$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft File: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft (raw, json) Hash identifier: jwGc6elv4gCQ5VqtPnM8BmBiWHfHZ6qu31hWBTzBoQY= Subject key identifier: F4:A9:DC:69:74:0A:F5:1F:78:EA:AF:18:FC:77:D6:3E:47:91:6F:1C Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft Manifest number: 55 Signing time: Sun 29 Jun 2025 06:18:34 +0000 Manifest this update: Sun 29 Jun 2025 06:18:33 +0000 Manifest next update: Sun 06 Jul 2025 06:18:33 +0000 Files and hashes: 1: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl (hash: 4eqpWLNXXcVPQRp4VwA8VuBXBN/IGEsyqtW80TIhJYw=) 2: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (hash: e53H18n/zt4tMpCTzx/LyyJ5rGfSmD0vKN+ZK6rIQ0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: Jun 29 06:18:33 2025 GMT Not After : Jul 6 06:18:33 2025 GMT Subject: CN=6860dab9-1119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d3:81:92:3b:0b:17:6d:49:b9:7b:ae:bb:a2: db:b8:93:89:1f:6f:68:51:b3:bc:26:d8:c6:7b:54: 34:58:59:1e:4e:89:e2:16:da:17:c7:08:bd:dd:81: 10:45:78:7d:9c:8c:4a:ce:4a:68:ba:c3:17:4b:2e: 30:c1:c9:bb:0c:d8:84:4c:45:db:37:3e:cb:30:89: e7:d2:c6:c9:da:10:16:b9:95:fb:37:5d:be:7a:67: 93:db:f5:11:5c:6d:77:f6:c1:a0:d6:ab:c1:58:9c: 2d:46:f6:8d:6b:69:d0:62:c8:2d:df:20:b8:4c:08: ee:93:54:69:a6:35:dd:84:93:7d:92:c9:eb:29:a9: 9b:33:3a:18:96:3e:c8:10:e3:d9:78:9c:33:3b:27: eb:c8:b0:bb:73:d0:54:76:d3:08:cb:1c:99:f5:7d: 6a:f1:3e:26:06:f0:10:dd:e6:4b:b6:5f:71:29:c0: d4:c3:c5:b7:9f:56:ed:f6:cf:56:08:e4:e1:13:ef: 13:db:7f:13:e9:e6:36:97:66:71:c3:58:b3:af:ce: 31:9b:86:3f:b0:8a:5a:f1:38:05:61:c4:2e:d4:09: 24:b6:03:46:d5:3d:fa:a2:b1:60:d7:86:3f:76:3c: 96:31:63:84:be:dc:f3:4e:6e:01:9a:b8:1a:2f:d9: 14:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A9:DC:69:74:0A:F5:1F:78:EA:AF:18:FC:77:D6:3E:47:91:6F:1C X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:25:68:75:bf:1a:92:85:53:15:08:61:f7:68:e3:55:fa:f0: 9a:30:ac:69:d2:98:8c:90:22:0c:00:1a:30:73:83:a0:99:ae: 7b:38:23:6b:7f:3e:e4:75:61:b3:44:0a:10:47:d3:1c:b9:61: db:80:0b:f8:da:5c:8d:51:f2:fa:41:43:0e:40:77:52:8a:f7: 63:76:7a:f4:ab:45:d6:89:4a:87:ee:eb:67:d0:cc:1a:84:c2: a8:dd:f0:63:9b:a9:72:46:b9:6b:07:32:c1:53:a3:3d:ca:3c: 94:c9:da:45:4f:3a:da:e0:39:d1:50:8d:4f:c6:67:c2:a8:ce: 91:8f:8a:f9:df:c8:22:2a:7e:a0:22:d0:df:75:91:00:b5:4e: df:7a:89:02:46:b6:c5:dd:f3:35:f7:74:05:8f:da:15:9b:bc: dd:84:e6:47:99:ea:c1:c0:0f:b7:20:dc:43:c0:89:6a:71:46: 80:2c:b0:40:e1:a1:44:3d:3c:89:a5:d6:9e:c1:5e:28:21:3a: 4d:f2:13:7c:cd:1f:29:3c:48:92:0b:83:4f:e6:9f:84:e5:db: ef:b8:a4:53:b7:75:31:02:0a:64:a0:02:6d:49:55:e6:2f:07: 87:6b:b2:f5:d9:6b:c0:ba:2c:98:e9:b3:2a:cb:57:a1:dd:ee: 1c:aa:a0:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODc0OTExMC8GA1UEBRMoOTU0NTlENUQxRUIwNDA5NUZEMTYzRjBEODREMUYzQTQ2 QzE1RTRGMDAeFw0yNTA2MjkwNjE4MzNaFw0yNTA3MDYwNjE4MzNaMBgxFjAUBgNV BAMTDTY4NjBkYWI5LTExMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM04GSOwsXbUm5e667otu4k4kfb2hRs7wm2MZ7VDRYWR5OieIW2hfHCL3dgRBF eH2cjErOSmi6wxdLLjDBybsM2IRMRds3PsswiefSxsnaEBa5lfs3Xb56Z5Pb9RFc bXf2waDWq8FYnC1G9o1radBiyC3fILhMCO6TVGmmNd2Ek32SyespqZszOhiWPsgQ 49l4nDM7J+vIsLtz0FR20wjLHJn1fWrxPiYG8BDd5ku2X3EpwNTDxbefVu32z1YI 5OET7xPbfxPp5jaXZnHDWLOvzjGbhj+wilrxOAVhxC7UCSS2A0bVPfqisWDXhj92 PJYxY4S+3PNObgGauBov2RRVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9KncaXQK 9R946q8Y/HfWPkeRbxwwHwYDVR0jBBgwFoAUlUWdXR6wQJX9Fj8NhNHzpGwV5PAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NzQ5L0JBNTdEQkE2REMy MDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFVXZFhSNndRSlg5Rmo4TmhOSHpwR3dWNVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NzQ5L0JBNTdEQkE2REMyMDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpY OUZqOE5oTkh6cEd3VjVQQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH0laHW/GpKFUxUIYfdo41X68JowrGnSmIyQIgwAGjBzg6CZrns4I2t/ PuR1YbNEChBH0xy5YduAC/jaXI1R8vpBQw5Ad1KK92N2evSrRdaJSofu62fQzBqE wqjd8GObqXJGuWsHMsFToz3KPJTJ2kVPOtrgOdFQjU/GZ8KozpGPivnfyCIqfqAi 0N91kQC1Tt96iQJGtsXd8zX3dAWP2hWbvN2E5keZ6sHAD7cg3EPAiWpxRoAssEDh oUQ9PIml1p7BXighOk3yE3zNHyk8SJILg0/mn4Tl2++4pFO3dTECCmSgAm1JVeYv B4drsvXZa8C6LJjpsyrLV6Hd7hyqoOY= -----END CERTIFICATE-----Generated at Mon Jun 30 15:11:34 2025 by rpki-client