$ rpki-client -vvf rpki.apnic.net/member_repository/A91262BD/D3F11F0E991311EB860DDB3DC4F9AE02/0ueOUsXby_XhhB2s5SeuqolKmnY.mft File: 0ueOUsXby_XhhB2s5SeuqolKmnY.mft (raw, json) Hash identifier: lwXIjTNIOxR8ajPQTPRbC6ji1sa7TCz48evBNdYQuck= Subject key identifier: 82:3B:B2:A4:37:FF:C1:B9:D0:88:CB:6B:DC:1B:2E:5E:A2:9F:8E:1E Authority key identifier: D2:E7:8E:52:C5:DB:CB:F5:E1:84:1D:AC:E5:27:AE:AA:89:4A:9A:76 Certificate issuer: /CN=A91262BD/serialNumber=D2E78E52C5DBCBF5E1841DACE527AEAA894A9A76 Certificate serial: 0630 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ueOUsXby_XhhB2s5SeuqolKmnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262BD/D3F11F0E991311EB860DDB3DC4F9AE02/0ueOUsXby_XhhB2s5SeuqolKmnY.mft Manifest number: 0620 Signing time: Mon 12 May 2025 22:33:16 +0000 Manifest this update: Mon 12 May 2025 22:33:15 +0000 Manifest next update: Mon 19 May 2025 22:33:15 +0000 Files and hashes: 1: 0ueOUsXby_XhhB2s5SeuqolKmnY.crl (hash: pzkX1GxPPVvBqRSLgi42yHFRA1j/v7UpX9ut/rkzuLc=) 2: D0A31DDC8E6011EC93F6710FC4F9AE02.roa (hash: 56SXWg9vgGgESxFQOAJJzB+wTF1OQoT0wNilbJGbabc=) 3: CFD605CC8E6011EC93F6710FC4F9AE02.roa (hash: s1rfV8r68HE4TuansWzDnqISJzRH7RjJXWNUpk6BVJU=) 4: D19ABBB48E6011EC93F6710FC4F9AE02.roa (hash: 2Y9C9KiNax/FdL7eQM2hCoTzZKyNjRhe4AuCRgLGZn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262BD/D3F11F0E991311EB860DDB3DC4F9AE02/0ueOUsXby_XhhB2s5SeuqolKmnY.crl rsync://rpki.apnic.net/member_repository/A91262BD/D3F11F0E991311EB860DDB3DC4F9AE02/0ueOUsXby_XhhB2s5SeuqolKmnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ueOUsXby_XhhB2s5SeuqolKmnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262BD, serialNumber=D2E78E52C5DBCBF5E1841DACE527AEAA894A9A76 Validity Not Before: May 12 22:33:15 2025 GMT Not After : May 19 22:33:15 2025 GMT Subject: CN=6822772b-fb58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1a:a0:9b:80:8e:81:90:2f:39:dd:93:84:41: d4:0c:96:45:a9:88:88:96:7f:ac:72:c9:77:63:ad: 61:6c:0a:2b:5b:db:4c:ca:c8:5a:81:75:37:f0:80: 54:48:bc:29:82:63:4b:b7:30:66:15:19:b4:51:ee: c1:f0:c2:47:8d:7e:5f:3a:17:44:71:2f:f6:a2:0e: 5a:34:c2:65:bb:46:f6:ad:aa:60:cb:0e:d8:13:ee: be:2b:b0:3d:86:5d:84:ec:46:d9:03:cd:e9:9a:4d: 27:d3:61:88:a0:e9:f5:2b:7e:61:ec:77:30:f7:c0: 03:f1:12:45:41:ab:10:01:13:9a:0a:fc:73:8f:11: 06:12:df:c5:50:8f:eb:79:54:3c:a6:53:da:75:05: 4d:82:bf:d2:cd:0d:2c:16:08:e4:a6:a1:18:dd:a4: 6c:6e:f3:16:52:3d:b2:f6:a0:cc:b6:38:4e:cf:ee: 5d:bc:36:94:ee:cc:64:dc:04:d6:67:3d:c5:05:72: 8a:28:b3:63:36:f4:c2:7b:82:82:7b:e4:bc:e1:87: 92:89:bf:29:c2:e9:b6:df:98:d8:00:d6:c3:ee:4a: bf:67:2d:08:d6:74:4a:11:e7:bf:ff:54:b7:63:c7: 6b:a7:83:48:45:bc:18:ab:ed:ce:4c:ed:38:77:77: 96:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:3B:B2:A4:37:FF:C1:B9:D0:88:CB:6B:DC:1B:2E:5E:A2:9F:8E:1E X509v3 Authority Key Identifier: keyid:D2:E7:8E:52:C5:DB:CB:F5:E1:84:1D:AC:E5:27:AE:AA:89:4A:9A:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262BD/D3F11F0E991311EB860DDB3DC4F9AE02/0ueOUsXby_XhhB2s5SeuqolKmnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ueOUsXby_XhhB2s5SeuqolKmnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262BD/D3F11F0E991311EB860DDB3DC4F9AE02/0ueOUsXby_XhhB2s5SeuqolKmnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:c4:05:3f:c7:02:c1:bc:66:c9:c3:b7:59:aa:72:5b:af:8a: 4f:4b:74:10:0d:31:4d:cb:10:c1:cd:fa:b5:66:12:3b:6e:08: 35:17:d5:ad:2c:54:be:6f:64:b3:74:2d:e0:ee:b9:a5:a1:2f: c1:3d:9f:f2:58:7d:c6:e4:28:7a:d1:d5:cd:9d:b6:7c:16:10: eb:24:5b:60:35:5d:cb:d9:e5:2c:f4:f9:cf:67:8f:4f:90:06: d6:2b:8b:3e:dc:75:c8:ce:ea:e9:1a:98:34:0a:b8:87:3f:0b: 49:1e:f1:ed:d4:d9:03:b1:9b:6f:b8:86:d4:90:d3:39:46:ed: 26:b9:18:68:f3:04:9c:03:a2:fa:05:e9:73:bb:0f:c8:02:20: 45:cd:a2:b2:e5:58:6f:0d:0f:85:3b:30:d9:ac:05:e3:c6:41: bc:3d:37:f3:a0:21:d6:86:11:32:1f:15:99:09:28:61:1e:03: 1c:df:2f:63:ae:3d:35:f0:e1:26:48:a5:98:ea:f3:7f:32:61: b2:8f:ab:87:dd:b4:7f:8e:a4:be:e6:56:b6:7e:c1:0b:8c:82: 30:dc:c7:22:39:43:66:b0:19:83:c7:b8:d5:ba:20:49:e7:c3: 05:a4:87:9b:1d:51:c3:70:8a:c2:3c:d4:d5:1b:1c:31:da:6e: 86:82:64:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQkQxMTAvBgNVBAUTKEQyRTc4RTUyQzVEQkNCRjVFMTg0MURBQ0U1MjdBRUFB ODk0QTlBNzYwHhcNMjUwNTEyMjIzMzE1WhcNMjUwNTE5MjIzMzE1WjAYMRYwFAYD VQQDEw02ODIyNzcyYi1mYjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRqgm4COgZAvOd2ThEHUDJZFqYiIln+scsl3Y61hbAorW9tMyshagXU38IBU SLwpgmNLtzBmFRm0Ue7B8MJHjX5fOhdEcS/2og5aNMJlu0b2rapgyw7YE+6+K7A9 hl2E7EbZA83pmk0n02GIoOn1K35h7Hcw98AD8RJFQasQAROaCvxzjxEGEt/FUI/r eVQ8plPadQVNgr/SzQ0sFgjkpqEY3aRsbvMWUj2y9qDMtjhOz+5dvDaU7sxk3ATW Zz3FBXKKKLNjNvTCe4KCe+S84YeSib8pwum235jYANbD7kq/Zy0I1nRKEee//1S3 Y8drp4NIRbwYq+3OTO04d3eW0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFII7sqQ3 /8G50IjLa9wbLl6in44eMB8GA1UdIwQYMBaAFNLnjlLF28v14YQdrOUnrqqJSpp2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJCRC9EM0YxMUYwRTk5 MTMxMUVCODYwRERCM0RDNEY5QUUwMi8wdWVPVXNYYnlfWGhoQjJzNVNldXFvbEtt blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB1ZU9Vc1hieV9YaGhCMnM1U2V1cW9sS21uWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjJCRC9EM0YxMUYwRTk5MTMxMUVCODYwRERCM0RDNEY5QUUwMi8wdWVPVXNYYnlf WGhoQjJzNVNldXFvbEttblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARxAU/xwLBvGbJw7dZqnJbr4pPS3QQDTFNyxDBzfq1ZhI7bgg1F9Wt LFS+b2SzdC3g7rmloS/BPZ/yWH3G5Ch60dXNnbZ8FhDrJFtgNV3L2eUs9PnPZ49P kAbWK4s+3HXIzurpGpg0CriHPwtJHvHt1NkDsZtvuIbUkNM5Ru0muRho8wScA6L6 Belzuw/IAiBFzaKy5VhvDQ+FOzDZrAXjxkG8PTfzoCHWhhEyHxWZCShhHgMc3y9j rj018OEmSKWY6vN/MmGyj6uH3bR/jqS+5la2fsELjIIw3MciOUNmsBmDx7jVuiBJ 58MFpIebHVHDcIrCPNTVGxwx2m6GgmQQ -----END CERTIFICATE-----Generated at Tue May 13 23:06:49 2025 by rpki-client