$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft File: uhYFabkV4kxq5sJIlNBPnUo5FpI.mft (raw, json) Hash identifier: 6MsHoo8F6LHxSU9+p0zKdePbmD+LrPlt2shRuno5qQw= Subject key identifier: A7:EC:BA:91:C1:14:BF:6B:F0:49:33:EE:DF:8F:02:BB:83:99:4D:62 Authority key identifier: BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 Certificate issuer: /CN=A912CDCB/serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Certificate serial: 04D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft Manifest number: 04CE Signing time: Fri 30 May 2025 23:59:58 +0000 Manifest this update: Fri 30 May 2025 23:59:57 +0000 Manifest next update: Fri 06 Jun 2025 23:59:57 +0000 Files and hashes: 1: uhYFabkV4kxq5sJIlNBPnUo5FpI.crl (hash: sKExn9lTxCXB4rdDfh6pSAODAUan74SSJiXOFJJb/Cc=) 2: DAF98AAA20F111EC89E7D668C4F9AE02.roa (hash: LH3JZfkASioifJ898UuwmPenAKd90H/13hB5MxOGBgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:59:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1234 (0x4d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDCB, serialNumber=BA160569B915E24C6AE6C24894D04F9D4A391692 Validity Not Before: May 30 23:59:57 2025 GMT Not After : Jun 6 23:59:57 2025 GMT Subject: CN=683a467e-8d2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:62:d1:25:15:41:70:29:dc:0d:fc:2b:fc:e0: 86:a6:57:7c:42:f0:19:3c:6a:62:17:94:71:3e:24: c1:24:7c:1e:93:bd:37:95:8b:dd:36:b2:cb:34:fa: bd:8d:66:fb:91:5c:1b:eb:a4:da:3a:96:06:80:d0: 70:66:12:f4:f4:69:50:fe:ae:c2:26:81:69:72:29: e0:2b:24:92:c1:81:35:3c:ec:8f:73:c5:c2:3f:76: bf:58:12:ab:56:4d:1e:6a:24:9b:7d:2e:92:1e:3f: 15:f3:e0:14:23:ea:81:b5:7c:ab:28:54:a8:d0:cc: 06:e5:74:ee:5f:42:cd:29:4c:90:05:51:6f:3b:bd: 94:2a:61:be:5d:9e:41:19:dc:76:e3:07:78:cc:37: 1c:08:e7:67:35:d8:da:4b:84:1d:cc:2d:d8:97:d6: ec:60:14:c3:1a:dd:87:79:9c:8a:6f:78:1f:a7:37: 30:97:f6:e6:52:71:cf:30:53:e4:4e:9e:44:17:b8: 7f:a7:c3:41:25:9b:a9:6f:e7:d8:18:e6:53:b7:89: 7c:75:d0:d2:3c:1c:44:b9:a7:b4:44:e6:7a:6c:b3: 98:9a:ee:76:fc:68:b6:00:6a:f2:62:4f:f4:fc:44: 20:77:2a:05:a3:aa:67:7f:9f:33:93:cf:76:c5:92: 26:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EC:BA:91:C1:14:BF:6B:F0:49:33:EE:DF:8F:02:BB:83:99:4D:62 X509v3 Authority Key Identifier: keyid:BA:16:05:69:B9:15:E2:4C:6A:E6:C2:48:94:D0:4F:9D:4A:39:16:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uhYFabkV4kxq5sJIlNBPnUo5FpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDCB/8A82094420EC11EC9D5D313BC4F9AE02/uhYFabkV4kxq5sJIlNBPnUo5FpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:10:69:3a:8a:8a:a6:03:fa:c5:31:b8:df:82:52:d2:61:75: 25:c4:9f:20:21:58:dd:14:0f:0c:77:b4:4e:d9:34:ab:01:db: 82:35:98:b1:81:c8:53:97:f0:62:25:5c:c4:74:1f:da:8f:43: df:fc:8e:68:07:d6:13:2b:38:01:58:59:d9:67:66:d3:1b:49: 67:80:dd:25:f9:d8:51:59:41:30:68:b6:69:71:fe:60:26:1a: 40:4d:4f:aa:a6:24:60:62:cb:0f:5a:73:cf:04:9f:ac:29:6e: 50:49:92:4e:09:04:2f:6d:12:e8:1b:1c:b0:bc:02:90:74:7d: 7c:76:ba:4b:df:af:af:c5:1b:ae:57:5c:a2:0d:9a:b8:df:17: 0a:6a:01:e9:03:ef:81:6e:61:7d:44:73:10:41:27:fe:61:e3: ec:dc:b3:bd:fe:d6:da:59:11:54:6d:a6:06:2c:93:f0:b4:2b: 91:e3:d6:2d:45:95:2d:4b:88:4f:8c:9c:3f:fb:c0:54:3f:5e: c6:51:f5:6c:c4:34:d2:bb:06:6b:b6:df:c6:a5:30:d5:9c:d5: 09:c3:8d:91:b8:77:41:d7:9e:bf:58:23:21:bd:f8:69:55:ce: 1f:07:8b:6d:20:e5:30:76:a3:63:25:a4:42:15:c5:99:9b:c9: a5:6f:1c:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQ0IxMTAvBgNVBAUTKEJBMTYwNTY5QjkxNUUyNEM2QUU2QzI0ODk0RDA0RjlE NEEzOTE2OTIwHhcNMjUwNTMwMjM1OTU3WhcNMjUwNjA2MjM1OTU3WjAYMRYwFAYD VQQDEw02ODNhNDY3ZS04ZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmLRJRVBcCncDfwr/OCGpld8QvAZPGpiF5RxPiTBJHwek703lYvdNrLLNPq9 jWb7kVwb66TaOpYGgNBwZhL09GlQ/q7CJoFpcingKySSwYE1POyPc8XCP3a/WBKr Vk0eaiSbfS6SHj8V8+AUI+qBtXyrKFSo0MwG5XTuX0LNKUyQBVFvO72UKmG+XZ5B Gdx24wd4zDccCOdnNdjaS4QdzC3Yl9bsYBTDGt2HeZyKb3gfpzcwl/bmUnHPMFPk Tp5EF7h/p8NBJZupb+fYGOZTt4l8ddDSPBxEuae0ROZ6bLOYmu52/Gi2AGryYk/0 /EQgdyoFo6pnf58zk892xZIm4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfsupHB FL9r8Ekz7t+PAruDmU1iMB8GA1UdIwQYMBaAFLoWBWm5FeJMaubCSJTQT51KORaS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDQi84QTgyMDk0NDIw RUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRreHE1c0pJbE5CUG5VbzVG cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VoWUZhYmtWNGt4cTVzSklsTkJQblVvNUZwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDQi84QTgyMDk0NDIwRUMxMUVDOUQ1RDMxM0JDNEY5QUUwMi91aFlGYWJrVjRr eHE1c0pJbE5CUG5VbzVGcEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaEGk6ioqmA/rFMbjfglLSYXUlxJ8gIVjdFA8Md7RO2TSrAduCNZix gchTl/BiJVzEdB/aj0Pf/I5oB9YTKzgBWFnZZ2bTG0lngN0l+dhRWUEwaLZpcf5g JhpATU+qpiRgYssPWnPPBJ+sKW5QSZJOCQQvbRLoGxywvAKQdH18drpL36+vxRuu V1yiDZq43xcKagHpA++BbmF9RHMQQSf+YePs3LO9/tbaWRFUbaYGLJPwtCuR49Yt RZUtS4hPjJw/+8BUP17GUfVsxDTSuwZrtt/GpTDVnNUJw42RuHdB156/WCMhvfhp Vc4fB4ttIOUwdqNjJaRCFcWZm8mlbxyI -----END CERTIFICATE-----Generated at Sat May 31 17:44:10 2025 by rpki-client