$ rpki-client -vvf rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft File: UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft (raw, json) Hash identifier: /fViRgAgWhlpJ3tHdzMmRU7G/tEsuyjF/EwQWCrimZE= Subject key identifier: F7:1A:4D:EB:B1:89:64:49:A4:54:43:C9:8B:79:92:73:60:90:FA:D6 Authority key identifier: 50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 Certificate issuer: /CN=A9157031/serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Certificate serial: 03F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft Manifest number: 03F4 Signing time: Sun 29 Jun 2025 00:02:55 +0000 Manifest this update: Sun 29 Jun 2025 00:02:55 +0000 Manifest next update: Sun 06 Jul 2025 00:02:55 +0000 Files and hashes: 1: UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl (hash: wBMXb8TmN8ZY+qMvhFRYugU46ccmAQ9gnaO9WdeGX08=) 2: 32D8FF34C99E11ED98E9BE5BC4F9AE02.roa (hash: c5V6Lua8bVtI2cCUYsdMWFX4y1DX6zS+QDVuvCq2xVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157031, serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Validity Not Before: Jun 29 00:02:55 2025 GMT Not After : Jul 6 00:02:55 2025 GMT Subject: CN=686082af-5b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cf:3d:c7:dd:41:82:76:56:c2:43:42:ec:5f: e1:d7:6e:b1:3b:ed:ae:99:1c:fa:5e:e9:6e:e1:79: 3b:5c:e5:8c:42:29:7f:14:dd:82:65:ea:be:a5:9b: a2:c5:26:cb:f2:fe:47:30:79:e6:7d:d2:17:aa:d0: 07:35:5c:3c:fc:3c:62:c6:94:17:b5:e0:0f:5b:e6: 40:99:09:ba:a6:89:50:8d:0a:4f:c6:8e:25:9b:75: ae:f7:b5:a4:22:df:f7:56:b0:fd:50:33:bf:96:c3: 5a:22:d8:7f:b6:58:e7:53:fe:61:df:58:09:30:6c: 97:75:80:44:d7:f0:84:d3:46:c2:34:16:7d:58:62: c0:ba:96:a7:5f:9a:94:cf:e4:7a:e4:b1:9f:34:8e: 81:7f:95:18:0d:b2:12:bc:73:e9:4c:04:d6:28:9c: 65:03:34:42:dc:5a:7f:d6:59:9c:49:f3:97:9b:6a: ed:01:e2:c6:31:d3:77:1d:75:b1:ac:e9:fe:88:11: 38:9e:19:f2:e6:3a:84:b5:6e:56:0b:88:4c:bf:3c: ff:60:59:38:ea:ac:ad:16:67:f4:6c:e0:8b:f5:be: 36:ab:60:b4:dd:1a:ba:f0:2b:94:59:16:17:5c:ab: 66:1f:e2:30:32:a0:87:ca:77:71:3c:42:be:8a:96: df:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1A:4D:EB:B1:89:64:49:A4:54:43:C9:8B:79:92:73:60:90:FA:D6 X509v3 Authority Key Identifier: keyid:50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:1b:7f:96:6e:ec:dc:15:ee:c6:cb:bb:3c:b3:ff:78:a6:0e: 28:e5:fc:f9:79:55:dc:76:6b:a9:0d:73:8b:e8:d9:fa:c8:bd: 19:18:be:e8:da:10:49:4c:26:45:f2:6c:27:a6:ab:db:fe:97: a6:63:99:5a:52:32:1b:5a:29:c5:08:b3:98:bf:53:d5:0f:0c: a0:32:20:a4:20:12:51:b3:b4:93:e8:65:13:02:b7:cd:03:7c: 1f:1f:d0:ab:ab:9b:15:76:19:82:91:87:9f:fa:4d:c9:e5:28: 9c:e7:49:10:73:ab:5a:bf:ff:57:96:29:5a:5c:df:96:d9:e6: 3c:d0:4f:cb:6e:0d:ee:95:ea:21:4c:6c:ba:76:70:2f:69:77: de:79:d1:55:5c:ce:bc:ca:87:3f:2e:3d:7b:a8:d2:6b:00:7c: 8c:e3:fe:99:0d:37:02:bc:7f:2b:c7:70:72:1a:40:0b:f3:5a: f7:8b:d4:f6:33:25:63:0f:45:c7:37:98:de:a3:cc:6d:21:d5: c3:aa:7c:ed:94:43:1a:b9:0f:72:90:30:89:c0:8c:3d:39:01: df:87:06:62:d3:8f:e9:fe:a3:c3:a1:ec:c8:4e:6b:99:63:af: 18:57:ba:79:ee:a8:38:c0:53:2c:77:d3:c2:7f:a8:f7:63:63: cd:3d:af:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwMzExMTAvBgNVBAUTKDUwRTUwRURBRjY0QTJDMjVCNzMxMjM5NjczRDkwNzBG NjE4MzAyNzkwHhcNMjUwNjI5MDAwMjU1WhcNMjUwNzA2MDAwMjU1WjAYMRYwFAYD VQQDEw02ODYwODJhZi01YjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc89x91BgnZWwkNC7F/h126xO+2umRz6Xulu4Xk7XOWMQil/FN2CZeq+pZui xSbL8v5HMHnmfdIXqtAHNVw8/DxixpQXteAPW+ZAmQm6polQjQpPxo4lm3Wu97Wk It/3VrD9UDO/lsNaIth/tljnU/5h31gJMGyXdYBE1/CE00bCNBZ9WGLAupanX5qU z+R65LGfNI6Bf5UYDbISvHPpTATWKJxlAzRC3Fp/1lmcSfOXm2rtAeLGMdN3HXWx rOn+iBE4nhny5jqEtW5WC4hMvzz/YFk46qytFmf0bOCL9b42q2C03Rq68CuUWRYX XKtmH+IwMqCHyndxPEK+ipbfXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcaTeux iWRJpFRDyYt5knNgkPrWMB8GA1UdIwQYMBaAFFDlDtr2SiwltzEjlnPZBw9hgwJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzAzMS83QTAwNEY3ODdF QzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xDVzNNU09XYzlrSEQyR0RB bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPVU8ydlpLTENXM01TT1djOWtIRDJHREFuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzAzMS83QTAwNEY3ODdFQzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xD VzNNU09XYzlrSEQyR0RBbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeG3+WbuzcFe7Gy7s8s/94pg4o5fz5eVXcdmupDXOL6Nn6yL0ZGL7o 2hBJTCZF8mwnpqvb/pemY5laUjIbWinFCLOYv1PVDwygMiCkIBJRs7ST6GUTArfN A3wfH9Crq5sVdhmCkYef+k3J5Sic50kQc6tav/9XlilaXN+W2eY80E/Lbg3uleoh TGy6dnAvaXfeedFVXM68yoc/Lj17qNJrAHyM4/6ZDTcCvH8rx3ByGkAL81r3i9T2 MyVjD0XHN5jeo8xtIdXDqnztlEMauQ9ykDCJwIw9OQHfhwZi04/p/qPDoezITmuZ Y68YV7p57qg4wFMsd9PCf6j3Y2PNPa+R -----END CERTIFICATE-----Generated at Sun Jun 29 16:41:28 2025 by rpki-client