$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: VVzyVpiiL0uZEWKUMwgapr9NQetMLr/tsY8329BL4IY= Subject key identifier: 2A:53:EA:67:2B:E6:B5:8C:80:14:93:4A:18:84:43:85:44:58:2B:43 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 012F Signing time: Thu 03 Jul 2025 04:43:15 +0000 Manifest this update: Thu 03 Jul 2025 04:43:15 +0000 Manifest next update: Thu 10 Jul 2025 04:43:15 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: ZRZ0YDmKPJ4w7ptAo/j9p4oS80HSIDlcYUrLW9gPuMU=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Jul 3 04:43:15 2025 GMT Not After : Jul 10 04:43:15 2025 GMT Subject: CN=68660a63-bb2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:51:d5:f6:c9:06:4b:fa:02:7c:66:3e:49: 8a:6f:e9:2e:1d:60:d2:96:2e:3a:3b:b4:70:64:fa: 08:4a:61:d3:22:8b:15:f4:f7:57:c0:03:0a:37:b5: 40:1b:12:73:57:3e:85:77:6a:c5:8b:27:4e:9f:20: 83:98:e3:01:cf:89:21:4f:74:4f:7b:0f:4f:80:c4: f0:5a:6b:04:8c:64:bb:5d:45:b7:64:36:aa:33:82: 6c:77:4e:60:4e:b9:43:70:8d:16:07:6f:7e:b3:21: 44:bd:1a:22:87:c1:51:6f:d2:ce:be:8f:c9:a9:64: b3:f0:b8:29:f1:7e:c0:85:a5:c2:e1:91:df:e1:2c: e4:7e:69:a2:6d:32:cb:ef:14:5a:ac:5e:56:bd:1f: 03:0c:a4:15:f2:06:6d:20:d1:3d:0c:25:35:88:91: a1:98:c7:31:e2:ac:69:bd:3a:38:81:65:75:19:12: 37:6a:a7:ab:77:2d:d5:de:8d:fa:1a:87:f0:53:26: 77:19:f9:2d:d4:48:e8:87:c9:0b:59:79:46:18:5c: 8f:24:0d:25:7f:cc:2a:9c:a3:d5:0a:1f:f2:0e:45: db:f8:24:1b:52:97:96:25:31:98:98:b9:fd:84:97: 6f:5c:17:11:91:37:e8:a7:90:57:95:9c:35:a5:aa: 47:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:53:EA:67:2B:E6:B5:8C:80:14:93:4A:18:84:43:85:44:58:2B:43 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:68:5f:25:60:72:a2:f1:24:cb:4a:a9:0d:2d:c9:f1:d5:5d: ac:e4:3f:fb:3c:ff:07:c3:1d:40:40:9a:55:c9:1e:8f:14:06: 7d:b3:ed:57:a2:b1:8b:12:29:a7:42:ff:a9:8b:73:f9:06:11: 54:67:48:e0:7f:75:d0:2a:38:f7:ba:33:76:9b:7d:f8:03:b9: 5d:38:79:58:0b:cb:8f:bf:0c:60:fa:c1:ea:15:01:55:97:59: 43:d2:ad:53:3b:5d:41:e9:c4:6d:ba:03:14:d2:71:f1:73:fe: 2a:60:a9:1e:3a:1e:1f:16:01:54:17:2e:1a:cf:74:ff:b4:c6: d3:a5:b2:03:3c:11:9d:96:72:f9:98:9d:b8:d4:2e:48:3e:d1: c1:32:e7:aa:88:94:62:ca:e0:21:52:28:8a:c6:6c:77:d6:18: fa:76:10:a2:ae:bc:2f:37:c2:ea:c0:e5:3b:29:3f:aa:80:89: 34:19:5c:8b:7f:b1:29:21:d1:d4:81:d6:06:59:aa:d8:0a:06: 4f:6a:64:76:f1:2d:d9:6a:f4:ce:5c:5e:a9:7f:2c:de:a1:92: 02:96:bd:92:c0:25:2d:da:eb:ea:ef:c4:20:29:11:3c:b1:6c: 83:85:0c:37:ab:02:e1:2b:83:6f:09:28:84:0b:e1:88:c0:c1: 69:4b:1e:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwNzAzMDQ0MzE1WhcNMjUwNzEwMDQ0MzE1WjAYMRYwFAYD VQQDEw02ODY2MGE2My1iYjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7tR1fbJBkv6AnxmPkmKb+kuHWDSli46O7RwZPoISmHTIosV9PdXwAMKN7VA GxJzVz6Fd2rFiydOnyCDmOMBz4khT3RPew9PgMTwWmsEjGS7XUW3ZDaqM4Jsd05g TrlDcI0WB29+syFEvRoih8FRb9LOvo/JqWSz8Lgp8X7AhaXC4ZHf4SzkfmmibTLL 7xRarF5WvR8DDKQV8gZtINE9DCU1iJGhmMcx4qxpvTo4gWV1GRI3aqerdy3V3o36 GofwUyZ3Gfkt1Ejoh8kLWXlGGFyPJA0lf8wqnKPVCh/yDkXb+CQbUpeWJTGYmLn9 hJdvXBcRkTfop5BXlZw1papHIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpT6mcr 5rWMgBSTShiEQ4VEWCtDMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClaF8lYHKi8STLSqkNLcnx1V2s5D/7PP8Hwx1AQJpVyR6PFAZ9s+1X orGLEimnQv+pi3P5BhFUZ0jgf3XQKjj3ujN2m334A7ldOHlYC8uPvwxg+sHqFQFV l1lD0q1TO11B6cRtugMU0nHxc/4qYKkeOh4fFgFUFy4az3T/tMbTpbIDPBGdlnL5 mJ241C5IPtHBMueqiJRiyuAhUiiKxmx31hj6dhCirrwvN8LqwOU7KT+qgIk0GVyL f7EpIdHUgdYGWarYCgZPamR28S3ZavTOXF6pfyzeoZIClr2SwCUt2uvq78QgKRE8 sWyDhQw3qwLhK4NvCSiEC+GIwMFpSx7b -----END CERTIFICATE-----Generated at Thu Jul 3 17:10:51 2025 by rpki-client