$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft File: ulHQnhOT5woFhzID_3zE4f1-pw8.mft (raw, json) Hash identifier: z91BL2W+jey8gauFFs09eD4p3A4i1vbO8q5Otz6a7lg= Subject key identifier: 6B:8D:5D:4F:6C:7B:61:7B:03:19:57:24:75:20:93:65:E9:A1:32:BC Authority key identifier: BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F Certificate issuer: /CN=A9168B03/serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Certificate serial: 1BDB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft Manifest number: 1BCE Signing time: Fri 30 May 2025 16:24:49 +0000 Manifest this update: Fri 30 May 2025 16:24:49 +0000 Manifest next update: Fri 06 Jun 2025 16:24:49 +0000 Files and hashes: 1: ulHQnhOT5woFhzID_3zE4f1-pw8.crl (hash: +/jnD3qSbT5YHEUzvQVLHa2Uq1f2wlO0aNlTeYxT92I=) 2: D3EAE1500B5911EA8CC1114BC4F9AE02.roa (hash: 6kshU0HtAchRgiTjP8s8Hd2WuIT7tJbRCmHqG1erYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7131 (0x1bdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B03, serialNumber=BA51D09E1393E70A05873203FF7CC4E1FD7EA70F Validity Not Before: May 30 16:24:49 2025 GMT Not After : Jun 6 16:24:49 2025 GMT Subject: CN=6839dbd1-3278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ae:1d:d0:56:17:30:7a:90:0e:9f:ff:f8:e8: 08:85:6b:52:1d:8a:ed:34:1b:de:47:08:ae:04:43: dc:66:1c:50:22:f8:e1:74:4d:a5:a1:6a:a2:36:6e: 57:61:85:34:de:f2:83:66:5f:cc:8d:e0:a7:b5:36: d7:60:fc:ef:d0:0a:a4:5b:a5:94:6a:29:19:3b:f9: be:b7:29:a9:c4:17:3a:c3:c4:2d:a7:9d:5c:86:58: 95:dc:36:e1:9a:97:2e:42:92:31:56:82:7b:b6:47: b1:84:47:4d:61:cd:92:b1:22:c4:ad:e4:b5:3e:e0: c8:2c:5e:ae:c3:f3:69:7f:6a:48:71:13:31:17:d6: 1c:01:c1:fc:ec:8d:29:a7:a7:0e:c8:b6:24:6f:44: 52:41:47:e8:6b:4b:36:a9:35:6f:53:b8:35:dc:1b: ef:6c:de:54:e3:b1:3e:73:68:84:4d:f2:f5:c1:8e: 12:6d:77:fa:07:ab:2f:65:c5:de:d5:2a:00:87:74: ad:ff:b9:9c:41:7e:72:ef:80:a4:9a:7e:1e:de:4a: 34:86:b7:a4:f2:fb:0d:c2:97:b6:2f:f0:d3:9e:e9: 18:99:7b:96:57:6a:04:3c:2e:98:5a:b8:3f:0e:c2: 2c:fd:8c:d1:29:37:d1:f5:5c:08:c7:b5:71:43:3b: dd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:8D:5D:4F:6C:7B:61:7B:03:19:57:24:75:20:93:65:E9:A1:32:BC X509v3 Authority Key Identifier: keyid:BA:51:D0:9E:13:93:E7:0A:05:87:32:03:FF:7C:C4:E1:FD:7E:A7:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ulHQnhOT5woFhzID_3zE4f1-pw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B03/D118E678F99D11E6B8727013C4F9AE02/ulHQnhOT5woFhzID_3zE4f1-pw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:7a:ac:e0:dc:4b:f9:a1:fc:eb:ca:b8:14:5a:7c:94:25:72: a5:1f:ca:19:66:62:7b:a8:e3:b7:3e:28:1e:eb:75:9a:ba:2e: 4c:07:85:9d:16:c7:2d:08:a6:10:5d:c5:bb:a1:d0:64:b5:e8: b3:09:d0:5c:0d:62:a1:f7:18:78:50:6b:e2:85:a8:63:08:ee: 01:da:3a:67:69:6a:be:23:29:8b:c2:61:50:51:cd:07:a5:0f: 61:20:1a:6e:7b:b3:fb:68:8b:e4:26:2d:4a:e3:2d:32:43:3e: 4a:ec:00:96:4e:93:0b:86:65:7f:cd:a5:2f:88:f2:19:71:fd: 51:9f:70:a6:94:fa:76:5d:c2:3a:9a:14:d8:23:a4:50:15:49: 27:1e:58:f0:99:99:b4:6c:26:e3:f2:a0:5e:00:05:ff:fb:e3: 17:2c:67:0e:9d:fa:84:93:a7:2f:62:fc:29:cb:6f:1b:f7:25: 42:d1:ed:1e:34:c9:c7:0f:a5:05:c3:c7:1c:d3:7a:71:34:2b: c1:66:d3:a1:d6:f3:5e:d1:59:8f:e8:b1:60:ad:95:e8:8b:db: 7d:37:48:9d:d7:55:e8:0a:fb:46:a5:77:2e:4d:80:e6:45:ea: 0c:75:80:2d:86:35:fb:28:2e:7f:7b:d4:9b:59:c3:97:2d:ef: a4:fb:0f:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCMDMxMTAvBgNVBAUTKEJBNTFEMDlFMTM5M0U3MEEwNTg3MzIwM0ZGN0NDNEUx RkQ3RUE3MEYwHhcNMjUwNTMwMTYyNDQ5WhcNMjUwNjA2MTYyNDQ5WjAYMRYwFAYD VQQDEw02ODM5ZGJkMS0zMjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsq4d0FYXMHqQDp//+OgIhWtSHYrtNBveRwiuBEPcZhxQIvjhdE2loWqiNm5X YYU03vKDZl/MjeCntTbXYPzv0AqkW6WUaikZO/m+tympxBc6w8Qtp51chliV3Dbh mpcuQpIxVoJ7tkexhEdNYc2SsSLEreS1PuDILF6uw/Npf2pIcRMxF9YcAcH87I0p p6cOyLYkb0RSQUfoa0s2qTVvU7g13BvvbN5U47E+c2iETfL1wY4SbXf6B6svZcXe 1SoAh3St/7mcQX5y74Ckmn4e3ko0hrek8vsNwpe2L/DTnukYmXuWV2oEPC6YWrg/ DsIs/YzRKTfR9VwIx7VxQzvdSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuNXU9s e2F7AxlXJHUgk2XpoTK8MB8GA1UdIwQYMBaAFLpR0J4Tk+cKBYcyA/98xOH9fqcP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEIwMy9EMTE4RTY3OEY5 OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3b0ZoeklEXzN6RTRmMS1w dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VsSFFuaE9UNXdvRmh6SURfM3pFNGYxLXB3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEIwMy9EMTE4RTY3OEY5OUQxMUU2Qjg3MjcwMTNDNEY5QUUwMi91bEhRbmhPVDV3 b0ZoeklEXzN6RTRmMS1wdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUeqzg3Ev5ofzryrgUWnyUJXKlH8oZZmJ7qOO3Pige63Waui5MB4Wd FsctCKYQXcW7odBkteizCdBcDWKh9xh4UGvihahjCO4B2jpnaWq+IymLwmFQUc0H pQ9hIBpue7P7aIvkJi1K4y0yQz5K7ACWTpMLhmV/zaUviPIZcf1Rn3CmlPp2XcI6 mhTYI6RQFUknHljwmZm0bCbj8qBeAAX/++MXLGcOnfqEk6cvYvwpy28b9yVC0e0e NMnHD6UFw8cc03pxNCvBZtOh1vNe0VmP6LFgrZXoi9t9N0id11XoCvtGpXcuTYDm ReoMdYAthjX7KC5/e9SbWcOXLe+k+w/h -----END CERTIFICATE-----Generated at Sat May 31 17:39:12 2025 by rpki-client