$ rpki-client -vvf rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft File: UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft (raw, json) Hash identifier: q28MkfAqQre/MLc378AmKNNBZf/joOoMi8ns4RIfvpo= Subject key identifier: 38:D6:2F:DD:DB:33:92:D7:70:73:33:DF:2B:46:8E:6B:B0:0D:E0:EF Authority key identifier: 50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 Certificate issuer: /CN=A913318E/serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft Manifest number: DF Signing time: Sat 31 May 2025 05:08:28 +0000 Manifest this update: Sat 31 May 2025 05:08:27 +0000 Manifest next update: Sat 07 Jun 2025 05:08:27 +0000 Files and hashes: 1: UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl (hash: O44Ue7T7fda6J3Mg7FS8iIpVME4DykdjSZT0gLwHwJY=) 2: 6EAE50E8EBFA11EEA937307AC4F9AE02.roa (hash: n4jE/JU888DErTDFi7j6yPAf5IRm3HLfX3pJFCp7TIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:08:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913318E, serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Validity Not Before: May 31 05:08:27 2025 GMT Not After : Jun 7 05:08:27 2025 GMT Subject: CN=683a8ecb-2251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:11:5e:6b:30:3d:5d:ba:f7:8a:56:a9:91:d7: 52:9d:cc:6a:3b:af:f8:f4:06:16:3d:3d:e8:ac:44: 29:6f:8d:04:24:4f:18:92:5f:6b:e4:be:3b:76:9b: f5:bc:37:f3:89:e6:57:e1:b9:84:44:da:4d:7e:84: 7c:51:da:cf:fe:68:e0:f9:cb:e9:4a:a8:c0:26:ba: 03:c5:0e:79:e7:ea:1f:f8:9e:b8:9d:06:ec:3d:eb: e0:ad:e1:85:bf:00:bf:49:ca:49:2e:18:36:50:e6: 33:03:db:41:c2:ff:f6:cd:f1:08:9a:48:66:83:b3: df:75:d4:3a:be:2f:e9:a0:90:80:fa:dd:41:bb:a4: 85:28:e9:a1:a3:1b:71:43:5f:07:89:2c:d1:9d:de: 5b:16:49:03:52:fe:eb:1c:de:76:89:03:30:ca:47: 41:01:a1:63:16:be:79:6a:84:c6:6d:e8:68:24:2c: 27:1e:85:d7:94:85:3f:df:54:2b:82:6f:1f:e1:96: 62:4f:25:16:4c:01:6f:01:97:fd:46:f9:1e:e8:40: 34:0b:e1:c8:df:27:b0:89:61:78:c4:6d:1c:9e:92: bb:62:b6:6e:44:ce:cc:5c:05:1d:96:5a:5b:14:0c: 32:15:c1:89:0e:22:5f:35:98:76:cb:76:97:88:dc: 78:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D6:2F:DD:DB:33:92:D7:70:73:33:DF:2B:46:8E:6B:B0:0D:E0:EF X509v3 Authority Key Identifier: keyid:50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:89:ec:59:e8:86:a2:af:fa:8f:39:90:f5:1b:5f:95:db:34: f2:3e:66:6c:30:cb:e9:2f:2f:d6:cf:0a:a0:34:c0:1b:a4:2d: 93:73:cd:3f:dd:85:12:bc:d5:c1:40:17:ad:5b:36:0a:cc:e0: ae:fe:e7:e8:40:e8:83:03:99:53:0c:73:de:3f:46:e9:6d:e7: b1:d4:ca:ac:4e:52:b5:99:67:2d:1f:08:0d:a9:d3:52:9f:df: 19:6c:01:a7:18:21:ac:6d:11:77:cc:0a:2f:39:51:65:33:4b: f7:11:ce:15:4f:58:13:1a:08:bd:8b:0a:e8:c4:e5:73:6a:e6: a6:46:b0:df:c1:d2:22:8b:a3:0d:38:97:77:cf:bf:94:ec:c2: 80:b0:a3:3b:9a:bf:85:df:33:dd:86:e8:07:a5:e7:3d:73:67: 69:db:6c:78:6c:5e:bc:6c:15:7b:17:dd:15:d1:08:04:01:a6: a9:47:da:01:d1:36:9e:50:f3:76:83:56:56:ec:0b:68:54:67: ba:bc:23:62:13:19:58:9e:f4:1a:4d:a8:26:89:9a:5e:f1:e3: 89:8e:b8:e5:98:4a:79:84:cf:4b:e3:3b:55:55:c0:f8:1a:2d: f7:0b:84:a0:8c:ba:50:9d:4b:4f:c2:54:bd:74:2f:f7:f0:b9: dd:75:22:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzMxOEUxMTAvBgNVBAUTKDUwMEY5MjAwRUI4NkRDNUZEMDZEQjc4NkMwQ0VBNDUy RDBDRTcyMzAwHhcNMjUwNTMxMDUwODI3WhcNMjUwNjA3MDUwODI3WjAYMRYwFAYD VQQDEw02ODNhOGVjYi0yMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphFeazA9Xbr3ilapkddSncxqO6/49AYWPT3orEQpb40EJE8Ykl9r5L47dpv1 vDfzieZX4bmERNpNfoR8UdrP/mjg+cvpSqjAJroDxQ555+of+J64nQbsPevgreGF vwC/ScpJLhg2UOYzA9tBwv/2zfEImkhmg7PfddQ6vi/poJCA+t1Bu6SFKOmhoxtx Q18HiSzRnd5bFkkDUv7rHN52iQMwykdBAaFjFr55aoTGbehoJCwnHoXXlIU/31Qr gm8f4ZZiTyUWTAFvAZf9Rvke6EA0C+HI3yewiWF4xG0cnpK7YrZuRM7MXAUdllpb FAwyFcGJDiJfNZh2y3aXiNx4YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjWL93b M5LXcHMz3ytGjmuwDeDvMB8GA1UdIwQYMBaAFFAPkgDrhtxf0G23hsDOpFLQznIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzE4RS82QTkwQUY4NEVC RjkxMUVFOURBNzlCNzdDNEY5QUUwMi9VQS1TQU91RzNGX1FiYmVHd002a1V0RE9j akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBLVNBT3VHM0ZfUWJiZUd3TTZrVXRET2NqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzE4RS82QTkwQUY4NEVCRjkxMUVFOURBNzlCNzdDNEY5QUUwMi9VQS1TQU91RzNG X1FiYmVHd002a1V0RE9jakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARiexZ6Iair/qPOZD1G1+V2zTyPmZsMMvpLy/WzwqgNMAbpC2Tc80/ 3YUSvNXBQBetWzYKzOCu/ufoQOiDA5lTDHPeP0bpbeex1MqsTlK1mWctHwgNqdNS n98ZbAGnGCGsbRF3zAovOVFlM0v3Ec4VT1gTGgi9iwroxOVzauamRrDfwdIii6MN OJd3z7+U7MKAsKM7mr+F3zPdhugHpec9c2dp22x4bF68bBV7F90V0QgEAaapR9oB 0TaeUPN2g1ZW7AtoVGe6vCNiExlYnvQaTagmiZpe8eOJjrjlmEp5hM9L4ztVVcD4 Gi33C4SgjLpQnUtPwlS9dC/38LnddSJ3 -----END CERTIFICATE-----Generated at Sat May 31 17:14:39 2025 by rpki-client