$ rpki-client -vvf rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft File: U-fOlDUz-NPAVknylGgqJvgU8V8.mft (raw, json) Hash identifier: 4CRiYVSnXUz0f3NC2O3tk6KNRUwCom+bP3Yb/ndlu/I= Subject key identifier: 41:5B:B1:B1:F8:60:88:BF:F8:D1:95:01:52:F6:67:E7:2C:C3:01:13 Authority key identifier: 53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F Certificate issuer: /CN=A9144391/serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft Manifest number: 88 Signing time: Sat 31 May 2025 06:08:43 +0000 Manifest this update: Sat 31 May 2025 06:08:42 +0000 Manifest next update: Sat 07 Jun 2025 06:08:42 +0000 Files and hashes: 1: U-fOlDUz-NPAVknylGgqJvgU8V8.crl (hash: c5wFW02+nSc4Y7uzmOBYmRJQ2RPlbEkfmNd5RM8Jwkw=) 2: BC213E3C70AF11EF9C9B2C0EC4F9AE02.roa (hash: KLVK6zfk1sI4e7G8hRism5bZ4U3Yqq/t49H1ShoVhoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144391, serialNumber=53E7CE943533F8D3C05649F294682A26F814F15F Validity Not Before: May 31 06:08:42 2025 GMT Not After : Jun 7 06:08:42 2025 GMT Subject: CN=683a9cea-d00b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9a:a0:c5:13:c2:ea:69:28:93:ce:ad:bd:fd: 98:e5:0c:43:7b:f0:17:59:2c:c0:21:7d:a0:eb:05: cc:69:54:60:e7:5d:0d:23:78:58:5f:d8:16:62:ea: 2b:48:8c:ad:76:2e:01:7b:0e:34:f3:0a:56:60:a2: b6:06:37:d0:d2:ad:1c:6f:80:9e:56:6f:b8:de:f9: bc:ca:50:0c:c6:5e:ab:dc:c9:4f:0d:8a:06:1f:d4: eb:0a:b2:83:9f:c3:71:c9:5b:f4:c8:96:b5:9c:b2: 02:df:3d:0c:3d:62:fb:66:85:d2:aa:dd:df:15:18: 72:59:b8:be:0c:77:da:fa:96:4b:96:85:90:b1:36: 80:28:9d:8e:2c:be:3d:88:a3:92:0a:03:cc:48:30: f5:36:71:e1:8b:b5:4c:90:b5:00:61:41:a5:57:54: f1:d7:72:d7:ea:7d:aa:fb:67:a3:03:b9:69:c2:1b: e5:c4:ce:5e:b4:fd:d4:2c:8f:c6:1f:d2:d3:b7:18: 9c:34:93:ef:b1:22:76:5e:a9:74:9c:60:57:19:d2: b1:a1:74:a7:ad:bc:56:1c:ce:ae:cb:22:d0:77:fe: 6a:d0:9c:41:9e:e1:bc:fe:bd:5d:7e:d0:55:5c:cc: 82:3b:07:36:b2:49:cc:10:7c:6b:82:f5:86:32:57: 94:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:5B:B1:B1:F8:60:88:BF:F8:D1:95:01:52:F6:67:E7:2C:C3:01:13 X509v3 Authority Key Identifier: keyid:53:E7:CE:94:35:33:F8:D3:C0:56:49:F2:94:68:2A:26:F8:14:F1:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-fOlDUz-NPAVknylGgqJvgU8V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144391/019FF14E70AE11EFA848B068C4F9AE02/U-fOlDUz-NPAVknylGgqJvgU8V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:3c:fd:11:84:50:06:37:74:09:ac:a2:c2:90:ff:04:d3:6e: a3:ae:f9:79:df:49:fe:5b:4a:e0:ef:21:f2:82:b0:03:5a:85: ef:89:ee:06:dc:37:18:cf:12:ae:42:2c:a7:81:f9:9f:19:ab: 99:41:09:85:d7:30:7c:7f:d5:1c:28:15:c0:9c:13:0e:29:25: 92:1a:ad:73:7a:5b:2b:0a:71:28:01:32:8a:02:e2:d7:98:d4: ed:35:7c:70:c9:5a:9e:4b:07:d3:f6:6a:28:10:67:9f:15:e1: 57:be:e7:18:44:94:2b:16:e2:58:07:af:2e:16:96:90:39:eb: 83:b1:65:6b:4c:21:9c:24:d9:58:9a:87:62:57:dd:47:60:51: 39:54:a0:c9:04:db:ec:a9:43:ad:92:ec:30:ca:49:df:ac:fb: 42:b9:7e:cd:bd:a9:7a:3a:4b:c9:55:1d:d4:f9:8b:f0:b6:d2: 38:5c:05:7f:3b:db:7d:b7:7c:62:5d:32:17:8b:12:13:d5:6f: db:50:0a:fe:67:5a:72:b4:78:c7:70:e1:70:bb:f6:ef:e9:2a: 74:c8:26:33:df:1d:2d:b2:7c:fc:5a:ea:d2:63:6a:f0:31:6b: 9b:26:1b:bb:1f:0a:2a:b0:2f:a2:ed:3e:ca:40:37:a5:b1:f6: 3f:f5:89:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzOTExMTAvBgNVBAUTKDUzRTdDRTk0MzUzM0Y4RDNDMDU2NDlGMjk0NjgyQTI2 RjgxNEYxNUYwHhcNMjUwNTMxMDYwODQyWhcNMjUwNjA3MDYwODQyWjAYMRYwFAYD VQQDEw02ODNhOWNlYS1kMDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZqgxRPC6mkok86tvf2Y5QxDe/AXWSzAIX2g6wXMaVRg510NI3hYX9gWYuor SIytdi4Bew408wpWYKK2BjfQ0q0cb4CeVm+43vm8ylAMxl6r3MlPDYoGH9TrCrKD n8NxyVv0yJa1nLIC3z0MPWL7ZoXSqt3fFRhyWbi+DHfa+pZLloWQsTaAKJ2OLL49 iKOSCgPMSDD1NnHhi7VMkLUAYUGlV1Tx13LX6n2q+2ejA7lpwhvlxM5etP3ULI/G H9LTtxicNJPvsSJ2Xql0nGBXGdKxoXSnrbxWHM6uyyLQd/5q0JxBnuG8/r1dftBV XMyCOwc2sknMEHxrgvWGMleUkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFbsbH4 YIi/+NGVAVL2Z+cswwETMB8GA1UdIwQYMBaAFFPnzpQ1M/jTwFZJ8pRoKib4FPFf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM5MS8wMTlGRjE0RTcw QUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1OUEFWa255bEdncUp2Z1U4 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtZk9sRFV6LU5QQVZrbnlsR2dxSnZnVThWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDM5MS8wMTlGRjE0RTcwQUUxMUVGQTg0OEIwNjhDNEY5QUUwMi9VLWZPbERVei1O UEFWa255bEdncUp2Z1U4VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFPP0RhFAGN3QJrKLCkP8E026jrvl530n+W0rg7yHygrADWoXvie4G 3DcYzxKuQiyngfmfGauZQQmF1zB8f9UcKBXAnBMOKSWSGq1zelsrCnEoATKKAuLX mNTtNXxwyVqeSwfT9mooEGefFeFXvucYRJQrFuJYB68uFpaQOeuDsWVrTCGcJNlY modiV91HYFE5VKDJBNvsqUOtkuwwyknfrPtCuX7Nval6OkvJVR3U+YvwttI4XAV/ O9t9t3xiXTIXixIT1W/bUAr+Z1pytHjHcOFwu/bv6Sp0yCYz3x0tsnz8WurSY2rw MWubJhu7HwoqsC+i7T7KQDelsfY/9YnB -----END CERTIFICATE-----Generated at Sat May 31 17:53:07 2025 by rpki-client