$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: vTkqL8E9XLHS5ZyQD1kA/HtDuJ5Fnx20JgIaO2KDYzU= Subject key identifier: ED:6C:38:A6:B7:72:47:12:99:41:7E:7A:92:D4:D6:90:CA:A2:C7:38 Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 0512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 0508 Signing time: Wed 02 Jul 2025 23:59:36 +0000 Manifest this update: Wed 02 Jul 2025 23:59:36 +0000 Manifest next update: Wed 09 Jul 2025 23:59:36 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: NCzbCvVKsNX2VR944qwIBNSqA8evLSyezTwUR2G6gus=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: clmx/oQr73cJ/dvXJjULbQlKZ0MXrmzLfgGRONsfwYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1298 (0x512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490, serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: Jul 2 23:59:36 2025 GMT Not After : Jul 9 23:59:36 2025 GMT Subject: CN=6865c7e8-1f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ab:9a:6a:bd:df:25:d5:10:66:51:cb:78:4c: 08:39:18:e0:88:cc:fd:d9:2e:c6:64:aa:62:20:8c: fe:af:eb:14:8c:d0:ef:2d:1c:3c:4f:53:12:e5:7a: de:85:22:e5:0f:64:f2:2c:25:05:8b:94:93:1f:d8: 87:35:ad:b3:c5:e4:6d:76:e4:b9:e0:56:d9:d0:09: 56:63:22:b2:9a:03:50:d5:0d:e9:a7:9d:cc:0c:27: 40:ed:87:47:b3:6e:a5:88:cb:11:14:28:56:a6:86: 7e:bf:7c:f6:07:7d:25:b4:00:cb:2a:fa:d7:01:73: 56:07:4b:af:c7:64:45:2f:58:f9:0a:70:28:4a:e0: 20:5d:99:ee:79:50:5e:32:5e:52:e7:98:4d:d6:f1: 6f:f8:11:b2:e9:57:9d:05:67:26:c5:9e:36:dc:06: ed:78:61:5e:7f:1c:d6:1f:a8:b7:6e:cc:b9:71:1a: b9:45:cb:a8:8c:a3:e0:3a:f5:f7:b2:7d:40:e4:4a: 44:fb:70:9e:0a:c6:48:ce:a7:7d:32:17:51:69:95: 23:ed:b5:a4:a0:59:be:2a:02:d0:01:18:6b:42:8d: 8a:a3:be:7f:d1:65:67:64:99:33:65:7c:62:88:e3: ba:09:2b:2f:f1:08:87:8b:22:0e:b0:7e:26:4a:87: 0b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:6C:38:A6:B7:72:47:12:99:41:7E:7A:92:D4:D6:90:CA:A2:C7:38 X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:be:7a:8f:1e:47:84:73:07:e0:e5:9c:95:cc:79:85:83:59: 61:ad:d3:3b:8a:72:91:c7:07:92:4b:f5:5f:95:21:6e:8c:60: 17:0c:81:01:7a:85:e7:f5:82:59:af:2b:89:71:a1:0f:8b:53: dc:66:8b:bf:6f:50:a0:80:50:59:af:50:0f:14:11:a4:84:0f: 45:40:8c:92:4a:ab:b9:e2:1a:d1:e8:5f:53:26:61:82:f5:ce: 16:5b:bb:ac:e1:d4:d5:f4:d3:24:00:c4:5e:12:e1:d2:79:84: 23:63:14:f8:64:31:4d:33:9e:9e:74:6f:40:c8:08:83:eb:00: 2d:83:38:7c:a6:bd:b2:ef:4a:d4:bc:a5:70:9a:fc:6f:ef:24: f8:95:4c:a8:23:cf:d5:b3:94:e1:35:5a:4d:59:23:83:d3:04: a6:50:83:34:c8:0a:38:28:73:37:f5:75:9f:c8:80:98:43:9e: f2:a3:81:78:d1:5c:d8:09:b6:41:89:e4:86:20:8a:b4:48:87: 50:4b:75:44:b3:ee:31:b8:6b:b8:4a:dc:7a:e8:c0:b4:8c:50: 0d:5e:81:96:7b:9c:78:36:f1:98:4e:15:81:f8:aa:ee:09:34: ab:19:22:69:57:59:9b:d7:b4:6f:b5:07:a6:a1:27:6b:b2:b9: 1b:c4:cd:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjUwNzAyMjM1OTM2WhcNMjUwNzA5MjM1OTM2WjAYMRYwFAYD VQQDEw02ODY1YzdlOC0xZjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2auaar3fJdUQZlHLeEwIORjgiMz92S7GZKpiIIz+r+sUjNDvLRw8T1MS5Xre hSLlD2TyLCUFi5STH9iHNa2zxeRtduS54FbZ0AlWYyKymgNQ1Q3pp53MDCdA7YdH s26liMsRFChWpoZ+v3z2B30ltADLKvrXAXNWB0uvx2RFL1j5CnAoSuAgXZnueVBe Ml5S55hN1vFv+BGy6VedBWcmxZ423AbteGFefxzWH6i3bsy5cRq5RcuojKPgOvX3 sn1A5EpE+3CeCsZIzqd9MhdRaZUj7bWkoFm+KgLQARhrQo2Ko75/0WVnZJkzZXxi iOO6CSsv8QiHiyIOsH4mSocLVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1sOKa3 ckcSmUF+epLU1pDKosc4MB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyvnqPHkeEcwfg5ZyVzHmFg1lhrdM7inKRxweSS/VflSFujGAXDIEB eoXn9YJZryuJcaEPi1PcZou/b1CggFBZr1APFBGkhA9FQIySSqu54hrR6F9TJmGC 9c4WW7us4dTV9NMkAMReEuHSeYQjYxT4ZDFNM56edG9AyAiD6wAtgzh8pr2y70rU vKVwmvxv7yT4lUyoI8/Vs5ThNVpNWSOD0wSmUIM0yAo4KHM39XWfyICYQ57yo4F4 0VzYCbZBieSGIIq0SIdQS3VEs+4xuGu4Stx66MC0jFANXoGWe5x4NvGYThWB+Kru CTSrGSJpV1mb17RvtQemoSdrsrkbxM3v -----END CERTIFICATE-----Generated at Thu Jul 3 14:16:32 2025 by rpki-client