$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft File: u3-5V71tGEoIkjFpTPg4nbaI_lM.mft (raw, json) Hash identifier: euGfITpA+w6ZDcpOr1VoWFU2hpomsgG3/RMZ7wG7IPY= Subject key identifier: 31:99:08:9A:F0:22:B7:6E:77:8C:B7:37:AE:29:C1:85:9F:BE:F1:29 Authority key identifier: BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 Certificate issuer: /CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Certificate serial: 0466 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft Manifest number: 0461 Signing time: Thu 03 Jul 2025 00:30:35 +0000 Manifest this update: Thu 03 Jul 2025 00:30:34 +0000 Manifest next update: Thu 10 Jul 2025 00:30:34 +0000 Files and hashes: 1: u3-5V71tGEoIkjFpTPg4nbaI_lM.crl (hash: +be+HZ9uL2Kd8UcUxr2AomTsJoi4HS9bgisQbEIW0fQ=) 2: 12702794577711ECB7FD0C6FC4F9AE02.roa (hash: XOYLtUkvxxhHrcsvmr5WB+I6ZV608DvzcypTgdpZOb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:30:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1126 (0x466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39A9, serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Validity Not Before: Jul 3 00:30:34 2025 GMT Not After : Jul 10 00:30:34 2025 GMT Subject: CN=6865cf2a-a586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5f:84:9b:2a:c0:59:b1:42:0d:12:f1:0b:88: 1e:37:2d:a5:1a:3f:4e:7e:8e:19:2c:9b:39:36:16: 47:fc:00:da:f2:c9:7b:7a:79:ec:12:8b:d2:03:a1: 18:0f:06:bc:39:d4:f7:83:ae:0f:52:ba:cb:03:ae: 45:84:d5:50:18:72:c4:6b:e3:25:b2:d7:07:88:73: 2b:f7:a4:e9:26:32:03:46:24:6f:2c:8b:ab:a3:e6: ce:28:cf:8f:f5:8e:ee:1e:98:84:3a:85:ca:19:40: d8:94:c3:46:3a:54:21:7e:21:d2:a0:76:bf:0f:49: c5:d5:9d:dd:3a:19:90:80:50:5f:cf:27:08:d5:04: e5:51:76:01:5a:f0:1e:4e:89:1f:5e:dc:0d:c8:44: 24:28:9a:e0:7e:69:55:d7:ef:62:52:f1:19:ef:43: 8a:34:53:fe:5e:c9:80:06:64:62:d9:a2:0f:0c:fa: fa:38:2a:f2:07:3c:3b:43:da:08:86:f4:c9:73:18: 93:91:e8:dc:cf:84:a5:8c:73:1f:bf:97:9b:90:84: fa:1a:21:46:4d:db:76:e6:4d:77:df:bf:b0:fa:68: 1f:e2:d2:35:15:14:bb:54:01:80:22:bc:1d:6f:fa: b9:47:4c:1f:91:04:3b:49:c0:45:74:0f:82:bc:b3: 5e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:99:08:9A:F0:22:B7:6E:77:8C:B7:37:AE:29:C1:85:9F:BE:F1:29 X509v3 Authority Key Identifier: keyid:BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:f1:77:3b:80:9f:d0:56:55:73:8b:b9:73:f7:ac:a4:e2:48: 52:11:3e:0f:ec:2b:a5:0b:50:e3:86:7d:50:96:fe:45:76:05: 33:96:12:81:77:ed:d9:6b:59:83:11:55:d5:f0:c9:21:a1:6c: 54:48:e6:07:3d:45:ed:35:b7:a0:5f:75:84:e3:54:4e:81:81: 26:be:c7:d1:0c:75:c2:eb:b2:df:b0:88:bc:df:19:a3:2d:5f: e6:63:c3:8a:5d:d4:00:0f:6b:be:1c:95:e5:31:1a:ab:09:cb: 64:37:f0:d4:b5:dd:75:f1:66:bd:4f:1e:70:a5:88:9a:b1:3e: 56:5d:de:d2:dc:f9:3b:ad:13:14:e4:75:78:76:17:80:96:bd: a0:74:81:29:d6:4b:95:6f:4b:a3:0a:f6:7e:ee:8a:54:55:b5: e8:9f:7a:99:df:3e:62:ec:7d:9e:18:13:93:ac:8f:46:cd:24: e7:29:c6:74:95:c4:ec:ad:c1:a0:08:e9:a6:4e:a7:5a:95:ef: b1:2a:0b:f8:18:f5:4f:91:f7:9e:e9:62:3a:90:6b:92:27:bb: 5e:f9:99:0a:9a:a3:36:25:a4:48:27:b2:13:0b:6d:ea:c3:b8: e9:cc:37:48:19:b2:d8:2a:af:b4:00:ca:96:57:d2:11:7e:c9: 44:49:99:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5QTkxMTAvBgNVBAUTKEJCN0ZCOTU3QkQ2RDE4NEEwODkyMzE2OTRDRjgzODlE QjY4OEZFNTMwHhcNMjUwNzAzMDAzMDM0WhcNMjUwNzEwMDAzMDM0WjAYMRYwFAYD VQQDEw02ODY1Y2YyYS1hNTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1l+EmyrAWbFCDRLxC4geNy2lGj9Ofo4ZLJs5NhZH/ADa8sl7ennsEovSA6EY Dwa8OdT3g64PUrrLA65FhNVQGHLEa+MlstcHiHMr96TpJjIDRiRvLIuro+bOKM+P 9Y7uHpiEOoXKGUDYlMNGOlQhfiHSoHa/D0nF1Z3dOhmQgFBfzycI1QTlUXYBWvAe TokfXtwNyEQkKJrgfmlV1+9iUvEZ70OKNFP+XsmABmRi2aIPDPr6OCryBzw7Q9oI hvTJcxiTkejcz4SljHMfv5ebkIT6GiFGTdt25k1337+w+mgf4tI1FRS7VAGAIrwd b/q5R0wfkQQ7ScBFdA+CvLNe3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGZCJrw Irdud4y3N64pwYWfvvEpMB8GA1UdIwQYMBaAFLt/uVe9bRhKCJIxaUz4OJ22iP5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlBOS81MjU0ODZCODU2 NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdFb0lrakZwVFBnNG5iYUlf bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzLTVWNzF0R0VvSWtqRnBUUGc0bmJhSV9sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzlBOS81MjU0ODZCODU2NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdF b0lrakZwVFBnNG5iYUlfbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw8Xc7gJ/QVlVzi7lz96yk4khSET4P7CulC1Djhn1Qlv5FdgUzlhKB d+3Za1mDEVXV8MkhoWxUSOYHPUXtNbegX3WE41ROgYEmvsfRDHXC67LfsIi83xmj LV/mY8OKXdQAD2u+HJXlMRqrCctkN/DUtd118Wa9Tx5wpYiasT5WXd7S3Pk7rRMU 5HV4dheAlr2gdIEp1kuVb0ujCvZ+7opUVbXon3qZ3z5i7H2eGBOTrI9GzSTnKcZ0 lcTsrcGgCOmmTqdale+xKgv4GPVPkfee6WI6kGuSJ7te+ZkKmqM2JaRIJ7ITC23q w7jpzDdIGbLYKq+0AMqWV9IRfslESZm4 -----END CERTIFICATE-----Generated at Fri Jul 4 08:16:19 2025 by rpki-client