$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft File: UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json) Hash identifier: PrqTl4pXNw3oHrPpFpeEeMIIQnpweXM9n/ahdeQ+x3U= Subject key identifier: 62:76:AB:75:46:86:7A:BD:46:FD:08:46:22:0B:38:F0:16:E6:32:C0 Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Certificate serial: 207B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft Manifest number: 2066 Signing time: Sat 31 May 2025 15:56:20 +0000 Manifest this update: Sat 31 May 2025 15:56:20 +0000 Manifest next update: Sat 07 Jun 2025 15:56:20 +0000 Files and hashes: 1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: UjfdRlIgdVKMJt8IiH23no2fB43V+Z7rZAg0506/aAI=) 2: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: 0yqldi8fEMZpyWAN9Sn9xlvRjfpYNfz3RGnd2LmKBSI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8315 (0x207b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159967, serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Validity Not Before: May 31 15:56:20 2025 GMT Not After : Jun 7 15:56:20 2025 GMT Subject: CN=683b26a4-9ee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8a:66:25:67:bb:f3:84:fb:6a:16:74:03:00: 61:db:4f:05:11:c0:21:00:a7:12:96:f7:26:3a:a9: 0f:f0:6b:91:b1:1a:9f:06:f5:dd:2f:4e:c0:be:c7: 50:5b:96:da:5d:e9:2b:a0:40:66:e2:ad:50:c8:6d: e7:59:57:71:49:2e:97:9a:8c:e2:d9:c2:86:f1:bb: 14:cb:aa:38:0b:3a:2d:39:ae:79:a8:ae:0b:28:aa: 59:bf:ab:c9:e8:95:d6:ab:ab:c4:cb:1f:43:00:28: 67:58:14:4f:e5:70:d4:41:98:c3:4a:8b:9f:11:fd: a6:91:85:5e:84:84:c6:a4:99:ef:6d:f9:65:1e:05: 79:1e:83:b1:c3:31:29:a3:0d:d2:9c:28:02:6a:da: 1e:dc:4b:ce:ef:00:5d:60:ad:28:33:d0:f2:9e:38: b3:8d:30:2a:9b:fc:d7:59:7a:28:ff:97:2d:d5:52: 46:46:5e:5b:f7:e1:5b:f6:3c:6c:54:49:83:4b:93: c2:d8:d8:65:78:c4:a3:46:81:9d:6d:e9:9c:dd:14: e2:db:bb:4f:9d:cb:6d:7f:67:34:fa:66:3f:6f:78: 56:06:47:1a:0e:84:08:d6:c2:48:e9:29:04:e1:45: f3:83:ea:ab:ad:96:f1:c0:ec:7d:bd:ba:45:6e:3b: 90:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:76:AB:75:46:86:7A:BD:46:FD:08:46:22:0B:38:F0:16:E6:32:C0 X509v3 Authority Key Identifier: keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:49:27:e8:45:d7:57:37:d4:90:84:18:87:7f:64:18:5b:c0: 7b:b9:11:d4:a5:69:37:f4:4f:06:ce:ae:69:e0:d7:82:be:b0: 8c:48:22:1a:b9:e2:9d:04:40:b7:be:bb:cc:ed:e2:45:24:a0: 88:66:cc:d5:38:50:d9:98:04:9a:9f:44:fd:a0:ba:c4:ae:2a: 4b:61:04:83:fc:1b:a2:65:39:d4:75:e2:7b:c2:41:9e:90:4c: e1:8c:45:59:fa:00:ec:1f:d0:05:6b:1b:11:0f:34:19:18:fc: 43:ea:c5:ed:a7:e0:75:7c:5c:d8:4c:3d:68:37:63:9b:26:bd: ec:46:fb:f0:ef:f7:3d:47:ad:53:b3:44:61:4e:1e:99:28:b2: 3c:2b:e6:be:75:c2:11:95:47:3e:2d:8b:83:23:0b:c1:e7:8c: be:84:cf:3a:70:73:91:a8:31:f1:9f:e3:bb:82:c8:28:b6:36: 5c:97:5b:1f:e0:02:aa:bc:16:44:01:de:77:51:f2:2b:2c:a6: 4f:90:c7:2c:98:8e:42:a0:57:3d:ce:6a:64:46:c1:c0:e5:83: 25:92:9e:39:66:35:0b:77:76:f4:3b:de:5b:91:5d:a6:13:f1: c5:8d:82:53:1c:66:f2:71:42:ee:55:2c:ac:cd:94:b3:fa:06: bc:30:ce:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB RjZDRTYwQUYwHhcNMjUwNTMxMTU1NjIwWhcNMjUwNjA3MTU1NjIwWjAYMRYwFAYD VQQDEw02ODNiMjZhNC05ZWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYpmJWe784T7ahZ0AwBh208FEcAhAKcSlvcmOqkP8GuRsRqfBvXdL07AvsdQ W5baXekroEBm4q1QyG3nWVdxSS6Xmozi2cKG8bsUy6o4CzotOa55qK4LKKpZv6vJ 6JXWq6vEyx9DAChnWBRP5XDUQZjDSoufEf2mkYVehITGpJnvbfllHgV5HoOxwzEp ow3SnCgCatoe3EvO7wBdYK0oM9DynjizjTAqm/zXWXoo/5ct1VJGRl5b9+Fb9jxs VEmDS5PC2NhleMSjRoGdbemc3RTi27tPncttf2c0+mY/b3hWBkcaDoQI1sJI6SkE 4UXzg+qrrZbxwOx9vbpFbjuQ3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJ2q3VG hnq9Rv0IRiILOPAW5jLAMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1 QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTk2Ny8wQkJGMjU3ODE1QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFW TmZySVVGNXpXRU92Yk9ZSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWSSfoRddXN9SQhBiHf2QYW8B7uRHUpWk39E8Gzq5p4NeCvrCMSCIa ueKdBEC3vrvM7eJFJKCIZszVOFDZmASan0T9oLrEripLYQSD/BuiZTnUdeJ7wkGe kEzhjEVZ+gDsH9AFaxsRDzQZGPxD6sXtp+B1fFzYTD1oN2ObJr3sRvvw7/c9R61T s0RhTh6ZKLI8K+a+dcIRlUc+LYuDIwvB54y+hM86cHORqDHxn+O7gsgotjZcl1sf 4AKqvBZEAd53UfIrLKZPkMcsmI5CoFc9zmpkRsHA5YMlkp45ZjULd3b0O95bkV2m E/HFjYJTHGbycULuVSyszZSz+ga8MM72 -----END CERTIFICATE-----Generated at Sat May 31 17:50:40 2025 by rpki-client