$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft File: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json) Hash identifier: K8LTHNOlO2QCi3JVMjXQNh5OPqKNXZbWrZY54HrRaGg= Subject key identifier: 4D:29:4A:10:6A:D1:65:AE:E9:3B:81:01:63:62:6F:92:30:49:AF:23 Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 0239 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft Manifest number: 0231 Signing time: Tue 13 May 2025 01:42:56 +0000 Manifest this update: Tue 13 May 2025 01:42:56 +0000 Manifest next update: Tue 20 May 2025 01:42:56 +0000 Files and hashes: 1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: HjziiIDZb1/CYFHVusBn3UV45WKtMfIodQiu1jDwbHw=) 2: A9E3A5041C3411EFBF05095BC4F9AE02.roa (hash: DS6aoQLqOLSS763BWHIUmquh48JGAfBdAQCJMqSDzPU=) 3: E4A016C01CD211EFB606D514C4F9AE02.roa (hash: yMapl0YXXAfKwoBzESq2p7IfMt1+B0piySrxnFgxgIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:42:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: May 13 01:42:56 2025 GMT Not After : May 20 01:42:56 2025 GMT Subject: CN=6822a3a0-bbdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e8:c6:91:d3:0e:26:9a:04:99:a0:a4:02:0a: 0f:6b:33:b4:43:bd:bb:2b:7d:8e:b7:a8:61:77:d0: 9c:20:2e:82:a2:eb:5d:3f:86:01:8f:9e:b3:bc:30: 22:1a:d9:0c:c8:3f:ed:8c:03:24:6b:3b:eb:8c:da: 34:37:76:65:e7:3a:36:1e:ce:b6:e3:20:a1:98:f2: b5:9a:96:a1:58:26:20:26:90:1c:1e:42:13:e3:d1: 08:46:c1:d6:18:c3:55:c7:d4:4e:32:af:55:05:04: bd:d0:ed:8a:1e:44:07:13:1e:4b:f9:3c:b7:45:8a: 12:3a:ab:8d:97:d5:51:8f:6f:41:45:ba:46:2c:6c: bb:15:c6:0d:5b:e6:4e:24:55:ec:e7:da:71:6a:a7: 58:db:6b:b9:df:71:ef:81:be:4d:fb:fd:73:d6:17: 00:3d:b2:31:91:1e:a6:59:f9:a5:dd:6d:78:cd:fa: 61:f6:3b:a4:c1:51:09:e3:8f:b0:d3:c1:9f:9b:78: 3b:60:39:93:a8:7f:8b:f9:97:93:dd:05:96:75:79: 2e:c5:40:4a:1f:58:a4:17:a8:80:e8:14:c9:09:ae: 8a:a5:8e:7e:cc:3f:c9:ed:01:1b:6e:05:80:6c:93: 0c:1c:4e:f4:71:45:45:22:e1:6e:5f:d4:82:70:b3: 0c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:29:4A:10:6A:D1:65:AE:E9:3B:81:01:63:62:6F:92:30:49:AF:23 X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:16:bd:f5:9d:dd:4a:fc:bd:38:be:bb:45:96:f5:3b:bc:94: fd:47:05:66:f4:e0:41:3e:1c:f9:a1:70:12:d3:8f:61:cb:4f: 36:c3:34:5a:36:8a:ee:0e:65:c0:a9:17:f6:1a:e2:a2:9b:5d: a2:fa:b2:09:8a:6a:30:5b:01:d7:b5:be:d5:19:78:26:ac:91: a0:f0:03:7f:6c:9b:c3:06:7d:f3:b0:f6:9a:ff:33:d3:c7:8a: c2:cd:25:af:e0:db:a5:73:92:cf:2d:6f:e2:49:24:c9:e9:31: 0a:f7:e8:9e:48:ef:6c:30:8e:95:39:71:5f:87:88:89:e0:e5: cf:1a:ba:6f:9f:61:4e:7c:b6:2f:0f:ff:24:e8:29:43:a2:2c: 7f:a2:db:d3:10:40:e5:bc:3c:4d:66:92:6f:e7:ad:75:65:72: 1c:ed:15:22:09:4e:8b:39:27:bb:d4:4c:9f:7d:fc:37:d8:39: 30:39:51:e0:cd:3e:5e:57:85:d7:0b:be:80:67:73:96:ea:1b: f2:a2:1c:5a:9e:9a:3e:e9:71:13:49:cd:ac:bd:e1:07:26:73: 47:5c:56:c4:7f:5b:87:61:7a:9c:30:73:40:d0:9d:b0:18:79: 69:94:ca:ce:62:34:83:3d:ca:f3:ad:b7:b2:46:bf:7a:bd:a8: 4b:bd:8f:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjUwNTEzMDE0MjU2WhcNMjUwNTIwMDE0MjU2WjAYMRYwFAYD VQQDEw02ODIyYTNhMC1iYmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+jGkdMOJpoEmaCkAgoPazO0Q727K32Ot6hhd9CcIC6CoutdP4YBj56zvDAi GtkMyD/tjAMkazvrjNo0N3Zl5zo2Hs624yChmPK1mpahWCYgJpAcHkIT49EIRsHW GMNVx9ROMq9VBQS90O2KHkQHEx5L+Ty3RYoSOquNl9VRj29BRbpGLGy7FcYNW+ZO JFXs59pxaqdY22u533Hvgb5N+/1z1hcAPbIxkR6mWfml3W14zfph9jukwVEJ44+w 08Gfm3g7YDmTqH+L+ZeT3QWWdXkuxUBKH1ikF6iA6BTJCa6KpY5+zD/J7QEbbgWA bJMMHE70cUVFIuFuX9SCcLMM7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0pShBq 0WWu6TuBAWNib5IwSa8jMB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ3RC9BMzM5NjMwRTI3NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhF eXdsN3RSYWdkTXpSMnZfSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbFr31nd1K/L04vrtFlvU7vJT9RwVm9OBBPhz5oXAS049hy082wzRa NoruDmXAqRf2GuKim12i+rIJimowWwHXtb7VGXgmrJGg8AN/bJvDBn3zsPaa/zPT x4rCzSWv4Nulc5LPLW/iSSTJ6TEK9+ieSO9sMI6VOXFfh4iJ4OXPGrpvn2FOfLYv D/8k6ClDoix/otvTEEDlvDxNZpJv5611ZXIc7RUiCU6LOSe71Eyfffw32DkwOVHg zT5eV4XXC76AZ3OW6hvyohxanpo+6XETSc2sveEHJnNHXFbEf1uHYXqcMHNA0J2w GHlplMrOYjSDPcrzrbeyRr96vahLvY8G -----END CERTIFICATE-----Generated at Tue May 13 22:04:02 2025 by rpki-client