$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft File: 1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft (raw, json) Hash identifier: 3kpbZM6jfah9xdsBrNa3fDs0KBjjfuCA1hpX4YT1Hcs= Subject key identifier: B7:7D:40:30:CF:24:B7:BD:6B:1B:62:3D:C0:6D:18:2B:06:8E:1D:9D Authority key identifier: D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A Certificate issuer: /CN=A9123E38/serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Certificate serial: 16CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft Manifest number: 16A2 Signing time: Wed 14 May 2025 16:46:35 +0000 Manifest this update: Wed 14 May 2025 16:46:35 +0000 Manifest next update: Wed 21 May 2025 16:46:35 +0000 Files and hashes: 1: 1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl (hash: HG4bvWeNOOt22mQFuZY4T0/Fslx5M7QYw04VosH4E5Q=) 2: 8F7AEE2CB97811ED8676732CC4F9AE02.roa (hash: jWBS6PPj6fAcNMQfAi9luJpS1MYeUN8CvVqM1agG2cs=) 3: 24CFDABE00EC11E8AAC4DD6EC4F9AE02.roa (hash: ecERzKe4aH7s8rjg9Kt6Wo+1pU9CBduLgX3EVStj1rs=) 4: 0F2AF0F0AFDA11EAAED1C066C4F9AE02.roa (hash: FZkT4Kxe1dq9738R7EN3qc8IS8Q1dJKnESpThw2bzlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5835 (0x16cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D54BF399BE1B659B132314B821933A20BA38B96A Validity Not Before: May 14 16:46:35 2025 GMT Not After : May 21 16:46:35 2025 GMT Subject: CN=6824c8eb-a9c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fa:a1:e8:be:eb:c9:42:0b:a5:fa:57:59:54: 01:9f:1a:ad:91:89:c4:c1:c6:54:ec:22:a6:98:29: 71:36:f3:f2:93:7e:a9:7f:55:14:0e:0f:e5:4a:f4: 37:ef:96:c7:39:4e:1a:88:70:01:d0:73:73:07:cf: d3:08:96:fc:ad:f7:0b:ac:d4:65:bb:fb:87:fa:b1: ad:f3:11:99:48:e2:ec:65:3b:2d:96:dc:02:b8:fb: 31:9e:6e:5a:f9:32:95:55:2b:14:06:01:b4:48:9b: 08:cd:5f:2b:45:f7:9a:6f:57:e5:62:20:a2:0f:7d: 15:ff:7b:16:79:5c:b7:10:4c:42:b1:9c:3c:d7:55: 46:1b:b5:97:de:fc:3e:a9:af:a9:5b:17:d9:e9:77: 86:2c:b3:5a:49:95:4a:de:10:f1:0f:b7:73:5f:dd: a7:de:e9:93:74:49:6a:90:ff:ef:c9:07:0b:b0:e4: f4:f7:77:c6:4a:19:27:d4:ae:e2:fa:e9:74:6f:e2: a7:7e:d0:21:81:b3:e5:b8:f7:cc:06:d4:b1:4a:3d: ab:0f:e1:a6:72:90:77:2e:f0:6e:0c:d0:62:1a:c7: d2:b8:ab:55:8a:f6:c3:3f:99:72:82:47:55:42:eb: f6:5e:a1:66:a2:22:03:44:a1:ac:4c:60:2a:d0:a8: 8b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7D:40:30:CF:24:B7:BD:6B:1B:62:3D:C0:6D:18:2B:06:8E:1D:9D X509v3 Authority Key Identifier: keyid:D5:4B:F3:99:BE:1B:65:9B:13:23:14:B8:21:93:3A:20:BA:38:B9:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/A1087D3600EA11E8BC93B16BC4F9AE02/1Uvzmb4bZZsTIxS4IZM6ILo4uWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:12:de:ac:0d:59:19:b2:43:bf:34:66:c7:05:b1:5d:3c:77: 47:8a:53:fb:3d:ed:5d:7f:e9:78:16:1c:8c:cc:e8:a1:e1:89: d8:3c:ee:2b:ed:6c:e7:5a:59:1c:71:b9:cb:d8:fb:14:e6:b1: 19:e3:f6:5b:22:e7:7c:ce:de:60:6a:13:f8:a7:c7:4b:ec:1e: 7b:07:fa:d4:36:cd:04:d6:b8:15:f4:6f:23:d0:6f:07:d0:79: 0a:d8:ea:7d:56:6f:c7:c0:5c:e4:b0:4d:5f:79:85:41:46:ee: 1a:f9:68:c5:be:eb:eb:99:aa:eb:6a:e9:a7:85:49:bd:3b:d3: cc:9a:84:51:b3:44:42:ea:73:fc:84:d3:20:ee:53:a5:8f:ab: ca:90:f1:5a:7f:3e:e0:74:55:d1:f9:b1:69:d1:73:4c:57:9c: 7f:55:15:77:45:8e:35:24:2f:94:d4:57:38:1d:ad:5d:f1:1f: cf:d9:dd:df:79:75:cc:51:db:20:69:3c:f1:ae:14:54:88:ae: 61:97:da:c3:23:b7:f3:5b:b7:1c:0a:e4:b7:7d:0b:ae:d0:af: 73:a8:7b:d3:7c:f7:8b:2e:c5:8f:97:d7:4a:1f:c1:6d:f8:ee: fc:6a:c0:11:d8:2a:15:d5:5c:d5:03:77:cd:fa:b7:5b:96:e5: 92:b4:b1:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQ1NEJGMzk5QkUxQjY1OUIxMzIzMTRCODIxOTMzQTIw QkEzOEI5NkEwHhcNMjUwNTE0MTY0NjM1WhcNMjUwNTIxMTY0NjM1WjAYMRYwFAYD VQQDEw02ODI0YzhlYi1hOWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Pqh6L7ryUILpfpXWVQBnxqtkYnEwcZU7CKmmClxNvPyk36pf1UUDg/lSvQ3 75bHOU4aiHAB0HNzB8/TCJb8rfcLrNRlu/uH+rGt8xGZSOLsZTstltwCuPsxnm5a +TKVVSsUBgG0SJsIzV8rRfeab1flYiCiD30V/3sWeVy3EExCsZw811VGG7WX3vw+ qa+pWxfZ6XeGLLNaSZVK3hDxD7dzX92n3umTdElqkP/vyQcLsOT093fGShkn1K7i +ul0b+KnftAhgbPluPfMBtSxSj2rD+GmcpB3LvBuDNBiGsfSuKtVivbDP5lygkdV Quv2XqFmoiIDRKGsTGAq0KiLuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLd9QDDP JLe9axtiPcBtGCsGjh2dMB8GA1UdIwQYMBaAFNVL85m+G2WbEyMUuCGTOiC6OLlq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC9BMTA4N0QzNjAw RUExMUU4QkM5M0IxNkJDNEY5QUUwMi8xVXZ6bWI0Ylpac1RJeFM0SVpNNklMbzR1 V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFVdnptYjRiWlpzVEl4UzRJWk02SUxvNHVXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC9BMTA4N0QzNjAwRUExMUU4QkM5M0IxNkJDNEY5QUUwMi8xVXZ6bWI0Ylpa c1RJeFM0SVpNNklMbzR1V28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnEt6sDVkZskO/NGbHBbFdPHdHilP7Pe1df+l4FhyMzOih4YnYPO4r 7WznWlkccbnL2PsU5rEZ4/ZbIud8zt5gahP4p8dL7B57B/rUNs0E1rgV9G8j0G8H 0HkK2Op9Vm/HwFzksE1feYVBRu4a+WjFvuvrmarraumnhUm9O9PMmoRRs0RC6nP8 hNMg7lOlj6vKkPFafz7gdFXR+bFp0XNMV5x/VRV3RY41JC+U1Fc4Ha1d8R/P2d3f eXXMUdsgaTzxrhRUiK5hl9rDI7fzW7ccCuS3fQuu0K9zqHvTfPeLLsWPl9dKH8Ft +O78asAR2CoV1VzVA3fN+rdbluWStLFH -----END CERTIFICATE-----Generated at Fri May 16 13:40:44 2025 by rpki-client