$ rpki-client -vvf rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft File: xUMJ3BErZYYnvTagMHLnXQYDZNM.mft (raw, json) Hash identifier: 5BsGUsj1IonxGXV+sqLdlwQPDquBgdKA+Y6bFCEWwA0= Subject key identifier: 91:3C:26:80:76:A4:87:D4:72:11:1D:AF:45:5C:50:F6:0F:35:A8:1B Authority key identifier: C5:43:09:DC:11:2B:65:86:27:BD:36:A0:30:72:E7:5D:06:03:64:D3 Certificate issuer: /CN=A9199836/serialNumber=C54309DC112B658627BD36A03072E75D060364D3 Certificate serial: 0498 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft Manifest number: 0494 Signing time: Mon 12 May 2025 23:47:08 +0000 Manifest this update: Mon 12 May 2025 23:47:08 +0000 Manifest next update: Mon 19 May 2025 23:47:08 +0000 Files and hashes: 1: xUMJ3BErZYYnvTagMHLnXQYDZNM.crl (hash: MjBJjcfFPeXr45h0JPpAIGyOMKUdTyOSkuQ3f77mW90=) 2: 029F318A366F11ECA773E263C4F9AE02.roa (hash: oSdvyorGuPv/5QDTLowUDTHEVLVsXYxy04DwT+pQi58=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.crl rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199836, serialNumber=C54309DC112B658627BD36A03072E75D060364D3 Validity Not Before: May 12 23:47:08 2025 GMT Not After : May 19 23:47:08 2025 GMT Subject: CN=6822887c-33db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b2:3a:a1:4f:e1:3d:9e:dc:52:5f:31:9d:3f: 5d:36:bf:26:7f:41:bd:9d:94:af:aa:69:85:53:f3: 78:0d:23:0f:c6:43:00:b2:e7:c4:62:30:1f:f6:bb: 6a:54:0c:2c:16:52:37:2f:b0:e7:98:97:13:df:ff: f5:69:35:73:cc:f0:95:d8:79:c7:41:38:1a:b9:26: a7:56:05:6e:28:58:1e:ad:ab:91:45:5c:d4:d1:42: 77:71:80:1f:70:b7:90:bf:5c:a3:f5:16:f5:d9:72: 1f:22:51:05:9e:70:8d:a2:f2:9c:b4:1c:27:7b:09: 29:8d:43:ce:57:7c:f6:2a:91:9a:94:45:e2:ad:65: b4:12:37:56:0a:c7:06:2e:46:c4:d9:96:7f:8b:cf: 20:14:3c:59:86:79:00:d7:9f:9d:78:2a:30:76:5d: 5b:88:5b:72:99:05:ff:7b:a8:39:4c:43:76:87:14: 8f:97:8a:c0:b7:6d:72:33:78:c3:48:6b:ed:06:ab: 84:3e:85:28:73:99:af:3b:b9:c0:aa:9c:eb:83:55: 52:67:e7:7d:0f:72:80:b6:a3:77:7d:fb:02:fb:d8: ce:a7:6d:1e:ff:13:f1:4d:f0:23:dd:eb:b3:47:b9: ca:ba:83:0b:47:1a:54:b3:d3:af:21:3c:18:6a:28: 47:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:3C:26:80:76:A4:87:D4:72:11:1D:AF:45:5C:50:F6:0F:35:A8:1B X509v3 Authority Key Identifier: keyid:C5:43:09:DC:11:2B:65:86:27:BD:36:A0:30:72:E7:5D:06:03:64:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xUMJ3BErZYYnvTagMHLnXQYDZNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199836/2936FFB2362E11EC8909E86FC4F9AE02/xUMJ3BErZYYnvTagMHLnXQYDZNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b7:ba:bf:68:c5:8a:b0:a0:d9:19:37:80:73:a2:55:5d:97: 35:d2:e2:c0:14:2f:54:d1:62:33:30:90:58:e7:07:3f:ea:7b: 5c:62:5b:4e:97:c3:d6:2c:64:0e:aa:aa:d5:f5:e3:f5:76:03: f2:a8:3f:d3:e9:29:85:af:4f:45:66:b6:6a:05:25:60:42:bd: d5:8b:14:46:6e:b9:78:d8:b4:e3:2a:79:5b:8e:ce:0b:84:3f: bd:73:05:22:7c:da:38:10:90:47:20:03:51:f6:e4:a4:1c:86: d7:92:4b:28:3f:91:59:8a:f7:28:ef:3a:96:f7:a9:a1:77:7d: 60:ad:16:15:70:89:01:65:de:1c:39:ce:36:a7:9d:f1:ac:60: ae:71:c9:05:56:ed:18:d6:e2:d7:31:4d:c9:e9:0b:75:b7:d3: 00:f8:69:de:c8:a7:87:6e:e1:63:c6:d5:38:a2:a2:0b:50:b3: ac:c2:a5:96:2f:95:b2:5d:91:b1:81:26:46:22:1a:14:bc:d9: cb:a0:28:8b:e5:9f:c4:d9:ee:8f:bc:32:b8:4a:0f:05:42:a4: 4f:1d:de:0e:a8:a9:b4:e3:c9:36:25:36:39:ea:ad:12:de:83: 97:07:2a:b3:a9:02:81:db:9e:49:7f:cf:47:67:a9:e6:6b:ab: 11:15:b4:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4MzYxMTAvBgNVBAUTKEM1NDMwOURDMTEyQjY1ODYyN0JEMzZBMDMwNzJFNzVE MDYwMzY0RDMwHhcNMjUwNTEyMjM0NzA4WhcNMjUwNTE5MjM0NzA4WjAYMRYwFAYD VQQDEw02ODIyODg3Yy0zM2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLI6oU/hPZ7cUl8xnT9dNr8mf0G9nZSvqmmFU/N4DSMPxkMAsufEYjAf9rtq VAwsFlI3L7DnmJcT3//1aTVzzPCV2HnHQTgauSanVgVuKFgerauRRVzU0UJ3cYAf cLeQv1yj9Rb12XIfIlEFnnCNovKctBwnewkpjUPOV3z2KpGalEXirWW0EjdWCscG LkbE2ZZ/i88gFDxZhnkA15+deCowdl1biFtymQX/e6g5TEN2hxSPl4rAt21yM3jD SGvtBquEPoUoc5mvO7nAqpzrg1VSZ+d9D3KAtqN3ffsC+9jOp20e/xPxTfAj3euz R7nKuoMLRxpUs9OvITwYaihHwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJE8JoB2 pIfUchEdr0VcUPYPNagbMB8GA1UdIwQYMBaAFMVDCdwRK2WGJ702oDBy510GA2TT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTgzNi8yOTM2RkZCMjM2 MkUxMUVDODkwOUU4NkZDNEY5QUUwMi94VU1KM0JFclpZWW52VGFnTUhMblhRWURa Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hVTUozQkVyWllZbnZUYWdNSExuWFFZRFpOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTgzNi8yOTM2RkZCMjM2MkUxMUVDODkwOUU4NkZDNEY5QUUwMi94VU1KM0JFclpZ WW52VGFnTUhMblhRWURaTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDt7q/aMWKsKDZGTeAc6JVXZc10uLAFC9U0WIzMJBY5wc/6ntcYltO l8PWLGQOqqrV9eP1dgPyqD/T6SmFr09FZrZqBSVgQr3VixRGbrl42LTjKnlbjs4L hD+9cwUifNo4EJBHIANR9uSkHIbXkksoP5FZivco7zqW96mhd31grRYVcIkBZd4c Oc42p53xrGCucckFVu0Y1uLXMU3J6Qt1t9MA+GneyKeHbuFjxtU4oqILULOswqWW L5WyXZGxgSZGIhoUvNnLoCiL5Z/E2e6PvDK4Sg8FQqRPHd4OqKm048k2JTY56q0S 3oOXByqzqQKB255Jf89HZ6nma6sRFbS7 -----END CERTIFICATE-----Generated at Tue May 13 14:50:22 2025 by rpki-client