$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: 14WwboUrtWJccwqDGBEGIbGE4SZwcP4TnzABVoXlDsY= Subject key identifier: 28:6D:8A:E0:E2:2F:6C:31:CD:D4:DB:F6:9D:95:EE:F9:2A:E7:09:0E Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 063B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 0636 Signing time: Fri 16 May 2025 22:56:29 +0000 Manifest this update: Fri 16 May 2025 22:56:28 +0000 Manifest next update: Fri 23 May 2025 22:56:28 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: q4ezBGRatuDHBOdzBYi01hiaRkKeddapsISmnB64jSc=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 22:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: May 16 22:56:28 2025 GMT Not After : May 23 22:56:28 2025 GMT Subject: CN=6827c29d-f441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:30:f0:69:fa:fb:08:60:f9:84:2c:6d:6c:9f: de:58:67:0e:49:54:96:ea:07:8b:f3:91:75:f0:19: 13:78:df:f4:fb:87:0d:fd:b3:09:d1:ba:60:b2:7a: ac:57:1e:47:95:5d:a3:c2:9a:99:1a:8b:15:7d:1a: 57:4c:6f:b4:ea:9e:66:ab:4a:ea:e2:23:6e:fa:91: f8:40:8b:5e:54:36:65:c4:9f:3d:0d:71:86:e4:43: 23:0a:8c:f5:f9:6f:d9:47:93:a7:c0:24:3f:46:61: 84:10:b8:69:51:22:2c:f1:7f:d5:6d:67:43:a4:8f: 7c:b8:01:79:fb:83:a4:d3:f8:74:a3:a9:a6:9f:24: e1:59:a6:b2:b9:23:0c:a1:a1:35:09:1f:bf:33:db: 3d:a5:df:c0:26:ad:14:e3:0e:51:3c:5a:ca:a4:eb: 4e:c2:34:be:5b:bc:2e:71:29:9c:67:ac:d3:16:70: a4:44:23:49:fc:c4:b3:49:e5:16:5d:0d:fb:cc:c4: b2:e0:53:54:34:be:da:a7:73:9e:17:4b:ac:10:48: 30:f9:ba:51:72:c5:7e:43:1a:8d:c6:15:bd:59:e3: eb:fc:67:f7:38:c7:e3:0e:06:1c:ac:0b:80:a5:c6: 9c:74:ee:43:4b:be:7e:06:90:5b:c9:22:2f:6b:ef: 07:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:6D:8A:E0:E2:2F:6C:31:CD:D4:DB:F6:9D:95:EE:F9:2A:E7:09:0E X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:3f:63:07:d4:81:46:58:af:a5:03:f5:87:97:59:5f:ca:04: 95:4d:ff:26:98:2a:6c:59:31:36:82:b0:7f:47:21:58:42:b2: 5e:47:40:3c:bc:ae:c9:61:39:ab:7c:54:41:62:e2:59:77:b5: 62:d7:f1:5b:9e:25:58:dc:c5:40:54:1f:4b:37:0b:2a:12:b0: 32:6f:6c:87:c8:b5:16:21:01:de:ed:5c:f2:e3:f8:f6:0d:8c: ff:7d:22:03:b7:9c:b0:4f:db:61:2e:4f:ca:2b:41:e3:15:57: 33:b7:54:8c:77:de:fa:64:a4:c7:57:aa:7a:4e:fa:84:00:d7: 04:be:5f:f7:c2:77:44:40:c5:62:9b:d2:ad:5d:fb:be:28:1d: b3:68:a9:02:8d:69:b5:b8:0e:a8:7e:91:16:4d:88:a1:25:f9: dd:8e:88:de:f2:fe:4d:80:2c:28:fd:6a:7b:7f:16:b4:11:e8: ad:96:c8:06:34:9e:bf:e8:03:c7:0f:bc:b4:25:77:ba:4a:ec: 4f:b2:25:d0:12:56:76:ea:e2:e0:5a:22:33:3a:48:58:43:c5: fa:22:cf:7e:5c:8a:ed:30:ee:c8:09:b6:43:f2:7b:1d:9c:4f: c6:53:01:ca:56:e5:b9:92:e5:98:c3:ae:61:43:bd:cf:93:25: 0d:0e:9d:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUwNTE2MjI1NjI4WhcNMjUwNTIzMjI1NjI4WjAYMRYwFAYD VQQDEw02ODI3YzI5ZC1mNDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDDwafr7CGD5hCxtbJ/eWGcOSVSW6geL85F18BkTeN/0+4cN/bMJ0bpgsnqs Vx5HlV2jwpqZGosVfRpXTG+06p5mq0rq4iNu+pH4QIteVDZlxJ89DXGG5EMjCoz1 +W/ZR5OnwCQ/RmGEELhpUSIs8X/VbWdDpI98uAF5+4Ok0/h0o6mmnyThWaayuSMM oaE1CR+/M9s9pd/AJq0U4w5RPFrKpOtOwjS+W7wucSmcZ6zTFnCkRCNJ/MSzSeUW XQ37zMSy4FNUNL7ap3OeF0usEEgw+bpRcsV+QxqNxhW9WePr/Gf3OMfjDgYcrAuA pcacdO5DS75+BpBbySIva+8HZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChtiuDi L2wxzdTb9p2V7vkq5wkOMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwP2MH1IFGWK+lA/WHl1lfygSVTf8mmCpsWTE2grB/RyFYQrJeR0A8 vK7JYTmrfFRBYuJZd7Vi1/FbniVY3MVAVB9LNwsqErAyb2yHyLUWIQHe7Vzy4/j2 DYz/fSIDt5ywT9thLk/KK0HjFVczt1SMd976ZKTHV6p6TvqEANcEvl/3wndEQMVi m9KtXfu+KB2zaKkCjWm1uA6ofpEWTYihJfndjoje8v5NgCwo/Wp7fxa0EeitlsgG NJ6/6APHD7y0JXe6SuxPsiXQElZ26uLgWiIzOkhYQ8X6Is9+XIrtMO7ICbZD8nsd nE/GUwHKVuW5kuWYw65hQ73PkyUNDp39 -----END CERTIFICATE-----Generated at Sat May 17 05:01:52 2025 by rpki-client