvLimJL0rhlzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:47:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3003 (0xbbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C95, serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B Validity Not Before: Jun 14 18:47:26 2025 GMT Not After : Jun 21 18:47:26 2025 GMT Subject: CN=684dc3bf-61a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:39:a2:49:60:f6:4b:89:93:79:ed:c6:23:96: cf:48:be:df:ed:62:ca:0b:ef:27:3c:f7:8a:be:73: eb:66:8a:14:bc:2d:1e:c9:d8:d4:a8:6c:69:9d:1f: 39:80:75:fd:f5:27:2a:6c:bc:03:ba:78:4d:2b:a2: d7:f7:64:16:d3:fd:4c:3a:66:2c:8c:f5:1a:5f:11: 7c:f5:44:92:21:99:b0:87:04:89:aa:e4:8e:9c:c2: 83:87:9a:85:2a:00:04:4a:78:6e:fb:ec:9b:5e:8c: 44:b7:78:9c:c2:14:cb:66:1f:ed:8f:d1:fb:23:08: 34:55:e8:93:a6:43:13:10:85:77:13:e0:b4:ae:64: 79:c4:2d:b5:f6:0e:6a:79:4c:00:03:4a:5c:ad:80: 02:86:fa:9c:66:e2:03:8c:22:31:42:e6:c4:c8:f0: 4a:fb:86:42:3f:fe:dc:5f:c7:ff:67:54:a0:37:d8: ec:9c:2d:4d:34:a9:a1:20:e4:cb:23:ff:e4:5a:2b: 04:bb:69:2a:e5:49:26:50:80:99:1e:32:79:d4:96: 89:6c:29:05:93:ed:ea:5e:bb:d7:f0:f1:cf:5b:b8: c2:42:b9:1d:56:bc:d2:76:74:c0:5a:0f:54:e1:c3: 99:aa:cd:b6:ed:4a:c5:1d:37:6f:83:bc:1d:21:8c: 71:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:64:96:7E:24:5D:EB:EF:D9:A2:59:95:96:62:0B:ED:13:C4:E8:43 X509v3 Authority Key Identifier: keyid:52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e6:63:5f:65:07:7d:29:58:c0:aa:79:0e:ed:08:2b:07:b5: 35:3c:af:23:f6:08:6d:7c:0f:6c:9a:89:3f:8c:a9:d3:ed:dc: 1a:ba:0e:27:5c:3c:2a:80:01:a5:8c:24:12:bf:24:4a:79:c8: d0:07:67:5a:94:f3:07:65:9b:5a:9e:6a:11:1d:91:9a:b4:79: 96:81:22:65:8d:74:c2:66:c7:12:dc:db:6a:cd:9a:6d:52:54: d9:44:05:57:10:79:dc:ba:53:7e:6f:68:fa:50:56:d4:8e:4a: 76:d8:24:0d:27:10:93:8d:f3:54:62:4b:b6:d0:3d:c1:af:d0: 4f:17:ca:f0:70:be:26:24:fd:1a:ad:e6:51:e8:90:72:7f:eb: 1e:1f:a7:56:cd:65:af:a3:64:11:9a:38:7f:cb:15:85:46:8c: 8d:50:3d:e1:3f:e7:b9:9c:2c:cb:7a:76:d6:82:de:8e:0a:5a: b8:7b:92:32:d6:0f:8f:3e:ec:b7:7b:a6:73:70:1a:4a:32:c0: 7b:56:9c:ad:8b:f6:93:0b:b2:f6:5d:80:12:20:4d:2c:4a:94: ef:20:a4:cd:33:df:74:e4:59:4c:5d:9e:50:e8:9f:26:d4:52: 8a:e3:90:29:87:67:97:73:99:14:da:70:59:7c:d2:16:0b:9c: a3:3f:5b:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDOTUxMTAvBgNVBAUTKDUyQkY2RjYyRUJDQTI2QjFEQzQyN0ZCRUFGRTcyMEZC QjA5N0MyMUIwHhcNMjUwNjE0MTg0NzI2WhcNMjUwNjIxMTg0NzI2WjAYMRYwFAYD VQQDEw02ODRkYzNiZi02MWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TmiSWD2S4mTee3GI5bPSL7f7WLKC+8nPPeKvnPrZooUvC0eydjUqGxpnR85 gHX99ScqbLwDunhNK6LX92QW0/1MOmYsjPUaXxF89USSIZmwhwSJquSOnMKDh5qF KgAESnhu++ybXoxEt3icwhTLZh/tj9H7Iwg0VeiTpkMTEIV3E+C0rmR5xC219g5q eUwAA0pcrYAChvqcZuIDjCIxQubEyPBK+4ZCP/7cX8f/Z1SgN9jsnC1NNKmhIOTL I//kWisEu2kq5UkmUICZHjJ51JaJbCkFk+3qXrvX8PHPW7jCQrkdVrzSdnTAWg9U 4cOZqs227UrFHTdvg7wdIYxxXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFkln4k Xevv2aJZlZZiC+0TxOhDMB8GA1UdIwQYMBaAFFK/b2Lryiax3EJ/vq/nIPuwl8Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM5NS9CQTNFQzg2RTIx NzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0pySGNRbi0tci1jZy03Q1h3 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VyOXZZdXZLSnJIY1FuLS1yLWNnLTdDWHdocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUM5NS9CQTNFQzg2RTIxNzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0py SGNRbi0tci1jZy03Q1h3aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG5mNfZQd9KVjAqnkO7QgrB7U1PK8j9ghtfA9smok/jKnT7dwaug4n XDwqgAGljCQSvyRKecjQB2dalPMHZZtanmoRHZGatHmWgSJljXTCZscS3NtqzZpt UlTZRAVXEHnculN+b2j6UFbUjkp22CQNJxCTjfNUYku20D3Br9BPF8rwcL4mJP0a reZR6JByf+seH6dWzWWvo2QRmjh/yxWFRoyNUD3hP+e5nCzLenbWgt6OClq4e5Iy 1g+PPuy3e6ZzcBpKMsB7Vpyti/aTC7L2XYASIE0sSpTvIKTNM9905FlMXZ5Q6J8m 1FKK45Aph2eXc5kU2nBZfNIWC5yjP1tX -----END CERTIFICATE-----Generated at Sun Jun 15 11:29:44 2025 by rpki-client