$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: AnEKuhrrSzwXVeqq1DZWRAHYYDEXGcaVOIcK4URi6w0= Subject key identifier: D7:96:02:80:9C:0E:93:B3:57:69:3C:46:DF:0F:20:09:38:BA:51:27 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 0401 Signing time: Sun 11 May 2025 00:01:40 +0000 Manifest this update: Sun 11 May 2025 00:01:39 +0000 Manifest next update: Sun 18 May 2025 00:01:39 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: 8F6OKsXdI4BZ1hjvY1r3uUhh02I3FQm66KIMle8fFEk=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: May 11 00:01:39 2025 GMT Not After : May 18 00:01:39 2025 GMT Subject: CN=681fe8e3-f62d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e9:c7:d3:bc:2b:94:4c:53:69:54:34:21:ec: 50:e9:51:61:9a:17:12:67:ea:fe:d7:cf:2e:37:cd: 9b:c3:c7:43:04:ef:36:e8:cc:a9:5f:81:9c:a7:37: 35:55:1f:44:4a:4a:8a:48:95:62:23:c5:c0:db:4f: 5a:13:a0:44:85:f5:b3:3e:5e:3d:6e:03:a3:88:87: 1e:95:bc:9b:67:e8:f1:5e:39:ff:c7:30:72:2f:cf: 74:96:20:d6:01:5c:7a:72:eb:27:f5:bd:72:ce:2f: 8e:51:44:17:38:40:8a:8c:78:90:12:72:01:a0:3a: 99:2e:d4:af:60:2b:d3:ab:ef:d2:c5:3e:fc:ed:d8: 34:03:4e:dd:27:6c:5f:4d:b6:0d:16:3b:6e:c3:4e: fd:52:ce:bb:7d:31:f0:c1:5e:39:cb:60:27:93:ba: 65:ce:4e:1b:f2:c2:90:7e:ed:04:51:3e:c5:fd:99: e3:94:b7:c1:0f:ec:13:78:8e:a5:0e:0d:d5:35:b4: 48:3d:fe:e7:ae:81:55:0f:67:69:ff:9d:be:19:33: 35:02:d7:26:67:67:f8:ef:af:3c:6d:f3:cc:17:57: a2:6f:5b:ea:0a:2c:01:77:15:b6:71:49:6a:ca:c3: fc:18:8e:89:7c:f7:c0:61:8d:40:bc:6c:83:3b:56: 2b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:96:02:80:9C:0E:93:B3:57:69:3C:46:DF:0F:20:09:38:BA:51:27 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:4c:25:6d:6b:c2:e1:4e:dd:f9:79:bd:f7:d7:93:f2:83:11: 5b:62:72:a1:f5:2c:4f:60:4e:d0:80:1a:3f:87:0a:8e:98:7a: 85:4f:60:ce:d4:86:2e:d7:ec:d6:f5:dc:19:ce:92:09:aa:c2: bd:f9:15:6f:43:87:7d:7b:42:63:31:3d:c9:fe:84:d7:09:25: 31:02:2f:a9:e5:2c:b6:25:b0:63:d5:d6:3f:9c:01:9d:9a:e0: dd:46:03:7c:34:38:91:5a:d0:f7:66:fe:ff:d9:c3:5c:2c:a0: af:b0:63:b3:0a:ca:40:53:fb:4c:e7:fc:19:1a:16:fb:41:6f: 05:3f:dc:50:86:d2:e8:cd:1e:3c:8d:e2:4a:b0:fe:0e:5a:3b: c3:a8:90:4d:bf:d6:8e:a4:c5:52:ab:b2:2e:61:c7:39:20:23: c3:80:36:18:75:57:9f:2b:01:b1:e8:96:d7:03:47:26:8d:97: e3:2c:69:20:50:59:a4:0d:54:ac:a6:49:f7:71:4a:34:12:3c: 9a:b9:97:35:50:6f:60:2f:ec:c3:1f:bd:09:f5:7f:0c:24:e7: 3a:3a:f9:fd:df:37:74:9c:ec:7e:52:fb:b5:31:cd:2e:f1:07: ed:4f:8d:37:cd:8d:bb:69:e6:1d:d0:a1:70:d5:b6:10:95:5a: ac:d9:6f:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwNTExMDAwMTM5WhcNMjUwNTE4MDAwMTM5WjAYMRYwFAYD VQQDEw02ODFmZThlMy1mNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyunH07wrlExTaVQ0IexQ6VFhmhcSZ+r+188uN82bw8dDBO826MypX4Gcpzc1 VR9ESkqKSJViI8XA209aE6BEhfWzPl49bgOjiIcelbybZ+jxXjn/xzByL890liDW AVx6cusn9b1yzi+OUUQXOECKjHiQEnIBoDqZLtSvYCvTq+/SxT787dg0A07dJ2xf TbYNFjtuw079Us67fTHwwV45y2Ank7plzk4b8sKQfu0EUT7F/ZnjlLfBD+wTeI6l Dg3VNbRIPf7nroFVD2dp/52+GTM1AtcmZ2f47688bfPMF1eib1vqCiwBdxW2cUlq ysP8GI6JfPfAYY1AvGyDO1YrbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeWAoCc DpOzV2k8Rt8PIAk4ulEnMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcTCVta8LhTt35eb3315PygxFbYnKh9SxPYE7QgBo/hwqOmHqFT2DO 1IYu1+zW9dwZzpIJqsK9+RVvQ4d9e0JjMT3J/oTXCSUxAi+p5Sy2JbBj1dY/nAGd muDdRgN8NDiRWtD3Zv7/2cNcLKCvsGOzCspAU/tM5/wZGhb7QW8FP9xQhtLozR48 jeJKsP4OWjvDqJBNv9aOpMVSq7IuYcc5ICPDgDYYdVefKwGx6JbXA0cmjZfjLGkg UFmkDVSspkn3cUo0EjyauZc1UG9gL+zDH70J9X8MJOc6Ovn93zd0nOx+Uvu1Mc0u 8QftT403zY27aeYd0KFw1bYQlVqs2W9G -----END CERTIFICATE-----Generated at Sun May 11 22:17:26 2025 by rpki-client