$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: 5vvEGrQD8BwZwQHOTnVeluhG5roAtW+11dIMSp1CLn0= Subject key identifier: 07:D8:C1:42:5D:1B:5E:61:E4:63:F7:5A:B0:6C:6D:C6:B2:A6:59:44 Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0C10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0C02 Signing time: Wed 04 Jun 2025 18:42:36 +0000 Manifest this update: Wed 04 Jun 2025 18:42:35 +0000 Manifest next update: Wed 11 Jun 2025 18:42:35 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: V09nn63bHr/cpVt+r4ac20jOcv1FWGOzhiyb4RtcSj8=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: J+JzfdPnvnmB6Ay3Ml+qeWmcjb1XIfVxnUqGVNUN7Ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 18:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Jun 4 18:42:35 2025 GMT Not After : Jun 11 18:42:35 2025 GMT Subject: CN=6840939c-0b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b3:80:25:96:b0:cc:7f:70:1b:b8:b5:74:11: 8c:8c:b1:8b:69:3c:3b:22:7a:5a:07:27:7f:26:43: c5:21:a8:fa:81:09:10:c1:4e:34:9b:73:c4:38:af: 07:9f:f5:d3:ea:6f:b2:48:49:eb:14:85:5b:cb:39: 4e:e9:e4:dd:4e:da:c4:82:18:e2:84:5d:d8:ba:e7: 64:fd:ba:e1:07:d9:2a:97:07:23:09:6f:33:f2:27: 3c:17:70:a6:c9:bc:29:a7:4b:a1:45:2e:89:63:d6: e7:32:04:a6:9d:ab:67:ab:47:42:fb:b2:bd:3f:59: 77:f2:47:65:8f:2d:62:b6:a8:c6:5c:5e:f5:37:f0: 92:76:63:29:5e:fa:01:c7:83:fb:0e:24:44:b3:0a: 60:f0:f5:44:34:50:ce:b6:f7:72:2f:ab:6e:35:d6: dc:89:24:06:48:e4:a4:e3:ac:c5:73:0d:f6:d4:aa: c3:af:1f:f1:8f:8d:00:71:fe:fe:b3:64:bf:64:ca: 47:84:d8:00:4c:ca:90:81:80:b2:2d:80:15:ea:99: 9e:f2:b7:84:ca:20:8c:b7:e5:a5:ba:29:2e:e7:0b: 28:64:63:9e:64:9a:50:12:8f:ad:56:ff:a4:c4:cb: 93:d1:96:cc:6b:ba:9d:fa:f2:9e:1b:66:04:87:b9: 2f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D8:C1:42:5D:1B:5E:61:E4:63:F7:5A:B0:6C:6D:C6:B2:A6:59:44 X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:9c:dc:18:54:7f:ea:d0:5d:e3:54:da:5b:e0:00:52:bf:34: ab:e9:b0:7d:6b:14:4c:3b:dc:c8:00:4d:96:8d:ad:5b:33:e6: c1:b7:3b:34:c9:6c:4b:6b:55:4a:91:df:ca:ac:a5:b8:6f:9d: a8:fc:d5:fc:b1:03:fa:ce:a3:21:4a:bf:d9:13:2c:b3:ac:e4: 03:72:ad:4b:19:da:3c:d1:ca:dc:d3:de:9b:b4:8b:41:f9:e4: bd:70:9c:6d:57:57:f8:6f:e5:89:72:44:64:0e:c0:eb:ba:ce: 1a:c5:1f:15:cd:b2:ab:97:ed:02:6f:d7:8b:9b:51:4e:00:c3: 7e:b9:49:0e:1f:22:24:c3:de:96:3f:22:32:c0:fa:97:9b:60: 3e:ee:69:d2:2e:1b:f1:74:da:92:bd:45:fd:54:5d:8c:fd:b0: 49:a8:cd:f8:f3:ea:66:a2:2b:9e:9a:ff:b4:ca:1e:f5:a4:68: de:56:44:27:05:8a:8c:b2:1b:8f:4d:3b:d9:15:8d:5d:8a:60: 9f:a6:b3:a4:6e:89:9b:6d:88:32:7f:6b:a5:fb:9f:cc:8f:9f: 12:8e:b0:37:ed:c0:ca:6c:57:1d:77:85:bd:ec:57:54:aa:f8: 27:95:3a:f7:fb:77:cd:f4:51:2c:a8:0b:5c:98:fb:c4:2a:7a: db:9c:4f:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwNjA0MTg0MjM1WhcNMjUwNjExMTg0MjM1WjAYMRYwFAYD VQQDEw02ODQwOTM5Yy0wYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7OAJZawzH9wG7i1dBGMjLGLaTw7InpaByd/JkPFIaj6gQkQwU40m3PEOK8H n/XT6m+ySEnrFIVbyzlO6eTdTtrEghjihF3Yuudk/brhB9kqlwcjCW8z8ic8F3Cm ybwpp0uhRS6JY9bnMgSmnatnq0dC+7K9P1l38kdljy1itqjGXF71N/CSdmMpXvoB x4P7DiREswpg8PVENFDOtvdyL6tuNdbciSQGSOSk46zFcw321KrDrx/xj40Acf7+ s2S/ZMpHhNgATMqQgYCyLYAV6pme8reEyiCMt+Wluiku5wsoZGOeZJpQEo+tVv+k xMuT0ZbMa7qd+vKeG2YEh7kvFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfYwUJd G15h5GP3WrBsbcaypllEMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQConNwYVH/q0F3jVNpb4ABSvzSr6bB9axRMO9zIAE2Wja1bM+bBtzs0 yWxLa1VKkd/KrKW4b52o/NX8sQP6zqMhSr/ZEyyzrOQDcq1LGdo80crc096btItB +eS9cJxtV1f4b+WJckRkDsDrus4axR8VzbKrl+0Cb9eLm1FOAMN+uUkOHyIkw96W PyIywPqXm2A+7mnSLhvxdNqSvUX9VF2M/bBJqM348+pmoiuemv+0yh71pGjeVkQn BYqMshuPTTvZFY1dimCfprOkbombbYgyf2ul+5/Mj58SjrA37cDKbFcdd4W97FdU qvgnlTr3+3fN9FEsqAtcmPvEKnrbnE8E -----END CERTIFICATE-----Generated at Thu Jun 5 20:06:22 2025 by rpki-client