$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft File: U3pyvmM5N4xMTSlwK-12dczMFGo.mft (raw, json) Hash identifier: 9zjOFOc1zX9BsBdOEvpWpprHGnGatdOU+AILQRIRFqM= Subject key identifier: 7F:AD:61:25:A8:23:CE:B1:ED:9F:79:02:5F:1A:8A:E3:8E:60:00:FB Authority key identifier: 53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A Certificate issuer: /CN=A916EB98/serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Certificate serial: 0B95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft Manifest number: 0B8E Signing time: Sat 28 Jun 2025 18:44:12 +0000 Manifest this update: Sat 28 Jun 2025 18:44:11 +0000 Manifest next update: Sat 05 Jul 2025 18:44:11 +0000 Files and hashes: 1: U3pyvmM5N4xMTSlwK-12dczMFGo.crl (hash: PUvusf+yuXKGkuPAJ8pOXbs9A5gGM/BBAszoH0ShBvA=) 2: DD716A222ACC11EAAB36B444C4F9AE02.roa (hash: 9YLAXbZ28k13vNilzcTMcnMd0WVPI4XdwJeol/Aq30I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2965 (0xb95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB98, serialNumber=537A72BE6339378C4C4D29702BED7675CCCC146A Validity Not Before: Jun 28 18:44:11 2025 GMT Not After : Jul 5 18:44:11 2025 GMT Subject: CN=686037fc-463c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9b:63:be:59:df:d8:bc:6e:e1:f7:7e:e2:24: 4c:76:bb:d7:94:92:4f:bd:bc:31:bf:a4:c8:19:0f: 83:89:75:e3:f8:7d:67:81:d3:d6:84:a2:37:cc:de: c6:11:d1:fc:7b:e7:a8:10:2c:6f:08:b6:10:ac:a2: 94:6d:f8:2e:ed:2b:c0:82:55:e4:86:79:e4:a5:d5: 82:38:65:fb:93:2f:43:ae:e9:ad:14:b1:68:96:8d: 9a:d0:c7:46:4d:44:4f:36:fb:84:26:22:f0:28:2f: b2:7c:d2:45:6f:20:53:bc:4f:c8:d4:33:d4:30:e3: cd:d6:c4:a9:36:76:17:5b:37:93:de:04:2f:fe:61: b6:2d:98:e0:cf:53:2f:10:d4:96:94:ab:5b:2b:54: 83:6c:01:de:ab:3a:6c:bd:c1:b5:c7:02:0f:29:a3: f4:53:13:8e:a6:52:ce:fb:2b:3c:65:f0:9b:1e:a4: 87:1a:9c:11:54:92:e8:8b:fe:d0:1b:79:53:15:8c: e8:87:7c:ed:65:99:83:42:72:0b:50:dc:6f:a0:61: 5b:44:bd:db:4d:4f:7a:37:44:5b:10:30:47:51:3a: 3f:3a:f8:4b:75:b7:18:d4:16:cb:a1:78:03:23:c8: b0:0e:03:a8:04:15:e2:79:01:ea:8a:22:67:d4:f6: e3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AD:61:25:A8:23:CE:B1:ED:9F:79:02:5F:1A:8A:E3:8E:60:00:FB X509v3 Authority Key Identifier: keyid:53:7A:72:BE:63:39:37:8C:4C:4D:29:70:2B:ED:76:75:CC:CC:14:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3pyvmM5N4xMTSlwK-12dczMFGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB98/B0FC35DC2ACA11EA87562740C4F9AE02/U3pyvmM5N4xMTSlwK-12dczMFGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:b8:cd:f1:f1:91:c9:32:79:0c:63:94:b7:1f:6f:61:37:37: 6f:34:c3:42:f4:64:24:d9:fc:f4:08:b2:0a:c7:7e:18:8c:e9: 91:a8:ec:3f:41:89:15:af:45:24:7e:58:41:35:c9:e1:4f:8e: c7:0a:f2:e2:e5:64:e6:d3:0c:7d:4d:31:20:70:4a:86:52:48: 77:0c:f4:f3:76:a4:f0:d2:df:41:f8:38:53:ef:a6:00:ab:f7: 1c:7c:70:46:3c:24:00:19:4a:68:d4:1a:5c:a2:31:23:10:ba: f3:46:f4:c9:95:32:e6:03:ad:67:dc:76:0c:25:81:1f:84:ae: 4a:71:cc:27:4c:a2:71:39:37:1c:d1:aa:2b:7d:64:be:99:86: e6:8f:96:14:21:2e:29:14:4c:2c:ff:06:15:40:1c:fd:7f:43: 77:fb:53:bb:7a:36:c9:bd:eb:69:f3:95:b3:7c:ae:74:54:5e: 8e:f6:62:b9:35:42:0d:2e:d2:f2:bc:f0:13:0e:5c:cb:3c:d4: 5e:98:8f:87:c3:cb:0d:e0:16:27:df:25:ee:f9:b6:46:b5:45: 8d:27:fe:8f:6e:3e:6d:cd:b6:07:9e:b6:b9:5e:dc:e1:fb:9b: 46:16:52:f5:1d:f4:92:48:f5:45:5a:9e:37:6c:df:8d:da:d7: ca:46:3b:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTgxMTAvBgNVBAUTKDUzN0E3MkJFNjMzOTM3OEM0QzREMjk3MDJCRUQ3Njc1 Q0NDQzE0NkEwHhcNMjUwNjI4MTg0NDExWhcNMjUwNzA1MTg0NDExWjAYMRYwFAYD VQQDEw02ODYwMzdmYy00NjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5tjvlnf2Lxu4fd+4iRMdrvXlJJPvbwxv6TIGQ+DiXXj+H1ngdPWhKI3zN7G EdH8e+eoECxvCLYQrKKUbfgu7SvAglXkhnnkpdWCOGX7ky9DrumtFLFolo2a0MdG TURPNvuEJiLwKC+yfNJFbyBTvE/I1DPUMOPN1sSpNnYXWzeT3gQv/mG2LZjgz1Mv ENSWlKtbK1SDbAHeqzpsvcG1xwIPKaP0UxOOplLO+ys8ZfCbHqSHGpwRVJLoi/7Q G3lTFYzoh3ztZZmDQnILUNxvoGFbRL3bTU96N0RbEDBHUTo/OvhLdbcY1BbLoXgD I8iwDgOoBBXieQHqiiJn1PbjaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+tYSWo I86x7Z95Al8aiuOOYAD7MB8GA1UdIwQYMBaAFFN6cr5jOTeMTE0pcCvtdnXMzBRq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5OC9CMEZDMzVEQzJB Q0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40eE1UU2x3Sy0xMmRjek1G R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzcHl2bU01TjR4TVRTbHdLLTEyZGN6TUZHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUI5OC9CMEZDMzVEQzJBQ0ExMUVBODc1NjI3NDBDNEY5QUUwMi9VM3B5dm1NNU40 eE1UU2x3Sy0xMmRjek1GR28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/uM3x8ZHJMnkMY5S3H29hNzdvNMNC9GQk2fz0CLIKx34YjOmRqOw/ QYkVr0UkflhBNcnhT47HCvLi5WTm0wx9TTEgcEqGUkh3DPTzdqTw0t9B+DhT76YA q/ccfHBGPCQAGUpo1BpcojEjELrzRvTJlTLmA61n3HYMJYEfhK5KccwnTKJxOTcc 0aorfWS+mYbmj5YUIS4pFEws/wYVQBz9f0N3+1O7ejbJvetp85WzfK50VF6O9mK5 NUINLtLyvPATDlzLPNRemI+Hw8sN4BYn3yXu+bZGtUWNJ/6Pbj5tzbYHnra5Xtzh +5tGFlL1HfSSSPVFWp43bN+N2tfKRjtk -----END CERTIFICATE-----Generated at Sun Jun 29 16:09:41 2025 by rpki-client