$ rpki-client -vvf rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft File: uDIFubLHQGPjdvNxFYOXBe277Ng.mft (raw, json) Hash identifier: piFg3sIOIE7iUYWzuMWJURqjz4uNN0zd0Jmu9EEIAVU= Subject key identifier: 3E:E4:4F:BB:39:76:62:38:5D:96:3C:80:F4:D0:84:DC:5D:8B:A9:C6 Authority key identifier: B8:32:05:B9:B2:C7:40:63:E3:76:F3:71:15:83:97:05:ED:BB:EC:D8 Certificate issuer: /CN=A9130138/serialNumber=B83205B9B2C74063E376F37115839705EDBBECD8 Certificate serial: 0339 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft Manifest number: 0335 Signing time: Thu 05 Jun 2025 00:55:32 +0000 Manifest this update: Thu 05 Jun 2025 00:55:32 +0000 Manifest next update: Thu 12 Jun 2025 00:55:32 +0000 Files and hashes: 1: uDIFubLHQGPjdvNxFYOXBe277Ng.crl (hash: lYrXv42a0Qi4ogB1r/WXZ60XBNmBnDXgrYhDgmhwVHw=) 2: A7DEA0DAC47D11ECB544A26DC4F9AE02.roa (hash: 4+Xf3NTfI2/0BNoXkOgB9ryKoXY/WbTftiAI2ds4gB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.crl rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 00:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 825 (0x339) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130138, serialNumber=B83205B9B2C74063E376F37115839705EDBBECD8 Validity Not Before: Jun 5 00:55:32 2025 GMT Not After : Jun 12 00:55:32 2025 GMT Subject: CN=6840eb04-00f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:25:07:09:60:e1:bc:3d:78:88:62:0e:fa:3c: 6f:21:69:a4:dd:65:6a:95:ab:62:ab:16:37:76:83: da:ba:f9:e3:29:ef:de:50:47:4e:38:ae:b0:b9:c2: 98:6c:1a:92:5b:9e:ee:e6:d5:a8:3a:ba:d1:2c:cf: a8:9c:73:ae:87:88:4e:8d:b6:d7:e3:ce:62:46:46: bb:53:42:0a:71:af:a3:f7:68:2b:53:8f:be:5b:b0: b4:40:90:ea:36:2a:89:34:1d:f5:24:e4:ef:24:62: 56:03:09:92:56:5a:c6:22:5d:8e:82:d6:3d:ca:52: b6:27:e0:17:32:64:67:ac:42:ee:eb:8a:5e:4c:76: d6:09:fe:f2:41:33:a9:32:90:33:e4:99:f9:c0:5e: 86:fd:3b:e6:2b:46:5c:11:57:63:dd:c8:ed:6c:ad: ce:57:52:23:ba:99:7a:9b:15:4d:3d:6f:34:27:b9: 14:e7:e1:d0:1a:b3:c5:04:d0:8b:17:c5:98:cc:2e: 76:ee:e8:af:17:c6:de:12:83:f0:8c:e7:b0:3f:cc: 12:b1:b5:13:36:5e:56:c2:55:cb:6b:30:50:0f:05: 79:42:c8:4b:a8:98:53:dc:3b:b8:4c:3b:e4:61:8d: 80:d5:fb:8e:b7:2f:e7:26:b5:32:08:c2:a5:72:34: f2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E4:4F:BB:39:76:62:38:5D:96:3C:80:F4:D0:84:DC:5D:8B:A9:C6 X509v3 Authority Key Identifier: keyid:B8:32:05:B9:B2:C7:40:63:E3:76:F3:71:15:83:97:05:ED:BB:EC:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uDIFubLHQGPjdvNxFYOXBe277Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130138/59FBA2B2C47A11EC8B344964C4F9AE02/uDIFubLHQGPjdvNxFYOXBe277Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:f0:bf:0d:da:01:b5:a4:8c:0e:09:18:c2:bf:8c:df:f6:d5: 34:24:ab:5e:de:1b:e9:31:ba:d4:83:1a:4c:cf:5d:bc:90:e6: 1a:4b:7c:9b:8c:0c:a2:92:25:60:b2:29:30:55:38:57:d1:e9: 30:0a:b0:64:61:37:c6:8f:73:4f:75:56:3c:36:0d:6e:af:69: 92:e4:b7:ef:fe:ed:bd:1a:ed:7e:db:fb:81:2c:57:17:be:19: b7:86:28:53:f4:9e:2b:2a:8b:17:2d:14:4b:97:e4:46:a3:18: 14:21:aa:7a:3b:f6:aa:17:59:20:70:3c:ce:ea:62:e2:79:0c: 3e:e3:43:b2:11:60:1c:d5:f3:87:40:eb:4a:78:2d:2f:86:05: f3:ee:89:3f:42:67:46:36:21:17:9c:a6:37:6d:97:93:50:89: be:4e:cf:99:8e:2f:0e:59:83:f5:ec:f6:fc:01:89:39:ff:6b: 97:fe:96:99:a3:dc:25:9e:0b:bd:ed:d3:51:6b:00:c2:33:21: f3:ed:d7:8d:9e:1e:6e:e2:07:cb:72:fa:88:08:92:c6:bd:b5: 65:50:21:b7:90:e3:d3:05:7c:ee:80:fa:d8:f0:99:a0:b7:63: 1c:a9:97:fb:37:50:1a:1e:5b:d1:83:bd:73:ce:d6:a0:51:50: 70:b3:a0:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxMzgxMTAvBgNVBAUTKEI4MzIwNUI5QjJDNzQwNjNFMzc2RjM3MTE1ODM5NzA1 RURCQkVDRDgwHhcNMjUwNjA1MDA1NTMyWhcNMjUwNjEyMDA1NTMyWjAYMRYwFAYD VQQDEw02ODQwZWIwNC0wMGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CUHCWDhvD14iGIO+jxvIWmk3WVqlatiqxY3doPauvnjKe/eUEdOOK6wucKY bBqSW57u5tWoOrrRLM+onHOuh4hOjbbX485iRka7U0IKca+j92grU4++W7C0QJDq NiqJNB31JOTvJGJWAwmSVlrGIl2OgtY9ylK2J+AXMmRnrELu64peTHbWCf7yQTOp MpAz5Jn5wF6G/TvmK0ZcEVdj3cjtbK3OV1Ijupl6mxVNPW80J7kU5+HQGrPFBNCL F8WYzC527uivF8beEoPwjOewP8wSsbUTNl5WwlXLazBQDwV5QshLqJhT3Du4TDvk YY2A1fuOty/nJrUyCMKlcjTyUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7kT7s5 dmI4XZY8gPTQhNxdi6nGMB8GA1UdIwQYMBaAFLgyBbmyx0Bj43bzcRWDlwXtu+zY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDEzOC81OUZCQTJCMkM0 N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi91RElGdWJMSFFHUGpkdk54RllPWEJlMjc3 TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VESUZ1YkxIUUdQamR2TnhGWU9YQmUyNzdOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDEzOC81OUZCQTJCMkM0N0ExMUVDOEIzNDQ5NjRDNEY5QUUwMi91RElGdWJMSFFH UGpkdk54RllPWEJlMjc3TmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI8L8N2gG1pIwOCRjCv4zf9tU0JKte3hvpMbrUgxpMz128kOYaS3yb jAyikiVgsikwVThX0ekwCrBkYTfGj3NPdVY8Ng1ur2mS5Lfv/u29Gu1+2/uBLFcX vhm3hihT9J4rKosXLRRLl+RGoxgUIap6O/aqF1kgcDzO6mLieQw+40OyEWAc1fOH QOtKeC0vhgXz7ok/QmdGNiEXnKY3bZeTUIm+Ts+Zji8OWYP17Pb8AYk5/2uX/paZ o9wlngu97dNRawDCMyHz7deNnh5u4gfLcvqICJLGvbVlUCG3kOPTBXzugPrY8Jmg t2McqZf7N1AaHlvRg71zztagUVBws6DB -----END CERTIFICATE-----Generated at Thu Jun 5 20:00:24 2025 by rpki-client