$ rpki-client -vvf rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft File: uEHIC-gYxhquhBeUDKPmnMFB348.mft (raw, json) Hash identifier: 3CApR8ifNFyCgShEDB+/mIjq1+Gzoy0KkRntt5n+Kvc= Subject key identifier: 88:89:B9:1D:12:60:8F:29:B2:35:73:08:7B:9F:D2:C7:BF:73:00:8B Authority key identifier: B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F Certificate issuer: /CN=A91859A3/serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Certificate serial: 0F83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft Manifest number: 0F75 Signing time: Wed 14 May 2025 17:40:17 +0000 Manifest this update: Wed 14 May 2025 17:40:16 +0000 Manifest next update: Wed 21 May 2025 17:40:16 +0000 Files and hashes: 1: uEHIC-gYxhquhBeUDKPmnMFB348.crl (hash: 0sEK3nt5afLWlrD+JS9LBNZq+7msHMosMCo/kBQlz4w=) 2: FB45F610638211E9A58B4C45C4F9AE02.roa (hash: IofhJ7EiHeyM1r1MV+JctpkNg1pbQMhCCkdpR4fk3JY=) 3: 65EADA381A8011ECAD1E4B30C4F9AE02.roa (hash: WDBmQN8GrovE0YfJl6NcfDbYlw4MdWA6w33AFuBSc4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3971 (0xf83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859A3, serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Validity Not Before: May 14 17:40:16 2025 GMT Not After : May 21 17:40:16 2025 GMT Subject: CN=6824d581-6be9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4c:95:79:b8:5b:4a:2c:43:8f:bf:a9:85:9e: 0e:84:a3:28:33:e3:62:d8:ca:b5:7f:0e:b8:63:8c: 23:5e:04:e1:d1:29:8a:a0:58:51:f2:25:a1:9c:a6: ef:d6:af:ef:21:29:6f:56:06:3c:ca:9e:f2:24:1a: bd:cc:e0:5e:bd:c4:3c:3c:79:e2:b7:ae:62:ef:52: 2b:14:24:b5:96:a6:7b:ab:51:12:5a:82:1e:4b:b1: 1b:30:2d:7d:44:4b:06:2b:1f:71:be:fe:be:a6:c7: a1:5b:ce:72:4f:9e:76:df:1a:dc:b1:b9:60:64:7b: 02:35:75:df:c4:83:c8:7f:84:bd:ef:98:9c:9c:25: b4:81:a3:ad:6e:25:73:0d:2a:b1:4b:b9:62:57:a9: 9c:20:3a:6b:99:64:f1:8e:ca:07:08:ea:4c:33:ea: e8:86:a6:09:e2:f5:7e:b4:7d:9f:3c:8b:41:f3:37: f3:2c:6c:76:8b:46:f5:61:b5:5a:89:44:85:16:d8: e7:dd:f9:2b:42:a7:3a:42:92:8c:69:d6:77:9a:cc: ea:8e:e8:8a:79:b5:99:38:da:7d:9a:54:85:2d:b7: ec:d5:d0:1a:22:e6:8c:c5:46:3c:35:43:93:b2:eb: ed:01:07:0a:28:c3:ab:19:e8:02:72:32:ee:c7:f1: ff:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:89:B9:1D:12:60:8F:29:B2:35:73:08:7B:9F:D2:C7:BF:73:00:8B X509v3 Authority Key Identifier: keyid:B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:af:6c:19:55:b0:1a:08:27:67:d7:86:5b:6b:d7:6f:33:1e: 96:a1:96:dd:e0:4e:9c:fc:04:1b:6a:ac:5c:6d:1f:23:68:eb: 6f:09:e8:b8:b7:19:7c:6e:57:b1:95:a7:b2:63:a0:76:a3:0d: 73:89:61:71:fd:ff:d9:67:b7:c9:1e:d4:db:18:bc:27:b0:7b: 58:16:f7:8b:1a:4a:8e:33:f2:35:aa:94:7c:9a:97:d3:83:cf: 38:53:61:e9:85:98:cd:1e:88:a4:37:63:06:9c:34:57:95:68: 2b:93:1b:39:ba:95:32:9a:ac:09:df:75:33:bf:ef:5d:ad:20: 92:73:af:51:ba:30:e7:0b:21:f2:8b:7e:b5:73:8a:d3:2b:f6: a7:db:87:4f:96:d6:ec:d3:b3:78:aa:02:84:41:51:15:8e:41: fb:c4:f9:cc:f8:b1:fb:38:2c:37:4a:dd:5d:90:d3:27:10:32: ce:c0:e6:1a:0e:34:e4:b0:13:de:aa:2e:3d:42:62:26:32:65: b3:e3:ab:57:6c:1d:26:f8:74:d8:3a:4b:e7:56:54:db:57:73: 53:43:1c:cc:35:03:48:ff:4c:de:c0:27:f6:fd:96:1b:06:fe: c5:7f:df:01:34:59:75:8d:04:fb:bf:79:17:36:c4:54:61:6d: 65:56:8b:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QTMxMTAvBgNVBAUTKEI4NDFDODBCRTgxOEM2MUFBRTg0MTc5NDBDQTNFNjlD QzE0MURGOEYwHhcNMjUwNTE0MTc0MDE2WhcNMjUwNTIxMTc0MDE2WjAYMRYwFAYD VQQDEw02ODI0ZDU4MS02YmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8EyVebhbSixDj7+phZ4OhKMoM+Ni2Mq1fw64Y4wjXgTh0SmKoFhR8iWhnKbv 1q/vISlvVgY8yp7yJBq9zOBevcQ8PHnit65i71IrFCS1lqZ7q1ESWoIeS7EbMC19 REsGKx9xvv6+psehW85yT5523xrcsblgZHsCNXXfxIPIf4S975icnCW0gaOtbiVz DSqxS7liV6mcIDprmWTxjsoHCOpMM+rohqYJ4vV+tH2fPItB8zfzLGx2i0b1YbVa iUSFFtjn3fkrQqc6QpKMadZ3mszqjuiKebWZONp9mlSFLbfs1dAaIuaMxUY8NUOT suvtAQcKKMOrGegCcjLux/H/awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiJuR0S YI8psjVzCHuf0se/cwCLMB8GA1UdIwQYMBaAFLhByAvoGMYaroQXlAyj5pzBQd+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlBMy83NjQzNUZFRTYz ODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXhocXVoQmVVREtQbW5NRkIz NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VFSElDLWdZeGhxdWhCZVVES1Btbk1GQjM0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlBMy83NjQzNUZFRTYzODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXho cXVoQmVVREtQbW5NRkIzNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyr2wZVbAaCCdn14Zba9dvMx6WoZbd4E6c/AQbaqxcbR8jaOtvCei4 txl8blexlaeyY6B2ow1ziWFx/f/ZZ7fJHtTbGLwnsHtYFveLGkqOM/I1qpR8mpfT g884U2HphZjNHoikN2MGnDRXlWgrkxs5upUymqwJ33Uzv+9drSCSc69RujDnCyHy i361c4rTK/an24dPltbs07N4qgKEQVEVjkH7xPnM+LH7OCw3St1dkNMnEDLOwOYa DjTksBPeqi49QmImMmWz46tXbB0m+HTYOkvnVlTbV3NTQxzMNQNI/0zewCf2/ZYb Bv7Ff98BNFl1jQT7v3kXNsRUYW1lVosx -----END CERTIFICATE-----Generated at Fri May 16 09:26:59 2025 by rpki-client