$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: KEQ4wfRdEZiBOms0ThrqVc8PsAd219dxD9dYIbwoKLY= Subject key identifier: BE:9F:EE:49:96:E4:2C:58:DE:9B:71:1F:0A:79:35:25:45:3B:A4:B4 Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: 81 Signing time: Thu 15 May 2025 05:57:10 +0000 Manifest this update: Thu 15 May 2025 05:57:10 +0000 Manifest next update: Thu 22 May 2025 05:57:09 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: O+BQTdMn9STbgI6oawsWmGsvOQWSMyRCOMS0nXawlE8=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: KLVK6zfk1sI4e7G8hRism5bZ4U3Yqq/t49H1ShoVhoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: May 15 05:57:10 2025 GMT Not After : May 22 05:57:09 2025 GMT Subject: CN=68258236-aab4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4e:91:49:66:00:20:84:e0:70:62:fa:5d:22: fe:2d:0b:a6:4f:e9:ef:97:ff:c3:fa:85:16:da:89: 0e:8c:13:68:b9:79:b8:e1:6a:4c:0d:39:e8:f5:80: 24:be:81:da:41:58:9f:a9:21:ae:1a:e0:46:bb:e1: 5b:78:71:71:56:8f:60:e7:a8:00:ae:c8:a0:ed:da: a6:03:9f:36:12:67:6f:8a:82:cb:70:9b:e0:ee:a7: c8:70:e6:fe:94:9e:12:01:be:e6:46:04:fe:3b:89: b1:f3:08:39:17:c9:2e:3e:4b:d5:ec:1a:d8:b5:d0: 78:62:74:40:2a:fe:79:da:08:7b:60:e9:56:57:b2: 3f:62:3c:2c:f5:cd:0d:84:cc:0c:fa:96:66:16:13: f3:ec:24:77:68:de:36:21:2f:63:d8:c7:ab:2f:e9: ff:b0:00:1b:9e:af:fd:a9:b9:47:ee:a2:a0:95:65: fc:e7:f3:9b:bb:9e:c2:19:6e:f1:50:04:ce:e8:91: ad:63:91:fb:81:5c:8f:f5:41:e4:40:5e:aa:bd:d0: 08:6f:7b:16:d2:23:27:d5:6b:91:37:d6:c3:92:95: 25:48:59:c7:96:31:db:9c:4a:d1:4e:12:0d:77:fc: 69:d2:31:40:d8:1e:57:e1:a6:f4:03:32:0f:77:bd: f3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9F:EE:49:96:E4:2C:58:DE:9B:71:1F:0A:79:35:25:45:3B:A4:B4 X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:0a:83:0b:b4:ef:94:bc:d5:54:ff:f7:24:29:da:fd:97:53: 16:c6:c3:4e:05:25:15:df:3e:8f:53:b4:47:f7:c7:b1:ff:e6: 41:ac:d4:1b:75:e1:e4:c1:27:19:e9:00:7c:ec:00:3b:9c:da: 77:9c:cb:ee:5f:55:10:35:a3:a8:66:73:46:32:5b:82:0e:42: aa:c3:90:61:9f:f1:11:cb:aa:8c:42:b4:a2:0f:37:80:8f:2a: b4:6a:48:d9:6b:b0:e7:99:15:dc:a0:2e:b4:c1:75:b7:29:e0: 63:61:36:8c:17:ad:53:13:d4:2b:78:b2:7a:96:03:fc:ef:61: 1f:3e:bd:53:b5:f4:e2:8e:7e:04:07:c0:27:e2:a6:d4:97:c0: 98:da:1c:6b:d4:4e:fd:93:5a:d5:49:c1:20:30:3e:43:cd:6a: a9:b9:7a:d9:9c:eb:64:64:0a:d2:a5:19:de:5d:46:32:e1:d7: f7:15:dc:f9:b6:e4:45:6c:e9:3b:04:bb:bc:fb:55:77:d3:74: fe:93:2d:93:ae:5b:7f:f9:60:18:43:4c:49:24:52:8d:8b:da: 42:7b:7f:dc:cd:ec:db:b8:13:14:7a:f7:e2:77:95:c4:b1:68: 42:e1:d0:7d:06:40:02:00:4b:ef:3b:30:c1:12:f1:2a:e6:b1: a7:97:63:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjUwNTE1MDU1NzEwWhcNMjUwNTIyMDU1NzA5WjAYMRYwFAYD VQQDEw02ODI1ODIzNi1hYWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm06RSWYAIITgcGL6XSL+LQumT+nvl//D+oUW2okOjBNouXm44WpMDTno9YAk voHaQVifqSGuGuBGu+FbeHFxVo9g56gArsig7dqmA582EmdvioLLcJvg7qfIcOb+ lJ4SAb7mRgT+O4mx8wg5F8kuPkvV7BrYtdB4YnRAKv552gh7YOlWV7I/Yjws9c0N hMwM+pZmFhPz7CR3aN42IS9j2MerL+n/sAAbnq/9qblH7qKglWX85/Obu57CGW7x UATO6JGtY5H7gVyP9UHkQF6qvdAIb3sW0iMn1WuRN9bDkpUlSFnHljHbnErRThIN d/xp0jFA2B5X4ab0AzIPd73zXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6f7kmW 5CxY3ptxHwp5NSVFO6S0MB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdCoMLtO+UvNVU//ckKdr9l1MWxsNOBSUV3z6PU7RH98ex/+ZBrNQb deHkwScZ6QB87AA7nNp3nMvuX1UQNaOoZnNGMluCDkKqw5Bhn/ERy6qMQrSiDzeA jyq0akjZa7DnmRXcoC60wXW3KeBjYTaMF61TE9QreLJ6lgP872EfPr1TtfTijn4E B8An4qbUl8CY2hxr1E79k1rVScEgMD5DzWqpuXrZnOtkZArSpRneXUYy4df3Fdz5 tuRFbOk7BLu8+1V303T+ky2Trlt/+WAYQ0xJJFKNi9pCe3/czezbuBMUevfid5XE sWhC4dB9BkACAEvvOzDBEvEq5rGnl2MJ -----END CERTIFICATE-----Generated at Sat May 17 03:23:15 2025 by rpki-client