$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft File: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft (raw, json) Hash identifier: BeTF6NvYqBqjZPTOyjwYhiHeS7PfJeSaKfnUfKZpwSQ= Subject key identifier: B8:44:07:D1:DA:9E:9E:AF:F6:E9:0C:16:8F:5B:86:7B:79:7C:E4:BC Authority key identifier: 50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C Certificate issuer: /CN=A91A3D65/serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft Manifest number: 01CA Signing time: Sat 17 May 2025 02:40:45 +0000 Manifest this update: Sat 17 May 2025 02:40:44 +0000 Manifest next update: Sat 24 May 2025 02:40:44 +0000 Files and hashes: 1: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl (hash: 0icaZMW++CEvGROhfXe6nI9Bmj2W0XnCgdY+tuf8p0E=) 2: 57DD65D0D1FB11EDA0A31C2FC4F9AE02.roa (hash: FNFbf5sb9V0I6f51NgIRl7bd8+WZE2kCB/02TRMhw6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 02:40:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3D65, serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Validity Not Before: May 17 02:40:44 2025 GMT Not After : May 24 02:40:44 2025 GMT Subject: CN=6827f72d-5c67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:21:45:db:c8:f5:c1:ad:f4:2d:a0:9a:55:c0: e0:03:04:83:b0:ed:91:3a:e2:7f:59:40:ef:16:f6: 6e:04:c3:d1:e9:05:36:10:07:fb:96:26:06:69:3e: 79:98:2f:3d:72:bf:bb:4b:b7:d6:5d:fa:d6:7f:27: 1e:30:5a:64:44:30:09:77:2b:b7:87:bf:9f:5f:33: 29:ea:87:11:12:d4:f9:df:a3:33:38:5f:6e:0a:f4: fd:06:f6:3d:f1:ce:ce:36:b9:eb:5d:aa:9f:71:84: 07:59:11:b9:c7:88:20:c9:82:1e:2b:e1:2d:e7:55: ad:13:9c:19:11:77:58:a3:f2:3f:ca:9a:70:e9:89: 36:b8:5f:d6:4f:3e:0c:5b:b8:d7:35:80:d4:0c:50: 07:a5:cf:da:9c:d4:72:e4:1a:25:bc:0f:69:e5:8c: 23:20:cb:44:b5:2e:87:c3:fa:cd:3f:ae:70:e8:f1: a5:ce:c8:40:7e:ae:62:a9:7b:c0:70:f0:c7:11:f9: 2c:be:fa:88:0b:71:f6:1c:6e:5d:e8:6d:2d:ad:1f: 46:69:c4:18:0f:e6:9a:99:49:d1:d9:36:c5:56:4e: be:73:07:aa:55:67:82:0e:37:dd:81:79:fa:12:0a: 26:de:6d:51:8f:a6:e6:7a:b6:07:8e:21:fd:27:68: b9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:44:07:D1:DA:9E:9E:AF:F6:E9:0C:16:8F:5B:86:7B:79:7C:E4:BC X509v3 Authority Key Identifier: keyid:50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:0a:a2:9b:43:1b:8a:6a:36:97:1c:b6:c3:98:ae:eb:4e:f6: 1a:c5:40:1e:5d:64:b7:f1:1f:e7:fc:14:2c:ba:e3:fd:b6:44: 12:d8:4b:9d:9e:e3:b1:2c:68:6a:1c:16:ff:c7:22:fa:6f:49: ee:e9:95:39:be:18:44:8b:b8:5e:b1:0e:16:46:7d:f7:b7:eb: a7:16:96:25:3f:c3:7b:de:0d:9c:ae:c6:b7:19:eb:14:6d:5f: af:b7:59:c3:4a:5c:e3:cf:43:f7:4c:72:58:be:c7:4e:f9:8b: 8e:4b:22:85:0a:49:54:de:42:7b:de:9e:b1:55:04:25:06:8a: 55:07:f5:ed:de:57:68:72:b5:fe:19:e5:11:30:59:ae:6d:5b: 29:2f:c6:40:30:10:ad:8b:44:ef:68:fa:7c:75:ef:32:9c:6b: 94:81:0c:3b:b5:76:1a:a3:e8:18:b9:22:2f:c6:f8:d0:d1:1f: 65:c4:69:e6:cc:33:35:bd:6f:ed:27:e4:df:1e:27:cf:f9:09: e9:5c:da:ba:11:b3:a3:6a:87:72:ca:62:06:59:e5:ef:50:e2: 61:fb:f7:99:10:d2:a4:93:02:d5:76:93:1e:78:40:7c:68:18: a9:38:7b:4b:66:c3:29:66:8c:8c:5a:c5:26:36:37:46:9b:c8: 7a:06:cb:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNENjUxMTAvBgNVBAUTKDUwMDhCRTA0MUY5OTk3QjI1OUQyNTg0NDgzQTUzQTBE RkYwQjE3OEMwHhcNMjUwNTE3MDI0MDQ0WhcNMjUwNTI0MDI0MDQ0WjAYMRYwFAYD VQQDEw02ODI3ZjcyZC01YzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iFF28j1wa30LaCaVcDgAwSDsO2ROuJ/WUDvFvZuBMPR6QU2EAf7liYGaT55 mC89cr+7S7fWXfrWfyceMFpkRDAJdyu3h7+fXzMp6ocREtT536MzOF9uCvT9BvY9 8c7ONrnrXaqfcYQHWRG5x4ggyYIeK+Et51WtE5wZEXdYo/I/yppw6Yk2uF/WTz4M W7jXNYDUDFAHpc/anNRy5BolvA9p5YwjIMtEtS6Hw/rNP65w6PGlzshAfq5iqXvA cPDHEfksvvqIC3H2HG5d6G0trR9GacQYD+aamUnR2TbFVk6+cweqVWeCDjfdgXn6 Egom3m1Rj6bmerYHjiH9J2i5lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhEB9Ha np6v9ukMFo9bhnt5fOS8MB8GA1UdIwQYMBaAFFAIvgQfmZeyWdJYRIOlOg3/CxeM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Q2NS9FQTFFNjJENjdD NzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3SlowbGhFZzZVNkRmOExG NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBaS1CQi1abDdKWjBsaEVnNlU2RGY4TEY0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Q2NS9FQTFFNjJENjdDNzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3 SlowbGhFZzZVNkRmOExGNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiCqKbQxuKajaXHLbDmK7rTvYaxUAeXWS38R/n/BQsuuP9tkQS2Eud nuOxLGhqHBb/xyL6b0nu6ZU5vhhEi7hesQ4WRn33t+unFpYlP8N73g2crsa3GesU bV+vt1nDSlzjz0P3THJYvsdO+YuOSyKFCklU3kJ73p6xVQQlBopVB/Xt3ldocrX+ GeURMFmubVspL8ZAMBCti0TvaPp8de8ynGuUgQw7tXYao+gYuSIvxvjQ0R9lxGnm zDM1vW/tJ+TfHifP+QnpXNq6EbOjaodyymIGWeXvUOJh+/eZENKkkwLVdpMeeEB8 aBipOHtLZsMpZoyMWsUmNjdGm8h6Bssm -----END CERTIFICATE-----Generated at Sun May 18 15:23:26 2025 by rpki-client