$ rpki-client -vvf rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft File: u5dqWY5eywXjf6wApbeIjlf1HFI.mft (raw, json) Hash identifier: CKeAfL0rx6qex8iZM2KxXQ/z93UojwTpGrWSuGCDR3E= Subject key identifier: 1C:02:4A:9C:D8:BF:32:A6:28:72:98:04:A0:0D:CE:4A:D9:41:A2:92 Authority key identifier: BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 Certificate issuer: /CN=A91590E3/serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Certificate serial: 190F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft Manifest number: 18D8 Signing time: Fri 04 Jul 2025 16:44:44 +0000 Manifest this update: Fri 04 Jul 2025 16:44:44 +0000 Manifest next update: Fri 11 Jul 2025 16:44:44 +0000 Files and hashes: 1: u5dqWY5eywXjf6wApbeIjlf1HFI.crl (hash: CxBcQHvWIRDvwDASikT4yiLtfh56eq9DTLK3OsUeZNM=) 2: 1295ACC8511811F0BC16C641C4F9AE02.roa (hash: 84OKZziZJhzWPyx/Qu58m71qp96Ia8UIPI3npSmJSak=) 3: 4D12993446CC11F08EB9471AC4F9AE02.roa (hash: vbJhtFwjv9AiVVu2dZyRBj8FMJ3ESi6HyljVMBZDFwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6415 (0x190f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91590E3, serialNumber=BB976A598E5ECB05E37FAC00A5B7888E57F51C52 Validity Not Before: Jul 4 16:44:44 2025 GMT Not After : Jul 11 16:44:44 2025 GMT Subject: CN=686804fc-574c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3b:4f:81:44:e6:21:dd:f3:1a:0a:4d:c3:f1: e6:c8:84:f4:3a:dc:97:9d:86:29:82:d3:99:a7:21: ba:15:98:b1:b4:34:05:b8:42:b8:ad:ff:da:65:48: a7:d0:66:c2:33:8a:40:cc:92:a5:f6:36:63:8f:c8: 5b:bc:1b:23:dd:d0:d5:51:ff:cf:4a:eb:8a:d6:78: f4:a8:6f:2b:b3:e7:d2:1f:ca:a6:a1:ed:6a:a2:66: 1e:e1:c9:1d:c6:aa:3f:ca:f6:f9:c1:b0:6a:3e:2d: 19:a6:58:52:5d:bd:3e:e5:2d:f5:cf:2c:80:5a:0e: c2:41:77:7c:f0:b1:49:aa:ec:f5:31:55:16:d4:2a: 98:61:46:9b:ea:c8:37:ee:da:27:c4:50:0f:b2:11: 41:09:4d:16:8f:28:f0:94:d7:bd:6e:0b:26:95:0d: e2:97:9e:ab:35:42:ac:e6:36:d5:1a:f0:58:39:a6: 02:16:b8:eb:32:4e:37:24:45:1b:02:ea:11:b3:79: 9b:ab:c1:32:32:50:df:54:d8:57:f0:af:12:8e:28: 33:ba:24:00:f9:59:9f:ef:7f:69:a5:a1:c3:47:70: 5f:e9:25:f5:8c:e7:48:ca:9a:19:29:b3:d9:29:af: b2:d3:ec:7f:05:4a:66:95:0c:5d:db:a2:e5:cd:29: 91:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:02:4A:9C:D8:BF:32:A6:28:72:98:04:A0:0D:CE:4A:D9:41:A2:92 X509v3 Authority Key Identifier: keyid:BB:97:6A:59:8E:5E:CB:05:E3:7F:AC:00:A5:B7:88:8E:57:F5:1C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5dqWY5eywXjf6wApbeIjlf1HFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91590E3/DA18B1849A4911E79A9F3030C4F9AE02/u5dqWY5eywXjf6wApbeIjlf1HFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:21:ae:d5:65:f5:e0:49:d0:3c:55:9a:8c:16:c9:92:e1:64: 00:58:8a:a7:5f:85:b3:8a:ce:77:6a:55:b6:67:39:ef:26:fc: cf:4c:43:13:6b:d4:48:9a:22:84:dc:ae:58:3f:ce:29:d8:fe: 10:17:04:6b:70:e3:6e:de:ed:c7:26:79:4d:e5:4d:d2:53:61: 17:b8:58:60:7c:c0:87:be:7e:fb:f0:8b:cd:cf:83:ca:f2:5f: 92:82:df:be:9d:a5:79:f5:e5:c6:8c:85:fa:89:33:14:70:34: 86:54:16:9a:3e:eb:1c:49:e9:1e:d0:5a:d0:0d:2c:01:24:02: 2b:c2:8d:de:b8:3e:0e:c1:bf:26:34:57:c9:06:a0:b1:bf:36: 73:b1:2a:89:1d:27:cb:a4:e2:fe:f9:d9:5b:ed:34:72:75:61: 1a:cf:c1:b2:ef:5d:c3:2d:5c:42:b3:42:89:25:e1:e8:43:aa: f8:d8:4d:20:db:98:24:70:39:55:3f:19:41:b9:ac:5f:18:7c: e0:68:51:7e:80:55:5a:7e:31:f9:cb:b2:82:14:bd:d7:6e:80: 68:a2:28:48:29:6d:7d:f3:b4:37:f7:d3:1e:49:d2:2c:e1:99: 30:e1:49:ac:6d:ff:ad:fc:f1:96:bc:a6:71:9b:5a:45:d1:a6: 13:c7:6c:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkwRTMxMTAvBgNVBAUTKEJCOTc2QTU5OEU1RUNCMDVFMzdGQUMwMEE1Qjc4ODhF NTdGNTFDNTIwHhcNMjUwNzA0MTY0NDQ0WhcNMjUwNzExMTY0NDQ0WjAYMRYwFAYD VQQDEw02ODY4MDRmYy01NzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzztPgUTmId3zGgpNw/HmyIT0OtyXnYYpgtOZpyG6FZixtDQFuEK4rf/aZUin 0GbCM4pAzJKl9jZjj8hbvBsj3dDVUf/PSuuK1nj0qG8rs+fSH8qmoe1qomYe4ckd xqo/yvb5wbBqPi0ZplhSXb0+5S31zyyAWg7CQXd88LFJquz1MVUW1CqYYUab6sg3 7tonxFAPshFBCU0WjyjwlNe9bgsmlQ3il56rNUKs5jbVGvBYOaYCFrjrMk43JEUb AuoRs3mbq8EyMlDfVNhX8K8SjigzuiQA+Vmf739ppaHDR3Bf6SX1jOdIypoZKbPZ Ka+y0+x/BUpmlQxd26LlzSmR8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwCSpzY vzKmKHKYBKANzkrZQaKSMB8GA1UdIwQYMBaAFLuXalmOXssF43+sAKW3iI5X9RxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTBFMy9EQTE4QjE4NDlB NDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3WGpmNndBcGJlSWpsZjFI RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1ZHFXWTVleXdYamY2d0FwYmVJamxmMUhGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTBFMy9EQTE4QjE4NDlBNDkxMUU3OUE5RjMwMzBDNEY5QUUwMi91NWRxV1k1ZXl3 WGpmNndBcGJlSWpsZjFIRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaIa7VZfXgSdA8VZqMFsmS4WQAWIqnX4Wzis53alW2ZznvJvzPTEMT a9RImiKE3K5YP84p2P4QFwRrcONu3u3HJnlN5U3SU2EXuFhgfMCHvn778IvNz4PK 8l+Sgt++naV59eXGjIX6iTMUcDSGVBaaPuscSeke0FrQDSwBJAIrwo3euD4Owb8m NFfJBqCxvzZzsSqJHSfLpOL++dlb7TRydWEaz8Gy713DLVxCs0KJJeHoQ6r42E0g 25gkcDlVPxlBuaxfGHzgaFF+gFVafjH5y7KCFL3XboBooihIKW1987Q399MeSdIs 4Zkw4Umsbf+t/PGWvKZxm1pF0aYTx2wm -----END CERTIFICATE-----Generated at Fri Jul 4 18:41:53 2025 by rpki-client