$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: oMEgwAJcNuWAALDifm6HXxK27h/XL1/IE/k75PrCnDA= Subject key identifier: 70:1B:91:C9:D9:D9:44:84:86:AC:37:17:BD:BF:5B:3F:DF:2C:FA:C0 Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 0641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 063C Signing time: Fri 30 May 2025 22:52:15 +0000 Manifest this update: Fri 30 May 2025 22:52:15 +0000 Manifest next update: Fri 06 Jun 2025 22:52:15 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: P0tDisMX8nu6REkmllsjlHg3K5nE99Qo6E3ptlQj97U=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: May 30 22:52:15 2025 GMT Not After : Jun 6 22:52:15 2025 GMT Subject: CN=683a369f-306a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:80:40:37:93:50:2d:ca:0c:57:35:fb:f1:05: b7:d4:e7:6a:ee:27:c5:cf:a6:d4:1b:88:10:95:ba: a3:69:3b:da:14:e0:16:55:cb:50:87:b7:c2:b0:7b: f8:cd:9c:b0:bf:ae:43:55:06:1a:30:99:d8:a0:76: b6:ee:1b:b1:44:5b:c9:51:45:4f:94:fd:a7:11:be: 5b:9e:d4:49:d9:74:ac:4d:4d:6b:e1:72:c1:05:14: fc:aa:24:3e:7e:25:1a:ae:1c:11:4f:11:d1:f5:0f: 0d:c6:54:46:da:57:41:81:6e:9e:e2:eb:4e:d1:cd: 2a:33:7f:47:01:eb:b4:56:8f:4b:01:6b:1d:eb:51: ec:87:f4:e3:9e:15:22:42:07:36:e3:5a:39:23:67: 99:d5:cd:e4:4c:fb:b6:b7:0f:9b:b0:97:d6:77:b6: 54:7e:13:44:79:77:1a:d1:22:10:33:f5:0c:29:52: 9a:23:4b:7b:4d:09:08:ee:a9:b2:35:45:37:1b:53: 8b:ed:7e:4a:7b:b9:73:48:b8:f0:9d:79:b4:3b:88: 2e:ce:d9:56:a2:69:c8:99:d5:ce:0a:8b:0e:dc:ec: 94:86:46:ba:da:e0:79:af:f1:72:35:2a:ec:00:bd: 0d:34:49:81:db:6b:6a:78:54:a3:3c:aa:6d:47:ae: 0d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:1B:91:C9:D9:D9:44:84:86:AC:37:17:BD:BF:5B:3F:DF:2C:FA:C0 X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:15:07:73:9c:1d:1b:7f:c2:c1:08:5c:ac:a5:be:4f:61:e4: 7b:7e:d8:ce:39:72:13:37:2e:44:2d:a7:95:3b:5b:1f:e3:9c: f3:96:e5:24:e2:d6:64:3d:5b:d2:95:81:cf:95:f6:30:1c:50: d6:e4:57:e5:8c:c5:08:d1:cb:6f:e9:b2:ed:c0:52:87:b0:d3: 52:02:f9:58:52:a1:a5:03:25:67:de:20:e0:46:7f:9c:45:80: 5c:da:1b:9a:07:ae:95:e5:82:17:ad:5f:47:52:9f:f2:92:ca: 61:cc:77:09:fb:ec:2c:ad:11:fd:c8:94:74:98:8a:18:0d:27: 3d:70:94:3c:32:6d:c4:53:2a:7b:d5:06:81:e0:16:18:05:c6: fa:26:f3:36:7e:aa:f6:99:98:aa:16:ef:c7:5a:fe:0f:d6:f5: ce:bf:33:ee:96:e8:e1:0c:ab:1e:b0:c7:6e:2f:34:0e:e3:4b: 27:8e:b3:50:50:c7:8d:08:1b:15:16:18:4e:25:17:39:df:61: c3:f0:21:19:9f:3a:64:f0:2e:2a:a4:18:64:1f:d4:b6:35:19: 27:e7:34:c6:25:a4:3e:7a:67:c5:1e:4b:de:68:92:8e:21:3c: 72:25:8b:bc:05:10:fe:2f:d0:58:12:5d:45:2b:d1:42:5a:2d: 64:9a:ad:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUwNTMwMjI1MjE1WhcNMjUwNjA2MjI1MjE1WjAYMRYwFAYD VQQDEw02ODNhMzY5Zi0zMDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4BAN5NQLcoMVzX78QW31Odq7ifFz6bUG4gQlbqjaTvaFOAWVctQh7fCsHv4 zZywv65DVQYaMJnYoHa27huxRFvJUUVPlP2nEb5bntRJ2XSsTU1r4XLBBRT8qiQ+ fiUarhwRTxHR9Q8NxlRG2ldBgW6e4utO0c0qM39HAeu0Vo9LAWsd61Hsh/TjnhUi Qgc241o5I2eZ1c3kTPu2tw+bsJfWd7ZUfhNEeXca0SIQM/UMKVKaI0t7TQkI7qmy NUU3G1OL7X5Ke7lzSLjwnXm0O4guztlWomnImdXOCosO3OyUhka62uB5r/FyNSrs AL0NNEmB22tqeFSjPKptR64NDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAbkcnZ 2USEhqw3F72/Wz/fLPrAMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByFQdznB0bf8LBCFyspb5PYeR7ftjOOXITNy5ELaeVO1sf45zzluUk 4tZkPVvSlYHPlfYwHFDW5FfljMUI0ctv6bLtwFKHsNNSAvlYUqGlAyVn3iDgRn+c RYBc2huaB66V5YIXrV9HUp/yksphzHcJ++wsrRH9yJR0mIoYDSc9cJQ8Mm3EUyp7 1QaB4BYYBcb6JvM2fqr2mZiqFu/HWv4P1vXOvzPulujhDKsesMduLzQO40snjrNQ UMeNCBsVFhhOJRc532HD8CEZnzpk8C4qpBhkH9S2NRkn5zTGJaQ+emfFHkveaJKO ITxyJYu8BRD+L9BYEl1FK9FCWi1kmq3a -----END CERTIFICATE-----Generated at Sat May 31 17:51:39 2025 by rpki-client