$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft File: U2uRsXtuG7FjjINYoPpepdDr77c.mft (raw, json) Hash identifier: iSHFsOmuo2LC6OXJNYP4p3IAXFfKxkv7rvWqe1pDwKE= Subject key identifier: B0:ED:DE:F3:DA:F4:87:42:16:E5:47:31:FE:A7:4C:90:36:EC:D0:4F Authority key identifier: 53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 Certificate issuer: /CN=A9125C3D/serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft Manifest number: 018F Signing time: Thu 03 Jul 2025 01:11:54 +0000 Manifest this update: Thu 03 Jul 2025 01:11:53 +0000 Manifest next update: Thu 10 Jul 2025 01:11:53 +0000 Files and hashes: 1: U2uRsXtuG7FjjINYoPpepdDr77c.crl (hash: 6l/WWvYusvEpr6lzYFmpD8PVGJ1B6Drf3QvMXGcTx0Q=) 2: 234074FA00DD11EE95AF6F7CC4F9AE02.roa (hash: QkSv3Gc4gFnkTdv0FIFvYm4Nr0fb1nmO7PWxNtFWscE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C3D, serialNumber=536B91B17B6E1BB1638C8358A0FA5EA5D0EBEFB7 Validity Not Before: Jul 3 01:11:53 2025 GMT Not After : Jul 10 01:11:53 2025 GMT Subject: CN=6865d8da-9069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4e:c6:42:00:7f:e4:a1:56:f1:95:67:d0:16: b7:81:b4:09:0c:19:27:4d:22:5b:ea:76:e1:19:04: 33:f3:d5:0b:36:e1:de:14:db:d6:88:65:74:57:4e: 2c:d1:98:30:97:4b:d2:a8:ef:37:84:36:60:b7:50: 20:f4:2e:3a:b9:b4:fe:74:77:d9:b4:a8:7f:a1:d0: 76:80:be:14:9f:b5:f0:fb:bb:3a:38:90:a4:22:c5: 10:07:0c:57:5f:1c:8c:87:c9:13:50:d5:62:b9:7d: a4:48:62:74:6b:48:39:8b:03:a9:7e:25:a4:43:80: bc:5e:1f:54:0d:48:34:c7:01:a7:f6:43:87:fb:42: 54:9f:6e:b9:b3:4c:51:57:69:03:9e:71:d3:99:1f: 07:cf:88:9e:2c:66:13:ab:fb:b6:7f:57:54:17:5a: a4:93:a8:c0:e8:ae:6f:f4:3a:9d:47:b4:ca:1d:ea: 78:4d:e2:c8:b5:6b:56:76:7f:ad:19:7c:4e:59:a6: 7a:b5:95:63:d2:93:8e:bc:fb:b1:f0:8a:3a:f7:f6: 1c:c9:be:0c:0a:be:a9:16:e9:45:84:70:b2:ad:4f: d5:88:0f:02:ba:1f:28:d5:c9:fb:92:99:b7:6b:ad: 64:9c:37:fd:35:b7:b5:f8:12:fe:e4:8b:c8:36:57: 49:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:ED:DE:F3:DA:F4:87:42:16:E5:47:31:FE:A7:4C:90:36:EC:D0:4F X509v3 Authority Key Identifier: keyid:53:6B:91:B1:7B:6E:1B:B1:63:8C:83:58:A0:FA:5E:A5:D0:EB:EF:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/U2uRsXtuG7FjjINYoPpepdDr77c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C3D/2323FD8000D711EE93CB0F7EC4F9AE02/U2uRsXtuG7FjjINYoPpepdDr77c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:3e:60:36:82:02:47:8f:80:92:b9:ab:d8:e7:5d:e7:c7:17: 22:e2:0b:fc:55:7d:f6:58:ad:2c:12:d2:00:57:31:b2:52:31: b0:d5:a2:02:18:7b:2d:be:43:2a:dd:35:f6:f0:83:9d:13:14: 5c:54:a3:09:4d:90:27:ed:b4:2f:e3:1f:ee:78:e8:cd:3b:70: 0f:13:15:e9:74:d7:3c:c3:fd:fc:2e:04:21:25:e6:54:34:cd: fc:9e:65:1c:54:6f:27:f4:1a:5b:57:5c:f4:41:1d:83:04:63: 71:6f:ec:fd:2d:97:10:91:39:ff:80:3e:96:3d:47:26:f1:f7: c6:18:5c:31:21:2c:5b:72:d9:bc:fd:83:5b:bc:e5:19:32:df: e8:75:86:c4:21:ed:8f:74:87:96:62:02:27:c0:be:b7:1c:37: 28:5d:f7:61:2c:22:08:bb:19:a8:22:72:cc:cf:31:76:7b:ff: ba:3e:2e:68:5a:ed:bb:0f:64:b1:39:c1:ba:0f:88:ed:47:91: ec:40:69:3a:25:02:e9:ea:e4:01:0a:f7:a3:dd:59:26:64:21: 56:66:2b:37:91:63:a0:f5:74:b9:6a:92:e1:73:f8:5a:29:56: 19:e3:aa:62:8c:96:76:ca:b1:57:9c:7b:c5:1d:bd:20:b9:dc: 83:37:75:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDM0QxMTAvBgNVBAUTKDUzNkI5MUIxN0I2RTFCQjE2MzhDODM1OEEwRkE1RUE1 RDBFQkVGQjcwHhcNMjUwNzAzMDExMTUzWhcNMjUwNzEwMDExMTUzWjAYMRYwFAYD VQQDEw02ODY1ZDhkYS05MDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqk7GQgB/5KFW8ZVn0Ba3gbQJDBknTSJb6nbhGQQz89ULNuHeFNvWiGV0V04s 0Zgwl0vSqO83hDZgt1Ag9C46ubT+dHfZtKh/odB2gL4Un7Xw+7s6OJCkIsUQBwxX XxyMh8kTUNViuX2kSGJ0a0g5iwOpfiWkQ4C8Xh9UDUg0xwGn9kOH+0JUn265s0xR V2kDnnHTmR8Hz4ieLGYTq/u2f1dUF1qkk6jA6K5v9DqdR7TKHep4TeLItWtWdn+t GXxOWaZ6tZVj0pOOvPux8Io69/Ycyb4MCr6pFulFhHCyrU/ViA8Cuh8o1cn7kpm3 a61knDf9Nbe1+BL+5IvINldJjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDt3vPa 9IdCFuVHMf6nTJA27NBPMB8GA1UdIwQYMBaAFFNrkbF7bhuxY4yDWKD6XqXQ6++3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzRC8yMzIzRkQ4MDAw RDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3RmpqSU5Zb1BwZXBkRHI3 N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1UydVJzWHR1RzdGampJTllvUHBlcGREcjc3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzRC8yMzIzRkQ4MDAwRDcxMUVFOTNDQjBGN0VDNEY5QUUwMi9VMnVSc1h0dUc3 RmpqSU5Zb1BwZXBkRHI3N2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1PmA2ggJHj4CSuavY513nxxci4gv8VX32WK0sEtIAVzGyUjGw1aIC GHstvkMq3TX28IOdExRcVKMJTZAn7bQv4x/ueOjNO3APExXpdNc8w/38LgQhJeZU NM38nmUcVG8n9BpbV1z0QR2DBGNxb+z9LZcQkTn/gD6WPUcm8ffGGFwxISxbctm8 /YNbvOUZMt/odYbEIe2PdIeWYgInwL63HDcoXfdhLCIIuxmoInLMzzF2e/+6Pi5o Wu27D2SxOcG6D4jtR5HsQGk6JQLp6uQBCvej3VkmZCFWZis3kWOg9XS5apLhc/ha KVYZ46pijJZ2yrFXnHvFHb0gudyDN3XS -----END CERTIFICATE-----Generated at Thu Jul 3 20:35:21 2025 by rpki-client