$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft File: 4UieBUVuksrXFYRyAOSnXWw-Q84.mft (raw, json) Hash identifier: RbT/YNCjkDUPFsuiuKe+YjEzoJeol4VFMMKttvTnhlw= Subject key identifier: 9C:57:16:6A:40:79:30:FA:63:01:37:6C:41:92:AD:4D:F7:27:33:55 Authority key identifier: E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE Certificate issuer: /CN=A91F6AE0/serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Certificate serial: 02DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft Manifest number: 02D4 Signing time: Thu 03 Jul 2025 02:06:18 +0000 Manifest this update: Thu 03 Jul 2025 02:06:17 +0000 Manifest next update: Thu 10 Jul 2025 02:06:17 +0000 Files and hashes: 1: 4UieBUVuksrXFYRyAOSnXWw-Q84.crl (hash: /+Kd4B/QDP96UFRby0HTioGqqcm1A7irIoAHL3M0law=) 2: E2DF828CF20211ECBCC9B986C4F9AE02.roa (hash: z4QSZHsaMIqrT5GqWS+ItSZJBTmn9r2MlyBM2UIg/g4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6AE0, serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Validity Not Before: Jul 3 02:06:17 2025 GMT Not After : Jul 10 02:06:17 2025 GMT Subject: CN=6865e599-97af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:70:12:0b:4d:0b:b9:49:91:d0:d2:fb:d1:02: 44:00:ed:68:d3:d9:fd:74:17:d7:7c:c4:c7:25:e1: d4:04:2c:03:d7:da:4d:16:38:54:bf:fe:f0:2f:82: bc:2d:27:d1:55:d1:8c:8c:3e:7c:10:88:8c:d5:d6: 22:1d:b0:a5:f0:f6:e7:37:d6:cf:be:8f:ea:cd:eb: 25:b8:04:05:cf:2d:dc:4e:5f:09:32:a2:ba:51:86: d0:44:8d:47:2d:30:31:38:14:d0:82:6b:d9:46:47: 82:34:4a:06:8e:55:19:fd:08:18:51:13:11:3b:ab: c9:4b:e4:2f:4a:3e:d0:10:7c:81:fa:a4:b1:c4:e0: 8e:b6:c7:47:f5:02:92:09:42:22:bb:3f:5d:d6:08: b3:61:84:4f:6c:27:a4:75:08:3f:5c:66:95:ab:ac: bd:58:27:39:4b:ef:62:8b:1d:32:28:90:40:f2:d3: 47:6d:a5:3d:d9:e5:6e:41:28:55:64:8b:65:6a:89: 3e:aa:dd:8c:ea:f0:0d:d1:4a:56:fe:8f:83:28:b9: 47:34:00:9d:91:48:de:e4:fa:92:00:0b:9b:bf:9f: a3:01:f5:4e:83:b3:b1:9f:83:1a:38:47:33:6f:96: a6:5f:29:ef:25:28:13:bb:e4:3f:d1:b1:5d:d9:cb: 33:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:57:16:6A:40:79:30:FA:63:01:37:6C:41:92:AD:4D:F7:27:33:55 X509v3 Authority Key Identifier: keyid:E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f6:dc:1b:fa:18:6c:9f:41:05:c5:ea:67:72:d4:75:c8:9a: 38:96:fe:75:49:b5:10:07:30:9b:07:1f:2d:4b:b9:1c:ff:e2: 34:ad:f5:55:87:c6:9c:a0:49:d8:35:25:ce:7d:9f:ab:dd:85: d1:27:a3:60:90:01:70:67:97:b5:44:02:e7:3d:c2:61:9e:fb: 58:78:b3:eb:93:ad:8f:7a:01:b7:55:78:0d:8e:04:c8:10:13: dc:5a:6c:c5:2c:9e:0c:ff:7e:25:af:d7:12:52:39:7a:4c:42: 1b:62:5d:63:d9:48:aa:e2:25:60:a2:8a:bd:73:72:6c:ca:8c: 19:e0:d6:7d:a7:01:5f:4d:6c:61:f4:20:57:c9:eb:cb:17:95: af:a2:c3:c7:72:49:42:9a:06:e8:2b:0f:f9:4b:25:ef:68:29: 9f:f5:f2:c2:bf:0d:1a:88:7a:9d:b5:4f:04:f1:79:e8:31:86: 27:23:1a:19:be:8d:05:00:fd:3d:66:79:a8:92:b9:36:7a:5c: 12:d7:c8:72:5f:af:de:cb:7a:7c:cd:e4:a7:58:a3:fc:26:fa: 9a:6d:99:c6:1c:14:02:c5:62:b2:8f:ea:cb:a6:06:c5:37:c6: ed:4a:ff:85:7b:e2:f6:72:82:7d:0c:a7:98:91:dc:f6:7c:41: b8:05:a7:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBRTAxMTAvBgNVBAUTKEUxNDg5RTA1NDU2RTkyQ0FENzE1ODQ3MjAwRTRBNzVE NkMzRTQzQ0UwHhcNMjUwNzAzMDIwNjE3WhcNMjUwNzEwMDIwNjE3WjAYMRYwFAYD VQQDEw02ODY1ZTU5OS05N2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXASC00LuUmR0NL70QJEAO1o09n9dBfXfMTHJeHUBCwD19pNFjhUv/7wL4K8 LSfRVdGMjD58EIiM1dYiHbCl8PbnN9bPvo/qzesluAQFzy3cTl8JMqK6UYbQRI1H LTAxOBTQgmvZRkeCNEoGjlUZ/QgYURMRO6vJS+QvSj7QEHyB+qSxxOCOtsdH9QKS CUIiuz9d1gizYYRPbCekdQg/XGaVq6y9WCc5S+9iix0yKJBA8tNHbaU92eVuQShV ZItlaok+qt2M6vAN0UpW/o+DKLlHNACdkUje5PqSAAubv5+jAfVOg7Oxn4MaOEcz b5amXynvJSgTu+Q/0bFd2cszhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxXFmpA eTD6YwE3bEGSrU33JzNVMB8GA1UdIwQYMBaAFOFIngVFbpLK1xWEcgDkp11sPkPO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFFMC9GQTA0N0Y1NEYx RkMxMUVDOTlCMkNCNkJDNEY5QUUwMi80VWllQlVWdWtzclhGWVJ5QU9TblhXdy1R ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVaWVCVVZ1a3NyWEZZUnlBT1NuWFd3LVE4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFFMC9GQTA0N0Y1NEYxRkMxMUVDOTlCMkNCNkJDNEY5QUUwMi80VWllQlVWdWtz clhGWVJ5QU9TblhXdy1RODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm9twb+hhsn0EFxepnctR1yJo4lv51SbUQBzCbBx8tS7kc/+I0rfVV h8acoEnYNSXOfZ+r3YXRJ6NgkAFwZ5e1RALnPcJhnvtYeLPrk62PegG3VXgNjgTI EBPcWmzFLJ4M/34lr9cSUjl6TEIbYl1j2Uiq4iVgooq9c3JsyowZ4NZ9pwFfTWxh 9CBXyevLF5WvosPHcklCmgboKw/5SyXvaCmf9fLCvw0aiHqdtU8E8XnoMYYnIxoZ vo0FAP09Znmokrk2elwS18hyX6/ey3p8zeSnWKP8JvqabZnGHBQCxWKyj+rLpgbF N8btSv+Fe+L2coJ9DKeYkdz2fEG4Bacn -----END CERTIFICATE-----Generated at Fri Jul 4 22:02:57 2025 by rpki-client