$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: X4asc8LrKpI2yvBMxWfPTIaQZjRGTO+O2vSkQFFaoWw= Subject key identifier: BF:E1:EB:7D:FC:BA:12:B4:A7:F4:A2:D6:36:2A:8B:39:41:DB:B0:65 Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 064D Signing time: Wed 02 Jul 2025 22:54:32 +0000 Manifest this update: Wed 02 Jul 2025 22:54:32 +0000 Manifest next update: Wed 09 Jul 2025 22:54:32 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: kKLI9tfRduq5IZZBJC094Fw9gzCMatvuVh4ECOgTFJA=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Jul 2 22:54:32 2025 GMT Not After : Jul 9 22:54:32 2025 GMT Subject: CN=6865b8a8-f9bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ef:82:19:55:48:2d:3e:04:4a:7b:ec:58:e8: 6a:67:a7:36:24:0b:e1:0b:11:93:0e:a3:53:0c:0d: 5e:7b:0b:1c:ba:d4:e3:b5:ea:3a:b3:94:3b:b9:c4: 31:a9:69:5e:2d:ae:f3:da:af:85:63:57:57:bb:62: 9e:15:50:16:e3:c2:a3:4a:89:64:30:f1:4b:5e:39: fb:d0:a1:b9:cc:d5:10:dd:d7:3a:ff:23:e0:1d:ee: b6:be:cf:14:af:b0:9f:42:b9:ee:08:1f:c4:88:24: 75:38:b1:03:81:53:3b:28:71:5d:c4:b9:b8:50:7b: bf:2e:c9:ce:2f:f2:84:a4:6d:33:da:35:b5:15:a6: 5d:4a:38:f6:23:79:8a:d5:a6:4c:43:cc:35:72:22: 24:e5:f2:b8:1d:96:f1:77:a5:c5:45:4d:00:d0:0a: 14:0c:4f:6e:26:61:80:54:37:52:c7:7a:86:fc:22: 6a:14:62:5a:d5:af:9d:fc:46:55:2d:a4:a6:e8:27: 00:a9:e2:94:b0:55:3b:5d:3d:d0:8a:c3:2f:57:a4: 56:bb:2b:a4:5c:3d:39:14:c6:1e:64:88:a9:ed:95: d2:c6:24:83:4c:f4:13:1a:4a:82:20:af:d1:df:44: 0b:2e:52:12:de:8b:89:dd:3d:62:b7:20:73:32:80: 37:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E1:EB:7D:FC:BA:12:B4:A7:F4:A2:D6:36:2A:8B:39:41:DB:B0:65 X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ca:27:03:76:73:43:1f:53:06:42:e8:c5:16:53:49:31:ba: f4:70:05:74:9e:e0:e9:c5:59:f5:db:48:fd:8b:c5:59:32:8a: 1b:67:ea:0f:ed:79:3b:95:44:c1:4a:b7:9a:31:dd:a5:96:3d: 05:4c:30:7e:62:43:fe:f6:f3:78:22:41:49:7b:43:09:31:29: 3d:d4:4f:3d:b9:ca:5e:cd:8a:3e:15:f3:1c:00:4f:25:ab:9c: e7:fe:ce:ff:6a:a6:98:5c:67:9e:a9:d4:9a:29:f0:d5:99:33: 1d:45:68:ce:e9:b4:2b:6d:f3:7f:23:b1:25:06:fa:bc:e3:6d: f3:2c:c2:c3:f8:1c:b6:66:c1:a6:8a:f4:91:df:b3:b3:8b:14: 76:5a:fd:18:90:72:c2:be:fd:06:2b:91:7f:3d:7d:e3:45:d8: 1e:e6:d2:9d:f1:71:40:a0:9c:5d:8c:2d:e6:81:e2:2c:33:72: c6:5a:d3:3e:86:fa:2e:52:97:7b:b7:a0:9a:99:80:99:0b:2b: 7e:5d:a2:29:bc:fa:74:41:9a:41:24:8d:b5:4e:03:7d:8b:ee: ee:41:a7:09:c9:e6:0f:1f:86:27:ec:ee:8a:68:47:18:ba:4b: 56:22:5f:3d:60:56:d9:20:46:9d:4c:8a:44:6e:56:25:8d:ed: 32:ba:99:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUwNzAyMjI1NDMyWhcNMjUwNzA5MjI1NDMyWjAYMRYwFAYD VQQDEw02ODY1YjhhOC1mOWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsu+CGVVILT4ESnvsWOhqZ6c2JAvhCxGTDqNTDA1eewscutTjteo6s5Q7ucQx qWleLa7z2q+FY1dXu2KeFVAW48KjSolkMPFLXjn70KG5zNUQ3dc6/yPgHe62vs8U r7CfQrnuCB/EiCR1OLEDgVM7KHFdxLm4UHu/LsnOL/KEpG0z2jW1FaZdSjj2I3mK 1aZMQ8w1ciIk5fK4HZbxd6XFRU0A0AoUDE9uJmGAVDdSx3qG/CJqFGJa1a+d/EZV LaSm6CcAqeKUsFU7XT3QisMvV6RWuyukXD05FMYeZIip7ZXSxiSDTPQTGkqCIK/R 30QLLlIS3ouJ3T1ityBzMoA3CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL/h6338 uhK0p/Si1jYqizlB27BlMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUyicDdnNDH1MGQujFFlNJMbr0cAV0nuDpxVn120j9i8VZMoobZ+oP 7Xk7lUTBSreaMd2llj0FTDB+YkP+9vN4IkFJe0MJMSk91E89ucpezYo+FfMcAE8l q5zn/s7/aqaYXGeeqdSaKfDVmTMdRWjO6bQrbfN/I7ElBvq8423zLMLD+By2ZsGm ivSR37OzixR2Wv0YkHLCvv0GK5F/PX3jRdge5tKd8XFAoJxdjC3mgeIsM3LGWtM+ hvouUpd7t6CamYCZCyt+XaIpvPp0QZpBJI21TgN9i+7uQacJyeYPH4Yn7O6KaEcY uktWIl89YFbZIEadTIpEblYlje0yupnA -----END CERTIFICATE-----Generated at Thu Jul 3 11:43:54 2025 by rpki-client