$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: UwEUXoUTHCFn07ICOcf7TJdrro0nNUegoUcwAmWf3XM= Subject key identifier: D3:0F:72:D2:46:E6:68:15:D6:31:3B:67:BB:A1:75:5F:93:E8:92:A2 Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: E4 Signing time: Sat 31 May 2025 05:04:37 +0000 Manifest this update: Sat 31 May 2025 05:04:36 +0000 Manifest next update: Sat 07 Jun 2025 05:04:36 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: tVaWZruR21NLGZz7LDISQ9oqC+8g1BKRoqPi/xZ3gHs=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: 0mdd1hPCY77vgsAR82vZE3qWvhrgXofs3UYJMwrKnGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4, serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: May 31 05:04:36 2025 GMT Not After : Jun 7 05:04:36 2025 GMT Subject: CN=683a8de5-4da0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:5c:b3:7e:94:99:d2:e5:88:87:4b:a6:02:af: f9:2b:8e:a3:1a:ed:8a:fc:93:a7:02:ff:5a:2d:cb: 54:ce:91:18:6b:8e:bb:15:e1:74:51:de:4f:f0:55: b6:c5:df:8e:bc:2f:7c:ae:88:d5:5b:e1:45:68:cd: 02:d6:d5:cc:53:b5:da:aa:1a:b8:d8:13:ff:20:a7: 28:db:26:15:19:41:23:10:84:20:5f:3d:36:b1:59: 14:9a:7a:b8:9e:0e:6f:db:60:13:4b:7e:cf:3e:eb: c8:3a:74:03:f0:db:6f:5c:ec:d1:dc:58:53:93:0f: 6b:fe:84:0e:19:d3:17:cb:1d:4d:c3:d0:75:bb:ff: 37:6d:36:dc:64:bb:45:9e:5a:d1:9c:0a:c3:b6:9f: 6f:51:4a:1a:4d:31:7d:92:25:e7:5c:70:c4:31:5c: 32:4d:26:9a:90:2a:ba:67:fa:5b:ad:f9:10:9e:cc: 0c:e6:93:f1:37:dd:83:fd:78:16:ca:f1:cd:b4:bb: ff:25:a1:38:cd:69:75:5e:7a:05:48:37:c1:ce:a0: 3e:94:b9:68:46:2f:62:fa:3a:e0:3e:06:7f:9c:2f: ab:34:56:df:f5:44:2e:38:93:ef:de:c7:4d:c8:ae: 27:d6:80:e2:a4:0d:3c:b7:f1:d4:c6:3e:1a:93:8e: 3f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0F:72:D2:46:E6:68:15:D6:31:3B:67:BB:A1:75:5F:93:E8:92:A2 X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:37:ef:1c:df:58:a2:06:32:2e:15:1c:8b:da:77:88:8f:e4: 91:85:47:3a:89:23:50:ae:7f:e9:41:aa:e6:1e:ed:97:02:df: 6d:26:ce:a9:59:5c:86:d7:ea:d7:a8:fa:c1:72:4d:39:ce:e4: 45:57:7e:29:1c:54:3d:6e:b6:a1:86:f3:62:87:a1:49:dc:01: 84:ec:66:88:dc:d1:ec:c7:7c:89:8d:e6:cd:30:b4:9e:f0:8b: 56:e7:ed:96:02:b2:2d:bd:13:59:95:1a:7d:83:1a:cc:04:27: 1f:4c:82:0b:76:0f:39:d6:aa:da:e8:b5:e3:25:09:c6:89:2e: 6e:94:86:56:82:49:dc:18:48:ed:74:12:61:5a:bc:f3:af:5c: e6:6c:8f:05:92:47:2b:d5:81:2a:b7:93:0f:4b:cd:31:a2:f2: 39:dd:88:02:1c:49:ee:a3:ed:c2:f6:e5:85:2b:ca:f5:3e:97: 08:a4:51:b5:91:65:8d:74:05:12:24:41:99:b5:d7:0a:86:dc: c0:9d:58:77:a6:f7:fe:b2:ab:6c:0c:54:4c:11:8b:b8:78:97: 65:55:8c:d2:a2:a9:59:df:d7:63:c4:e9:11:1b:8e:36:3b:fc: 53:49:f2:c4:99:ba:fd:f2:d9:ac:85:c3:3c:38:90:50:29:54: f6:cd:89:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFQzQxMTAvBgNVBAUTKDUzMjQwNjVBNjEzRDJEMTA3ODE3OUM2MjE2MzcxQ0ND NkE3NzUwN0EwHhcNMjUwNTMxMDUwNDM2WhcNMjUwNjA3MDUwNDM2WjAYMRYwFAYD VQQDEw02ODNhOGRlNS00ZGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmFyzfpSZ0uWIh0umAq/5K46jGu2K/JOnAv9aLctUzpEYa467FeF0Ud5P8FW2 xd+OvC98rojVW+FFaM0C1tXMU7Xaqhq42BP/IKco2yYVGUEjEIQgXz02sVkUmnq4 ng5v22ATS37PPuvIOnQD8NtvXOzR3FhTkw9r/oQOGdMXyx1Nw9B1u/83bTbcZLtF nlrRnArDtp9vUUoaTTF9kiXnXHDEMVwyTSaakCq6Z/pbrfkQnswM5pPxN92D/XgW yvHNtLv/JaE4zWl1XnoFSDfBzqA+lLloRi9i+jrgPgZ/nC+rNFbf9UQuOJPv3sdN yK4n1oDipA08t/HUxj4ak44/vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMPctJG 5mgV1jE7Z7uhdV+T6JKiMB8GA1UdIwQYMBaAFFMkBlphPS0QeBecYhY3HMxqd1B6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEVDNC80NTA2NDc5MEU1 QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxSQjRGNXhpRmpjY3pHcDNV SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEVDNC80NTA2NDc5MEU1QjExMUVFOUUzNUMzMzNDNEY5QUUwMi9VeVFHV21FOUxS QjRGNXhpRmpjY3pHcDNVSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGN+8c31iiBjIuFRyL2neIj+SRhUc6iSNQrn/pQarmHu2XAt9tJs6p WVyG1+rXqPrBck05zuRFV34pHFQ9brahhvNih6FJ3AGE7GaI3NHsx3yJjebNMLSe 8ItW5+2WArItvRNZlRp9gxrMBCcfTIILdg851qra6LXjJQnGiS5ulIZWgkncGEjt dBJhWrzzr1zmbI8Fkkcr1YEqt5MPS80xovI53YgCHEnuo+3C9uWFK8r1PpcIpFG1 kWWNdAUSJEGZtdcKhtzAnVh3pvf+sqtsDFRMEYu4eJdlVYzSoqlZ39djxOkRG442 O/xTSfLEmbr98tmshcM8OJBQKVT2zYns -----END CERTIFICATE-----Generated at Sat May 31 17:37:46 2025 by rpki-client