$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: AU0eJKoEfEybPk6cKPrBB4+t1RdrR4B0GyCo7WRo0a8= Subject key identifier: 30:C6:0A:6C:C6:19:25:1A:FF:42:A6:47:05:80:02:1B:5B:BA:A2:BA Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0C06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0BF8 Signing time: Wed 14 May 2025 18:53:16 +0000 Manifest this update: Wed 14 May 2025 18:53:15 +0000 Manifest next update: Wed 21 May 2025 18:53:15 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: KBdlvuWBk0WP7jz06l/cWYbQ7x8w6izwOZjh7SgVSVo=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: J+JzfdPnvnmB6Ay3Ml+qeWmcjb1XIfVxnUqGVNUN7Ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3078 (0xc06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: May 14 18:53:15 2025 GMT Not After : May 21 18:53:15 2025 GMT Subject: CN=6824e69c-abb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2c:12:62:20:a0:ab:ad:1a:b1:d9:70:67:0b: 7c:eb:8a:f1:7c:b1:f8:de:33:d7:34:ee:46:fe:38: ba:ba:20:51:af:73:29:8f:03:3e:73:5a:40:c8:a2: ba:54:60:f4:fc:5a:5e:a1:9b:cc:f2:ee:07:32:85: 53:84:a0:49:ad:6a:ad:60:1c:d1:ac:87:bb:a4:70: 71:e3:b8:9e:45:e8:64:9f:16:e4:e6:77:ff:87:ed: 28:a4:2a:fd:57:38:21:c3:71:4b:e0:cf:dd:de:3f: 83:02:b1:31:f7:c6:e8:a1:09:74:47:e6:a1:10:51: cd:42:67:00:da:58:8c:84:69:e0:24:e3:3e:ff:e6: 13:74:b8:3c:cb:15:5c:2a:5f:9d:ec:62:9e:c6:7d: f3:c3:a4:e7:ce:4e:b2:b7:82:4a:23:24:04:2c:16: 6f:55:5b:d0:1e:c9:6a:58:75:fd:ee:5b:34:5e:1b: 86:65:59:a0:83:87:39:54:23:46:25:02:cd:c0:34: da:f4:23:ca:7f:f3:eb:14:dd:d1:66:21:5f:ba:24: 2e:40:e3:1f:40:1f:4c:36:4f:b3:ec:ce:4b:15:8d: 01:92:00:30:b6:44:59:ad:d3:7f:4b:f6:63:02:03: 22:a1:ca:99:78:dd:c6:d6:b3:67:30:ad:cd:d8:01: b9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C6:0A:6C:C6:19:25:1A:FF:42:A6:47:05:80:02:1B:5B:BA:A2:BA X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:2f:7b:98:b4:f1:ff:66:bd:22:b7:b8:db:40:76:93:d3:de: 09:a5:06:18:16:b0:7f:b6:5e:01:48:c9:56:8f:3e:8c:d1:b8: 3f:bd:ba:98:32:1b:51:05:0f:80:da:a5:66:56:51:04:bc:e7: 54:43:e3:6f:ff:0f:17:c7:db:a3:75:ea:bc:36:4c:74:f4:53: 24:c3:80:9f:99:8e:9f:ad:51:e4:4e:77:70:a6:1e:ff:3b:7a: 3d:95:7a:63:97:5b:6b:81:70:59:6b:71:ce:b2:80:52:65:22: 95:1a:59:87:82:ee:ad:09:36:eb:5d:ba:f0:2b:b2:4f:51:14: 01:f3:a4:35:7d:77:c1:45:da:f7:a5:72:ec:65:95:16:d5:8c: 83:41:55:79:92:b6:54:be:16:57:f3:54:52:08:b2:62:ef:36: 17:94:93:22:d2:86:0a:d6:b7:c1:e3:ca:1f:2d:99:58:d0:e3: 1d:ad:ff:b6:7b:ac:54:b8:8b:24:30:db:2f:be:ea:e6:74:67: bd:f4:4d:db:66:25:af:45:d5:79:21:9a:50:42:84:bf:78:92: 24:57:8f:76:36:9a:9d:a3:55:f0:12:88:4b:89:fd:9d:4e:56: 55:a4:33:79:40:d9:03:e8:e9:de:f6:99:0c:f7:9f:77:26:31: c3:52:1c:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwNTE0MTg1MzE1WhcNMjUwNTIxMTg1MzE1WjAYMRYwFAYD VQQDEw02ODI0ZTY5Yy1hYmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SwSYiCgq60asdlwZwt864rxfLH43jPXNO5G/ji6uiBRr3MpjwM+c1pAyKK6 VGD0/FpeoZvM8u4HMoVThKBJrWqtYBzRrIe7pHBx47ieRehknxbk5nf/h+0opCr9 Vzghw3FL4M/d3j+DArEx98booQl0R+ahEFHNQmcA2liMhGngJOM+/+YTdLg8yxVc Kl+d7GKexn3zw6Tnzk6yt4JKIyQELBZvVVvQHslqWHX97ls0XhuGZVmgg4c5VCNG JQLNwDTa9CPKf/PrFN3RZiFfuiQuQOMfQB9MNk+z7M5LFY0BkgAwtkRZrdN/S/Zj AgMiocqZeN3G1rNnMK3N2AG53QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDGCmzG GSUa/0KmRwWAAhtbuqK6MB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRL3uYtPH/Zr0it7jbQHaT094JpQYYFrB/tl4BSMlWjz6M0bg/vbqY MhtRBQ+A2qVmVlEEvOdUQ+Nv/w8Xx9ujdeq8Nkx09FMkw4CfmY6frVHkTndwph7/ O3o9lXpjl1trgXBZa3HOsoBSZSKVGlmHgu6tCTbrXbrwK7JPURQB86Q1fXfBRdr3 pXLsZZUW1YyDQVV5krZUvhZX81RSCLJi7zYXlJMi0oYK1rfB48ofLZlY0OMdrf+2 e6xUuIskMNsvvurmdGe99E3bZiWvRdV5IZpQQoS/eJIkV492Npqdo1XwEohLif2d TlZVpDN5QNkD6One9pkM9593JjHDUhzq -----END CERTIFICATE-----Generated at Fri May 16 19:26:00 2025 by rpki-client