$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: 3uUsJTcDLb4kRrlO3aSHI98PjVokTJiGqPvwurDrPdk= Subject key identifier: 2D:DE:49:5A:E9:CE:12:8F:3A:E5:01:57:CB:CA:69:FD:E6:3A:18:EC Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1BD3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1BC6 Signing time: Wed 14 May 2025 16:19:18 +0000 Manifest this update: Wed 14 May 2025 16:19:17 +0000 Manifest next update: Wed 21 May 2025 16:19:17 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: V/1untZwUk7cNJ/bAAW5QFhu2lCKs3c3IHKFr1rzDag=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: 6kshU0HtAchRgiTjP8s8Hd2WuIT7tJbRCmHqG1erYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 16:19:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7123 (0x1bd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: May 14 16:19:17 2025 GMT Not After : May 21 16:19:17 2025 GMT Subject: CN=6824c285-4f15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f3:ab:bb:cd:19:2c:38:7d:fe:3f:99:ce:12: d8:21:9b:d6:cd:0d:6e:f7:ce:08:df:42:10:d1:f0: e7:51:4a:64:1f:61:16:32:ef:00:b5:0e:06:ed:b5: 44:26:dc:f2:10:13:00:c4:66:63:09:77:60:7f:20: 6b:b8:c9:44:8b:6c:0a:0b:d9:f5:48:60:cc:0f:54: 1f:54:8c:8c:97:5c:88:03:fc:f0:ec:e2:73:d5:af: 04:b3:6c:12:fb:aa:a9:f8:31:7e:30:1e:56:4f:78: aa:7f:b1:26:7b:99:b9:a2:14:4f:e8:f3:52:93:27: 76:53:70:11:8b:2d:9f:b0:ba:97:c5:37:0f:b7:e6: bb:08:dd:6f:7a:89:93:2e:ce:cc:4e:23:10:71:6f: a5:49:99:f3:86:6f:08:04:86:91:d7:7f:e5:28:a5: 88:dc:a3:76:9d:33:c6:3c:8f:89:a3:7f:f3:32:d8: 37:82:be:b2:47:a0:43:c4:b6:29:8f:27:5f:0c:80: c2:b9:ba:c2:08:7a:48:d3:43:4b:ab:13:d8:4d:f0: 85:8e:4b:ba:11:b5:d4:ed:6b:b6:08:39:2b:11:0b: c0:ad:ea:8f:88:d1:57:dd:7a:03:13:92:b4:18:13: 75:f8:74:b6:e4:17:d2:1b:71:6c:64:f5:b9:8e:9a: 79:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DE:49:5A:E9:CE:12:8F:3A:E5:01:57:CB:CA:69:FD:E6:3A:18:EC X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:99:0c:ef:3f:0b:05:a9:d3:54:1b:f8:f2:de:54:49:61:4e: 69:7f:d8:f5:94:9e:cd:68:c7:b7:50:e2:5f:86:a7:3c:ca:a5: fb:92:fb:67:9e:b6:94:02:83:e3:9e:3d:a9:2e:ac:ab:f8:78: 60:be:22:f0:2a:d8:20:26:54:da:47:d4:71:37:94:82:8f:4a: da:79:52:95:01:1e:5c:83:96:87:3f:6b:84:a4:03:b8:6b:88: 25:34:a2:6d:30:32:e2:98:22:61:b8:59:9e:69:5b:29:f8:6c: 31:00:bf:d7:0e:0b:aa:8b:43:b3:62:a4:81:6f:cd:a7:7a:2b: 5c:83:d5:02:d7:3b:6c:0f:bc:02:f1:7b:e5:52:d3:96:e4:05: 2a:5d:ff:f7:71:3a:c0:aa:ea:75:c0:a9:f1:32:ea:fe:f7:80: b6:0e:7c:27:56:1f:fb:8c:36:78:a4:35:97:75:10:cf:3d:d5: 4b:de:84:db:12:f0:b6:b2:ba:e2:b4:6f:cb:30:d7:69:fe:69: 82:53:01:9e:ff:14:5d:f9:8a:26:aa:10:14:c7:10:cb:ac:7c: 89:09:02:57:63:b5:f7:a0:97:51:a7:ab:3c:3c:4e:1f:8f:5a: 68:bc:84:9d:93:a1:1e:ad:6a:66:3c:3d:ce:ce:fd:af:ca:74: d0:f8:8a:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUwNTE0MTYxOTE3WhcNMjUwNTIxMTYxOTE3WjAYMRYwFAYD VQQDEw02ODI0YzI4NS00ZjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfOru80ZLDh9/j+ZzhLYIZvWzQ1u984I30IQ0fDnUUpkH2EWMu8AtQ4G7bVE JtzyEBMAxGZjCXdgfyBruMlEi2wKC9n1SGDMD1QfVIyMl1yIA/zw7OJz1a8Es2wS +6qp+DF+MB5WT3iqf7Eme5m5ohRP6PNSkyd2U3ARiy2fsLqXxTcPt+a7CN1veomT Ls7MTiMQcW+lSZnzhm8IBIaR13/lKKWI3KN2nTPGPI+Jo3/zMtg3gr6yR6BDxLYp jydfDIDCubrCCHpI00NLqxPYTfCFjku6EbXU7Wu2CDkrEQvAreqPiNFX3XoDE5K0 GBN1+HS25BfSG3FsZPW5jpp5KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3eSVrp zhKPOuUBV8vKaf3mOhjsMB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhmQzvPwsFqdNUG/jy3lRJYU5pf9j1lJ7NaMe3UOJfhqc8yqX7kvtn nraUAoPjnj2pLqyr+HhgviLwKtggJlTaR9RxN5SCj0raeVKVAR5cg5aHP2uEpAO4 a4glNKJtMDLimCJhuFmeaVsp+GwxAL/XDguqi0OzYqSBb82neitcg9UC1ztsD7wC 8XvlUtOW5AUqXf/3cTrAqup1wKnxMur+94C2DnwnVh/7jDZ4pDWXdRDPPdVL3oTb EvC2srritG/LMNdp/mmCUwGe/xRd+YomqhAUxxDLrHyJCQJXY7X3oJdRp6s8PE4f j1povISdk6EerWpmPD3Ozv2vynTQ+IrV -----END CERTIFICATE-----Generated at Thu May 15 22:28:06 2025 by rpki-client