$ rpki-client -vvf rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft File: rUk9yaPSQDSDYoWHBR93lRWJFnk.mft (raw, json) Hash identifier: t8WJnMNxxHXGJ4thbFkmY0+53NEW4x9Crvfu5B/WNGI= Subject key identifier: 2E:C2:0B:F4:33:30:2F:D8:64:F2:77:B7:3C:BA:35:BB:48:A5:92:5D Authority key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 Certificate issuer: /CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679 Certificate serial: 024A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft Manifest number: 0247 Signing time: Sun 11 May 2025 01:23:31 +0000 Manifest this update: Sun 11 May 2025 01:23:30 +0000 Manifest next update: Sun 18 May 2025 01:23:30 +0000 Files and hashes: 1: rUk9yaPSQDSDYoWHBR93lRWJFnk.crl (hash: vll2yWM6A4hr4C0/ajldVXKMgGfUmHlQiDJpHGAwvWk=) 2: 8275E1721C5311EDA75CF137C4F9AE02.roa (hash: ylAjtSurS2AriNqYAWDXwI4mJ+u3ceX6ZX3mIJq8z+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B418, serialNumber=AD493DC9A3D2403483628587051F779515891679 Validity Not Before: May 11 01:23:30 2025 GMT Not After : May 18 01:23:30 2025 GMT Subject: CN=681ffc12-e9cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5d:d0:d1:98:01:9d:9b:1f:9d:a7:89:17:8b: d3:c8:54:2e:38:af:24:3b:23:5f:e1:ae:c9:d0:cd: 92:54:eb:83:25:5f:8a:e6:54:61:89:77:9f:dd:1d: 82:ae:c5:1e:d2:f0:d6:0b:ec:ad:ef:d6:f6:53:fc: 00:d6:43:6f:da:e5:13:9a:51:40:70:34:b0:fc:1a: 30:68:23:aa:af:fb:cd:b4:9c:1e:6d:9c:50:66:56: 19:94:dc:ed:91:c1:36:7f:ea:d3:88:00:68:19:f7: ff:8c:b5:18:00:a3:ca:dc:db:57:e3:73:3e:b4:34: 6f:bd:29:c4:19:0c:6f:2b:ff:e8:4d:be:1e:cf:f4: 93:be:27:79:c7:e4:32:f6:c0:de:35:29:87:fe:f2: 69:16:06:18:b8:b6:5f:4a:f3:70:b5:41:30:17:f1: 31:fe:08:3d:5f:c7:d3:32:ac:41:72:ae:cf:1b:72: ea:e3:d7:6e:16:0e:7a:d0:7e:95:49:b8:b0:74:d9: 07:de:8c:3f:60:3c:c8:06:37:13:97:9c:b3:b3:ed: c8:2f:0e:e9:47:ce:cb:fa:b6:68:17:29:e6:2d:43: d0:98:b1:f6:ea:ee:e0:47:12:16:25:e8:f2:97:8b: b9:86:84:60:87:71:6a:cb:f0:da:20:57:8e:04:b2: 0f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C2:0B:F4:33:30:2F:D8:64:F2:77:B7:3C:BA:35:BB:48:A5:92:5D X509v3 Authority Key Identifier: keyid:AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:4a:f4:46:0b:63:da:d5:ab:fb:22:26:26:47:c0:6e:65:fc: 11:79:1e:41:4d:2f:b1:47:e3:89:01:c3:1b:40:67:08:00:17: b2:8c:4c:3f:75:ab:3b:ec:ce:9d:08:86:2e:4f:37:fd:0b:72: d0:0c:d7:38:ba:09:4b:1d:ae:f6:b7:3b:3f:b9:81:f6:6d:e9: 71:9d:34:18:c0:97:9e:5e:36:b8:68:89:3b:24:dc:40:75:7d: ad:6b:42:80:ad:83:97:c6:c0:0d:53:09:2b:0b:10:a4:e0:21: 34:a3:0e:63:26:57:04:b7:35:86:d9:47:29:da:30:a8:22:4d: 08:61:f7:f6:5d:75:d1:ed:4d:f9:af:3d:57:41:c1:93:c2:f4: a1:d8:dc:7e:f2:0c:31:af:00:89:81:ae:e4:9e:ac:f1:bb:72: 12:3b:ba:eb:40:c0:ed:08:f9:d2:89:59:02:1b:37:c4:c2:a0: 92:13:03:79:97:33:c6:6d:a4:0a:ad:89:5d:ac:97:ae:0a:d6: fd:ee:83:a2:21:80:18:7e:62:1d:25:2a:d8:05:ff:1f:ea:a7: 55:39:17:0e:ef:3e:91:6a:e2:2c:e3:21:6e:27:62:4d:a5:a4: f2:aa:0b:6d:4e:ca:ea:90:d9:0a:49:70:85:9d:d9:ca:b4:58: d8:81:56:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4NzA1MUY3Nzk1 MTU4OTE2NzkwHhcNMjUwNTExMDEyMzMwWhcNMjUwNTE4MDEyMzMwWjAYMRYwFAYD VQQDEw02ODFmZmMxMi1lOWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu13Q0ZgBnZsfnaeJF4vTyFQuOK8kOyNf4a7J0M2SVOuDJV+K5lRhiXef3R2C rsUe0vDWC+yt79b2U/wA1kNv2uUTmlFAcDSw/BowaCOqr/vNtJwebZxQZlYZlNzt kcE2f+rTiABoGff/jLUYAKPK3NtX43M+tDRvvSnEGQxvK//oTb4ez/STvid5x+Qy 9sDeNSmH/vJpFgYYuLZfSvNwtUEwF/Ex/gg9X8fTMqxBcq7PG3Lq49duFg560H6V SbiwdNkH3ow/YDzIBjcTl5yzs+3ILw7pR87L+rZoFynmLUPQmLH26u7gRxIWJejy l4u5hoRgh3Fqy/DaIFeOBLIPBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7CC/Qz MC/YZPJ3tzy6NbtIpZJdMB8GA1UdIwQYMBaAFK1JPcmj0kA0g2KFhwUfd5UViRZ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQxOC9BRDBEQzQ4MDFD NEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FEU0RZb1dIQlI5M2xSV0pG bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVazl5YVBTUURTRFlvV0hCUjkzbFJXSkZuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FE U0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1SvRGC2Pa1av7IiYmR8BuZfwReR5BTS+xR+OJAcMbQGcIABeyjEw/ das77M6dCIYuTzf9C3LQDNc4uglLHa72tzs/uYH2belxnTQYwJeeXja4aIk7JNxA dX2ta0KArYOXxsANUwkrCxCk4CE0ow5jJlcEtzWG2Ucp2jCoIk0IYff2XXXR7U35 rz1XQcGTwvSh2Nx+8gwxrwCJga7knqzxu3ISO7rrQMDtCPnSiVkCGzfEwqCSEwN5 lzPGbaQKrYldrJeuCtb97oOiIYAYfmIdJSrYBf8f6qdVORcO7z6RauIs4yFuJ2JN paTyqgttTsrqkNkKSXCFndnKtFjYgVaH -----END CERTIFICATE-----Generated at Sun May 11 18:58:11 2025 by rpki-client