$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: uTOlMj70PTAHeeoi4Yv1p9BQcFCcmOxR5rCRxuIHHAk= Subject key identifier: E0:DC:76:6D:1F:C2:DC:E2:AF:DA:5F:2E:9C:C0:4C:99:B7:C5:08:AA Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0BE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0BD2 Signing time: Fri 16 May 2025 19:05:04 +0000 Manifest this update: Fri 16 May 2025 19:05:04 +0000 Manifest next update: Fri 23 May 2025 19:05:04 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: c0e+cJONqNg89JbuoEv3X80rHFpSepZUV7ITz9G/bcM=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: 7j0YGYj1RqHQkRdbQBx20wV0PO4RbHrIjhOnv/h1yok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:05:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3042 (0xbe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E, serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: May 16 19:05:04 2025 GMT Not After : May 23 19:05:04 2025 GMT Subject: CN=68278c60-9f3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f0:8e:ea:e7:07:83:41:7e:37:5a:81:06:8b: d1:ec:86:d1:81:27:4f:f5:86:67:c0:fe:21:3c:f3: f4:07:bd:3c:cd:95:00:82:f0:2b:d7:8b:f9:55:a0: 93:b3:c9:cd:34:09:b7:5f:5d:02:8e:4e:1a:fd:13: be:c6:7b:f0:fb:60:42:f6:99:0a:4d:f8:66:f1:69: 08:ff:44:8a:09:84:b9:da:d6:c8:db:85:61:49:48: 12:4d:91:36:cc:bd:0e:71:e1:e6:43:43:f6:0e:df: ee:68:78:32:18:a3:e2:96:d0:e7:ef:5e:be:8d:22: 86:7a:85:23:4a:e7:44:88:46:38:ec:89:d0:a9:68: a8:32:6d:f4:26:96:9c:06:3a:83:8b:c5:48:3c:4f: 35:a5:04:94:e1:27:53:c7:93:53:69:d0:c7:0d:5c: e7:bf:10:6d:88:66:aa:cb:5d:ca:00:54:21:a1:16: 6c:89:2f:56:40:cc:31:ce:8b:ae:bb:9c:2b:7a:3c: 26:84:aa:76:a9:78:f9:52:d7:20:16:e0:7c:df:a0: f3:ab:f6:39:aa:bd:4d:ed:b7:3f:93:a9:76:ed:4b: a4:18:f0:b9:ac:e9:fc:e2:34:31:6e:58:ad:e4:a9: 59:8e:f2:b2:04:e9:1b:24:29:19:b7:e2:d1:67:37: 17:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:DC:76:6D:1F:C2:DC:E2:AF:DA:5F:2E:9C:C0:4C:99:B7:C5:08:AA X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:9e:2c:2a:a0:5a:1d:2f:01:a1:52:db:9f:d9:c6:6b:47:7f: 67:ba:be:13:fa:57:bd:7d:cc:b8:d8:c1:51:0a:85:bd:ba:94: f4:a7:61:30:74:5e:26:4c:67:b9:c1:b6:c9:92:78:00:55:68: 46:f0:6e:19:85:ce:36:d2:d3:2c:2b:bc:5f:cd:73:ba:25:6d: 55:77:3d:60:87:78:3b:16:b0:f9:ae:5d:44:e9:3e:0c:44:0d: f5:25:03:cf:09:3e:ab:f4:de:ea:42:a7:9d:73:f4:4c:15:9e: 91:93:a5:79:d4:34:78:70:71:4b:26:a7:8e:b1:a3:32:a5:a8: 62:eb:40:a0:c1:9c:57:c3:a8:b1:c4:c2:e4:e0:ae:e2:9c:8c: 80:5e:6e:82:ac:b8:b4:cd:20:66:6f:9a:fa:21:ee:59:4e:44: 81:b1:89:6c:47:e5:21:33:3c:9d:6a:7d:63:a9:ad:c2:94:96: b7:d6:1c:30:7a:08:ab:7d:3a:6a:89:f1:10:68:42:52:18:ee: bf:19:41:92:fd:84:9a:d5:47:8f:56:5a:d4:bb:26:d3:df:bc: e0:c1:87:92:84:c8:33:83:ec:e3:34:72:e2:1f:51:53:22:14: d7:a8:c8:99:1a:94:e6:c0:fc:90:cf:d1:32:53:66:dd:5c:c8: 00:38:e5:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUwNTE2MTkwNTA0WhcNMjUwNTIzMTkwNTA0WjAYMRYwFAYD VQQDEw02ODI3OGM2MC05ZjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvCO6ucHg0F+N1qBBovR7IbRgSdP9YZnwP4hPPP0B708zZUAgvAr14v5VaCT s8nNNAm3X10Cjk4a/RO+xnvw+2BC9pkKTfhm8WkI/0SKCYS52tbI24VhSUgSTZE2 zL0OceHmQ0P2Dt/uaHgyGKPiltDn716+jSKGeoUjSudEiEY47InQqWioMm30Jpac BjqDi8VIPE81pQSU4SdTx5NTadDHDVznvxBtiGaqy13KAFQhoRZsiS9WQMwxzouu u5wrejwmhKp2qXj5UtcgFuB836Dzq/Y5qr1N7bc/k6l27UukGPC5rOn84jQxblit 5KlZjvKyBOkbJCkZt+LRZzcXpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODcdm0f wtzir9pfLpzATJm3xQiqMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaniwqoFodLwGhUtuf2cZrR39nur4T+le9fcy42MFRCoW9upT0p2Ew dF4mTGe5wbbJkngAVWhG8G4Zhc420tMsK7xfzXO6JW1Vdz1gh3g7FrD5rl1E6T4M RA31JQPPCT6r9N7qQqedc/RMFZ6Rk6V51DR4cHFLJqeOsaMypahi60CgwZxXw6ix xMLk4K7inIyAXm6CrLi0zSBmb5r6Ie5ZTkSBsYlsR+UhMzydan1jqa3ClJa31hww egirfTpqifEQaEJSGO6/GUGS/YSa1UePVlrUuybT37zgwYeShMgzg+zjNHLiH1FT IhTXqMiZGpTmwPyQz9EyU2bdXMgAOOXh -----END CERTIFICATE-----Generated at Fri May 16 21:46:45 2025 by rpki-client