$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: OvXSCBCsc6cBrdF8SxFaBLe2zbIJ+H8eND7kJmQkQpc= Subject key identifier: 36:FF:C5:04:A8:C8:9D:CE:4F:32:C7:AB:B8:E7:44:0D:B9:76:9F:B7 Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: B6 Signing time: Tue 01 Jul 2025 06:39:43 +0000 Manifest this update: Tue 01 Jul 2025 06:39:43 +0000 Manifest next update: Tue 08 Jul 2025 06:39:43 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: 11OyLQIF588RQ7uDch0iaQJVFoNh6cnPeHz+N0EXotk=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: Ge+55CQegGWCZISlkeWVyEDQbw8xhE1lFYLjXYnwl5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:39:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: Jul 1 06:39:43 2025 GMT Not After : Jul 8 06:39:43 2025 GMT Subject: CN=686382af-304d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ff:65:c9:3e:c3:84:ed:b2:a7:a9:69:f0:48: 04:5a:12:45:d9:fe:b0:d0:a9:a7:e9:07:f9:89:92: 03:6c:e0:ff:07:c2:57:86:55:8e:a5:bc:7f:49:01: e1:a7:fd:32:ea:45:f1:ba:d3:e5:f8:fc:c3:c2:ed: 2a:17:53:9b:04:87:db:0e:1b:5b:18:55:9e:91:64: 99:22:ca:07:89:f4:81:6b:f4:d4:99:b1:7c:31:fc: 2b:c2:21:67:d3:c0:6f:ae:1b:f8:8d:cb:1f:43:b3: a5:98:6d:fd:05:14:02:2f:a0:8d:f0:ff:a0:be:29: b9:43:29:a9:cf:60:6e:31:41:8d:68:05:2d:43:4e: 81:69:ff:03:5c:f5:76:23:bb:28:26:59:c3:df:7b: 19:4a:bd:80:32:de:4e:21:9b:92:72:d1:dd:cc:de: 23:56:a6:e3:f1:4d:f4:38:ba:a3:f7:fc:fa:a8:83: 59:0f:e8:d4:f6:f8:03:d7:9d:7b:a5:ef:0a:9b:06: 1b:65:e9:8d:6a:aa:ae:e5:23:a9:11:77:0b:19:f2: ce:a6:28:90:88:2a:63:82:3d:d6:28:75:51:9c:6a: b9:4d:3e:eb:1c:9e:40:02:16:48:fb:e5:c2:79:46: 4d:97:f7:f8:c8:a9:74:44:4c:b2:d7:ed:b0:47:d8: 02:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FF:C5:04:A8:C8:9D:CE:4F:32:C7:AB:B8:E7:44:0D:B9:76:9F:B7 X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c9:1c:ac:8a:7a:a5:80:47:7c:2a:c6:28:c2:6f:3b:4d:c1: 88:f4:48:3a:e0:44:6a:07:a8:43:50:1c:99:6e:95:94:de:7b: a1:66:61:44:b0:7a:23:ab:e0:34:cb:e1:42:4c:a5:c0:ee:52: 49:f5:fa:b5:3a:bc:81:b2:64:7e:27:f8:98:e8:26:10:00:d0: 22:26:2b:f4:71:79:fb:ea:b6:8c:4f:0c:81:ef:52:6e:19:d0: 6c:4d:16:0d:09:76:ce:e4:11:fe:b5:de:e9:57:0e:94:ec:9f: 38:8f:87:fa:40:bc:99:0f:0d:87:eb:d1:f7:ca:6b:4d:32:8a: d5:95:c5:1d:e7:eb:a7:9a:f5:95:dd:1b:96:11:69:a9:23:7c: ca:4f:58:30:90:b2:4a:af:ad:91:9e:52:48:15:4e:23:87:76: c1:d8:c4:ea:02:da:e0:4a:79:ea:a7:f3:22:5d:f6:28:d1:6d: 07:d4:91:d7:9d:d2:c9:11:b2:3d:3c:02:0a:4a:1b:05:a0:7c: 03:03:f7:db:fa:2a:17:6d:12:64:68:52:89:44:fd:18:fe:37: 68:7d:24:5a:0d:99:a9:33:e0:f7:f6:99:04:e3:32:b0:fb:5d: 4c:21:c6:89:d9:21:57:4a:b6:92:df:c7:5c:9d:fe:10:90:d2: e4:23:82:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB RTI3MTExRjAwHhcNMjUwNzAxMDYzOTQzWhcNMjUwNzA4MDYzOTQzWjAYMRYwFAYD VQQDEw02ODYzODJhZi0zMDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxv9lyT7DhO2yp6lp8EgEWhJF2f6w0Kmn6Qf5iZIDbOD/B8JXhlWOpbx/SQHh p/0y6kXxutPl+PzDwu0qF1ObBIfbDhtbGFWekWSZIsoHifSBa/TUmbF8MfwrwiFn 08Bvrhv4jcsfQ7OlmG39BRQCL6CN8P+gvim5Qympz2BuMUGNaAUtQ06Baf8DXPV2 I7soJlnD33sZSr2AMt5OIZuSctHdzN4jVqbj8U30OLqj9/z6qINZD+jU9vgD1517 pe8KmwYbZemNaqqu5SOpEXcLGfLOpiiQiCpjgj3WKHVRnGq5TT7rHJ5AAhZI++XC eUZNl/f4yKl0REyy1+2wR9gC/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDb/xQSo yJ3OTzLHq7jnRA25dp+3MB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1 QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF ZlRJRVZGSVllM1N1SnhFZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBayRysinqlgEd8KsYowm87TcGI9Eg64ERqB6hDUByZbpWU3nuhZmFE sHojq+A0y+FCTKXA7lJJ9fq1OryBsmR+J/iY6CYQANAiJiv0cXn76raMTwyB71Ju GdBsTRYNCXbO5BH+td7pVw6U7J84j4f6QLyZDw2H69H3ymtNMorVlcUd5+unmvWV 3RuWEWmpI3zKT1gwkLJKr62RnlJIFU4jh3bB2MTqAtrgSnnqp/MiXfYo0W0H1JHX ndLJEbI9PAIKShsFoHwDA/fb+ioXbRJkaFKJRP0Y/jdofSRaDZmpM+D39pkE4zKw +11MIcaJ2SFXSraS38dcnf4QkNLkI4Kr -----END CERTIFICATE-----Generated at Thu Jul 3 03:51:08 2025 by rpki-client