$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft File: Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft (raw, json) Hash identifier: JZQkZKccoOWLIb0A7AgtPkuOalux3TaRoI1zFYIscSQ= Subject key identifier: 8C:5F:86:D8:4F:66:62:E3:D6:2B:0F:EB:A1:7D:6F:D4:CF:93:5B:E7 Authority key identifier: 51:BE:A3:60:94:29:D9:1B:1C:4E:40:22:DA:68:BD:64:3C:33:C3:FB Certificate issuer: /CN=A91E9509/serialNumber=51BEA3609429D91B1C4E4022DA68BD643C33C3FB Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft Manifest number: 01D9 Signing time: Sun 11 May 2025 01:46:13 +0000 Manifest this update: Sun 11 May 2025 01:46:13 +0000 Manifest next update: Sun 18 May 2025 01:46:13 +0000 Files and hashes: 1: Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl (hash: aizXZ+cFYezoUE3ODJ/fYcJseGC0I9QTu7mUFxbNvuU=) 2: F23AE0AE632D11ED8C102087C4F9AE02.roa (hash: ALMLm78gllLBfFwEbfYMxy6G6W9jUB1EmmnPpTHelsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9509, serialNumber=51BEA3609429D91B1C4E4022DA68BD643C33C3FB Validity Not Before: May 11 01:46:13 2025 GMT Not After : May 18 01:46:13 2025 GMT Subject: CN=68200165-44f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:52:ed:e7:c3:6e:a4:cc:59:9b:00:e0:a7: f0:26:c0:e9:64:80:f9:40:dd:db:ea:ba:42:b2:66: 4b:61:38:00:68:e6:a3:04:2f:18:56:9a:26:83:4d: b0:56:ba:b7:32:8a:c4:df:c0:b3:30:8d:de:1c:6a: f3:71:3c:b3:94:bb:39:bb:81:31:79:6f:4d:7e:78: 02:e8:04:7e:15:6e:0f:7a:8b:46:f5:6c:22:8c:f1: 1f:30:0b:7a:58:86:1e:24:d2:a1:20:78:bc:d2:6b: 85:29:c5:43:66:1c:69:38:f5:f3:ba:6e:61:4e:3d: e4:11:ca:88:93:d3:e6:29:e4:67:23:38:a8:6c:90: 47:e1:d1:4c:38:21:d9:df:b4:ad:85:89:95:6b:a4: e8:55:a4:ef:a5:23:c5:20:50:a7:f3:d0:12:f4:52: a6:ff:87:a7:7e:dd:52:03:39:0a:02:cc:7f:37:0e: c4:c0:fa:4e:ae:2c:ca:08:10:60:9e:ac:8a:39:18: 70:f2:f1:fd:de:46:f0:27:ad:c6:8a:62:c9:b8:0c: 17:58:6f:6f:64:65:e3:5c:c6:9c:8e:4e:04:13:77: 7f:13:92:1c:0a:54:a2:ca:4e:6b:06:93:98:5c:b1: 26:f8:53:e8:1d:1e:ab:24:83:3c:20:c4:79:07:5d: 01:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:5F:86:D8:4F:66:62:E3:D6:2B:0F:EB:A1:7D:6F:D4:CF:93:5B:E7 X509v3 Authority Key Identifier: keyid:51:BE:A3:60:94:29:D9:1B:1C:4E:40:22:DA:68:BD:64:3C:33:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:d8:67:b7:94:b4:ae:fb:96:bd:fa:28:ba:e0:08:d8:57:ef: 35:9a:53:48:ee:69:82:c2:b9:ad:c8:42:e6:1c:5d:dd:98:58: 88:5f:d0:c5:56:11:0f:3a:3d:6f:39:df:18:05:c6:e9:13:96: 9e:7b:e9:38:71:7e:97:d5:88:6e:96:c8:3e:26:42:6d:79:d6: 59:26:88:17:c7:36:0b:a5:a1:33:80:af:cb:ba:19:43:9e:71: 0b:c8:0e:e2:48:1c:ad:cd:ad:b8:7f:10:40:0d:6c:da:8e:da: 71:0c:b8:ad:22:d6:80:cf:34:06:c2:35:fa:ed:df:95:21:9c: 2c:26:8b:1f:22:b7:fc:9a:7b:f4:6f:76:ba:6f:fe:57:e6:e3: 9c:c0:4c:d2:44:22:63:e8:65:e7:0f:29:95:8d:10:b1:b3:64: ec:14:4b:3a:b8:6e:66:ee:0b:54:5d:41:2f:68:3b:bb:f8:8b: 84:a1:56:cc:d3:23:cd:96:88:ab:d5:e0:af:e0:dc:3d:ca:8d: e6:c8:e1:c7:2c:3e:3b:dd:c1:0f:b4:98:31:d3:6d:b2:f0:0d: 3d:fa:e4:b0:2a:1b:b9:92:52:4a:8d:03:1d:e6:d2:2f:88:b1: 56:a9:b9:50:6e:a4:bd:76:01:d3:12:4d:95:c8:11:9d:8c:c9: 19:cc:f5:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1MDkxMTAvBgNVBAUTKDUxQkVBMzYwOTQyOUQ5MUIxQzRFNDAyMkRBNjhCRDY0 M0MzM0MzRkIwHhcNMjUwNTExMDE0NjEzWhcNMjUwNTE4MDE0NjEzWjAYMRYwFAYD VQQDEw02ODIwMDE2NS00NGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto9S7efDbqTMWZsA4KfwJsDpZID5QN3b6rpCsmZLYTgAaOajBC8YVpomg02w Vrq3MorE38CzMI3eHGrzcTyzlLs5u4ExeW9NfngC6AR+FW4PeotG9WwijPEfMAt6 WIYeJNKhIHi80muFKcVDZhxpOPXzum5hTj3kEcqIk9PmKeRnIziobJBH4dFMOCHZ 37SthYmVa6ToVaTvpSPFIFCn89AS9FKm/4enft1SAzkKAsx/Nw7EwPpOrizKCBBg nqyKORhw8vH93kbwJ63GimLJuAwXWG9vZGXjXMacjk4EE3d/E5IcClSiyk5rBpOY XLEm+FPoHR6rJIM8IMR5B10BZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxfhthP ZmLj1isP66F9b9TPk1vnMB8GA1UdIwQYMBaAFFG+o2CUKdkbHE5AItpovWQ8M8P7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUwOS8yNzRFRDE1RTYw MUExMUVEQjc0MTZCNkNDNEY5QUUwMi9VYjZqWUpRcDJSc2NUa0FpMm1pOVpEd3p3 X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ViNmpZSlFwMlJzY1RrQWkybWk5WkR3endfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTUwOS8yNzRFRDE1RTYwMUExMUVEQjc0MTZCNkNDNEY5QUUwMi9VYjZqWUpRcDJS c2NUa0FpMm1pOVpEd3p3X3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX2Ge3lLSu+5a9+ii64AjYV+81mlNI7mmCwrmtyELmHF3dmFiIX9DF VhEPOj1vOd8YBcbpE5aee+k4cX6X1Yhulsg+JkJtedZZJogXxzYLpaEzgK/LuhlD nnELyA7iSBytza24fxBADWzajtpxDLitItaAzzQGwjX67d+VIZwsJosfIrf8mnv0 b3a6b/5X5uOcwEzSRCJj6GXnDymVjRCxs2TsFEs6uG5m7gtUXUEvaDu7+IuEoVbM 0yPNloir1eCv4Nw9yo3myOHHLD473cEPtJgx022y8A09+uSwKhu5klJKjQMd5tIv iLFWqblQbqS9dgHTEk2VyBGdjMkZzPXE -----END CERTIFICATE-----Generated at Sun May 11 19:56:18 2025 by rpki-client