$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft (raw, json) Hash identifier: IJFqXzDntWXq3FYqzAb0bqtEbps6QLt17IpT3shu7BM= Subject key identifier: C5:72:E7:A5:F6:DD:D1:90:B9:3A:CB:3B:1D:43:31:A9:88:C3:94:F3 Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 09EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft Manifest number: 09E3 Signing time: Wed 02 Jul 2025 20:07:42 +0000 Manifest this update: Wed 02 Jul 2025 20:07:41 +0000 Manifest next update: Wed 09 Jul 2025 20:07:41 +0000 Files and hashes: 1: UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl (hash: d0TCTkfjTAOugWBW3Bo89O9fyOaq/r8Il3cGe9stAbM=) 2: 21028CF67EF811EAAD47CD30C4F9AE02.roa (hash: +gB8ZHO5MMKVGP2yT3GNNhFPo53EwfTpImIrJ+ySljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2538 (0x9ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Jul 2 20:07:41 2025 GMT Not After : Jul 9 20:07:41 2025 GMT Subject: CN=6865918e-0867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d2:06:a2:8d:ec:6a:54:d5:23:70:11:cc:fe: 93:f9:cf:61:f8:e0:91:ab:53:d1:9b:84:1e:40:dd: f7:f5:5f:03:5d:18:70:a4:27:e2:00:2d:81:66:c1: 41:ae:40:d5:cb:1a:76:b4:7c:8b:7c:98:fa:16:5d: 49:95:c6:00:ce:9e:d6:d1:07:7d:a6:42:fa:41:d3: 51:59:4e:23:3c:05:65:53:2e:f7:36:3c:f4:cd:d1: d6:8d:f5:a2:27:0f:50:57:29:00:a9:c8:da:2a:6e: e0:e7:3c:79:49:12:1e:58:59:af:ad:33:89:94:b3: 8f:2b:bb:06:2c:ae:f6:3f:64:e6:dc:f5:ad:76:80: 11:0f:da:a3:71:65:3e:54:96:9c:9b:10:b1:7e:58: 35:f9:8e:15:ba:51:54:c5:80:ce:78:2a:65:10:67: a7:35:fb:9a:9e:90:ea:c4:08:3b:1d:83:44:87:33: 79:30:69:3a:18:4c:70:2e:5b:e1:94:71:cf:ad:d6: ac:0e:2c:30:26:e7:ca:6e:02:f6:b5:15:5b:06:be: ba:94:1b:52:58:71:43:2c:d8:aa:66:76:a1:54:f1: 66:ed:9b:d2:10:5b:d3:7b:8e:4a:65:52:9a:ca:bf: 1f:a5:e2:b1:bf:30:37:ad:ab:de:a6:ce:aa:dd:1b: f2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:72:E7:A5:F6:DD:D1:90:B9:3A:CB:3B:1D:43:31:A9:88:C3:94:F3 X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:a0:ca:20:4f:fa:74:71:e5:39:57:f4:44:e9:0f:56:f8:65: 1a:fc:14:fb:1e:51:0b:ce:26:dd:7e:c0:5c:f8:5e:ea:36:28: f9:bf:a5:95:da:66:ae:b5:70:5a:79:c2:81:4c:21:a8:81:14: 37:f8:66:1f:a0:35:22:e4:cd:5a:91:4e:38:78:e8:5c:26:47: 31:4b:2b:61:a3:34:98:69:c5:83:45:5f:d9:86:f1:3e:63:70: f4:e4:df:1d:15:10:0e:1f:b6:b2:f9:7f:ca:16:37:72:a8:b0: 5b:87:36:1d:13:91:6b:a6:7f:80:61:a6:a8:4e:d3:1f:9d:42: 98:de:dc:b0:01:86:20:ea:b8:c5:5d:f1:aa:4e:1f:6e:3a:62: a7:0c:c3:9e:05:1f:11:34:3b:76:95:4e:15:87:35:7a:7e:2f: e6:e0:ed:da:7d:d5:81:07:d5:4c:49:5a:62:f4:b2:17:66:51: 40:54:16:d6:f3:d9:31:71:85:91:89:28:8a:e7:25:66:50:08: 84:39:35:6e:07:ca:82:58:1b:40:cc:5f:4e:26:a0:a9:19:a7: e8:da:15:50:3c:59:ed:4e:b1:ec:18:a7:a3:04:20:49:50:69: 5b:6d:9e:8a:00:e5:7a:cb:80:ff:ce:29:63:18:98:93:0e:84: 24:10:1a:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjUwNzAyMjAwNzQxWhcNMjUwNzA5MjAwNzQxWjAYMRYwFAYD VQQDEw02ODY1OTE4ZS0wODY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9IGoo3salTVI3ARzP6T+c9h+OCRq1PRm4QeQN339V8DXRhwpCfiAC2BZsFB rkDVyxp2tHyLfJj6Fl1JlcYAzp7W0Qd9pkL6QdNRWU4jPAVlUy73Njz0zdHWjfWi Jw9QVykAqcjaKm7g5zx5SRIeWFmvrTOJlLOPK7sGLK72P2Tm3PWtdoARD9qjcWU+ VJacmxCxflg1+Y4VulFUxYDOeCplEGenNfuanpDqxAg7HYNEhzN5MGk6GExwLlvh lHHPrdasDiwwJufKbgL2tRVbBr66lBtSWHFDLNiqZnahVPFm7ZvSEFvTe45KZVKa yr8fpeKxvzA3raveps6q3Rvy9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVy56X2 3dGQuTrLOx1DMamIw5TzMB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQ aW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVoMogT/p0ceU5V/RE6Q9W+GUa/BT7HlELzibdfsBc+F7qNij5v6WV 2mautXBaecKBTCGogRQ3+GYfoDUi5M1akU44eOhcJkcxSythozSYacWDRV/ZhvE+ Y3D05N8dFRAOH7ay+X/KFjdyqLBbhzYdE5Frpn+AYaaoTtMfnUKY3tywAYYg6rjF XfGqTh9uOmKnDMOeBR8RNDt2lU4VhzV6fi/m4O3afdWBB9VMSVpi9LIXZlFAVBbW 89kxcYWRiSiK5yVmUAiEOTVuB8qCWBtAzF9OJqCpGafo2hVQPFntTrHsGKejBCBJ UGlbbZ6KAOV6y4D/ziljGJiTDoQkEBo5 -----END CERTIFICATE-----Generated at Thu Jul 3 08:57:53 2025 by rpki-client