$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: ly9rvFtvfEh8n3mVbX0Hl2vc/PCLQbl54Omxxpc9GXU= Subject key identifier: 63:B8:89:0B:43:AA:B7:96:E1:5D:3B:33:BB:3C:51:5C:F6:8E:5A:E3 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0838 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 1F7C Signing time: Mon 12 May 2025 16:31:43 +0000 Manifest this update: Mon 12 May 2025 16:31:42 +0000 Manifest next update: Mon 19 May 2025 16:31:42 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: thTMTrnfyQTwHSaGJKRdkQO7RWrIuFWVkCAko6t65+8=) 2: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: +GCGIqPvO3PU3ceu6b5k3g5FWDNdoijguoZ0F6Ql6aE=) 3: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: A9NER4RWLAzUHssj8hz2WdFFJOhX2P8OvSLz/oFPj9Y=) 4: 172C2B96197711F0A993397AC4F9AE02.roa (hash: 9ByI1R/8UoBUoqrLxfOWYkU9YKprJy6KVIMEGdoolfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:31:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2104 (0x838) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: May 12 16:31:42 2025 GMT Not After : May 19 16:31:42 2025 GMT Subject: CN=6822226f-91f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:93:c9:bc:a1:8e:93:8d:6c:b6:a3:40:5d:92: d6:9b:5a:72:f3:30:ea:83:40:1d:af:bf:df:72:cd: 08:60:df:cc:03:f1:e1:00:13:94:1b:38:9c:8d:b8: 20:7e:56:d0:ac:f1:04:06:8f:1a:f0:07:bf:99:df: 12:13:ee:63:ed:2e:65:cb:b6:7e:8d:7a:8e:1f:ab: 1c:4d:d4:8a:e8:00:19:45:94:ef:79:87:6a:52:ef: d0:d8:f2:9a:c9:f2:4f:69:5c:cf:3f:52:b8:2f:5f: 70:bb:e4:14:60:d9:a0:da:bb:08:5b:23:9d:16:0a: 54:37:8a:0b:83:f7:7b:74:dd:19:b1:e4:8e:a0:a2: a6:b1:05:07:ee:b3:67:2c:6a:a4:41:8d:e5:14:8c: 90:92:97:ba:21:ea:b1:7d:fc:25:87:8d:32:47:07: 3e:e9:a9:af:a0:22:7f:f7:bf:7c:6c:e0:30:8c:5a: 23:e0:c2:6f:37:01:07:98:a0:ab:54:d2:ef:90:83: 64:e6:55:55:8d:e5:ac:36:c7:99:97:a8:44:fb:3c: 64:38:4f:a8:02:a6:fd:7d:79:62:2c:40:76:06:23: a4:81:eb:d5:29:f0:4b:12:b9:1f:09:11:94:5f:1b: c3:2a:5b:50:d0:06:df:4c:53:8c:f6:fc:6e:54:e1: e4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B8:89:0B:43:AA:B7:96:E1:5D:3B:33:BB:3C:51:5C:F6:8E:5A:E3 X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:8a:18:e0:a4:f3:27:7d:1a:dc:65:e1:1a:a2:8f:74:ea:23: a3:09:e2:57:7a:5f:19:db:22:64:4a:54:47:8a:81:66:13:36: 73:49:8b:b6:db:05:b5:3e:0e:c0:7f:3e:3e:3c:6d:d3:36:7c: 52:ef:c4:50:26:67:73:e7:e6:ce:92:f4:a3:35:52:5d:84:c4: 52:6b:7c:06:f9:eb:c6:67:97:28:e1:f8:56:84:46:7f:e3:98: 7e:42:78:b0:1e:98:4e:e8:fa:83:65:f8:62:77:eb:9b:45:ee: 09:c7:b1:f0:35:cb:32:e8:5c:48:c9:68:f1:07:2b:a1:0f:4e: ad:f0:1b:83:ba:bb:78:f2:70:fa:5f:76:f8:43:86:17:3c:57: 59:ee:04:66:89:b8:1b:13:a7:16:c6:54:9e:89:7a:31:23:d7: 3c:e6:0f:59:60:ab:5c:b2:c1:ca:c7:af:b6:14:62:b9:cf:a5: 99:29:c3:ab:c4:38:76:a2:16:97:3d:f8:d2:2d:71:18:7a:d8: 2d:e8:af:5e:6b:7c:3c:89:cc:4a:47:b2:c1:18:db:30:fe:1c: 5e:d8:a9:98:20:00:f7:6a:dd:1b:9d:6f:5e:45:75:d9:ed:bd: 7c:45:99:6b:60:67:33:25:b7:24:38:1b:a4:70:bd:92:52:73: 06:02:6e:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjUwNTEyMTYzMTQyWhcNMjUwNTE5MTYzMTQyWjAYMRYwFAYD VQQDEw02ODIyMjI2Zi05MWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupPJvKGOk41stqNAXZLWm1py8zDqg0Adr7/fcs0IYN/MA/HhABOUGzicjbgg flbQrPEEBo8a8Ae/md8SE+5j7S5ly7Z+jXqOH6scTdSK6AAZRZTveYdqUu/Q2PKa yfJPaVzPP1K4L19wu+QUYNmg2rsIWyOdFgpUN4oLg/d7dN0ZseSOoKKmsQUH7rNn LGqkQY3lFIyQkpe6Ieqxffwlh40yRwc+6amvoCJ/9798bOAwjFoj4MJvNwEHmKCr VNLvkINk5lVVjeWsNseZl6hE+zxkOE+oAqb9fXliLEB2BiOkgevVKfBLErkfCRGU XxvDKltQ0AbfTFOM9vxuVOHk8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGO4iQtD qreW4V07M7s8UVz2jlrjMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCihjgpPMnfRrcZeEaoo906iOjCeJXel8Z2yJkSlRHioFmEzZzSYu2 2wW1Pg7Afz4+PG3TNnxS78RQJmdz5+bOkvSjNVJdhMRSa3wG+evGZ5co4fhWhEZ/ 45h+QniwHphO6PqDZfhid+ubRe4Jx7HwNcsy6FxIyWjxByuhD06t8BuDurt48nD6 X3b4Q4YXPFdZ7gRmibgbE6cWxlSeiXoxI9c85g9ZYKtcssHKx6+2FGK5z6WZKcOr xDh2ohaXPfjSLXEYetgt6K9ea3w8icxKR7LBGNsw/hxe2KmYIAD3at0bnW9eRXXZ 7b18RZlrYGczJbckOBukcL2SUnMGAm5N -----END CERTIFICATE-----Generated at Wed May 14 16:02:45 2025 by rpki-client