$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: tzkRyKj4eNabJD21Ykm0SgKOe4G2nkREoJvPEdSoB1M= Subject key identifier: 6B:C2:61:3B:67:1C:57:03:18:A5:71:72:9F:B7:A6:54:31:9C:C5:22 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 34AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 349B Signing time: Sat 31 May 2025 14:45:22 +0000 Manifest this update: Sat 31 May 2025 14:45:22 +0000 Manifest next update: Sat 07 Jun 2025 14:45:22 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: bNV7D+eV8IxfeB08+ajQGfr9DTYGkXs9qUdUbhMpes4=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: J0n8zynWewxBVfoDX3OB8RbfuIjzjZ2KDx4R2TodoBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13486 (0x34ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581, serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: May 31 14:45:22 2025 GMT Not After : Jun 7 14:45:22 2025 GMT Subject: CN=683b1602-d3bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:15:08:99:4d:08:48:06:0a:57:5c:38:01:0b: 89:16:50:19:8a:57:55:52:9f:c4:6b:40:ec:20:df: 6f:62:da:24:00:ef:c0:5d:58:7d:2e:a4:2b:d7:7b: 57:82:2d:47:49:10:71:f6:a1:f8:22:d0:3e:25:ca: 83:5a:ba:f7:03:7b:a9:e3:1e:e1:64:51:81:9c:a0: 4f:70:9a:e2:cf:6a:4e:06:68:49:28:18:c6:94:c6: ae:50:3e:42:d5:be:b8:ba:6c:3f:8a:08:fa:0a:fb: da:38:a3:fd:f7:c2:5c:ff:26:7c:3e:9f:d5:a1:80: b3:80:79:f8:68:80:ba:4e:32:1a:44:48:e4:9e:0a: 24:a2:b8:e0:e2:4c:a5:30:11:b0:b8:62:f6:d7:b8: be:e8:35:44:e1:37:e9:0d:8f:e4:a6:b1:4e:0c:14: 0a:df:85:e0:f5:ca:50:4f:85:f6:57:8d:1b:7e:be: 13:2b:72:c7:66:03:b6:45:a5:07:c7:54:84:78:b9: 14:2f:cf:11:07:ed:ee:6a:d8:c4:0e:c0:d9:b2:5e: 55:ea:52:f6:3a:9a:ba:93:5c:aa:57:c7:16:d7:51: ed:f0:52:73:69:07:21:77:2a:7c:1a:4f:ab:b4:63: ee:b6:e7:82:64:4e:a6:35:71:42:e1:9e:f8:b1:28: 7d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C2:61:3B:67:1C:57:03:18:A5:71:72:9F:B7:A6:54:31:9C:C5:22 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:d8:be:ea:08:4b:c8:f3:88:a6:9e:e2:4c:07:3d:9f:0a:29: 5d:0b:85:0b:33:9d:ef:d0:84:f1:e0:6e:73:89:cb:a7:33:78: 00:e2:43:17:e0:b9:db:63:ee:67:65:9e:c0:55:64:1b:94:8e: f3:cb:e4:65:61:90:73:fb:c8:53:0e:43:57:ee:d7:4f:62:0f: 6e:7c:39:0c:1c:99:0a:a5:2f:c0:d4:c5:e8:ef:83:cc:35:c3: 63:9f:1c:b7:82:b3:94:7a:b6:57:1d:1c:64:3b:36:00:11:3d: d6:e5:c2:df:40:4a:eb:99:11:2e:03:e5:e5:75:b0:82:3c:be: 57:f4:47:f5:e6:bb:2d:c1:a3:e7:06:c6:3d:e2:7a:86:e9:e8: a2:54:09:39:7b:17:d7:da:6f:02:bf:71:cf:5d:4a:0c:06:f6: fb:98:34:ab:6e:41:86:b9:96:d2:6a:89:ac:f0:e8:cf:df:e0: be:43:e1:47:d3:9f:f1:a8:55:47:a0:d0:bc:4a:ea:b4:6c:1c: 99:a3:1f:dc:8d:f7:20:c7:b6:39:fd:0c:b8:1b:ff:06:2d:2b: bf:24:61:99:bd:fc:0d:42:e8:7d:dd:35:af:f8:18:03:5a:69: fc:1c:20:94:91:83:19:c4:17:b5:46:0c:8c:46:7c:7c:aa:b2: d4:df:e1:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjUwNTMxMTQ0NTIyWhcNMjUwNjA3MTQ0NTIyWjAYMRYwFAYD VQQDEw02ODNiMTYwMi1kM2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RUImU0ISAYKV1w4AQuJFlAZildVUp/Ea0DsIN9vYtokAO/AXVh9LqQr13tX gi1HSRBx9qH4ItA+JcqDWrr3A3up4x7hZFGBnKBPcJriz2pOBmhJKBjGlMauUD5C 1b64umw/igj6CvvaOKP998Jc/yZ8Pp/VoYCzgHn4aIC6TjIaREjkngokorjg4kyl MBGwuGL217i+6DVE4TfpDY/kprFODBQK34Xg9cpQT4X2V40bfr4TK3LHZgO2RaUH x1SEeLkUL88RB+3uatjEDsDZsl5V6lL2Opq6k1yqV8cW11Ht8FJzaQchdyp8Gk+r tGPutueCZE6mNXFC4Z74sSh9rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvCYTtn HFcDGKVxcp+3plQxnMUiMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM2L7qCEvI84imnuJMBz2fCildC4ULM53v0ITx4G5zicunM3gA4kMX 4LnbY+5nZZ7AVWQblI7zy+RlYZBz+8hTDkNX7tdPYg9ufDkMHJkKpS/A1MXo74PM NcNjnxy3grOUerZXHRxkOzYAET3W5cLfQErrmREuA+XldbCCPL5X9Ef15rstwaPn BsY94nqG6eiiVAk5exfX2m8Cv3HPXUoMBvb7mDSrbkGGuZbSaoms8OjP3+C+Q+FH 05/xqFVHoNC8Suq0bByZox/cjfcgx7Y5/Qy4G/8GLSu/JGGZvfwNQuh93TWv+BgD Wmn8HCCUkYMZxBe1RgyMRnx8qrLU3+F4 -----END CERTIFICATE-----Generated at Sat May 31 16:40:48 2025 by rpki-client