$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft File: uH-tZU7EIXxlANDwaxm-MZ09rfc.mft (raw, json) Hash identifier: UtKR2mtgnioo/YXVtBK3IrYKua/0y77kA0RUxyPW4xc= Subject key identifier: 04:0A:0E:51:F0:7B:63:3B:92:08:8F:33:3A:CA:EE:F4:82:EA:1E:9A Authority key identifier: B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 Certificate issuer: /CN=A9155725/serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft Manifest number: 27 Signing time: Tue 03 Jun 2025 07:41:02 +0000 Manifest this update: Tue 03 Jun 2025 07:41:01 +0000 Manifest next update: Tue 10 Jun 2025 07:41:01 +0000 Files and hashes: 1: uH-tZU7EIXxlANDwaxm-MZ09rfc.crl (hash: hBrSE4oqHcTQYF0W1XiIuwfRXsncAzvIyYMctF47N2c=) 2: 7621BEA0084611F08BEB2E2DC4F9AE02.roa (hash: aySEvRngppKs/Lyekhtc0uzM27zK/l0cRA6UmOeIzlU=) 3: 753F0588084611F08BEB2E2DC4F9AE02.roa (hash: v1ibDjxmzIv2LQG97YVedEX5wevRpNJDRuNHyDfGpBg=) 4: 75A4B2D4084611F08BEB2E2DC4F9AE02.roa (hash: JronbENc2C4chw8Lr5GoQXHOGuejfoIjiKRSNDdiR4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Validity Not Before: Jun 3 07:41:01 2025 GMT Not After : Jun 10 07:41:01 2025 GMT Subject: CN=683ea70e-ee2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:67:ce:2c:d6:f5:d6:bf:e8:65:f2:bc:60:88: 24:23:1a:0b:38:14:26:a2:6d:de:52:3f:1b:0b:ed: 75:23:86:88:16:ac:57:66:97:41:7f:22:10:cb:ab: 27:47:a7:6d:e2:66:10:27:13:84:dc:4f:25:21:b7: b4:84:7f:f8:18:9c:54:fc:86:d0:6d:80:1b:a6:7b: ee:a8:a4:37:61:2d:61:86:fa:f1:31:52:2c:b4:89: d5:03:5f:20:45:a1:7f:c7:ec:04:99:2a:55:b2:83: b8:c8:12:48:16:90:4a:3a:e8:39:64:13:03:79:a0: 1e:34:32:d3:36:e3:85:10:75:0a:3e:91:16:e6:af: 51:ca:d4:52:82:1a:a5:b1:54:b3:2f:ec:68:1c:f4: 76:c6:b5:b5:02:6c:6f:52:b2:ef:37:97:d6:7a:19: 25:1b:df:67:5f:27:8d:13:dd:fe:1f:f4:54:9b:77: 0c:d2:d7:c0:4f:ef:31:4a:d0:85:86:c7:13:5e:26: ea:f7:8e:e6:eb:fb:cb:a8:10:30:7d:5c:c0:28:e9: 74:b5:fd:e7:10:78:e0:4e:9a:81:94:5e:ad:39:ca: d6:1f:d7:5b:6a:66:55:cc:fe:cf:01:ba:28:db:8f: 76:68:98:51:80:d3:8a:ae:a0:29:2c:56:f9:1f:6e: e8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:0A:0E:51:F0:7B:63:3B:92:08:8F:33:3A:CA:EE:F4:82:EA:1E:9A X509v3 Authority Key Identifier: keyid:B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:bb:3e:f7:23:3f:80:1b:33:41:76:d9:a1:e0:5d:96:c0:4a: b5:f7:a5:82:57:a2:50:f9:ba:52:ef:8b:7e:07:be:73:4f:16: ca:e8:1a:3f:bd:3c:e3:f5:71:dc:31:ac:b6:24:10:98:8c:74: 28:07:36:80:1a:ee:d6:44:53:cf:74:ce:98:fe:6c:7a:75:0d: 13:51:f9:6e:3a:7d:8b:f5:6e:25:2d:be:37:71:93:c6:b0:31: f9:49:f2:72:cb:29:df:5c:fb:30:48:10:e9:58:d2:5d:f4:4e: c9:00:13:00:e7:b6:91:a7:78:73:15:51:0b:50:22:43:2e:01: c7:52:e1:77:92:ef:0d:2f:5d:3a:3b:f5:88:30:57:7f:33:e9: 61:df:e5:9b:fa:b2:14:d0:bf:b1:50:2a:0d:10:60:bd:19:0a: 6b:37:05:cc:1c:0f:3d:af:01:31:38:a5:ca:59:97:ac:e9:54: 24:2d:f5:9a:08:e5:ec:12:6a:eb:3d:98:12:46:4c:12:e8:10: 1f:3d:f1:52:c4:3e:58:d9:96:56:ea:09:a1:72:f4:91:ed:8a: 1f:13:9f:6c:28:e3:54:92:54:4c:99:4f:c6:d5:f1:d3:b0:84: e9:15:61:16:f1:71:b3:f1:e7:e1:aa:67:a9:47:35:9b:af:bd: 48:1a:18:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoQjg3RkFENjU0RUM0MjE3QzY1MDBEMEYwNkIxOUJFMzE5 RDNEQURGNzAeFw0yNTA2MDMwNzQxMDFaFw0yNTA2MTAwNzQxMDFaMBgxFjAUBgNV BAMTDTY4M2VhNzBlLWVlMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFZ84s1vXWv+hl8rxgiCQjGgs4FCaibd5SPxsL7XUjhogWrFdml0F/IhDLqydH p23iZhAnE4TcTyUht7SEf/gYnFT8htBtgBume+6opDdhLWGG+vExUiy0idUDXyBF oX/H7ASZKlWyg7jIEkgWkEo66DlkEwN5oB40MtM244UQdQo+kRbmr1HK1FKCGqWx VLMv7Ggc9HbGtbUCbG9Ssu83l9Z6GSUb32dfJ40T3f4f9FSbdwzS18BP7zFK0IWG xxNeJur3jubr+8uoEDB9XMAo6XS1/ecQeOBOmoGUXq05ytYf11tqZlXM/s8Buijb j3ZomFGA04quoCksVvkfbugtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBAoOUfB7 YzuSCI8zOsru9ILqHpowHwYDVR0jBBgwFoAUuH+tZU7EIXxlANDwaxm+MZ09rfcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzgwMUJDQUE2MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4bEFORHdheG0tTVowOXJm Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdUgtdFpVN0VJWHhsQU5Ed2F4bS1NWjA5cmZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzgwMUJDQUE2MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4 bEFORHdheG0tTVowOXJmYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKi7PvcjP4AbM0F22aHgXZbASrX3pYJXolD5ulLvi34HvnNPFsroGj+9 POP1cdwxrLYkEJiMdCgHNoAa7tZEU890zpj+bHp1DRNR+W46fYv1biUtvjdxk8aw MflJ8nLLKd9c+zBIEOlY0l30TskAEwDntpGneHMVUQtQIkMuAcdS4XeS7w0vXTo7 9YgwV38z6WHf5Zv6shTQv7FQKg0QYL0ZCms3BcwcDz2vATE4pcpZl6zpVCQt9ZoI 5ewSaus9mBJGTBLoEB898VLEPljZllbqCaFy9JHtih8Tn2wo41SSVEyZT8bV8dOw hOkVYRbxcbPx5+GqZ6lHNZuvvUgaGHs= -----END CERTIFICATE-----Generated at Wed Jun 4 00:11:48 2025 by rpki-client