$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft File: UMP9EvajMVgZtSurzBmPsNv9QTo.mft (raw, json) Hash identifier: yMbYIFQj+TF4hYJN3EzaotjC/MPM7QJRM2KxUzHEOUk= Subject key identifier: 43:18:8D:9C:B1:65:D4:AB:F5:61:CB:05:56:97:2B:0D:26:5F:A5:85 Authority key identifier: 50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A Certificate issuer: /CN=A91CE616/serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Certificate serial: 03D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft Manifest number: 03CD Signing time: Sun 11 May 2025 00:11:35 +0000 Manifest this update: Sun 11 May 2025 00:11:35 +0000 Manifest next update: Sun 18 May 2025 00:11:35 +0000 Files and hashes: 1: UMP9EvajMVgZtSurzBmPsNv9QTo.crl (hash: 4BuYOQUXm6VG4+uzJTGL77Wt46QgcQDn6rl8VLtoXAo=) 2: 296C190484AD11EC9C3F837CC4F9AE02.roa (hash: /RxOlV3ierU9U8XUpOrcDZ1BfZBiiZXrWx/RXW8pGyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE616, serialNumber=50C3FD12F6A3315819B52BABCC198FB0DBFD413A Validity Not Before: May 11 00:11:35 2025 GMT Not After : May 18 00:11:35 2025 GMT Subject: CN=681feb37-50f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:13:0c:da:da:34:ec:8c:24:ad:4c:77:0c:dd: 53:25:83:c8:e7:ae:00:70:66:e7:15:48:ea:f8:a9: 41:18:e8:aa:60:01:f3:0a:80:b5:f5:8e:d7:50:60: 33:6a:ba:7e:83:a0:61:a2:a1:46:89:c6:3f:3f:74: 7e:f4:43:af:06:a5:10:3e:6a:b2:c4:47:45:8c:e5: 5e:45:94:6c:36:76:d8:bd:19:00:69:d7:46:2e:0f: 8c:3d:0d:00:ca:0b:ec:59:d5:45:90:f3:0e:55:96: 65:d5:c9:6a:dd:e4:89:11:3f:73:b9:97:da:79:76: 2f:7f:8f:81:f6:48:eb:9b:d1:5c:01:77:32:36:8a: 17:b9:93:19:15:4f:7c:be:39:40:1d:1d:b0:e7:fc: 1b:fb:c2:12:15:db:b1:fc:05:75:a2:6f:06:3b:42: eb:a4:58:d4:52:19:d5:bf:4e:ee:eb:34:48:4a:98: 51:72:03:db:26:55:3a:79:51:91:b7:fc:94:11:e7: 01:af:ed:82:e3:8b:c3:eb:56:08:81:3f:c2:b7:e6: a3:33:cb:09:28:3e:4c:01:c7:0a:e4:d4:e7:ea:1c: cc:3b:8f:75:4e:e6:c1:c4:ce:aa:e8:81:d8:64:3f: a0:cc:2e:2e:8f:f7:11:a6:b1:29:47:f5:2d:00:c2: 19:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:18:8D:9C:B1:65:D4:AB:F5:61:CB:05:56:97:2B:0D:26:5F:A5:85 X509v3 Authority Key Identifier: keyid:50:C3:FD:12:F6:A3:31:58:19:B5:2B:AB:CC:19:8F:B0:DB:FD:41:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UMP9EvajMVgZtSurzBmPsNv9QTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE616/A7E4291684A811ECB2500871C4F9AE02/UMP9EvajMVgZtSurzBmPsNv9QTo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:b1:4c:31:2b:70:9b:b7:49:c7:7e:1e:24:62:ee:ba:41:2b: 9d:cd:39:a2:fe:d7:c2:7f:37:2b:a5:c7:cc:b0:b7:35:ce:2e: 0c:87:bb:d5:8a:8a:d5:bf:dc:8b:85:d9:eb:b0:c2:15:9c:1b: ab:ae:bf:4e:02:de:b2:54:52:54:a8:3d:66:c8:92:09:71:44: a1:0f:de:02:69:ee:52:c7:d2:f5:17:f8:f6:8b:2b:e8:b8:5a: 80:99:61:67:14:44:33:22:0b:60:57:73:79:7c:61:2a:95:a6: c1:7f:14:89:a8:54:a8:84:1b:b4:52:5c:e7:f0:12:7d:9e:e1: a8:a6:71:63:7a:b0:d0:80:d1:81:88:67:01:e8:3a:3a:2a:9e: 4c:4d:d6:23:c2:80:4b:cd:37:df:75:67:a8:14:3d:ab:96:6e: 9e:77:38:f5:ff:f0:6d:0b:76:eb:a1:14:c7:58:3f:b6:e9:d4: 4e:1c:61:72:5c:c5:a6:ed:49:93:97:5f:5f:67:4a:8d:5e:d2: 73:65:a6:7d:df:20:aa:28:2b:ad:58:1f:24:4d:7a:4a:be:be: 8b:90:e1:ae:81:d7:83:be:2e:30:95:2b:57:1f:cb:34:eb:ae: 94:6d:ab:55:ed:9e:5b:6e:6d:0a:df:4d:bf:8e:73:44:30:24: 22:2c:35:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MTYxMTAvBgNVBAUTKDUwQzNGRDEyRjZBMzMxNTgxOUI1MkJBQkNDMTk4RkIw REJGRDQxM0EwHhcNMjUwNTExMDAxMTM1WhcNMjUwNTE4MDAxMTM1WjAYMRYwFAYD VQQDEw02ODFmZWIzNy01MGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRMM2to07IwkrUx3DN1TJYPI564AcGbnFUjq+KlBGOiqYAHzCoC19Y7XUGAz arp+g6BhoqFGicY/P3R+9EOvBqUQPmqyxEdFjOVeRZRsNnbYvRkAaddGLg+MPQ0A ygvsWdVFkPMOVZZl1clq3eSJET9zuZfaeXYvf4+B9kjrm9FcAXcyNooXuZMZFU98 vjlAHR2w5/wb+8ISFdux/AV1om8GO0LrpFjUUhnVv07u6zRISphRcgPbJlU6eVGR t/yUEecBr+2C44vD61YIgT/Ct+ajM8sJKD5MAccK5NTn6hzMO491TubBxM6q6IHY ZD+gzC4uj/cRprEpR/UtAMIZ5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMYjZyx ZdSr9WHLBVaXKw0mX6WFMB8GA1UdIwQYMBaAFFDD/RL2ozFYGbUrq8wZj7Db/UE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYxNi9BN0U0MjkxNjg0 QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1WZ1p0U3VyekJtUHNOdjlR VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNUDlFdmFqTVZnWnRTdXJ6Qm1Qc052OVFUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYxNi9BN0U0MjkxNjg0QTgxMUVDQjI1MDA4NzFDNEY5QUUwMi9VTVA5RXZhak1W Z1p0U3VyekJtUHNOdjlRVG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBsUwxK3Cbt0nHfh4kYu66QSudzTmi/tfCfzcrpcfMsLc1zi4Mh7vV iorVv9yLhdnrsMIVnBurrr9OAt6yVFJUqD1myJIJcUShD94Cae5Sx9L1F/j2iyvo uFqAmWFnFEQzIgtgV3N5fGEqlabBfxSJqFSohBu0Ulzn8BJ9nuGopnFjerDQgNGB iGcB6Do6Kp5MTdYjwoBLzTffdWeoFD2rlm6edzj1//BtC3broRTHWD+26dROHGFy XMWm7UmTl19fZ0qNXtJzZaZ93yCqKCutWB8kTXpKvr6LkOGugdeDvi4wlStXH8s0 666UbatV7Z5bbm0K302/jnNEMCQiLDWt -----END CERTIFICATE-----Generated at Sun May 11 04:28:49 2025 by rpki-client