$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: QkYi+JtyE7XMlC+qxBzX2ala8kbNQWHsKeYQnv1285U= Subject key identifier: BE:75:85:63:CB:71:D1:57:7D:0F:29:97:45:A7:97:D9:64:E0:C3:3E Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 57 Signing time: Sun 11 May 2025 05:55:31 +0000 Manifest this update: Sun 11 May 2025 05:55:31 +0000 Manifest next update: Sun 18 May 2025 05:55:31 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: 00BxdUK4R7sGI4Y4QoKjnZxyDztHM3iRJfyCjWt/CKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: May 11 05:55:31 2025 GMT Not After : May 18 05:55:31 2025 GMT Subject: CN=68203bd3-4de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f0:ce:ab:31:41:8d:1d:db:c2:5b:17:b1:51: 9e:a6:11:22:4b:e3:f8:e2:d6:c1:18:27:90:c8:37: 9e:8d:13:ef:92:e2:4a:54:a4:51:1d:1a:57:06:20: 8d:03:ce:7c:c0:44:60:ed:f6:7d:46:58:fe:1b:d2: fb:c2:03:77:88:77:65:02:0e:50:f7:9c:4f:a2:89: de:99:13:1e:39:b5:1b:46:72:ed:a8:ea:e0:86:04: e8:af:9e:9c:67:cd:80:9f:df:c8:3b:6e:6c:fe:e7: aa:7e:f2:11:21:1c:48:ff:1a:6e:46:35:56:dd:de: 01:05:cf:a3:7a:94:05:b8:b4:8e:74:87:ba:be:ff: 00:2f:8e:9e:13:5f:53:06:30:a2:05:df:8b:83:71: 88:64:43:b5:5a:f6:03:d8:d1:81:78:f1:53:d2:4b: 9e:7c:ba:51:60:10:61:43:45:5c:79:5f:ac:9b:12: ff:af:fa:68:97:97:1b:71:7e:7f:85:1b:c6:f7:35: 8c:f1:cc:1d:b0:56:24:1f:38:dc:7f:c0:e1:40:9c: 31:2b:7d:27:d3:ec:f6:f9:f5:7d:13:3f:0c:4b:eb: b9:9a:47:22:71:41:42:8e:41:c9:f5:8f:38:8e:59: de:07:6e:7e:77:31:b0:fb:91:bd:a8:0f:f3:48:36: 62:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:75:85:63:CB:71:D1:57:7D:0F:29:97:45:A7:97:D9:64:E0:C3:3E X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:7a:12:ac:2d:b7:cd:8d:de:28:3c:37:1d:69:17:30:07:42: a2:7f:ef:ed:12:71:6b:c8:c5:89:7a:e4:45:61:a0:15:0c:ba: de:de:a1:15:71:4c:f2:a6:19:b1:20:5c:3e:a9:6a:c7:83:23: 02:07:df:6f:78:3f:74:e1:b2:c9:c8:ff:e1:50:c4:80:6a:3e: 01:fb:36:86:b8:2e:72:c7:c0:cb:da:0c:b2:03:45:84:8e:c3: cc:35:a8:9d:f6:e2:d1:47:0f:34:d5:18:b3:02:13:64:6f:10: 5f:0f:93:7b:43:34:20:0a:29:60:e2:54:60:dd:c6:27:1b:83: 7f:96:12:73:72:c0:34:17:f0:82:59:c6:16:b2:ff:aa:d1:83: ab:4f:f2:c2:ad:0c:e2:f8:be:37:76:65:6d:e5:2e:99:c7:87: 43:0a:38:77:28:2d:1e:17:2a:7e:46:32:b1:b9:94:07:56:e1: c5:d8:07:64:e9:2b:da:ca:5f:0f:4f:cf:a8:49:23:ce:dd:59: 1b:03:8b:b6:57:81:7b:fc:b9:4a:0e:f6:ef:c5:b4:c4:41:31: 83:f5:22:40:ab:d1:e1:d2:58:7f:78:a1:2c:19:19:ee:da:92: cb:c5:84:fe:e8:fe:2c:9c:a9:d9:85:5b:55:7e:e7:18:d5:21: d2:62:60:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoNTNDMDhCREEwNEJDMDUzMjIxRUIyNzNBQTIxNUNDRDk1 QzAwQzM5MjAeFw0yNTA1MTEwNTU1MzFaFw0yNTA1MTgwNTU1MzFaMBgxFjAUBgNV BAMTDTY4MjAzYmQzLTRkZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDp8M6rMUGNHdvCWxexUZ6mESJL4/ji1sEYJ5DIN56NE++S4kpUpFEdGlcGII0D znzARGDt9n1GWP4b0vvCA3eId2UCDlD3nE+iid6ZEx45tRtGcu2o6uCGBOivnpxn zYCf38g7bmz+56p+8hEhHEj/Gm5GNVbd3gEFz6N6lAW4tI50h7q+/wAvjp4TX1MG MKIF34uDcYhkQ7Va9gPY0YF48VPSS558ulFgEGFDRVx5X6ybEv+v+miXlxtxfn+F G8b3NYzxzB2wViQfONx/wOFAnDErfSfT7Pb59X0TPwxL67maRyJxQUKOQcn1jziO Wd4Hbn53MbD7kb2oD/NINmJTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvnWFY8tx 0Vd9DymXRaeX2WTgwz4wHwYDVR0jBBgwFoAUU8CL2gS8BTIh6yc6ohXM2VwAw5Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzgzMzhDNEQ2QUFF OTExRUZCNzIxQzI1REM0RjlBRTAyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVThDTDJnUzhCVEloNnljNm9oWE0yVndBdzVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzgzMzhDNEQ2QUFFOTExRUZCNzIxQzI1REM0RjlBRTAyL1U4Q0wyZ1M4QlRJ aDZ5YzZvaFhNMlZ3QXc1SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG16Eqwtt82N3ig8Nx1pFzAHQqJ/7+0ScWvIxYl65EVhoBUMut7eoRVx TPKmGbEgXD6paseDIwIH3294P3ThssnI/+FQxIBqPgH7Noa4LnLHwMvaDLIDRYSO w8w1qJ324tFHDzTVGLMCE2RvEF8Pk3tDNCAKKWDiVGDdxicbg3+WEnNywDQX8IJZ xhay/6rRg6tP8sKtDOL4vjd2ZW3lLpnHh0MKOHcoLR4XKn5GMrG5lAdW4cXYB2Tp K9rKXw9Pz6hJI87dWRsDi7ZXgXv8uUoO9u/FtMRBMYP1IkCr0eHSWH94oSwZGe7a ksvFhP7o/iycqdmFW1V+5xjVIdJiYDU= -----END CERTIFICATE-----Generated at Sun May 11 09:07:25 2025 by rpki-client