$ rpki-client -vvf rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft File: UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft (raw, json) Hash identifier: i66rvsbQEq5q/JazzRpcFI0sVqHhFC1Ectejlcqhe1A= Subject key identifier: 70:A5:AF:EC:02:BD:CD:CC:78:A8:21:DC:5B:E4:18:C4:F1:EF:F4:28 Authority key identifier: 52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 Certificate issuer: /CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Certificate serial: 065A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft Manifest number: 0652 Signing time: Sat 10 May 2025 22:07:51 +0000 Manifest this update: Sat 10 May 2025 22:07:51 +0000 Manifest next update: Sat 17 May 2025 22:07:50 +0000 Files and hashes: 1: UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl (hash: J56De211axfWH27/azMSURKGp+bakaUytOd9dO/AOK0=) 2: C3FEC56C855711EB871D267FC4F9AE02.roa (hash: y8hsODPDu9mxz9gFgQEr+IEal2qwbZYp1jlJlCiW6og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911902E, serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Validity Not Before: May 10 22:07:51 2025 GMT Not After : May 17 22:07:50 2025 GMT Subject: CN=681fce37-236f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4c:4c:fa:9c:51:81:a8:97:06:25:16:28:f5: 51:3e:5b:76:53:c3:4f:d6:5d:38:6d:6c:bb:83:c2: 17:c9:47:e8:67:26:b1:88:ee:62:28:ce:ed:d4:1b: 23:a8:b9:d8:d5:41:cd:7a:e6:03:e6:79:70:f0:42: 60:8a:f8:3d:fa:52:e5:13:44:02:c0:aa:c7:3a:4c: e9:76:ce:06:25:77:a6:63:4c:93:1c:18:fc:bc:75: 9d:c9:e7:15:1b:78:d6:5d:9a:96:ef:58:af:ef:78: fe:9e:82:e2:c9:d6:77:62:19:80:ea:a2:33:9c:77: 82:37:84:15:75:a6:96:4c:d1:6d:30:21:94:59:8f: 34:3f:49:0d:55:ac:d9:d4:03:5b:10:9a:68:ea:7b: bd:8a:e3:4f:d5:d0:0c:cf:43:86:35:77:01:93:f2: 73:4b:a8:ee:bc:fd:71:0c:58:8a:fd:78:5d:61:1f: c9:ef:28:2b:e1:6e:53:e9:aa:0d:8f:cc:5e:43:c5: 40:89:38:d6:d7:e5:fe:50:ae:4c:c9:f7:ab:be:2f: 26:7f:9f:25:57:17:33:88:33:82:b7:35:f9:d7:00: 64:f2:a8:77:88:f9:e6:ab:0b:05:5a:a9:79:0d:0a: 62:83:7e:08:8c:c5:96:99:e1:2d:a6:82:91:f1:15: e8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A5:AF:EC:02:BD:CD:CC:78:A8:21:DC:5B:E4:18:C4:F1:EF:F4:28 X509v3 Authority Key Identifier: keyid:52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:ac:a6:8f:98:39:16:e1:69:72:77:05:27:40:f6:53:9f:48: 1f:7a:1d:14:fe:a5:5b:3e:e4:c9:c1:c2:7e:06:a9:b0:3b:d7: 2b:4d:36:85:65:d6:1c:28:b6:7b:16:97:e5:8f:d8:9c:6e:e0: e6:7d:99:2d:dc:a7:8a:b7:2a:01:24:0c:cb:4b:90:d8:95:75: dc:6e:55:c4:56:de:40:f0:eb:26:cd:8b:ce:06:8f:77:33:6a: de:fa:7f:3d:7d:4d:0f:a1:90:c3:85:76:b4:da:2d:da:07:7e: b4:18:2e:81:80:13:06:f1:2d:72:84:79:27:0d:53:b0:70:d3: 50:ac:f8:8d:81:23:ce:80:aa:37:66:44:46:c6:e0:09:7e:c7: 7f:db:73:f8:2d:69:5a:48:68:d8:d1:53:e9:8f:dd:d9:07:41: 16:f8:ce:78:d1:53:c8:16:96:80:ec:2e:c7:6d:2c:1a:24:3d: 45:b1:19:cc:09:02:ad:42:24:bd:6c:96:1a:68:f6:30:72:8e: d3:c5:39:d0:cb:9a:fe:c6:d2:f3:33:1c:30:3e:a7:66:0b:a3: 9e:7f:88:9a:ae:9b:18:d2:49:da:15:da:ce:fc:c4:f5:15:35: c6:b0:34:50:e4:9a:16:1f:57:ed:09:e0:6b:b3:37:a3:df:ed: 91:6b:8b:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMkUxMTAvBgNVBAUTKDUyMUIwNkMyOTExMDI4NEFBQUZFMDg3NUFBNjE4NkIw MDA2RDI3NjcwHhcNMjUwNTEwMjIwNzUxWhcNMjUwNTE3MjIwNzUwWjAYMRYwFAYD VQQDEw02ODFmY2UzNy0yMzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlUxM+pxRgaiXBiUWKPVRPlt2U8NP1l04bWy7g8IXyUfoZyaxiO5iKM7t1Bsj qLnY1UHNeuYD5nlw8EJgivg9+lLlE0QCwKrHOkzpds4GJXemY0yTHBj8vHWdyecV G3jWXZqW71iv73j+noLiydZ3YhmA6qIznHeCN4QVdaaWTNFtMCGUWY80P0kNVazZ 1ANbEJpo6nu9iuNP1dAMz0OGNXcBk/JzS6juvP1xDFiK/XhdYR/J7ygr4W5T6aoN j8xeQ8VAiTjW1+X+UK5Myfervi8mf58lVxcziDOCtzX51wBk8qh3iPnmqwsFWql5 DQpig34IjMWWmeEtpoKR8RXoTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHClr+wC vc3MeKgh3FvkGMTx7/QoMB8GA1UdIwQYMBaAFFIbBsKREChKqv4IdaphhrAAbSdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAyRS81N0FGREIyODg1 NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtFcXFfZ2gxcW1HR3NBQnRK MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Voc0d3cEVRS0VxcV9naDFxbUdHc0FCdEoyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTAyRS81N0FGREIyODg1NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtF cXFfZ2gxcW1HR3NBQnRKMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyrKaPmDkW4WlydwUnQPZTn0gfeh0U/qVbPuTJwcJ+BqmwO9crTTaF ZdYcKLZ7Fpflj9icbuDmfZkt3KeKtyoBJAzLS5DYlXXcblXEVt5A8OsmzYvOBo93 M2re+n89fU0PoZDDhXa02i3aB360GC6BgBMG8S1yhHknDVOwcNNQrPiNgSPOgKo3 ZkRGxuAJfsd/23P4LWlaSGjY0VPpj93ZB0EW+M540VPIFpaA7C7HbSwaJD1FsRnM CQKtQiS9bJYaaPYwco7TxTnQy5r+xtLzMxwwPqdmC6Oef4iarpsY0knaFdrO/MT1 FTXGsDRQ5JoWH1ftCeBrszej3+2Ra4sj -----END CERTIFICATE-----Generated at Sun May 11 16:43:23 2025 by rpki-client