$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: zRILVGbNIhebVd6eOS8FfC0e0zHpBD5sGYA2zS4ZSyY= Subject key identifier: 89:37:F8:ED:84:D7:B2:4F:1B:A7:AC:C2:73:27:B7:32:98:99:A2:EB Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 01E6 Signing time: Thu 03 Jul 2025 02:42:30 +0000 Manifest this update: Thu 03 Jul 2025 02:42:30 +0000 Manifest next update: Thu 10 Jul 2025 02:42:30 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: Nvo1lsJ7vUZy9CzMQvBtcPI/9dVjf2irJANHqwR/IuU=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Jul 3 02:42:30 2025 GMT Not After : Jul 10 02:42:30 2025 GMT Subject: CN=6865ee16-3000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:17:5b:a9:ea:fd:14:32:56:da:35:2d:b4:3a: 12:4d:e7:ae:db:82:60:95:4c:23:4d:2f:50:98:79: bc:98:4c:f6:b8:d1:da:ea:20:a7:eb:fc:db:95:49: 3a:b3:e2:8e:5c:c3:c2:51:e8:76:5a:f7:d3:ba:90: 16:26:55:eb:14:93:fc:18:58:e5:fe:f0:23:7d:b6: 3d:78:4e:3b:28:68:1b:6d:73:01:f2:ec:7e:3a:00: 30:b8:28:97:66:17:3f:27:19:a9:02:97:e1:d7:d1: ba:26:8d:c2:6b:c0:0d:ce:1a:e5:17:97:70:21:d9: fd:33:31:59:90:dc:9b:63:e5:9e:96:dc:1b:a6:2d: 85:e3:d3:79:4d:fd:4a:3f:7c:89:21:96:16:8e:3c: 87:6e:a2:79:db:3a:e7:0c:d9:a7:ad:e3:c1:9e:84: ed:bd:ef:04:90:fa:8e:f5:ad:1e:8c:5a:12:60:71: d5:63:28:b2:f5:9a:20:95:3e:a8:25:10:67:b5:5f: d7:ad:e6:5a:f3:43:ae:01:4f:a5:37:29:45:23:1f: af:01:2a:ea:79:5f:6f:95:2c:a2:6e:18:3d:35:62: cb:40:37:ae:9a:f8:d7:64:26:14:83:e4:ff:b6:67: a4:fb:a4:d7:04:f0:35:05:a3:73:4a:75:b9:22:9d: ca:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:37:F8:ED:84:D7:B2:4F:1B:A7:AC:C2:73:27:B7:32:98:99:A2:EB X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:d1:0b:eb:0e:45:c2:85:25:b4:52:a6:42:6b:49:d1:34:5e: e6:f5:8e:f7:e4:b6:f3:e5:be:2e:39:21:03:e5:8f:79:1d:db: 31:01:cf:fd:9d:8e:75:1f:82:11:10:6e:ea:3d:fb:4f:8e:b8: 2e:c6:3a:fe:bf:c6:dc:0d:dc:f1:ab:6e:6d:5e:68:da:53:b9: 8d:7e:09:c5:fd:f7:47:48:f6:0b:44:53:36:2b:14:2b:82:f2: 94:f1:cf:1b:1d:75:93:85:09:7d:61:d9:ae:88:39:07:70:b9: 3b:40:c8:b5:1f:73:c5:ae:be:78:1f:c3:3b:10:99:43:9a:88: 6a:db:ee:89:5b:b6:ad:99:35:b4:e5:b1:8e:cc:05:2e:1b:2e: ee:4e:fa:fb:78:87:29:3f:aa:da:50:57:e5:97:1e:5e:20:61: 62:b3:ae:b5:fb:e3:27:be:68:7f:c3:63:24:bc:fa:53:07:0b: f4:4f:28:e6:67:48:ac:5e:67:e6:bf:34:66:1b:05:52:5c:37: 3d:04:27:ab:dc:e4:4d:d3:ca:ef:0b:74:e3:f6:3d:87:a7:5f: 62:5f:51:de:75:2c:b3:ae:75:20:29:f8:06:0b:5b:7e:43:87: 93:61:dd:14:93:64:ff:0c:e5:df:d0:d0:d1:87:06:d5:08:f0: 3a:a6:59:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUwNzAzMDI0MjMwWhcNMjUwNzEwMDI0MjMwWjAYMRYwFAYD VQQDEw02ODY1ZWUxNi0zMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxdbqer9FDJW2jUttDoSTeeu24JglUwjTS9QmHm8mEz2uNHa6iCn6/zblUk6 s+KOXMPCUeh2WvfTupAWJlXrFJP8GFjl/vAjfbY9eE47KGgbbXMB8ux+OgAwuCiX Zhc/JxmpApfh19G6Jo3Ca8ANzhrlF5dwIdn9MzFZkNybY+Weltwbpi2F49N5Tf1K P3yJIZYWjjyHbqJ52zrnDNmnrePBnoTtve8EkPqO9a0ejFoSYHHVYyiy9ZoglT6o JRBntV/XreZa80OuAU+lNylFIx+vASrqeV9vlSyibhg9NWLLQDeumvjXZCYUg+T/ tmek+6TXBPA1BaNzSnW5Ip3KZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIk3+O2E 17JPG6eswnMntzKYmaLrMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs0QvrDkXChSW0UqZCa0nRNF7m9Y735Lbz5b4uOSED5Y95HdsxAc/9 nY51H4IREG7qPftPjrguxjr+v8bcDdzxq25tXmjaU7mNfgnF/fdHSPYLRFM2KxQr gvKU8c8bHXWThQl9YdmuiDkHcLk7QMi1H3PFrr54H8M7EJlDmohq2+6JW7atmTW0 5bGOzAUuGy7uTvr7eIcpP6raUFfllx5eIGFis661++Mnvmh/w2MkvPpTBwv0Tyjm Z0isXmfmvzRmGwVSXDc9BCer3ORN08rvC3Tj9j2Hp19iX1HedSyzrnUgKfgGC1t+ Q4eTYd0Uk2T/DOXf0NDRhwbVCPA6plkx -----END CERTIFICATE-----Generated at Thu Jul 3 14:51:05 2025 by rpki-client