$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft File: uHMcMIhjyygE4HbVjowHFZtOXxk.mft (raw, json) Hash identifier: M7HVPZoWAfqietO8g9TqhQlBluesurf8YTnSiwda0yM= Subject key identifier: BD:3A:E7:A0:EC:98:03:45:43:62:AE:32:26:1B:60:12:8F:3B:92:D3 Authority key identifier: B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 Certificate issuer: /CN=A9164663/serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Certificate serial: 0809 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft Manifest number: 1A1F Signing time: Fri 16 May 2025 17:22:20 +0000 Manifest this update: Fri 16 May 2025 17:22:19 +0000 Manifest next update: Fri 23 May 2025 17:22:19 +0000 Files and hashes: 1: uHMcMIhjyygE4HbVjowHFZtOXxk.crl (hash: XWoJDgUo5d1nGRs5wBdVGb/4dMS0DrcSJJDD+jO0PXk=) 2: 3D626CDC065111F0BFE43624C4F9AE02.roa (hash: PyysKZ+hZFXrRWA3LPUfHO46XtpZrkwg+n+8mnDBEZE=) 3: 7BB2BC009FFA11ECA13C2839C4F9AE02.roa (hash: K7jgwtFrPBKypxv1Ln8vBllbtClVCUlvOXHISxYGRB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Validity Not Before: May 16 17:22:19 2025 GMT Not After : May 23 17:22:19 2025 GMT Subject: CN=6827744c-7a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e0:e2:2d:bc:68:bf:98:7e:87:1c:3a:84:58: 34:e0:61:a2:3e:6c:4a:93:d7:72:29:f3:4f:36:2e: f5:63:ad:5a:2d:78:2c:b7:39:a8:e7:c2:65:18:3c: e4:24:08:17:71:50:b7:d3:88:79:8d:b9:e3:35:f3: b1:74:45:60:39:e0:ef:7b:55:57:96:98:41:d7:60: 1d:c5:38:58:e8:5e:16:f7:b7:e4:21:c4:22:af:d2: 65:1e:df:d6:dc:9d:26:cd:d8:eb:3d:f0:52:6d:1d: 9e:4b:80:b1:f0:94:f4:4b:88:08:18:c9:17:32:5a: 44:77:52:24:ba:eb:69:4d:f0:f6:8e:08:42:04:a6: 40:f4:a3:c7:6f:1d:0f:dc:75:9f:45:68:81:35:e9: 3e:c5:45:73:61:57:64:75:17:74:56:98:2a:c0:97: 73:e2:7c:ff:ce:55:70:87:61:18:3c:44:45:f7:57: 23:80:3e:53:da:ef:26:1b:e8:ef:14:e8:9d:05:b4: de:2c:3c:9f:74:53:11:29:85:ae:84:aa:69:7d:30: 2f:60:22:da:d5:86:73:01:29:2a:58:19:e2:17:37: 21:7d:7f:cb:bf:c1:76:06:76:d8:68:64:d0:a7:2c: 14:6b:da:9a:86:fd:c1:e0:88:c3:47:6b:dd:e3:df: df:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:3A:E7:A0:EC:98:03:45:43:62:AE:32:26:1B:60:12:8F:3B:92:D3 X509v3 Authority Key Identifier: keyid:B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:3a:60:6e:8b:a5:b4:94:64:82:86:3e:cf:75:3c:bb:9a:03: 4b:59:a4:11:9c:8b:59:0c:f7:c0:4e:fd:27:db:c6:7f:a9:af: 67:32:d5:1c:18:cd:73:1a:1a:14:b8:25:41:fc:c6:85:8a:91: d1:14:2c:24:bf:8d:7a:65:17:3b:a5:ae:f1:5a:8d:58:07:fa: b0:a4:8e:55:1c:54:d6:76:f7:44:86:6b:60:15:c8:dc:48:48: 75:fe:5f:2a:54:39:fe:3a:c0:88:82:d1:8c:6c:f0:48:4a:b9: a1:21:bf:7d:12:08:d1:74:7a:09:53:15:24:2d:73:70:73:62: ba:80:7c:ea:e5:24:4c:b0:c0:cf:cd:b5:97:ea:36:78:26:29: 6e:25:bb:84:35:61:bf:25:21:8b:c0:ea:cf:aa:4d:4c:19:35: a3:77:b9:6b:d2:6f:89:37:88:33:ce:dc:4f:a3:67:8c:f4:98: 51:00:4c:93:8b:a8:7c:a7:25:b4:69:80:6b:6b:8f:2c:59:11: 4a:26:1f:34:e9:08:ab:e8:35:b8:5c:82:19:97:ff:77:ef:73: 4f:f3:ac:de:8a:57:82:40:99:8b:21:7d:f3:29:a0:36:55:b6: ac:68:01:b8:1b:d4:5a:1a:19:87:98:19:3e:a5:bf:fc:1d:9d: 5c:53:4b:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKEI4NzMxQzMwODg2M0NCMjgwNEUwNzZENThFOEMwNzE1 OUI0RTVGMTkwHhcNMjUwNTE2MTcyMjE5WhcNMjUwNTIzMTcyMjE5WjAYMRYwFAYD VQQDEw02ODI3NzQ0Yy03YTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsODiLbxov5h+hxw6hFg04GGiPmxKk9dyKfNPNi71Y61aLXgstzmo58JlGDzk JAgXcVC304h5jbnjNfOxdEVgOeDve1VXlphB12AdxThY6F4W97fkIcQir9JlHt/W 3J0mzdjrPfBSbR2eS4Cx8JT0S4gIGMkXMlpEd1IkuutpTfD2jghCBKZA9KPHbx0P 3HWfRWiBNek+xUVzYVdkdRd0VpgqwJdz4nz/zlVwh2EYPERF91cjgD5T2u8mG+jv FOidBbTeLDyfdFMRKYWuhKppfTAvYCLa1YZzASkqWBniFzchfX/Lv8F2BnbYaGTQ pywUa9qahv3B4IjDR2vd49/f1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0656Ds mANFQ2KuMiYbYBKPO5LTMB8GA1UdIwQYMBaAFLhzHDCIY8soBOB21Y6MBxWbTl8Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5Z0U0SGJWam93SEZadE9Y eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITWNNSWhqeXlnRTRIYlZqb3dIRlp0T1h4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY2My8xNEVBQTlGQURBNzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5 Z0U0SGJWam93SEZadE9YeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfOmBui6W0lGSChj7PdTy7mgNLWaQRnItZDPfATv0n28Z/qa9nMtUc GM1zGhoUuCVB/MaFipHRFCwkv416ZRc7pa7xWo1YB/qwpI5VHFTWdvdEhmtgFcjc SEh1/l8qVDn+OsCIgtGMbPBISrmhIb99EgjRdHoJUxUkLXNwc2K6gHzq5SRMsMDP zbWX6jZ4JiluJbuENWG/JSGLwOrPqk1MGTWjd7lr0m+JN4gzztxPo2eM9JhRAEyT i6h8pyW0aYBra48sWRFKJh806Qir6DW4XIIZl/9373NP86zeileCQJmLIX3zKaA2 VbasaAG4G9RaGhmHmBk+pb/8HZ1cU0vq -----END CERTIFICATE-----Generated at Sat May 17 02:49:36 2025 by rpki-client