$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: MZ/62Z/q5DbXBt0g2sX11HCeao7ZTnoC6IqLkVNoFgI= Subject key identifier: D3:04:75:43:A3:67:D9:78:79:6D:AC:BC:9F:0C:61:F1:AE:18:BC:A5 Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 03A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 0398 Signing time: Tue 01 Jul 2025 01:26:18 +0000 Manifest this update: Tue 01 Jul 2025 01:26:18 +0000 Manifest next update: Tue 08 Jul 2025 01:26:18 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: bO5ff2IDT0IVbbKA8tV5hNbOROF2SlCEN9oemcTgZyU=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: 3ujH7nfRItY8BxT80xm2zxGd128K9q6N1aAV7Q13w4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF, serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: Jul 1 01:26:18 2025 GMT Not After : Jul 8 01:26:18 2025 GMT Subject: CN=6863393a-3d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ad:9e:c3:9c:d2:2d:88:3a:4c:bd:5d:27:73: ec:70:c5:b4:a6:0b:18:27:07:4f:32:8b:df:15:31: 4f:d7:a5:10:85:8b:03:9c:52:20:17:cf:06:a6:2f: e7:21:5b:5f:4d:db:77:5a:4c:a7:c1:14:c0:bd:e8: 15:c0:c9:df:91:21:b5:e7:1e:28:50:18:ac:2b:a6: dc:75:54:1d:db:32:ff:b8:f3:f0:c0:c9:45:97:0f: 34:5e:f4:0b:b5:15:d1:77:df:a1:43:81:31:85:90: 3c:07:9a:a9:61:90:80:f7:87:17:70:91:6c:db:8d: 61:ac:8d:60:b2:f8:9e:87:76:fa:99:af:b0:74:a2: ac:be:12:47:d5:26:aa:15:d2:08:0a:fb:ff:9c:25: c2:fa:e5:52:7f:ff:4e:b1:30:cc:52:18:c2:93:fe: e8:db:de:76:93:1a:bc:52:ec:12:39:71:41:ae:03: d4:47:da:c9:af:b5:83:23:81:9f:c4:26:c5:2b:13: 30:53:64:7d:68:9e:b1:80:1f:43:65:5d:23:76:f2: 16:6d:58:68:d4:99:3f:00:b4:cb:f6:c9:3b:6e:66: e8:46:b4:82:95:11:08:11:fd:63:52:fa:e1:ef:6b: 25:19:ff:05:32:b7:5e:99:db:88:da:ea:56:13:42: 08:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:04:75:43:A3:67:D9:78:79:6D:AC:BC:9F:0C:61:F1:AE:18:BC:A5 X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:eb:24:f9:b6:f4:3a:7c:6d:cd:d4:d7:16:89:0d:3b:92:ea: 63:9a:8a:e4:13:d1:7b:d2:a2:f1:a6:69:0a:26:47:d3:3d:53: 6e:7a:93:ed:38:39:98:f6:e7:4b:f7:88:21:2c:02:76:0b:29: 18:80:49:11:3f:82:c5:0a:b7:14:ea:98:bb:54:56:7b:13:2a: 60:8f:d1:b1:74:65:d4:7a:79:f6:f0:eb:8f:65:91:57:e6:75: 96:11:c7:ed:58:ec:b9:3e:7a:a8:ae:13:87:9b:97:da:c5:aa: 4c:36:d1:cf:2b:37:9f:b3:80:95:d6:72:82:6e:8e:60:62:b5: 97:a3:83:19:ba:ca:3c:df:94:f3:4a:df:c0:94:bd:cb:ca:e7: e9:97:65:ec:9b:cf:52:94:26:ef:e5:37:fe:f1:ea:4f:b3:ae: 4e:fc:68:16:5f:09:6e:ab:d5:f2:78:f2:1c:31:09:af:57:3c: 04:b4:40:39:22:23:fa:c2:2e:a5:45:f3:19:58:39:6c:41:a0: 83:0d:29:cd:96:0b:40:5b:3b:18:47:96:57:89:63:af:30:4a: a6:96:9d:dd:7e:d4:02:30:64:20:75:91:f9:f0:d6:02:ae:21: ad:09:e2:92:29:8d:df:ec:a4:e4:b1:b9:ef:3b:8e:4d:ad:40: 81:b1:2f:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjUwNzAxMDEyNjE4WhcNMjUwNzA4MDEyNjE4WjAYMRYwFAYD VQQDEw02ODYzMzkzYS0zZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsa2ew5zSLYg6TL1dJ3PscMW0pgsYJwdPMovfFTFP16UQhYsDnFIgF88Gpi/n IVtfTdt3WkynwRTAvegVwMnfkSG15x4oUBisK6bcdVQd2zL/uPPwwMlFlw80XvQL tRXRd9+hQ4ExhZA8B5qpYZCA94cXcJFs241hrI1gsvieh3b6ma+wdKKsvhJH1Saq FdIICvv/nCXC+uVSf/9OsTDMUhjCk/7o2952kxq8UuwSOXFBrgPUR9rJr7WDI4Gf xCbFKxMwU2R9aJ6xgB9DZV0jdvIWbVho1Jk/ALTL9sk7bmboRrSClREIEf1jUvrh 72slGf8FMrdemduI2upWE0IIcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMEdUOj Z9l4eW2svJ8MYfGuGLylMB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJ6yT5tvQ6fG3N1NcWiQ07kupjmorkE9F70qLxpmkKJkfTPVNuepPt ODmY9udL94ghLAJ2CykYgEkRP4LFCrcU6pi7VFZ7Eypgj9GxdGXUenn28OuPZZFX 5nWWEcftWOy5PnqorhOHm5faxapMNtHPKzefs4CV1nKCbo5gYrWXo4MZuso835Tz St/AlL3Lyufpl2Xsm89SlCbv5Tf+8epPs65O/GgWXwluq9XyePIcMQmvVzwEtEA5 IiP6wi6lRfMZWDlsQaCDDSnNlgtAWzsYR5ZXiWOvMEqmlp3dftQCMGQgdZH58NYC riGtCeKSKY3f7KTksbnvO45NrUCBsS+A -----END CERTIFICATE-----Generated at Wed Jul 2 16:32:55 2025 by rpki-client