$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft File: u7bmAQQ3QyUFSIC308E15vx8yrE.mft (raw, json) Hash identifier: X00ooH/EO7BW4/WiKL/8yv/4ucJUyiqw+P3JRTk5Un0= Subject key identifier: 2E:48:8B:65:E6:DA:14:1A:2D:89:FF:87:5B:68:2D:68:36:13:5E:98 Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft Manifest number: 01EB Signing time: Sat 31 May 2025 02:20:16 +0000 Manifest this update: Sat 31 May 2025 02:20:15 +0000 Manifest next update: Sat 07 Jun 2025 02:20:15 +0000 Files and hashes: 1: u7bmAQQ3QyUFSIC308E15vx8yrE.crl (hash: Kf18SpLBZvL43EWyuFysVv0am/gYxs9ueBYlX1XpnkY=) 2: CCB0DBA8CB2911EE9CE70483C4F9AE02.roa (hash: +L4H64N18c7HC9b7a2kMN0oPwzUDs4ByILHmodSVj7c=) 3: 003D7FEE15E811F0841B1A7DC4F9AE02.roa (hash: NzfvN2nV9saQebWeBwyNL6bb8Qj6DnzhJ2bxOu8Ukwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:20:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A, serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Validity Not Before: May 31 02:20:15 2025 GMT Not After : Jun 7 02:20:15 2025 GMT Subject: CN=683a6760-689e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a3:9f:56:6b:b2:31:81:d8:00:ee:4b:5c:7d: e6:01:0b:d9:d1:66:67:81:f5:14:b4:5c:e9:a4:17: 9e:75:bb:08:6d:59:d0:e3:86:60:26:57:4a:75:d7: 26:61:2d:af:44:3f:a8:e3:bf:23:64:94:cc:69:b7: e5:88:2b:55:e4:b8:b2:bd:cf:97:11:6e:78:17:39: e3:e5:0d:00:87:45:6a:ef:86:98:b9:2a:9d:23:c8: 73:e4:0d:f9:2c:90:07:e9:49:a8:86:2f:52:93:f5: 7e:e6:fe:7c:21:b0:06:b2:8d:5b:6c:6a:6a:d4:58: 82:71:54:f2:70:00:c1:0f:9f:44:58:c0:44:83:c3: b4:c8:12:4d:bb:7c:1f:cb:cb:51:09:be:f4:c7:f8: 47:d4:37:b1:8d:b2:9b:5c:73:77:2a:b5:80:df:d8: a9:8c:b7:85:28:ee:3a:e7:56:fa:40:ec:45:99:0c: 87:46:f2:69:84:bf:24:a8:6b:86:ea:d7:d3:0c:8f: ed:5b:10:9d:50:76:58:ff:b4:95:2e:13:28:d6:29: 9d:28:08:14:dc:c4:36:11:f0:d6:b0:2e:95:c2:3e: 9d:cc:99:4e:2d:9e:ac:75:ba:bb:80:00:a1:cf:1c: 98:64:8a:36:6c:01:5e:f7:31:cb:a5:ae:0d:7b:28: c3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:48:8B:65:E6:DA:14:1A:2D:89:FF:87:5B:68:2D:68:36:13:5E:98 X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:75:50:45:b0:62:0d:bd:0d:20:43:58:58:e3:5d:71:7c:6f: fe:c5:a9:b9:a8:48:cf:d6:12:3b:2b:8f:1d:17:65:8f:b9:e5: cd:b5:17:8d:fb:5d:8e:68:4c:f2:a9:ec:2d:99:79:90:87:66: 93:28:dd:ed:c1:11:12:73:03:32:79:c4:66:37:45:c7:69:38: 77:24:43:92:b4:ab:a1:ff:74:ec:89:27:9e:15:35:5e:30:19: 21:7c:cc:c4:c2:4f:13:80:e9:64:ff:d5:7a:e2:0b:77:6b:0f: fa:ed:89:40:22:c6:f3:22:77:92:d0:13:5e:ef:38:ae:25:99: d2:70:35:d2:28:da:f6:e6:95:80:df:d3:aa:12:71:85:49:69: 1a:7c:5a:40:60:11:55:9a:c7:18:41:6f:45:cf:77:60:11:2c: 27:4d:03:67:2b:b2:ad:32:26:03:f1:ef:fb:21:f5:65:c9:9a: d7:14:d3:37:ed:3c:24:0a:8a:fd:41:76:c2:f6:16:32:f1:c5: 44:7c:17:2b:1a:1a:1e:f5:5b:0b:aa:ac:08:4f:71:29:ac:cd: 4d:3c:0d:86:70:e0:59:55:1f:b8:9b:26:27:c1:06:58:bd:59: f9:77:07:73:d8:9f:9a:1f:b2:f5:48:ea:8d:00:ab:b1:09:df: bd:f0:85:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjUwNTMxMDIyMDE1WhcNMjUwNjA3MDIyMDE1WjAYMRYwFAYD VQQDEw02ODNhNjc2MC02ODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaOfVmuyMYHYAO5LXH3mAQvZ0WZngfUUtFzppBeedbsIbVnQ44ZgJldKddcm YS2vRD+o478jZJTMabfliCtV5Liyvc+XEW54Fznj5Q0Ah0Vq74aYuSqdI8hz5A35 LJAH6Umohi9Sk/V+5v58IbAGso1bbGpq1FiCcVTycADBD59EWMBEg8O0yBJNu3wf y8tRCb70x/hH1DexjbKbXHN3KrWA39ipjLeFKO4651b6QOxFmQyHRvJphL8kqGuG 6tfTDI/tWxCdUHZY/7SVLhMo1imdKAgU3MQ2EfDWsC6Vwj6dzJlOLZ6sdbq7gACh zxyYZIo2bAFe9zHLpa4NeyjDlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5Ii2Xm 2hQaLYn/h1toLWg2E16YMB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA0QS85NUE4MTAxNDUwNzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5 VUZTSUMzMDhFMTV2eDh5ckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFdVBFsGINvQ0gQ1hY411xfG/+xam5qEjP1hI7K48dF2WPueXNtReN +12OaEzyqewtmXmQh2aTKN3twREScwMyecRmN0XHaTh3JEOStKuh/3TsiSeeFTVe MBkhfMzEwk8TgOlk/9V64gt3aw/67YlAIsbzIneS0BNe7ziuJZnScDXSKNr25pWA 39OqEnGFSWkafFpAYBFVmscYQW9Fz3dgESwnTQNnK7KtMiYD8e/7IfVlyZrXFNM3 7TwkCor9QXbC9hYy8cVEfBcrGhoe9VsLqqwIT3EprM1NPA2GcOBZVR+4myYnwQZY vVn5dwdz2J+aH7L1SOqNAKuxCd+98IW9 -----END CERTIFICATE-----Generated at Sat May 31 17:46:26 2025 by rpki-client