$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft File: UEMacUvIutzoUZ5LmRR-FR7fd5c.mft (raw, json) Hash identifier: iAJ2xx+3qydcd6g6fwbbhEOX1ETurZfiYAuoclITyeM= Subject key identifier: C1:5C:FB:81:7F:47:10:07:75:45:45:E0:6D:5C:3C:C2:C7:65:6B:0F Authority key identifier: 50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 Certificate issuer: /CN=A91DA289/serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Certificate serial: 061E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft Manifest number: 0618 Signing time: Thu 08 May 2025 22:38:15 +0000 Manifest this update: Thu 08 May 2025 22:38:14 +0000 Manifest next update: Thu 15 May 2025 22:38:14 +0000 Files and hashes: 1: UEMacUvIutzoUZ5LmRR-FR7fd5c.crl (hash: LfRuSF19b+Ee7M8NuXA8ev+cvdbCW3JaeIgDOGH5j1Y=) 2: 0BE0F63C9CBB11EBA4731E19C4F9AE02.roa (hash: ln0lvafoMsf2mDlhqtsb54uvMwde1qgk9VtDAAnL3YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 22:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1566 (0x61e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA289, serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Validity Not Before: May 8 22:38:14 2025 GMT Not After : May 15 22:38:14 2025 GMT Subject: CN=681d3257-4a0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f1:d7:9d:9b:b1:df:34:65:2c:b8:80:b4:c2: b4:c9:02:b4:34:c5:7c:48:f7:9d:8b:05:84:ef:9a: 36:f9:5f:60:f7:bf:61:96:e0:1c:1f:c2:ca:e2:70: 13:08:30:ce:e5:94:58:39:4c:90:71:e5:6c:d9:bf: 4a:bd:29:9f:f4:58:ff:fb:d9:cf:a0:0c:45:66:cb: f3:5e:db:2b:4e:df:36:08:57:5a:be:3d:ac:16:5f: 41:86:c2:e0:05:b9:17:dc:09:01:9e:3b:54:7b:7d: 3b:14:1b:e1:24:cb:05:37:0f:36:fa:b0:46:bf:bc: 74:c0:2e:7f:99:ae:96:7b:98:8f:9c:3f:2b:d5:60: a0:a9:f4:9e:8c:2e:a4:7a:71:db:45:25:5a:4e:ec: d9:cc:b3:b4:98:89:a6:98:9a:43:79:b3:b8:78:90: 08:6e:3c:32:14:3f:e0:29:18:e7:e7:b9:99:a7:c3: dd:fa:f9:f9:7d:b7:84:6a:b8:42:31:87:6d:b2:78: ef:9d:85:fe:39:27:67:5b:dc:17:8a:3c:73:eb:8f: fb:e9:10:64:1d:a3:52:9f:f2:2a:65:a8:65:5e:77: c2:a4:21:ea:95:cd:a7:cc:9f:53:38:1e:f2:c6:1a: de:50:13:89:43:6e:2e:e2:b2:e5:bb:a6:00:07:0c: 1c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:5C:FB:81:7F:47:10:07:75:45:45:E0:6D:5C:3C:C2:C7:65:6B:0F X509v3 Authority Key Identifier: keyid:50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:86:f1:a0:81:19:3c:ba:b4:05:68:8a:4d:99:2c:f4:b6:da: 84:cf:3d:db:e7:87:4b:89:c8:5e:4f:a7:21:82:61:69:e0:a6: 34:14:5b:70:8c:76:ca:c9:73:f4:0a:8a:a4:aa:54:60:43:a3: c2:e2:d0:45:4a:b3:85:89:9d:12:a6:07:8c:47:38:57:28:71: 0e:47:7c:bc:8c:e1:77:56:71:2e:dd:85:10:85:9f:53:82:3a: bb:13:bd:32:98:d5:42:a8:e6:0f:b6:10:f1:7c:d1:81:3f:9a: 15:b2:97:db:39:30:bb:4f:ee:92:ce:dc:ee:83:43:25:c5:80: cf:4a:09:01:5c:6f:96:34:21:9c:67:8a:17:f1:69:0c:73:06: 19:6c:16:7c:a8:64:de:53:48:3b:09:5d:0b:fe:af:9d:d4:5c: 2f:fc:54:9f:60:d5:6f:a6:fb:95:b9:1c:ba:a0:bc:0c:60:2e: a0:22:2a:93:75:8a:e2:23:57:60:f0:a8:08:57:93:58:1f:c7: 0a:c1:21:11:bc:d3:18:61:5a:5d:02:c2:9c:65:3d:40:33:09: 50:9c:95:79:61:68:b1:4d:6c:89:66:f8:ac:ff:25:d1:57:cf: 06:be:4f:3a:e3:6e:23:f8:b9:4a:4f:87:d6:4d:f5:4a:6f:85: cf:0b:a6:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyODkxMTAvBgNVBAUTKDUwNDMxQTcxNEJDOEJBRENFODUxOUU0Qjk5MTQ3RTE1 MUVERjc3OTcwHhcNMjUwNTA4MjIzODE0WhcNMjUwNTE1MjIzODE0WjAYMRYwFAYD VQQDEw02ODFkMzI1Ny00YTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvHXnZux3zRlLLiAtMK0yQK0NMV8SPediwWE75o2+V9g979hluAcH8LK4nAT CDDO5ZRYOUyQceVs2b9KvSmf9Fj/+9nPoAxFZsvzXtsrTt82CFdavj2sFl9BhsLg BbkX3AkBnjtUe307FBvhJMsFNw82+rBGv7x0wC5/ma6We5iPnD8r1WCgqfSejC6k enHbRSVaTuzZzLO0mImmmJpDebO4eJAIbjwyFD/gKRjn57mZp8Pd+vn5fbeEarhC MYdtsnjvnYX+OSdnW9wXijxz64/76RBkHaNSn/IqZahlXnfCpCHqlc2nzJ9TOB7y xhreUBOJQ24u4rLlu6YABwwcjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFc+4F/ RxAHdUVF4G1cPMLHZWsPMB8GA1UdIwQYMBaAFFBDGnFLyLrc6FGeS5kUfhUe33eX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI4OS9FMDFCMDU0NDlD QjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0em9VWjVMbVJSLUZSN2Zk NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VFTWFjVXZJdXR6b1VaNUxtUlItRlI3ZmQ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI4OS9FMDFCMDU0NDlDQjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0 em9VWjVMbVJSLUZSN2ZkNWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5hvGggRk8urQFaIpNmSz0ttqEzz3b54dLicheT6chgmFp4KY0FFtw jHbKyXP0CoqkqlRgQ6PC4tBFSrOFiZ0SpgeMRzhXKHEOR3y8jOF3VnEu3YUQhZ9T gjq7E70ymNVCqOYPthDxfNGBP5oVspfbOTC7T+6Sztzug0MlxYDPSgkBXG+WNCGc Z4oX8WkMcwYZbBZ8qGTeU0g7CV0L/q+d1Fwv/FSfYNVvpvuVuRy6oLwMYC6gIiqT dYriI1dg8KgIV5NYH8cKwSERvNMYYVpdAsKcZT1AMwlQnJV5YWixTWyJZvis/yXR V88Gvk86424j+LlKT4fWTfVKb4XPC6bZ -----END CERTIFICATE-----Generated at Sat May 10 13:53:50 2025 by rpki-client