$ rpki-client -vvf rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft File: rUk9yaPSQDSDYoWHBR93lRWJFnk.mft (raw, json) Hash identifier: 9Zh4MlDo3cdUXugg3pIx7EnNuFf+owTMHUrcqX0RX/Q= Subject key identifier: 5A:0E:40:73:77:56:8A:60:E7:A1:11:72:EF:36:00:64:3B:3A:52:F9 Authority key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 Certificate issuer: /CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft Manifest number: 0260 Signing time: Tue 01 Jul 2025 02:29:15 +0000 Manifest this update: Tue 01 Jul 2025 02:29:14 +0000 Manifest next update: Tue 08 Jul 2025 02:29:14 +0000 Files and hashes: 1: rUk9yaPSQDSDYoWHBR93lRWJFnk.crl (hash: fgOIGNWr2IiyvZUCFjWgriNYVTenFOA0kOpKW+Kto38=) 2: 8275E1721C5311EDA75CF137C4F9AE02.roa (hash: ylAjtSurS2AriNqYAWDXwI4mJ+u3ceX6ZX3mIJq8z+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 02:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B418, serialNumber=AD493DC9A3D2403483628587051F779515891679 Validity Not Before: Jul 1 02:29:14 2025 GMT Not After : Jul 8 02:29:14 2025 GMT Subject: CN=686347fa-2cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8c:e8:f6:64:da:ef:35:94:5d:1b:1a:7d:14: 6d:8f:0e:fe:d9:0f:12:ca:77:24:7c:85:67:04:b7: 5e:53:4b:b1:f9:b5:26:5e:10:3a:90:f9:54:a4:e9: 2b:fd:44:9f:67:de:07:40:98:e3:65:f9:b4:1d:22: 47:df:4e:14:3a:fe:c2:6d:04:6b:f3:d1:d3:30:71: d0:87:c4:94:65:11:93:5c:9e:10:fe:7f:1b:ad:9c: 86:9d:d0:33:35:10:8e:ab:fc:68:8d:93:f9:fc:5f: 4d:94:18:4b:56:7a:be:c9:6f:40:23:dc:a9:e9:77: ad:48:07:7f:91:5d:05:3c:ce:ac:d4:31:82:cd:42: 2c:75:5b:a0:5d:d4:fc:6c:f1:2a:05:1e:96:14:f9: fa:20:78:15:90:cb:44:7b:23:a1:43:ec:c2:61:0a: 3e:de:01:e9:79:35:e7:b7:da:d7:27:53:37:75:f7: fa:43:9f:d3:fe:e8:11:c1:34:d0:79:ee:44:48:e5: 37:5f:f5:30:fb:e3:53:56:91:ea:9f:2e:ed:73:55: d2:b9:96:6d:d7:25:4d:a5:e8:79:1f:ef:24:6b:ff: 7f:89:66:cb:e8:98:2b:a4:53:55:b7:7f:d0:80:1a: 68:08:8f:2e:73:d5:d5:af:31:5e:b2:de:1a:64:01: 97:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0E:40:73:77:56:8A:60:E7:A1:11:72:EF:36:00:64:3B:3A:52:F9 X509v3 Authority Key Identifier: keyid:AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:81:6a:3f:36:58:b4:a7:f3:2b:ad:74:2e:c3:8d:bb:76:34: 74:65:87:25:4b:c1:01:55:c1:92:37:28:35:d0:29:4e:d6:58: da:e1:e2:36:9e:5c:8e:35:22:61:ed:af:92:a3:8f:66:41:73: bd:6d:51:fb:ad:b7:e2:25:12:c4:3b:d0:8a:c5:6f:c3:e3:18: df:f2:be:e6:e3:96:87:cd:42:be:b0:dd:01:df:92:b2:9a:e7: 4b:4e:c7:fa:3e:87:54:1c:19:4f:84:b6:9b:20:ee:c6:67:38: 9d:3b:55:82:ed:a4:b3:09:7a:6f:10:2e:9f:08:77:da:a7:74: b2:c9:14:5c:cc:e5:f8:67:cd:d3:90:33:18:f1:ba:87:96:a8: 52:fc:3d:0d:03:59:66:67:3c:35:cc:4c:84:83:d4:a0:4e:af: 2d:4f:e7:e0:ad:2a:18:3b:c5:d6:33:7e:19:c8:0c:23:77:e2: 79:f2:43:3d:8d:56:cf:ab:1b:e5:2e:20:96:e5:43:97:8b:41: 15:54:cb:0c:9d:7e:a0:74:ba:f1:ce:50:2b:e7:93:78:d9:58: 19:ed:cc:1d:d2:b9:e3:89:2c:5c:24:56:59:fd:fd:b4:21:c2: 35:56:24:6f:7a:ec:de:00:a0:d3:9a:3a:ca:e2:46:be:67:f3: 2f:1f:bc:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4NzA1MUY3Nzk1 MTU4OTE2NzkwHhcNMjUwNzAxMDIyOTE0WhcNMjUwNzA4MDIyOTE0WjAYMRYwFAYD VQQDEw02ODYzNDdmYS0yY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4zo9mTa7zWUXRsafRRtjw7+2Q8SynckfIVnBLdeU0ux+bUmXhA6kPlUpOkr /USfZ94HQJjjZfm0HSJH304UOv7CbQRr89HTMHHQh8SUZRGTXJ4Q/n8brZyGndAz NRCOq/xojZP5/F9NlBhLVnq+yW9AI9yp6XetSAd/kV0FPM6s1DGCzUIsdVugXdT8 bPEqBR6WFPn6IHgVkMtEeyOhQ+zCYQo+3gHpeTXnt9rXJ1M3dff6Q5/T/ugRwTTQ ee5ESOU3X/Uw++NTVpHqny7tc1XSuZZt1yVNpeh5H+8ka/9/iWbL6JgrpFNVt3/Q gBpoCI8uc9XVrzFest4aZAGXYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFoOQHN3 Vopg56ERcu82AGQ7OlL5MB8GA1UdIwQYMBaAFK1JPcmj0kA0g2KFhwUfd5UViRZ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQxOC9BRDBEQzQ4MDFD NEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FEU0RZb1dIQlI5M2xSV0pG bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVazl5YVBTUURTRFlvV0hCUjkzbFJXSkZuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FE U0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBggWo/Nli0p/MrrXQuw427djR0ZYclS8EBVcGSNyg10ClO1lja4eI2 nlyONSJh7a+So49mQXO9bVH7rbfiJRLEO9CKxW/D4xjf8r7m45aHzUK+sN0B35Ky mudLTsf6PodUHBlPhLabIO7GZzidO1WC7aSzCXpvEC6fCHfap3SyyRRczOX4Z83T kDMY8bqHlqhS/D0NA1lmZzw1zEyEg9SgTq8tT+fgrSoYO8XWM34ZyAwjd+J58kM9 jVbPqxvlLiCW5UOXi0EVVMsMnX6gdLrxzlAr55N42VgZ7cwd0rnjiSxcJFZZ/f20 IcI1ViRveuzeAKDTmjrK4ka+Z/MvH7zu -----END CERTIFICATE-----Generated at Wed Jul 2 15:35:58 2025 by rpki-client