$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft File: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json) Hash identifier: ZENHxRsxQoHqY3Q195EvpRb9qQopovrOsVOZ9prZNpM= Subject key identifier: E8:70:DD:8D:5E:5A:9A:06:15:53:9A:22:44:BA:1A:6F:F2:14:DF:39 Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft Manifest number: 0239 Signing time: Sat 31 May 2025 02:04:44 +0000 Manifest this update: Sat 31 May 2025 02:04:43 +0000 Manifest next update: Sat 07 Jun 2025 02:04:43 +0000 Files and hashes: 1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: 2HIcpaHPQI2wzstpD2IwckauWLoCeI2W0AZNfxBgMJ4=) 2: A9E3A5041C3411EFBF05095BC4F9AE02.roa (hash: DS6aoQLqOLSS763BWHIUmquh48JGAfBdAQCJMqSDzPU=) 3: E4A016C01CD211EFB606D514C4F9AE02.roa (hash: yMapl0YXXAfKwoBzESq2p7IfMt1+B0piySrxnFgxgIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:04:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D, serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: May 31 02:04:43 2025 GMT Not After : Jun 7 02:04:43 2025 GMT Subject: CN=683a63bb-fe45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0f:eb:8a:01:8e:9e:7a:af:de:f8:ee:43:c1: 53:09:02:7d:16:45:32:9f:1b:1e:67:3d:38:d7:96: 6e:05:4d:24:82:e3:6f:71:15:26:b7:65:0a:0a:2c: 9c:c3:9c:ae:d9:40:b5:8f:a3:fd:92:82:da:07:a0: d7:17:d3:3f:10:42:4a:b3:61:9b:71:4b:4b:f7:f5: 6f:5f:4f:65:fa:f3:95:42:ef:ad:58:d6:81:cf:e2: cf:f2:0c:8c:5e:06:fe:15:fb:ed:b5:07:b3:3c:59: bf:3d:00:05:7f:20:5b:fa:19:dc:47:06:4a:d8:3e: 48:d9:ea:7e:d2:a6:63:50:45:1d:27:64:1c:f5:74: 04:e3:a4:02:0e:d9:4e:1e:2e:ce:36:0c:ec:53:b2: 97:f0:b6:f4:19:c0:fd:08:b1:ac:c0:d0:4b:ac:69: f7:ec:f6:00:81:56:87:83:27:41:ba:f1:93:b2:f5: ce:00:89:12:49:ec:98:b9:e6:8b:d0:ce:85:ed:88: 0d:fe:35:8c:07:58:52:e6:e1:ce:1d:b7:ff:ce:b7: 02:4f:df:eb:31:0f:d0:6e:f8:c9:eb:24:c7:25:c4: bc:9b:80:de:fd:45:71:5f:23:cf:7b:59:13:20:57: c9:28:2d:02:52:6b:c5:bc:a9:ec:12:2a:fb:f9:c5: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:70:DD:8D:5E:5A:9A:06:15:53:9A:22:44:BA:1A:6F:F2:14:DF:39 X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:37:fd:b9:53:56:18:5e:48:2c:aa:a9:39:af:a2:61:c0:ef: 2e:81:fc:e7:5f:87:51:e9:3d:98:7b:c9:dd:d1:7d:fa:8e:25: 45:dc:02:5d:3d:10:5b:f6:e4:d2:2f:78:bc:5b:0d:de:1f:0c: e5:18:fd:da:27:3a:57:3a:ce:44:22:ca:e4:5e:e5:f5:b7:aa: cb:87:e8:cd:21:50:55:73:8b:2b:bd:5c:cb:ec:20:3f:ae:cc: df:e3:e6:84:c2:16:e1:12:70:76:14:e8:0e:c3:13:a9:3a:e6: a3:bb:68:ab:81:ba:40:06:26:ed:90:73:75:54:42:80:ab:68: a5:d8:8b:14:a6:8c:0a:81:b7:f5:00:7e:ba:8f:0a:dd:6a:11: aa:a1:99:b7:d2:90:92:29:36:be:df:b2:88:96:97:60:af:94: 9b:cf:e0:61:27:bf:90:aa:18:1f:47:27:c6:5b:43:3d:fe:b1: 25:48:4f:2f:d1:bf:5b:96:ac:46:12:53:77:2d:86:6d:16:00: b7:be:cc:77:d1:9c:db:1e:ac:70:e0:a8:83:d2:6b:ec:fb:04: 80:f6:02:5b:0a:46:e4:b1:b2:98:f4:a4:ef:28:df:50:a4:a8: 3a:f0:aa:ba:08:92:74:37:1d:e1:70:68:b3:71:20:22:d1:d9: 9f:02:14:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjUwNTMxMDIwNDQzWhcNMjUwNjA3MDIwNDQzWjAYMRYwFAYD VQQDEw02ODNhNjNiYi1mZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQ/rigGOnnqv3vjuQ8FTCQJ9FkUynxseZz0415ZuBU0kguNvcRUmt2UKCiyc w5yu2UC1j6P9koLaB6DXF9M/EEJKs2GbcUtL9/VvX09l+vOVQu+tWNaBz+LP8gyM Xgb+FfvttQezPFm/PQAFfyBb+hncRwZK2D5I2ep+0qZjUEUdJ2Qc9XQE46QCDtlO Hi7ONgzsU7KX8Lb0GcD9CLGswNBLrGn37PYAgVaHgydBuvGTsvXOAIkSSeyYueaL 0M6F7YgN/jWMB1hS5uHOHbf/zrcCT9/rMQ/QbvjJ6yTHJcS8m4De/UVxXyPPe1kT IFfJKC0CUmvFvKnsEir7+cXaYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhw3Y1e WpoGFVOaIkS6Gm/yFN85MB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ3RC9BMzM5NjMwRTI3NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhF eXdsN3RSYWdkTXpSMnZfSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1N/25U1YYXkgsqqk5r6JhwO8ugfznX4dR6T2Ye8nd0X36jiVF3AJd PRBb9uTSL3i8Ww3eHwzlGP3aJzpXOs5EIsrkXuX1t6rLh+jNIVBVc4srvVzL7CA/ rszf4+aEwhbhEnB2FOgOwxOpOuaju2irgbpABibtkHN1VEKAq2il2IsUpowKgbf1 AH66jwrdahGqoZm30pCSKTa+37KIlpdgr5Sbz+BhJ7+QqhgfRyfGW0M9/rElSE8v 0b9blqxGElN3LYZtFgC3vsx30ZzbHqxw4KiD0mvs+wSA9gJbCkbksbKY9KTvKN9Q pKg68Kq6CJJ0Nx3hcGizcSAi0dmfAhRr -----END CERTIFICATE-----Generated at Sat May 31 17:07:39 2025 by rpki-client