$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: Km0Qtw61eChLvhGe2r0Plig0r4N/SmitCt7G2bYP/xc= Subject key identifier: F7:68:60:ED:F5:B1:95:3E:79:05:24:F2:9C:23:A3:70:F9:8C:27:1E Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: AA Signing time: Thu 03 Jul 2025 06:19:30 +0000 Manifest this update: Thu 03 Jul 2025 06:19:30 +0000 Manifest next update: Thu 10 Jul 2025 06:19:30 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: EAMD1335JlPnoHR5gSvxe/0iSplXruCrCmN7yvNJthI=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Jul 3 06:19:30 2025 GMT Not After : Jul 10 06:19:30 2025 GMT Subject: CN=686620f2-3c6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:00:27:3a:a0:f7:c2:a4:f0:47:3a:d9:87:44: 67:6d:cc:85:10:77:d5:bd:1b:7a:a1:a2:54:be:dd: 02:25:bf:d6:53:61:67:c8:a1:e8:d4:be:e7:40:6b: dd:58:40:3b:f4:dc:85:5e:08:d9:14:a3:4e:64:21: 1b:85:b9:13:7b:bc:c1:c4:53:cd:3e:fa:72:34:ab: 5f:2f:9b:88:dc:51:c1:39:86:b4:92:be:e4:d5:f6: 6e:32:aa:cd:fb:fc:4e:52:72:2b:03:a3:e5:09:e0: 52:20:6d:20:66:70:c3:f4:37:1f:dd:19:7b:bc:69: 4c:aa:6e:43:6d:82:2f:5a:73:f1:b8:96:3b:bc:06: 7f:5d:eb:b5:fb:3f:55:20:c5:d3:64:32:06:67:d3: 58:7d:12:e2:ce:b0:f2:06:78:13:60:34:7d:a4:70: 14:1a:42:ef:8e:e7:98:b1:62:06:80:5d:fa:c8:8d: 9a:60:60:ff:a4:f2:88:45:7b:d5:87:32:fa:20:23: a3:0d:d7:13:a5:a0:08:92:31:09:04:ec:3c:02:07: 81:2c:75:1a:bf:3a:ea:68:11:36:aa:51:61:01:38: f1:ac:08:41:4a:3d:a8:e3:78:1c:fb:0c:75:0a:fa: 49:ce:39:0c:86:e4:bd:e2:da:74:83:17:f8:a8:db: 4b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:68:60:ED:F5:B1:95:3E:79:05:24:F2:9C:23:A3:70:F9:8C:27:1E X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:74:89:d6:65:26:70:a4:3b:24:fe:79:3f:f7:89:5a:38:b6: 58:86:ec:27:f2:5c:38:c2:19:1a:df:ba:90:d2:00:8a:90:62: 1f:82:7a:90:d9:39:99:55:3b:af:08:5a:e1:86:8f:f4:7d:86: 21:12:03:e8:8f:a9:3b:6c:70:e0:e7:1c:7a:6d:ad:51:b6:f0: f1:11:82:66:e9:80:3a:85:6d:f5:7a:25:16:49:10:9c:48:67: 48:ec:bb:20:00:fe:1e:9b:a3:96:ae:b2:73:ba:d4:01:62:6c: 16:fe:79:b0:16:60:4e:3f:ca:75:16:ca:df:ed:0d:d9:44:19: 04:c9:6f:c8:a4:00:f1:50:b4:df:12:db:5d:06:8c:b2:c5:7a: 95:0b:e7:25:87:76:57:1d:68:f2:73:16:f9:e8:93:26:4e:ec: 33:11:d9:7d:b6:ba:38:d2:c3:66:85:87:8a:13:85:94:ad:02: 68:24:ef:47:61:50:ff:6a:4a:77:31:26:ee:51:b9:82:33:0c: ae:73:c5:37:57:b1:61:9a:d4:a2:e9:da:18:e8:e6:b2:ef:59: 2d:fd:36:ce:67:af:a7:59:7e:f6:05:fe:4f:a0:5a:b2:96:fa: a0:85:e8:c4:d4:4c:be:f8:e7:bf:86:8c:f6:63:8b:fc:51:93: 7e:6e:f5:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUwNzAzMDYxOTMwWhcNMjUwNzEwMDYxOTMwWjAYMRYwFAYD VQQDEw02ODY2MjBmMi0zYzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwAnOqD3wqTwRzrZh0RnbcyFEHfVvRt6oaJUvt0CJb/WU2FnyKHo1L7nQGvd WEA79NyFXgjZFKNOZCEbhbkTe7zBxFPNPvpyNKtfL5uI3FHBOYa0kr7k1fZuMqrN +/xOUnIrA6PlCeBSIG0gZnDD9Dcf3Rl7vGlMqm5DbYIvWnPxuJY7vAZ/Xeu1+z9V IMXTZDIGZ9NYfRLizrDyBngTYDR9pHAUGkLvjueYsWIGgF36yI2aYGD/pPKIRXvV hzL6ICOjDdcTpaAIkjEJBOw8AgeBLHUavzrqaBE2qlFhATjxrAhBSj2o43gc+wx1 CvpJzjkMhuS94tp0gxf4qNtL1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdoYO31 sZU+eQUk8pwjo3D5jCceMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3dInWZSZwpDsk/nk/94laOLZYhuwn8lw4whka37qQ0gCKkGIfgnqQ 2TmZVTuvCFrhho/0fYYhEgPoj6k7bHDg5xx6ba1RtvDxEYJm6YA6hW31eiUWSRCc SGdI7LsgAP4em6OWrrJzutQBYmwW/nmwFmBOP8p1Fsrf7Q3ZRBkEyW/IpADxULTf EttdBoyyxXqVC+clh3ZXHWjycxb56JMmTuwzEdl9tro40sNmhYeKE4WUrQJoJO9H YVD/akp3MSbuUbmCMwyuc8U3V7FhmtSi6doY6Oay71kt/TbOZ6+nWX72Bf5PoFqy lvqghejE1Ey++Oe/hoz2Y4v8UZN+bvWZ -----END CERTIFICATE-----Generated at Fri Jul 4 15:22:19 2025 by rpki-client