$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: aHc1nQt/PD9PPZc3BXcQd6t0LX2VDGhoz16lh+X23GE= Subject key identifier: 30:24:52:34:F5:90:2F:68:02:4D:00:C0:38:E4:B9:69:0B:C8:86:88 Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 0934 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 0910 Signing time: Wed 02 Jul 2025 20:40:04 +0000 Manifest this update: Wed 02 Jul 2025 20:40:04 +0000 Manifest next update: Wed 09 Jul 2025 20:40:04 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: y/QLDdPc80k7AccXqrD3PF+C7+0rSwJKqvo70tL9S5o=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2356 (0x934) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Jul 2 20:40:04 2025 GMT Not After : Jul 9 20:40:04 2025 GMT Subject: CN=68659924-622e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:33:d8:15:9f:15:0d:36:92:ca:49:69:44:73: 06:bb:b0:f6:ff:db:eb:b3:60:b0:a8:25:3c:07:c1: 0c:e7:16:b9:64:91:7b:29:4a:f5:25:bf:2b:ef:2e: 5c:7b:36:55:55:55:09:42:a6:97:f2:77:03:2d:60: 29:44:ec:c2:cf:a8:68:f5:c8:67:a4:b0:92:d7:fa: 0d:1c:48:6d:89:65:c1:91:69:98:8f:43:ec:0b:78: 40:72:c3:98:02:74:05:49:62:30:57:ca:1d:9e:b3: cc:73:5d:a6:82:32:a4:ce:99:9c:bc:f2:fa:77:e9: 7e:00:87:56:25:fb:62:2b:35:68:36:94:65:e3:76: 89:7a:03:c8:b8:b1:a6:de:e6:4f:d5:01:5e:d9:27: 06:99:68:1c:26:45:00:44:30:4d:73:5f:3d:90:0b: 98:a3:69:89:65:65:8b:bb:45:a3:29:cb:ea:cc:e3: a7:e0:bc:98:41:d7:27:07:ce:2f:ff:4e:a2:5e:32: 2a:4d:8b:ef:f2:a6:21:15:a5:c7:c7:4e:94:20:83: 13:ff:93:4d:e2:57:27:4d:65:a2:2a:fc:dc:14:35: 62:50:77:dc:50:83:bd:47:ff:42:09:c5:fd:6c:96: 9b:19:99:28:60:30:e8:70:42:1a:dd:d8:e8:3c:1e: 66:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:24:52:34:F5:90:2F:68:02:4D:00:C0:38:E4:B9:69:0B:C8:86:88 X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:39:fa:53:ee:b4:51:29:3a:70:23:b9:fc:26:10:9c:72:fb: db:96:47:37:d7:2b:36:0b:08:e2:52:a9:fc:12:39:09:4d:17: 69:a1:29:52:70:e7:c7:e3:35:1b:54:16:78:7b:a1:66:2f:e2: 1e:6a:3f:52:4d:9d:da:c7:0f:80:94:85:93:10:b6:d9:6e:df: 88:df:20:ec:56:10:c5:f6:06:e3:20:64:25:92:88:3f:38:12: 0d:cd:37:6b:fa:d9:b3:f3:ff:85:ed:c2:5f:12:04:4c:d4:d5: b1:7f:55:73:fe:88:94:dd:6e:5c:f9:ab:d8:3f:b5:dd:bb:87: f4:0b:b1:58:58:93:5e:95:5e:a8:bf:9b:c8:b1:91:80:f0:cf: 90:f7:91:57:5c:10:69:17:04:96:97:48:82:b2:38:10:e3:15: cb:0c:44:cf:06:70:00:b6:6c:bc:38:1f:24:1c:c0:af:4f:5b: ca:e8:8a:7b:a9:5d:c0:af:0d:d5:ce:51:72:46:ae:0a:79:b5: ca:57:83:52:bd:10:d2:4f:59:9f:54:5f:dd:56:a0:e3:ef:4c: 1a:68:03:31:15:b0:ab:95:bc:55:14:45:58:cd:e9:75:11:60: 12:dc:0c:7e:d0:80:ac:ed:15:09:3e:8a:60:c3:0b:fd:ea:90: 23:25:0f:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwNzAyMjA0MDA0WhcNMjUwNzA5MjA0MDA0WjAYMRYwFAYD VQQDEw02ODY1OTkyNC02MjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzPYFZ8VDTaSyklpRHMGu7D2/9vrs2CwqCU8B8EM5xa5ZJF7KUr1Jb8r7y5c ezZVVVUJQqaX8ncDLWApROzCz6ho9chnpLCS1/oNHEhtiWXBkWmYj0PsC3hAcsOY AnQFSWIwV8odnrPMc12mgjKkzpmcvPL6d+l+AIdWJftiKzVoNpRl43aJegPIuLGm 3uZP1QFe2ScGmWgcJkUARDBNc189kAuYo2mJZWWLu0WjKcvqzOOn4LyYQdcnB84v /06iXjIqTYvv8qYhFaXHx06UIIMT/5NN4lcnTWWiKvzcFDViUHfcUIO9R/9CCcX9 bJabGZkoYDDocEIa3djoPB5mvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAkUjT1 kC9oAk0AwDjkuWkLyIaIMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYOfpT7rRRKTpwI7n8JhCccvvblkc31ys2CwjiUqn8EjkJTRdpoSlS cOfH4zUbVBZ4e6FmL+Ieaj9STZ3axw+AlIWTELbZbt+I3yDsVhDF9gbjIGQlkog/ OBINzTdr+tmz8/+F7cJfEgRM1NWxf1Vz/oiU3W5c+avYP7Xdu4f0C7FYWJNelV6o v5vIsZGA8M+Q95FXXBBpFwSWl0iCsjgQ4xXLDETPBnAAtmy8OB8kHMCvT1vK6Ip7 qV3Arw3VzlFyRq4KebXKV4NSvRDST1mfVF/dVqDj70waaAMxFbCrlbxVFEVYzel1 EWAS3Ax+0ICs7RUJPopgwwv96pAjJQ/y -----END CERTIFICATE-----Generated at Thu Jul 3 06:18:18 2025 by rpki-client