$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: qwC5rXIuTazxLYx7h4hnUfyPkZNhHnpDTdy7PmHwGlA= Subject key identifier: 99:72:56:34:C1:D3:60:A1:E2:7C:F7:D6:1C:44:05:72:30:8E:58:F0 Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 039B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 0395 Signing time: Thu 03 Jul 2025 01:11:35 +0000 Manifest this update: Thu 03 Jul 2025 01:11:35 +0000 Manifest next update: Thu 10 Jul 2025 01:11:35 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: /7FcqZGCBUuMgvlneBeD+bghAFfTcc/3hlVMU383DiA=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 923 (0x39b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Jul 3 01:11:35 2025 GMT Not After : Jul 10 01:11:35 2025 GMT Subject: CN=6865d8c7-043e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:c9:8f:c1:ca:df:4f:fc:14:71:0b:5f:21: 57:b5:2a:5c:41:04:5d:b4:67:3e:b1:ef:cb:2b:87: 51:b8:0c:cb:7b:3e:48:5a:19:1c:c7:5d:ef:dc:57: a9:bb:d6:dd:da:63:2a:7a:ec:49:09:fc:fa:be:fa: 08:26:36:03:9a:f0:8a:51:b7:73:77:3e:3e:3b:eb: 57:5d:cd:0e:70:62:13:04:54:63:4b:25:15:80:bb: bf:c0:ce:f8:51:ec:a6:7a:7c:f9:67:17:75:50:af: d4:57:eb:72:02:ca:14:b2:33:82:87:5b:f7:5e:2d: f3:6f:0d:07:95:ca:20:63:bd:be:ba:da:ad:f0:a9: 1c:b9:70:f1:e8:58:e8:21:95:25:30:77:e5:40:ed: 6b:e9:ef:58:46:cf:31:eb:66:ae:67:f1:dd:01:a5: 38:84:42:cc:76:a9:03:8d:de:d7:38:32:01:ce:76: af:a6:67:d4:22:3c:70:53:9f:28:93:ea:16:a6:56: 0a:2b:da:ed:bb:a9:a6:eb:fd:ec:b7:9e:b2:53:59: 2e:68:cc:b5:39:0b:db:d6:d6:b4:aa:07:6e:13:cc: a5:23:03:29:3f:92:c8:14:39:89:ed:10:45:52:b1: cd:f5:7e:b8:19:14:57:fb:e4:35:ab:4c:9a:a0:e3: 5b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:72:56:34:C1:D3:60:A1:E2:7C:F7:D6:1C:44:05:72:30:8E:58:F0 X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:83:3e:bd:0d:5e:3c:f9:90:c8:2e:4e:d1:13:ba:8b:7f:b1: 0d:99:b5:b2:25:0e:e6:2f:0a:45:2a:cb:8b:9f:51:96:7f:a0: 73:6e:de:d9:8f:fc:5d:b7:b2:4f:de:f7:6e:a0:bb:c4:45:46: 09:7b:bc:e3:c2:85:f4:10:bb:55:b1:18:bd:55:8a:fc:24:d5: da:91:3e:80:57:05:e3:12:18:ea:09:a9:1c:c6:e3:ae:bb:44: 29:74:f9:4f:d4:c7:13:0e:f1:6f:f1:e5:5f:12:1e:3a:41:4c: 32:a2:33:34:6f:79:d9:ec:4f:78:28:7e:96:a8:4d:e2:9c:30: e3:8a:0a:bc:57:07:e1:13:40:d0:80:ae:c8:6e:cb:7d:ff:29: 0c:ce:45:5f:fd:7d:d0:25:54:c8:f8:d1:fd:2a:c1:a7:a0:70: 71:fa:99:c8:1b:8f:e5:5e:0c:be:02:80:f2:22:66:e3:21:da: c4:90:bd:d0:9f:56:b8:50:4e:83:75:14:fd:3f:bb:eb:eb:9c: 45:f7:35:2d:22:aa:2f:c8:24:f8:4e:1f:18:fa:18:3e:cf:09: 99:9c:9e:f0:c5:d3:ce:df:fe:c6:03:a7:49:00:c2:93:ae:42: 6e:f6:d4:12:f8:ff:93:9e:e3:39:aa:2b:9d:e0:14:bc:65:86: b7:59:b9:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUwNzAzMDExMTM1WhcNMjUwNzEwMDExMTM1WjAYMRYwFAYD VQQDEw02ODY1ZDhjNy0wNDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq77Jj8HK30/8FHELXyFXtSpcQQRdtGc+se/LK4dRuAzLez5IWhkcx13v3Fep u9bd2mMqeuxJCfz6vvoIJjYDmvCKUbdzdz4+O+tXXc0OcGITBFRjSyUVgLu/wM74 Ueymenz5Zxd1UK/UV+tyAsoUsjOCh1v3Xi3zbw0HlcogY72+utqt8KkcuXDx6Fjo IZUlMHflQO1r6e9YRs8x62auZ/HdAaU4hELMdqkDjd7XODIBznavpmfUIjxwU58o k+oWplYKK9rtu6mm6/3st56yU1kuaMy1OQvb1ta0qgduE8ylIwMpP5LIFDmJ7RBF UrHN9X64GRRX++Q1q0yaoONb+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlyVjTB 02Ch4nz31hxEBXIwjljwMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRgz69DV48+ZDILk7RE7qLf7ENmbWyJQ7mLwpFKsuLn1GWf6Bzbt7Z j/xdt7JP3vduoLvERUYJe7zjwoX0ELtVsRi9VYr8JNXakT6AVwXjEhjqCakcxuOu u0QpdPlP1McTDvFv8eVfEh46QUwyojM0b3nZ7E94KH6WqE3inDDjigq8VwfhE0DQ gK7Ibst9/ykMzkVf/X3QJVTI+NH9KsGnoHBx+pnIG4/lXgy+AoDyImbjIdrEkL3Q n1a4UE6DdRT9P7vr65xF9zUtIqovyCT4Th8Y+hg+zwmZnJ7wxdPO3/7GA6dJAMKT rkJu9tQS+P+TnuM5qiud4BS8ZYa3WbnL -----END CERTIFICATE-----Generated at Fri Jul 4 21:50:43 2025 by rpki-client