$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft File: uH-tZU7EIXxlANDwaxm-MZ09rfc.mft (raw, json) Hash identifier: xWQkcKQQT+s2IrTL7FFjcM+1aya9rmdhRLOqD+gOpHw= Subject key identifier: C8:72:20:59:71:C6:58:69:A3:CB:E6:48:A4:69:28:7C:B8:FC:59:50 Authority key identifier: B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 Certificate issuer: /CN=A9155725/serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft Manifest number: 1D Signing time: Tue 13 May 2025 07:10:24 +0000 Manifest this update: Tue 13 May 2025 07:10:23 +0000 Manifest next update: Tue 20 May 2025 07:10:23 +0000 Files and hashes: 1: uH-tZU7EIXxlANDwaxm-MZ09rfc.crl (hash: EX4q+N5YVOn/nNtAhH/wKbAR+m5Wv2rWACxvqLgdXWY=) 2: 7621BEA0084611F08BEB2E2DC4F9AE02.roa (hash: aySEvRngppKs/Lyekhtc0uzM27zK/l0cRA6UmOeIzlU=) 3: 753F0588084611F08BEB2E2DC4F9AE02.roa (hash: v1ibDjxmzIv2LQG97YVedEX5wevRpNJDRuNHyDfGpBg=) 4: 75A4B2D4084611F08BEB2E2DC4F9AE02.roa (hash: JronbENc2C4chw8Lr5GoQXHOGuejfoIjiKRSNDdiR4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Validity Not Before: May 13 07:10:23 2025 GMT Not After : May 20 07:10:23 2025 GMT Subject: CN=6822f05f-1082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:29:a5:e4:8b:a9:6b:5f:6a:21:3e:9a:5f:fc: d8:22:d3:a4:87:c6:fa:47:4b:31:8e:3b:ba:51:ba: d5:2c:6c:80:e1:4a:ad:cd:1f:49:19:32:b7:40:e2: bf:ea:6a:2f:59:f6:0f:f2:08:39:db:e1:c0:ef:d9: 06:32:26:b0:c5:78:7b:48:4e:91:e8:aa:43:af:b0: 76:a3:54:5f:f2:09:4f:cc:c5:c9:f9:c6:5e:4b:2a: d1:3e:dd:21:5f:f8:4a:b8:b0:17:47:63:21:39:7d: 86:01:55:1b:80:1a:9e:0a:94:3a:c8:45:f6:80:e7: 40:04:69:d5:5b:12:a2:cd:e0:31:26:2e:ae:64:48: 5f:ae:ae:b4:36:52:19:0b:4d:14:a6:cc:15:0d:0f: 1a:a9:2b:e8:28:83:aa:37:d0:83:44:58:3c:1d:fc: 7d:63:7a:71:9e:98:f3:b0:a7:f2:09:0d:61:bc:3e: 78:af:c8:f9:b7:ee:8d:9f:1f:20:11:c1:9d:ea:d0: c0:e0:b0:8a:a4:72:4d:0e:ca:38:81:16:ab:1a:9f: 72:c3:86:12:c6:4b:48:d4:7c:ff:8a:be:75:63:42: dd:80:23:50:b6:f0:63:de:1b:be:a1:7d:29:a1:b2: e2:5f:d7:ad:1b:7c:4d:56:70:28:11:5b:68:ff:aa: 89:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:72:20:59:71:C6:58:69:A3:CB:E6:48:A4:69:28:7C:B8:FC:59:50 X509v3 Authority Key Identifier: keyid:B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:8b:4a:ca:7d:2c:97:36:14:7f:18:07:8c:be:31:90:9c:97: 9f:8d:05:fc:c8:ed:31:1d:bf:76:e9:49:9e:bd:fe:79:01:d1: 26:07:15:b1:a0:41:ea:d7:24:f0:11:38:55:25:3b:6e:fc:13: f4:b1:81:87:d4:6a:1f:4e:f9:b6:70:66:4a:29:e8:ed:c2:66: aa:6f:8a:c6:60:55:9a:4a:5a:f3:db:e3:f0:a3:95:40:a7:1c: f5:07:16:59:ab:47:71:86:87:12:65:dd:3b:39:da:04:6e:29: 7f:c7:28:56:c8:ab:5d:29:7d:7c:a4:5e:1e:d2:73:44:4c:e3: b1:ca:ba:48:ca:be:4e:9c:2d:17:82:ac:89:ee:19:de:da:fb: f9:26:be:47:80:99:ae:54:41:07:06:a8:c9:be:a3:5c:e4:a6: f0:ac:4a:74:85:26:55:ce:4d:70:83:64:17:6d:08:8c:2a:fa: 6a:3d:69:de:7f:51:64:00:a6:05:aa:d6:c0:e5:a4:6f:ad:58: e6:5e:84:46:c3:2e:30:e8:ba:0a:63:09:e3:b9:98:c4:67:90: ed:ef:f0:db:72:bb:2b:7d:f6:5f:64:50:95:f3:0f:ec:35:f8: 81:b9:91:ce:bd:18:34:46:81:81:51:6b:73:e9:12:dd:68:70: 2b:53:6c:10 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoQjg3RkFENjU0RUM0MjE3QzY1MDBEMEYwNkIxOUJFMzE5 RDNEQURGNzAeFw0yNTA1MTMwNzEwMjNaFw0yNTA1MjAwNzEwMjNaMBgxFjAUBgNV BAMTDTY4MjJmMDVmLTEwODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbKaXki6lrX2ohPppf/Ngi06SHxvpHSzGOO7pRutUsbIDhSq3NH0kZMrdA4r/q ai9Z9g/yCDnb4cDv2QYyJrDFeHtITpHoqkOvsHajVF/yCU/Mxcn5xl5LKtE+3SFf +Eq4sBdHYyE5fYYBVRuAGp4KlDrIRfaA50AEadVbEqLN4DEmLq5kSF+urrQ2UhkL TRSmzBUNDxqpK+gog6o30INEWDwd/H1jenGemPOwp/IJDWG8PnivyPm37o2fHyAR wZ3q0MDgsIqkck0OyjiBFqsan3LDhhLGS0jUfP+KvnVjQt2AI1C28GPeG76hfSmh suJf160bfE1WcCgRW2j/qolxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyHIgWXHG WGmjy+ZIpGkofLj8WVAwHwYDVR0jBBgwFoAUuH+tZU7EIXxlANDwaxm+MZ09rfcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzgwMUJDQUE2MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4bEFORHdheG0tTVowOXJm Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdUgtdFpVN0VJWHhsQU5Ed2F4bS1NWjA5cmZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzgwMUJDQUE2MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4 bEFORHdheG0tTVowOXJmYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADKLSsp9LJc2FH8YB4y+MZCcl5+NBfzI7TEdv3bpSZ69/nkB0SYHFbGg QerXJPAROFUlO278E/SxgYfUah9O+bZwZkop6O3CZqpvisZgVZpKWvPb4/CjlUCn HPUHFlmrR3GGhxJl3Ts52gRuKX/HKFbIq10pfXykXh7Sc0RM47HKukjKvk6cLReC rInuGd7a+/kmvkeAma5UQQcGqMm+o1zkpvCsSnSFJlXOTXCDZBdtCIwq+mo9ad5/ UWQApgWq1sDlpG+tWOZehEbDLjDougpjCeO5mMRnkO3v8Ntyuyt99l9kUJXzD+w1 +IG5kc69GDRGgYFRa3PpEt1ocCtTbBA= -----END CERTIFICATE-----Generated at Wed May 14 20:50:52 2025 by rpki-client