$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: jAAzhp/46l/YAe2K9Oqs+VW36+6xQhKEbsyGJyW5E94= Subject key identifier: E9:B1:B4:3B:91:BB:F5:1A:AA:9B:20:A6:0E:32:E1:1F:F5:18:FE:35 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0BFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0BED Signing time: Thu 03 Jul 2025 04:28:26 +0000 Manifest this update: Thu 03 Jul 2025 04:28:25 +0000 Manifest next update: Thu 10 Jul 2025 04:28:25 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: tCI0zzkLakH+Xik0LAhFvHc80Er/2XUgLTPnX8EM864=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: /U7W3kIJcREb7MGP1Cl2Wpd73rbaNoFSjTUo68eX8m0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3071 (0xbff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: Jul 3 04:28:25 2025 GMT Not After : Jul 10 04:28:25 2025 GMT Subject: CN=686606ea-8688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a8:de:83:38:04:a7:bf:06:90:74:08:34:03: d9:9f:65:69:49:57:25:9e:d1:71:f8:09:39:ec:ef: af:aa:30:4e:25:62:f1:ed:dc:7d:0e:5e:bb:cd:a9: fb:7c:65:fa:66:e0:0f:cf:db:8f:42:91:2f:cb:4b: 70:16:24:82:ec:65:5d:a5:11:7a:8c:cd:7a:85:85: ff:76:ae:35:2b:5c:ca:15:0d:1d:ff:1b:78:a5:72: 54:6c:e0:b3:98:5c:01:d7:a3:42:d9:08:4b:64:16: 06:4a:1c:45:0b:a6:5a:81:b2:75:e4:90:1a:6e:54: 22:ec:c2:11:f6:4b:26:ee:d1:ae:93:1b:cf:92:81: d4:79:7c:da:a8:d8:72:7c:75:f3:44:67:fb:42:dd: f5:b1:86:01:5c:55:61:0b:d0:d3:26:56:a5:05:e6: ce:05:95:05:03:86:6b:d1:14:f8:ba:6e:ea:f3:20: af:d8:35:e2:b8:dd:8f:59:81:ad:3d:fe:93:8a:83: 97:05:5f:b3:45:ef:bb:9e:7e:f2:a1:54:8f:65:ff: b0:c4:d6:a5:e0:dd:24:a2:3f:91:97:ef:11:28:6b: a5:8d:26:6e:1c:92:ad:2a:a7:03:a6:e8:bb:ee:cc: 42:d4:8a:67:47:0b:f6:05:b6:9a:20:3d:1a:b9:ca: c4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B1:B4:3B:91:BB:F5:1A:AA:9B:20:A6:0E:32:E1:1F:F5:18:FE:35 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:c1:f3:85:34:f4:3e:d2:95:6e:1b:09:da:98:db:11:cf:7a: 45:99:74:72:1b:db:82:7f:72:70:a1:0d:df:4a:f8:9e:11:78: a4:4d:da:bd:79:19:ab:06:70:4e:26:09:41:6f:ab:8a:0f:82: 25:3a:3b:01:fd:35:e8:90:a7:a9:ef:ba:f7:8a:ed:d0:e0:ee: 9e:91:95:0a:46:f1:b3:6b:b8:0f:4b:7f:95:4c:cd:72:85:43: 3e:cb:ce:0c:0f:b2:2b:32:2b:03:8f:e5:6b:4c:82:e1:bf:8b: e0:71:d0:96:b3:0e:7f:8e:c4:ee:11:34:6f:2e:f4:ac:7b:57: e0:98:ec:51:ad:34:8f:20:d9:1b:0c:fa:7d:a0:2a:f1:18:d3: d0:fc:f3:26:06:d7:c6:31:85:d4:ab:61:a0:f0:fd:23:60:f2: 8b:2a:1d:f7:32:b7:79:c4:db:90:ee:56:93:85:15:be:ad:8c: 54:fa:66:cd:62:cb:4f:16:45:47:bd:4d:0e:ec:c3:60:fe:ba: be:2f:c4:0e:05:55:6d:46:85:93:57:8b:7c:fd:f4:20:55:66: bd:84:35:fc:8d:0f:28:c6:a1:c8:31:f4:ab:63:ee:54:fc:6a: dd:4d:d3:aa:d5:86:0a:90:9f:68:d8:c8:5e:5a:b8:cf:4c:b5: a9:79:4f:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUwNzAzMDQyODI1WhcNMjUwNzEwMDQyODI1WjAYMRYwFAYD VQQDEw02ODY2MDZlYS04Njg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46jegzgEp78GkHQINAPZn2VpSVclntFx+Ak57O+vqjBOJWLx7dx9Dl67zan7 fGX6ZuAPz9uPQpEvy0twFiSC7GVdpRF6jM16hYX/dq41K1zKFQ0d/xt4pXJUbOCz mFwB16NC2QhLZBYGShxFC6ZagbJ15JAablQi7MIR9ksm7tGukxvPkoHUeXzaqNhy fHXzRGf7Qt31sYYBXFVhC9DTJlalBebOBZUFA4Zr0RT4um7q8yCv2DXiuN2PWYGt Pf6TioOXBV+zRe+7nn7yoVSPZf+wxNal4N0koj+Rl+8RKGuljSZuHJKtKqcDpui7 7sxC1IpnRwv2BbaaID0aucrEPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmxtDuR u/Uaqpsgpg4y4R/1GP41MB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARwfOFNPQ+0pVuGwnamNsRz3pFmXRyG9uCf3JwoQ3fSvieEXikTdq9 eRmrBnBOJglBb6uKD4IlOjsB/TXokKep77r3iu3Q4O6ekZUKRvGza7gPS3+VTM1y hUM+y84MD7IrMisDj+VrTILhv4vgcdCWsw5/jsTuETRvLvSse1fgmOxRrTSPINkb DPp9oCrxGNPQ/PMmBtfGMYXUq2Gg8P0jYPKLKh33Mrd5xNuQ7laThRW+rYxU+mbN YstPFkVHvU0O7MNg/rq+L8QOBVVtRoWTV4t8/fQgVWa9hDX8jQ8oxqHIMfSrY+5U /GrdTdOq1YYKkJ9o2MheWrjPTLWpeU8n -----END CERTIFICATE-----Generated at Thu Jul 3 09:52:14 2025 by rpki-client