$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: KMIj+k5qysj1MxlQWWETY4TV+oRHsRCzukYf5iZL/IM= Subject key identifier: 5F:D3:44:40:E2:A8:7B:4C:BE:FB:74:9E:24:66:74:AD:16:21:F2:77 Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 04A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 049A Signing time: Thu 15 May 2025 00:01:51 +0000 Manifest this update: Thu 15 May 2025 00:01:51 +0000 Manifest next update: Thu 22 May 2025 00:01:51 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: oB7VfMO0W433/P5xu9hmA1t5q7tIpf+BWDbpRsF0jos=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: zuaM96z3jhp+fAEf2SKv65O5x2n5mX1/wYZc1QfKJIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: May 15 00:01:51 2025 GMT Not After : May 22 00:01:51 2025 GMT Subject: CN=68252eef-51b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:39:c3:1b:e0:c0:ae:7c:93:00:02:51:96: c3:6b:b0:c9:30:8b:c3:f4:57:36:96:c1:e9:f2:8b: 65:e0:1e:a9:8f:7c:ca:6f:36:ca:f5:f7:9c:fe:89: 5b:66:a2:9e:fb:d6:1b:68:e0:47:34:53:95:ed:40: b5:9f:03:e5:4b:e1:f9:bf:58:d6:71:8e:00:90:30: ea:6a:75:95:20:d4:09:af:11:7d:8d:f1:34:4d:97: e4:37:13:22:83:d5:93:e4:ee:4f:0d:91:26:6b:69: eb:59:22:ab:7d:49:a8:f9:1f:78:8e:34:d4:ce:dc: 76:9c:3a:1d:65:59:01:38:ba:8e:0b:fd:2d:7e:e4: fa:23:06:b1:ff:f6:de:ba:3b:c0:3f:34:cc:a6:28: f9:4e:17:8a:fc:e2:91:64:3a:c1:b4:83:f3:5f:c9: 86:21:40:68:ff:8c:ec:26:ee:94:c1:bf:38:89:37: 95:0d:b9:3f:11:b4:6d:45:4c:e3:04:e3:40:c5:7d: f7:2a:41:f1:c4:28:6f:35:a7:3b:00:c5:21:f1:07: 17:81:e1:70:53:20:e8:19:c4:8e:98:4c:4d:68:2c: e7:63:85:75:df:bf:c7:9b:13:23:47:40:8e:45:b1: 6a:06:2b:b8:88:77:b0:86:ed:be:fd:b9:37:22:56: 2f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D3:44:40:E2:A8:7B:4C:BE:FB:74:9E:24:66:74:AD:16:21:F2:77 X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:e5:15:9e:25:47:35:57:42:66:28:9a:1c:0c:aa:64:0c:7f: 81:b5:4d:b1:1e:bd:cf:25:ff:3d:30:9b:9b:42:3f:74:18:f1: b8:1a:8a:a4:cd:03:04:7a:57:f3:28:52:1b:8e:9a:08:10:90: 62:24:03:07:bb:8c:ed:ad:de:1b:33:e6:35:9e:9c:b5:b8:26: 05:77:29:dd:b8:1d:a1:3e:e4:d1:c0:43:0c:c6:5f:b8:bc:73: 97:90:ed:01:1e:b2:42:e6:a7:5a:32:98:35:5d:73:5d:ce:71: 40:af:7b:9a:a1:d6:1a:e0:b5:6b:a2:26:73:f9:f5:bf:3f:58: 3e:68:52:87:86:db:57:83:2a:be:20:63:ff:b5:d7:33:5a:f7: 2c:46:06:64:61:4c:56:58:bb:78:ee:b0:73:65:ed:b2:df:ec: 43:e8:bf:81:c3:5e:62:a2:38:4a:98:c8:20:aa:7a:23:29:a2: 29:fe:1a:70:3d:b3:ca:f0:92:5d:cc:95:f6:14:9b:84:a0:04: b6:cf:30:7c:f2:6a:dd:dd:57:51:82:00:90:93:12:4f:97:d3: d3:1f:df:83:83:21:ad:43:7f:c0:15:08:09:8d:07:f2:49:72: 1f:f4:28:b5:f5:1b:d1:e4:45:0e:aa:db:83:09:4e:8b:3b:e2: 6d:9c:d0:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjUwNTE1MDAwMTUxWhcNMjUwNTIyMDAwMTUxWjAYMRYwFAYD VQQDEw02ODI1MmVlZi01MWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5o5wxvgwK58kwACUZbDa7DJMIvD9Fc2lsHp8otl4B6pj3zKbzbK9fec/olb ZqKe+9YbaOBHNFOV7UC1nwPlS+H5v1jWcY4AkDDqanWVINQJrxF9jfE0TZfkNxMi g9WT5O5PDZEma2nrWSKrfUmo+R94jjTUztx2nDodZVkBOLqOC/0tfuT6Iwax//be ujvAPzTMpij5TheK/OKRZDrBtIPzX8mGIUBo/4zsJu6Uwb84iTeVDbk/EbRtRUzj BONAxX33KkHxxChvNac7AMUh8QcXgeFwUyDoGcSOmExNaCznY4V137/HmxMjR0CO RbFqBiu4iHewhu2+/bk3IlYvgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/TREDi qHtMvvt0niRmdK0WIfJ3MB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB45RWeJUc1V0JmKJocDKpkDH+BtU2xHr3PJf89MJubQj90GPG4Goqk zQMEelfzKFIbjpoIEJBiJAMHu4ztrd4bM+Y1npy1uCYFdynduB2hPuTRwEMMxl+4 vHOXkO0BHrJC5qdaMpg1XXNdznFAr3uaodYa4LVroiZz+fW/P1g+aFKHhttXgyq+ IGP/tdczWvcsRgZkYUxWWLt47rBzZe2y3+xD6L+Bw15iojhKmMggqnojKaIp/hpw PbPK8JJdzJX2FJuEoAS2zzB88mrd3VdRggCQkxJPl9PTH9+DgyGtQ3/AFQgJjQfy SXIf9Ci19RvR5EUOqtuDCU6LO+JtnNDv -----END CERTIFICATE-----Generated at Thu May 15 13:19:53 2025 by rpki-client