$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft File: 0UdMHaQ5s05IfCjCRynmh-CUfXM.mft (raw, json) Hash identifier: Mh5dyRj0BPoMUfzGFN0YwHXg6yut9QxvGN7wRf+oMSI= Subject key identifier: 13:27:4E:7A:AD:F5:DD:5A:72:D9:76:A7:A1:E6:B1:B9:15:13:E5:F4 Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 0654 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft Manifest number: 063B Signing time: Wed 02 Jul 2025 23:05:44 +0000 Manifest this update: Wed 02 Jul 2025 23:05:43 +0000 Manifest next update: Wed 09 Jul 2025 23:05:43 +0000 Files and hashes: 1: 0UdMHaQ5s05IfCjCRynmh-CUfXM.crl (hash: YTxuNvmO0mjxsvzp64L3olR0MososU74kHdW70L1trs=) 2: AB4B141CA24211ED92C4107BC4F9AE02.roa (hash: gNOxN0jS6tigz/fNFU0Y3AnQczkJKZKVIShHQJ5nxmY=) 3: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (hash: Bdwc8QswyKEgheRUIFpGKVEVqvl2AD4iR5m0y3NHcjU=) 4: E9FB74DCE57711ECBC483554C4F9AE02.roa (hash: z9ucsnrgZh6AB82HfRMNRNeuXi0RQH7hg4PLxBkGO2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:05:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1620 (0x654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Jul 2 23:05:43 2025 GMT Not After : Jul 9 23:05:43 2025 GMT Subject: CN=6865bb47-92af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b5:4f:58:73:d9:b4:ce:90:58:2c:82:05:98: d0:2e:b6:c3:18:e8:b3:0e:e4:c6:65:a0:1e:11:34: 84:86:c4:b3:82:06:21:8d:2d:b6:2d:67:77:6f:97: 05:27:bd:01:84:c6:bf:ea:d5:a1:57:cb:29:3d:97: ef:c0:fc:15:f1:04:a6:a1:37:85:7b:23:ca:60:d7: 17:a9:ac:86:df:d3:81:86:4c:67:87:2d:c8:d8:90: 9a:a2:8c:c4:4e:48:34:cf:fe:59:6b:c9:ba:f2:5e: df:d6:99:66:e3:84:40:95:54:cd:76:bd:58:90:b8: 79:ed:83:e8:0d:c8:e3:d4:1f:23:cc:2e:f0:3a:a9: 0d:b4:ac:c7:e4:84:c8:9e:a2:8f:44:4e:e2:40:19: dc:6b:db:69:a8:c9:d2:f0:92:69:35:14:c9:6d:38: 64:27:5e:8c:a0:38:0d:af:31:28:0a:49:f0:22:44: db:8f:67:1c:5b:6e:f5:de:af:27:83:4a:ff:86:6e: 35:40:77:c9:30:8d:06:a6:c0:f4:f2:6c:f3:53:e3: 8b:af:c3:3a:cc:09:67:a2:0e:b0:28:f9:26:59:5a: 57:a9:5c:38:69:d1:2e:b0:9d:d6:cf:2f:be:74:11: 79:e7:31:ed:20:67:a1:ba:c8:bb:a3:90:5d:27:e2: ac:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:27:4E:7A:AD:F5:DD:5A:72:D9:76:A7:A1:E6:B1:B9:15:13:E5:F4 X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:e2:90:1f:73:66:ff:d5:54:24:cf:7a:c8:3f:e2:1e:cc:9f: 8a:84:9a:f8:ae:48:b8:02:3b:1f:c0:6d:da:7e:08:5f:6e:16: 28:52:96:32:1e:8b:ae:46:97:66:f9:f6:b5:b0:bb:6a:40:27: 9a:b8:9b:ae:21:6f:b0:2c:b7:80:f0:b4:7e:3d:c8:c8:86:fe: 39:70:4f:d1:f1:19:21:f9:ca:d5:72:d8:84:42:ce:b1:93:23: 95:21:86:10:45:53:d1:6f:e2:65:d8:fb:a5:b8:ee:f7:3b:89: ac:2e:c0:d1:d4:c4:c3:43:64:82:aa:7d:d5:54:be:71:09:d3: dc:d0:98:d7:bf:c9:43:43:b7:3b:2c:a6:d3:66:0f:9f:65:e8: 6f:69:b3:44:a0:66:9b:cc:4e:31:a2:18:cd:f7:27:de:cf:09: 24:b9:0e:51:1e:4e:86:fe:e9:0d:6f:2d:8a:db:e7:f1:53:67: 28:3c:28:ec:2d:23:26:59:4e:13:99:7c:aa:66:a6:77:3e:b3: 00:23:dc:17:66:4f:1f:13:fa:68:4a:4b:78:53:5b:03:02:8f: 42:1d:aa:63:e8:02:33:98:66:b1:d8:37:a1:70:37:81:84:9a: 30:72:77:88:8b:29:93:d8:ab:71:74:01:e4:cb:fa:38:b0:44: 13:03:13:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjUwNzAyMjMwNTQzWhcNMjUwNzA5MjMwNTQzWjAYMRYwFAYD VQQDEw02ODY1YmI0Ny05MmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrVPWHPZtM6QWCyCBZjQLrbDGOizDuTGZaAeETSEhsSzggYhjS22LWd3b5cF J70BhMa/6tWhV8spPZfvwPwV8QSmoTeFeyPKYNcXqayG39OBhkxnhy3I2JCaoozE Tkg0z/5Za8m68l7f1plm44RAlVTNdr1YkLh57YPoDcjj1B8jzC7wOqkNtKzH5ITI nqKPRE7iQBnca9tpqMnS8JJpNRTJbThkJ16MoDgNrzEoCknwIkTbj2ccW2713q8n g0r/hm41QHfJMI0GpsD08mzzU+OLr8M6zAlnog6wKPkmWVpXqVw4adEusJ3Wzy++ dBF55zHtIGehusi7o5BdJ+KsywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMnTnqt 9d1actl2p6HmsbkVE+X0MB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDBBOC83MEMyRUI3QUExOTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMw NUlmQ2pDUnlubWgtQ1VmWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx4pAfc2b/1VQkz3rIP+IezJ+KhJr4rki4AjsfwG3afghfbhYoUpYy HouuRpdm+fa1sLtqQCeauJuuIW+wLLeA8LR+PcjIhv45cE/R8Rkh+crVctiEQs6x kyOVIYYQRVPRb+Jl2PuluO73O4msLsDR1MTDQ2SCqn3VVL5xCdPc0JjXv8lDQ7c7 LKbTZg+fZehvabNEoGabzE4xohjN9yfezwkkuQ5RHk6G/ukNby2K2+fxU2coPCjs LSMmWU4TmXyqZqZ3PrMAI9wXZk8fE/poSkt4U1sDAo9CHapj6AIzmGax2DehcDeB hJowcneIiymT2KtxdAHky/o4sEQTAxNn -----END CERTIFICATE-----Generated at Thu Jul 3 23:13:09 2025 by rpki-client