$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft File: UPIOqel1rkxMhmfLV_e89XAhXJY.mft (raw, json) Hash identifier: tbOY4VW+loZkoAtJxqgzNF6Encv4zn9CaWtMdil4yiM= Subject key identifier: 99:6A:4A:91:F9:C4:C4:76:D4:46:43:26:6C:3A:D4:56:65:DD:CA:76 Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 24B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft Manifest number: 2441 Signing time: Sat 31 May 2025 15:46:41 +0000 Manifest this update: Sat 31 May 2025 15:46:40 +0000 Manifest next update: Sat 07 Jun 2025 15:46:40 +0000 Files and hashes: 1: UPIOqel1rkxMhmfLV_e89XAhXJY.crl (hash: sWIxGxeI69UiOMXKKXKKOSrjF++vFmGkyQ1qNhtKRG0=) 2: 773D7A96B0DC11ECAEC09469C4F9AE02.roa (hash: JSTjxevpQh7Y9WIfXMl2eIjomxLJnjI/r2tIU+oc0Ig=) 3: D327C18CDFEC11ED9AB6E147C4F9AE02.roa (hash: DkDF5ioX13OuJfh2JylvgLRRw6+AIn++z0lBKozZ6IM=) 4: B8951CDCD23611EA8D9E515BC4F9AE02.roa (hash: 3p58ypdk04ElN+6HEttw9qJ/C60XU0tMI9YBNjvhXdM=) 5: E706A8B2BBF111EE8697E433C4F9AE02.roa (hash: cishBm9UdoGGvPuPGzEAmXBlRKMXNl1QLjdbaBeI7B0=) 6: 1A2298A2D23811EABDECA85FC4F9AE02.roa (hash: tFtHJDRq68MkxOGT5VgkwrnSGzaE039FiHh4oq6Q4EQ=) 7: 491B85B2E58911ED94960F39C4F9AE02.roa (hash: ClN9W30/fKlOIbsHfrCMHv+AzextbdwZ458osAxwB90=) 8: 06239EBADFEA11ED835B4D0EC4F9AE02.roa (hash: yndVn7hcuDMCdpxEcUDVR9meRxJpnYlQ5KdYems+Xe0=) 9: 59B3485028C111E7A885571AC4F9AE02.roa (hash: cpxWzbtBjfOYkdrL+G3YkBQCddhQ01gMHqlqKByoADs=) 10: 554E53D4B0B811EC9BE93E24C4F9AE02.roa (hash: zWhiAKzwQg9bP+RZqYCDyP/HTuRht7KXbJE7TpD4TKc=) 11: 5A2BB4DE28C111E7A885571AC4F9AE02.roa (hash: lmPij0yxhpci1H7hfOEpStvrCK/OQdYLZzjGWxHldlQ=) 12: D451FBE0DFEC11ED9AB6E147C4F9AE02.roa (hash: nJrkbLig1vTmSgjt6NVxXjjZt4z8n2VfbVQLKGqNIWA=) 13: D50024D6DFEC11ED9AB6E147C4F9AE02.roa (hash: 2+yQDxtXyRNPNjJL9oTb98cBeK8O2vaQ5rcmSwbKfuo=) 14: AFF73BD2BA0811EAB2479081C4F9AE02.roa (hash: Ei+ixlrSiwniV177dhajGnt3F/FQWmi7BjO5dNbr3pM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9398 (0x24b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B, serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: May 31 15:46:40 2025 GMT Not After : Jun 7 15:46:40 2025 GMT Subject: CN=683b2460-0075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:07:67:06:17:51:cd:d5:10:1b:42:80:37:82: ab:7a:94:cf:6d:39:05:21:b6:ec:54:c7:6c:45:06: 34:ac:d5:2e:d9:31:93:31:5f:8a:c1:40:c7:2a:21: 39:86:4a:75:be:7e:a1:48:5c:d5:8d:3c:20:82:21: 48:7f:e2:9f:dc:b9:ad:01:38:d9:9d:5a:91:bb:4e: 74:5a:dc:40:f8:36:35:ea:14:f7:e0:23:4d:83:fb: 7d:56:e7:cc:d5:66:ad:4c:25:b4:0d:f7:c5:a8:4a: 39:bb:02:07:40:31:ec:22:94:97:a0:42:3d:61:c1: 20:e6:16:19:8d:48:2c:28:00:d7:38:6c:de:30:2a: 30:e3:fe:95:05:8b:13:66:cb:e9:ae:27:ae:0b:ba: 28:78:1a:2c:08:94:63:6d:5a:75:a7:f1:ef:04:77: 4b:6c:3b:ab:46:fb:16:12:78:21:e4:33:a5:8f:0d: 0f:04:37:f8:0e:9b:9d:a1:67:fd:cc:2d:c5:67:94: 94:cb:ef:d2:6e:f7:be:9c:75:97:88:a3:73:6f:25: f7:a0:1d:e6:a3:01:eb:a1:e1:77:ba:2e:26:a5:b3: a0:8c:f3:3e:62:47:47:5f:b1:44:ad:8a:d1:cc:98: 05:63:8d:2e:ca:83:4a:35:73:b7:a9:6e:ca:d0:9c: 94:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:6A:4A:91:F9:C4:C4:76:D4:46:43:26:6C:3A:D4:56:65:DD:CA:76 X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:9f:ac:09:54:3e:60:45:b4:bc:0b:b7:c9:cb:83:92:53:1c: 24:c4:c7:4f:1a:d7:10:80:37:18:8f:bb:0e:90:4b:e3:d0:43: 01:b1:c6:cf:81:55:15:c4:2f:84:f2:75:d8:27:cf:16:7f:e5: 7a:7b:37:35:d9:f4:ad:9a:80:70:9b:c6:6b:02:c2:ad:05:61: e5:bd:25:27:4c:a1:f9:f1:81:01:77:58:42:9d:9f:a9:31:0f: 04:80:a2:40:10:47:1e:ad:2e:8b:e5:22:62:9f:12:81:38:2a: a2:bd:b1:4b:4c:05:10:57:5b:d5:b9:b7:20:18:cf:fe:9c:f8: fc:bf:b8:4c:10:1e:c8:2e:9d:9a:97:e2:79:01:21:19:bc:46: 13:64:ea:02:7d:6b:94:1e:1a:b4:57:4f:47:03:dd:65:97:52: e6:fd:ab:48:df:e0:07:81:85:07:0f:c3:82:a2:a2:ee:19:d9: 5a:8a:03:77:d2:c5:9a:03:2b:9c:03:1b:00:5a:91:34:c0:b2: db:bd:08:56:36:bb:29:ce:25:55:66:11:be:84:ad:dd:5e:e4: f2:d3:23:b1:11:bb:d4:30:b4:ca:fc:9e:cf:ff:4a:2d:92:a8: 58:f7:c5:64:c1:74:75:c3:32:1f:9e:45:47:b2:73:8b:cc:c6: 25:d4:43:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjUwNTMxMTU0NjQwWhcNMjUwNjA3MTU0NjQwWjAYMRYwFAYD VQQDEw02ODNiMjQ2MC0wMDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgdnBhdRzdUQG0KAN4KrepTPbTkFIbbsVMdsRQY0rNUu2TGTMV+KwUDHKiE5 hkp1vn6hSFzVjTwggiFIf+Kf3LmtATjZnVqRu050WtxA+DY16hT34CNNg/t9VufM 1WatTCW0DffFqEo5uwIHQDHsIpSXoEI9YcEg5hYZjUgsKADXOGzeMCow4/6VBYsT ZsvprieuC7ooeBosCJRjbVp1p/HvBHdLbDurRvsWEngh5DOljw0PBDf4DpudoWf9 zC3FZ5SUy+/Sbve+nHWXiKNzbyX3oB3mowHroeF3ui4mpbOgjPM+YkdHX7FErYrR zJgFY40uyoNKNXO3qW7K0JyUQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlqSpH5 xMR21EZDJmw61FZl3cp2MB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYyQi82NEEwNTE0NjYwMTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJr eE1obWZMVl9lODlYQWhYSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEn6wJVD5gRbS8C7fJy4OSUxwkxMdPGtcQgDcYj7sOkEvj0EMBscbP gVUVxC+E8nXYJ88Wf+V6ezc12fStmoBwm8ZrAsKtBWHlvSUnTKH58YEBd1hCnZ+p MQ8EgKJAEEcerS6L5SJinxKBOCqivbFLTAUQV1vVubcgGM/+nPj8v7hMEB7ILp2a l+J5ASEZvEYTZOoCfWuUHhq0V09HA91ll1Lm/atI3+AHgYUHD8OCoqLuGdlaigN3 0sWaAyucAxsAWpE0wLLbvQhWNrspziVVZhG+hK3dXuTy0yOxEbvUMLTK/J7P/0ot kqhY98VkwXR1wzIfnkVHsnOLzMYl1EML -----END CERTIFICATE-----Generated at Sat May 31 17:44:09 2025 by rpki-client