$ rpki-client -vvf rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft File: -uYgHGZjkjQL7hOO1BeZuobapog.mft (raw, json) Hash identifier: GndZlFMjR882w6g6+2yT5hjlR/DOyvx6H1YM6ComJ1A= Subject key identifier: 97:E4:EA:5D:8F:4C:8B:8E:DE:47:74:5A:01:50:AF:19:CB:09:88:74 Authority key identifier: FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 Certificate issuer: /CN=A9158840/serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Certificate serial: 0C34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft Manifest number: 0C24 Signing time: Wed 14 May 2025 18:46:22 +0000 Manifest this update: Wed 14 May 2025 18:46:21 +0000 Manifest next update: Wed 21 May 2025 18:46:21 +0000 Files and hashes: 1: -uYgHGZjkjQL7hOO1BeZuobapog.crl (hash: XgRvMxia1akLMFG9BCM0gpaF4W2STE1Wsxs/xRCMkDE=) 2: 513421B0E3AB11EF9C68465CC4F9AE02.roa (hash: /6OtFAV0fvfK8AYoQXUKAPYFcikHsFv3EvaxBMPOB2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3124 (0xc34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158840, serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Validity Not Before: May 14 18:46:21 2025 GMT Not After : May 21 18:46:21 2025 GMT Subject: CN=6824e4fe-7298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:53:d2:6f:cf:1b:4e:56:cd:1f:1f:8c:80:7c: 47:db:2d:43:33:d1:e6:b3:b0:46:d7:8f:1b:75:0b: cf:d0:32:ee:10:6d:e1:2e:c4:75:da:dd:56:d6:b3: ee:99:ab:63:ee:b4:f8:fc:25:f9:42:3e:33:b6:4a: 08:a9:ee:97:45:3e:fb:6c:de:cd:1a:c9:1f:07:0d: 91:70:5d:ae:5a:cd:8f:5f:97:5e:44:06:55:d6:c4: 04:c1:4f:e6:3b:ad:69:e2:b2:c7:94:cc:f3:d6:8b: 10:0a:ea:61:dc:57:07:c3:a3:1a:fe:4b:4a:89:cb: 30:a8:55:55:cf:c1:96:b2:4b:9d:17:79:b1:43:5e: c9:58:ca:4c:e2:f9:44:6a:af:48:90:2b:d5:38:b7: b3:5a:09:a8:1f:b5:d0:52:07:bd:ee:a0:53:23:ef: 62:cf:5c:60:dc:16:c3:52:f4:07:71:6c:c6:f6:d8: 87:7d:ac:36:df:e6:a5:63:ac:b5:e0:76:05:3d:8b: ad:e8:95:39:c3:29:0b:6a:cc:41:09:b3:c9:dc:6e: 7e:d6:f9:01:b6:57:8d:04:d3:39:26:7d:24:46:b4: 48:7a:46:d2:54:cc:77:77:1d:28:ca:b0:eb:82:1b: 6e:c5:64:ec:9e:4c:8a:fa:4b:23:be:da:54:0e:98: c3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E4:EA:5D:8F:4C:8B:8E:DE:47:74:5A:01:50:AF:19:CB:09:88:74 X509v3 Authority Key Identifier: keyid:FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:7a:94:18:51:cc:3c:3a:d7:6b:ca:b0:a0:e3:5b:ac:2c:01: 83:5d:9b:1d:f6:09:d2:b5:b6:ec:0b:14:20:c6:42:d0:86:30: fe:6e:14:73:f0:cc:fd:59:7a:1f:ac:98:9d:cd:d4:12:95:7a: 85:f1:cf:ce:2f:68:da:91:a7:b6:ae:24:aa:ee:a1:7e:88:4c: 62:81:da:cd:f4:73:94:99:62:7d:88:9e:d5:73:9a:d2:aa:5c: 27:e2:33:e4:5e:6a:ed:39:09:05:bc:ec:7d:2e:99:ba:fb:e0: 77:bd:22:0d:d4:31:18:29:5c:89:64:54:56:fc:a9:7c:d8:06: 64:69:45:c5:9d:e9:0c:a2:81:1d:38:ac:34:00:0f:25:f6:f6: 73:c4:76:1d:3a:5f:ac:61:4e:c3:7b:6d:94:d5:bf:64:69:5c: c4:b9:6b:f7:50:12:58:9f:f0:dd:c2:23:4f:90:02:3e:5d:c3: 6e:29:85:08:c8:a9:61:df:c0:62:ef:84:11:7a:57:35:0b:e8: 7c:c8:a0:83:89:5f:d0:7f:66:bb:34:77:75:ce:36:33:55:06: 6c:8c:16:d2:a3:84:e4:0a:50:89:68:18:c0:2f:4c:f6:ae:3d: 01:a9:7c:c1:d6:05:e7:44:89:6c:99:bf:1c:e8:c4:f6:f0:32: 0d:d1:6c:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NDAxMTAvBgNVBAUTKEZBRTYyMDFDNjY2MzkyMzQwQkVFMTM4RUQ0MTc5OUJB ODZEQUE2ODgwHhcNMjUwNTE0MTg0NjIxWhcNMjUwNTIxMTg0NjIxWjAYMRYwFAYD VQQDEw02ODI0ZTRmZS03Mjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVPSb88bTlbNHx+MgHxH2y1DM9Hms7BG148bdQvP0DLuEG3hLsR12t1W1rPu matj7rT4/CX5Qj4ztkoIqe6XRT77bN7NGskfBw2RcF2uWs2PX5deRAZV1sQEwU/m O61p4rLHlMzz1osQCuph3FcHw6Ma/ktKicswqFVVz8GWskudF3mxQ17JWMpM4vlE aq9IkCvVOLezWgmoH7XQUge97qBTI+9iz1xg3BbDUvQHcWzG9tiHfaw23+alY6y1 4HYFPYut6JU5wykLasxBCbPJ3G5+1vkBtleNBNM5Jn0kRrRIekbSVMx3dx0oyrDr ghtuxWTsnkyK+ksjvtpUDpjDeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfk6l2P TIuO3kd0WgFQrxnLCYh0MB8GA1UdIwQYMBaAFPrmIBxmY5I0C+4TjtQXmbqG2qaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg0MC82MTc3MzMyQTBC ODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtqUUw3aE9PMUJlWnVvYmFw b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy11WWdIR1pqa2pRTDdoT08xQmVadW9iYXBvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODg0MC82MTc3MzMyQTBCODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtq UUw3aE9PMUJlWnVvYmFwb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnepQYUcw8OtdryrCg41usLAGDXZsd9gnStbbsCxQgxkLQhjD+bhRz 8Mz9WXofrJidzdQSlXqF8c/OL2jakae2riSq7qF+iExigdrN9HOUmWJ9iJ7Vc5rS qlwn4jPkXmrtOQkFvOx9Lpm6++B3vSIN1DEYKVyJZFRW/Kl82AZkaUXFnekMooEd OKw0AA8l9vZzxHYdOl+sYU7De22U1b9kaVzEuWv3UBJYn/DdwiNPkAI+XcNuKYUI yKlh38Bi74QRelc1C+h8yKCDiV/Qf2a7NHd1zjYzVQZsjBbSo4TkClCJaBjAL0z2 rj0BqXzB1gXnRIlsmb8c6MT28DIN0WyC -----END CERTIFICATE-----Generated at Fri May 16 10:19:32 2025 by rpki-client