$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft File: umn8tA4zSXV_ok-OM1eRxfAEXVg.mft (raw, json) Hash identifier: g5om5Ci52LnN6nq7mOiDGUebKj/+SkhAwBusuCex7Ws= Subject key identifier: 93:B8:9B:25:F9:23:6E:96:0C:00:BB:17:F2:5A:F3:58:0F:97:58:C5 Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 0413 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft Manifest number: 0408 Signing time: Thu 15 May 2025 00:30:48 +0000 Manifest this update: Thu 15 May 2025 00:30:48 +0000 Manifest next update: Thu 22 May 2025 00:30:48 +0000 Files and hashes: 1: umn8tA4zSXV_ok-OM1eRxfAEXVg.crl (hash: hz8m/SvmIIC5bhP7wGa80Z6KXbrhbVyIaI4IKZJ7INo=) 2: 159DA092E9B711EFB8454123C4F9AE02.roa (hash: tjoX2rKURmmp0SIpilUWla3AD/nRXhfocceVz0iL1og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:30:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1043 (0x413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81, serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: May 15 00:30:48 2025 GMT Not After : May 22 00:30:48 2025 GMT Subject: CN=682535b8-a5fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:77:4d:99:cd:f9:1d:89:9d:39:95:44:6e:24: c9:19:8b:67:68:33:1b:3c:43:5c:9c:a4:11:36:8c: 29:5e:6d:1e:97:1c:c6:bf:df:f4:af:7a:25:05:5d: 38:af:69:d1:86:a5:cd:a2:50:a1:7c:0c:10:92:17: cc:37:f3:72:a1:f7:32:d3:bb:be:21:6f:57:b0:8a: 00:22:72:ad:b5:5f:c5:99:08:1f:a9:af:dd:28:a3: 19:56:e8:5c:24:9d:2c:50:61:97:d5:cd:14:12:3c: 14:44:56:9e:26:1d:51:90:54:3d:2d:1b:73:f7:e7: 63:6c:d3:47:97:9e:b3:4e:ec:fe:11:cf:25:e1:a3: 45:09:28:aa:29:00:0c:05:22:9d:87:08:36:27:bd: 94:1d:43:0b:fc:4b:9c:18:5e:c4:ef:a1:11:1d:d7: 19:b6:4f:e2:7a:3e:45:3b:6c:48:8b:e6:aa:0f:a4: 85:ee:4e:d6:2c:58:fc:86:30:12:d0:b0:8a:de:61: 52:0a:9e:e9:25:fd:6a:15:ef:4c:85:d8:e3:fe:f9: c2:72:c6:f2:7d:8a:e2:5f:bd:68:fb:4f:9b:a8:6d: 19:ca:0d:8a:2a:65:3e:56:d2:23:d0:c2:fc:a4:95: 47:17:e0:c2:3a:9f:c1:d8:ca:f2:f3:7c:21:ba:a0: 90:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:B8:9B:25:F9:23:6E:96:0C:00:BB:17:F2:5A:F3:58:0F:97:58:C5 X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:1c:ab:50:23:b5:56:19:bc:0d:05:1a:ce:f0:cf:b4:2c:72: 69:a7:db:10:b6:b1:ec:e2:62:e4:fa:2b:6c:fd:11:09:f3:a3: ba:47:a6:93:e7:28:95:92:b5:93:28:76:07:aa:d0:c7:74:f6: 89:2b:aa:1f:0f:1f:de:83:97:9c:76:a0:d5:17:46:67:71:9c: c7:90:52:e3:ce:a9:d2:60:cd:5a:9b:d7:84:44:a2:e2:0d:f9: 26:26:91:43:20:5c:40:4e:a1:3f:41:be:a3:3c:02:04:fd:9c: 4d:44:29:db:bb:cf:09:6c:46:5c:7f:b2:85:a3:06:df:ed:92: 6b:a1:7f:cc:8d:bd:11:dd:a2:fb:31:0c:5a:01:15:a2:86:a3: 4a:8a:ed:63:7b:f1:46:d0:75:67:a4:00:a7:7a:18:03:2f:b6: 3d:72:1c:a4:90:d6:0c:f1:9b:78:05:76:ac:84:ba:53:d9:42: c0:81:26:9d:f0:7e:a7:39:1d:30:ad:25:c3:40:17:3a:bc:1b: b2:44:1a:c9:0f:f6:22:ad:b8:19:67:b5:5e:ff:63:78:87:38: 3e:62:5f:9d:ad:4a:8c:04:26:55:cd:ff:f7:b5:b4:7d:64:5b: ab:c7:87:54:d8:3f:3a:ce:cb:25:9b:5a:08:5d:aa:06:b6:c9: 89:5d:aa:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjUwNTE1MDAzMDQ4WhcNMjUwNTIyMDAzMDQ4WjAYMRYwFAYD VQQDEw02ODI1MzViOC1hNWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3dNmc35HYmdOZVEbiTJGYtnaDMbPENcnKQRNowpXm0elxzGv9/0r3olBV04 r2nRhqXNolChfAwQkhfMN/Nyofcy07u+IW9XsIoAInKttV/FmQgfqa/dKKMZVuhc JJ0sUGGX1c0UEjwURFaeJh1RkFQ9LRtz9+djbNNHl56zTuz+Ec8l4aNFCSiqKQAM BSKdhwg2J72UHUML/EucGF7E76ERHdcZtk/iej5FO2xIi+aqD6SF7k7WLFj8hjAS 0LCK3mFSCp7pJf1qFe9Mhdjj/vnCcsbyfYriX71o+0+bqG0Zyg2KKmU+VtIj0ML8 pJVHF+DCOp/B2Mry83whuqCQLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJO4myX5 I26WDAC7F/Ja81gPl1jFMB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkE4MS9DRTEzNkJEMDc0NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNY Vl9vay1PTTFlUnhmQUVYVmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfHKtQI7VWGbwNBRrO8M+0LHJpp9sQtrHs4mLk+its/REJ86O6R6aT 5yiVkrWTKHYHqtDHdPaJK6ofDx/eg5ecdqDVF0ZncZzHkFLjzqnSYM1am9eERKLi DfkmJpFDIFxATqE/Qb6jPAIE/ZxNRCnbu88JbEZcf7KFowbf7ZJroX/Mjb0R3aL7 MQxaARWihqNKiu1je/FG0HVnpACnehgDL7Y9chykkNYM8Zt4BXashLpT2ULAgSad 8H6nOR0wrSXDQBc6vBuyRBrJD/YirbgZZ7Ve/2N4hzg+Yl+drUqMBCZVzf/3tbR9 ZFurx4dU2D86zsslm1oIXaoGtsmJXapp -----END CERTIFICATE-----Generated at Fri May 16 07:26:20 2025 by rpki-client