$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: rF1KPvyTlxsDPqZ90DK2E0/lilczm1dAt9A418mzdpg= Subject key identifier: 42:79:00:3A:AC:36:E7:B5:59:54:52:BC:17:E5:7F:95:A2:FB:0D:5A Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: 99 Signing time: Thu 03 Jul 2025 06:33:35 +0000 Manifest this update: Thu 03 Jul 2025 06:33:35 +0000 Manifest next update: Thu 10 Jul 2025 06:33:35 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: 3G/OKu2ovP/RljBD3H+BD32KbGVIrx010fD2GtrrzKM=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: KLVK6zfk1sI4e7G8hRism5bZ4U3Yqq/t49H1ShoVhoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: Jul 3 06:33:35 2025 GMT Not After : Jul 10 06:33:35 2025 GMT Subject: CN=6866243f-99a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:10:a5:17:44:59:42:b8:b4:40:2e:91:4c:75: 26:7f:e2:59:98:98:7f:99:43:43:76:43:03:85:56: ff:03:dd:24:39:1e:38:7c:1b:f0:68:c7:3e:97:50: f2:34:de:99:d1:0e:aa:e6:9f:73:b5:92:5f:b4:a9: 9e:b4:03:62:24:5c:98:87:d6:41:1d:29:5f:4e:0c: 51:0b:e9:b0:93:a1:ad:86:79:ce:73:0f:0e:b4:e1: c6:47:f8:f2:39:53:83:6b:90:a9:b6:0d:5b:a1:52: 6a:bc:d9:1f:3f:3f:f8:a4:0e:6b:fe:6a:e7:fc:a7: 48:0e:32:f9:0f:d4:7d:fa:01:73:68:f5:23:e7:43: e5:9a:fb:98:e1:00:68:3b:26:9e:57:fa:76:96:52: 10:1f:ba:0b:32:e8:89:75:9b:d0:80:20:95:08:35: 2f:d1:9c:0d:41:0b:c6:f2:f3:11:e1:da:61:e9:d5: 18:60:31:c6:74:ba:5d:78:fd:fb:0e:e0:37:8a:94: df:85:52:92:52:8b:dc:d7:ef:58:89:48:8b:8f:70: 15:7e:24:11:06:53:66:1a:00:c2:18:f2:45:a0:43: c0:b9:a6:60:f8:55:e3:1b:4f:57:7f:ff:75:d9:84: cb:17:41:2b:06:08:71:e6:dd:28:1e:20:1d:ab:0d: 96:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:79:00:3A:AC:36:E7:B5:59:54:52:BC:17:E5:7F:95:A2:FB:0D:5A X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:0b:46:de:f5:18:93:58:d6:33:ae:0f:15:6d:01:87:54:a8: 40:d5:26:7a:19:73:9f:de:86:d3:4e:8b:7f:3c:67:ff:33:43: 02:ad:1d:0e:70:85:a0:20:69:46:21:17:1c:24:41:eb:c5:dc: fb:a5:63:c5:d2:1f:69:66:ea:9d:eb:7c:85:99:9b:0e:1f:58: 89:ec:d3:17:44:35:1f:8f:09:8e:35:95:4b:88:21:00:39:da: 91:b9:c1:e0:28:d3:6d:7b:61:33:0b:33:54:69:df:f3:c9:9c: 73:2e:27:07:78:6d:be:96:7e:a1:18:40:08:a8:29:bc:8c:c8: da:3c:60:3b:08:e0:2c:38:51:3c:06:39:00:cc:42:ac:01:47: cd:b6:c2:dd:a9:f3:c3:bb:78:87:07:7d:08:5f:bf:45:94:7e: c9:89:3a:25:52:94:65:c8:21:83:fa:5b:84:c8:0a:e1:c7:89: 50:06:87:ce:67:f9:98:6d:95:73:ea:4a:ba:05:3c:94:ec:42: 08:a7:90:0a:42:a1:69:3e:f7:fe:ea:c9:4c:5c:0d:d7:d5:b0: 3b:9b:9b:c2:68:44:9e:54:de:ed:af:4f:30:09:f5:e8:17:cf: da:73:56:e0:31:0b:7f:ba:5d:ff:4c:79:e3:ba:fe:4d:e3:a6: 15:f2:02:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjUwNzAzMDYzMzM1WhcNMjUwNzEwMDYzMzM1WjAYMRYwFAYD VQQDEw02ODY2MjQzZi05OWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxClF0RZQri0QC6RTHUmf+JZmJh/mUNDdkMDhVb/A90kOR44fBvwaMc+l1Dy NN6Z0Q6q5p9ztZJftKmetANiJFyYh9ZBHSlfTgxRC+mwk6GthnnOcw8OtOHGR/jy OVODa5Cptg1boVJqvNkfPz/4pA5r/mrn/KdIDjL5D9R9+gFzaPUj50PlmvuY4QBo OyaeV/p2llIQH7oLMuiJdZvQgCCVCDUv0ZwNQQvG8vMR4dph6dUYYDHGdLpdeP37 DuA3ipTfhVKSUovc1+9YiUiLj3AVfiQRBlNmGgDCGPJFoEPAuaZg+FXjG09Xf/91 2YTLF0ErBghx5t0oHiAdqw2WoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJ5ADqs Nue1WVRSvBflf5Wi+w1aMB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnC0be9RiTWNYzrg8VbQGHVKhA1SZ6GXOf3obTTot/PGf/M0MCrR0O cIWgIGlGIRccJEHrxdz7pWPF0h9pZuqd63yFmZsOH1iJ7NMXRDUfjwmONZVLiCEA OdqRucHgKNNte2EzCzNUad/zyZxzLicHeG2+ln6hGEAIqCm8jMjaPGA7COAsOFE8 BjkAzEKsAUfNtsLdqfPDu3iHB30IX79FlH7JiTolUpRlyCGD+luEyArhx4lQBofO Z/mYbZVz6kq6BTyU7EIIp5AKQqFpPvf+6slMXA3X1bA7m5vCaESeVN7tr08wCfXo F8/ac1bgMQt/ul3/THnjuv5N46YV8gLi -----END CERTIFICATE-----Generated at Thu Jul 3 21:47:35 2025 by rpki-client