$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: w6i/NNGKJGreG/8wZTMcRn69KIS3Jv4cvsrDlZbN7DY= Subject key identifier: EC:64:D1:2F:FB:FE:E1:76:C5:7A:3F:BF:D1:7B:B7:3A:2C:78:CE:B1 Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 042B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 0420 Signing time: Thu 03 Jul 2025 00:44:17 +0000 Manifest this update: Thu 03 Jul 2025 00:44:17 +0000 Manifest next update: Thu 10 Jul 2025 00:44:17 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: 70UXooq1B6517F25M8xxcP7z1oQVkpdl+BmhvuvtLnk=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: tjoX2rKURmmp0SIpilUWla3AD/nRXhfocceVz0iL1og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:44:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Jul 3 00:44:17 2025 GMT Not After : Jul 10 00:44:17 2025 GMT Subject: CN=6865d261-0dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:08:e9:04:4b:25:9d:59:af:ec:cb:c9:49:62: 46:40:86:53:3a:21:5c:f2:7c:ab:ca:85:94:71:5c: 6a:89:c2:92:ef:e0:17:44:ed:5a:ca:38:b5:e8:aa: ff:5e:db:ff:a3:9a:03:87:8f:81:af:be:6f:db:bd: b5:db:6b:e2:01:ee:01:60:b8:7e:50:8c:56:cc:f4: 2e:cd:a4:93:78:3c:5a:c6:1f:99:43:f7:cb:5e:32: 91:34:b9:09:cd:1b:04:65:51:4d:d4:b2:72:b2:62: 4c:12:b5:d5:40:cb:a5:03:6b:61:62:21:8e:60:82: b4:4f:f2:4e:64:7c:c9:ea:9b:9b:c4:87:47:11:d6: 17:cd:c6:de:9c:4d:98:43:e2:8f:6e:d3:37:57:d3: d1:a9:00:85:8f:4a:4b:71:5b:e4:1f:e5:ba:07:31: 23:86:83:68:8c:d4:59:6c:06:0a:a7:45:f8:d8:0c: 7b:fc:4d:8f:3a:75:08:16:a4:08:89:ae:bf:1d:eb: 2e:dd:b7:04:bf:95:b4:4b:8e:67:4d:94:24:f5:03: fe:f1:28:c0:0b:ff:b0:a6:59:bb:98:38:df:05:20: a0:f2:ce:ae:4c:17:da:97:60:45:e6:4e:f3:53:02: 9a:43:f3:76:a3:02:5d:7c:78:28:1d:e8:30:f3:ae: b6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:64:D1:2F:FB:FE:E1:76:C5:7A:3F:BF:D1:7B:B7:3A:2C:78:CE:B1 X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:f8:15:a3:6f:19:af:20:ee:15:08:18:44:7f:ea:be:61:4f: 9b:99:f3:f5:a3:28:99:41:c7:ac:7e:2a:5c:af:8c:fc:fb:da: ba:7e:3b:17:8d:11:4b:ef:18:0f:3b:7f:29:06:6a:ed:17:0d: 96:8c:b8:54:8f:23:3e:af:c9:de:2f:c6:1f:07:4a:dc:45:90: 1e:98:8d:0d:1d:e7:48:e2:e7:a0:bc:0d:31:d9:dc:0f:27:cf: 64:84:ef:17:c2:d0:6f:67:96:20:3a:c9:d9:de:ac:74:54:38: 6b:33:20:a8:dc:54:92:1a:8f:e7:81:63:6b:77:12:de:10:2d: 0b:2c:c0:eb:d9:20:8d:60:b6:ac:d1:a1:1a:8e:1c:33:d3:ab: 7a:76:cd:2e:a1:29:11:23:5a:66:76:11:98:f1:c7:01:12:17: 34:33:a0:24:f7:c3:ae:29:62:56:56:b6:8a:9f:6a:ab:38:e8: e7:31:20:4c:78:b6:95:11:fc:8d:9b:37:b9:0f:ed:a1:5f:e3: de:0d:49:07:68:59:71:20:00:78:e8:bd:a3:a1:9b:de:b7:c6: 5c:43:97:a1:42:ab:c6:08:5a:bb:9c:6c:25:ba:4c:a1:d0:aa: 02:cb:6d:e0:51:0a:9c:f2:eb:05:5b:21:8e:5d:67:01:16:b8: 5a:4c:4a:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjUwNzAzMDA0NDE3WhcNMjUwNzEwMDA0NDE3WjAYMRYwFAYD VQQDEw02ODY1ZDI2MS0wZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQjpBEslnVmv7MvJSWJGQIZTOiFc8nyryoWUcVxqicKS7+AXRO1ayji16Kr/ Xtv/o5oDh4+Br75v272122viAe4BYLh+UIxWzPQuzaSTeDxaxh+ZQ/fLXjKRNLkJ zRsEZVFN1LJysmJMErXVQMulA2thYiGOYIK0T/JOZHzJ6pubxIdHEdYXzcbenE2Y Q+KPbtM3V9PRqQCFj0pLcVvkH+W6BzEjhoNojNRZbAYKp0X42Ax7/E2POnUIFqQI ia6/Hesu3bcEv5W0S45nTZQk9QP+8SjAC/+wplm7mDjfBSCg8s6uTBfal2BF5k7z UwKaQ/N2owJdfHgoHegw86629QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxk0S/7 /uF2xXo/v9F7tzoseM6xMB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4+BWjbxmvIO4VCBhEf+q+YU+bmfP1oyiZQcesfipcr4z8+9q6fjsX jRFL7xgPO38pBmrtFw2WjLhUjyM+r8neL8YfB0rcRZAemI0NHedI4uegvA0x2dwP J89khO8XwtBvZ5YgOsnZ3qx0VDhrMyCo3FSSGo/ngWNrdxLeEC0LLMDr2SCNYLas 0aEajhwz06t6ds0uoSkRI1pmdhGY8ccBEhc0M6Ak98OuKWJWVraKn2qrOOjnMSBM eLaVEfyNmze5D+2hX+PeDUkHaFlxIAB46L2joZvet8ZcQ5ehQqvGCFq7nGwlukyh 0KoCy23gUQqc8usFWyGOXWcBFrhaTEqT -----END CERTIFICATE-----Generated at Thu Jul 3 06:12:09 2025 by rpki-client