$ rpki-client -vvf rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft File: uHLzTVUlH6dw7MOT0mcSED1VBzc.mft (raw, json) Hash identifier: VeDdr/wtb4frSs+0NcO+7Tg/uy9mGX+akHfUnDR+KKM= Subject key identifier: 24:05:1C:4B:85:25:CA:00:73:F9:A8:33:AA:4F:6A:1E:7D:A0:24:FB Authority key identifier: B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 Certificate issuer: /CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737 Certificate serial: 03CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft Manifest number: 03BF Signing time: Sat 31 May 2025 00:52:46 +0000 Manifest this update: Sat 31 May 2025 00:52:46 +0000 Manifest next update: Sat 07 Jun 2025 00:52:46 +0000 Files and hashes: 1: uHLzTVUlH6dw7MOT0mcSED1VBzc.crl (hash: 2LXwqR5vbB6u6jgpgxhOnReaYv/CatRJruBQldrySLE=) 2: 945375FAF69511EC90A47215C4F9AE02.roa (hash: 93z4oqW7DQ1yUII6DWRvY7Xrtn4iF7Cp5BMrU5CKBhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C606, serialNumber=B872F34D55251FA770ECC393D26712103D550737 Validity Not Before: May 31 00:52:46 2025 GMT Not After : Jun 7 00:52:46 2025 GMT Subject: CN=683a52de-4645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1c:50:a8:00:34:b5:5e:e2:42:aa:4e:55:c1: 7d:6d:27:31:8e:71:58:4d:11:5d:de:56:54:af:10: 4b:c1:68:fa:fb:4d:47:73:aa:1b:14:e7:69:5b:65: 2c:2c:32:2c:89:6a:b7:f2:1b:08:95:d2:92:32:9c: d0:ef:89:0d:d2:25:61:37:47:83:d7:97:fd:de:72: 79:90:4c:1e:53:4f:bc:48:9e:35:4b:ab:93:58:1b: 7e:bf:2b:dc:15:a2:d9:99:3f:e3:07:14:75:ae:cb: 35:3c:b6:81:47:ae:74:c3:5d:e3:0d:41:51:5f:68: ad:9f:b7:4d:92:3b:34:3a:3a:93:7c:f9:4f:56:28: d6:28:b2:51:7c:a7:33:1d:2a:69:64:b2:26:26:43: d7:c1:f1:c8:dc:18:6b:52:1a:19:e8:cf:77:f5:4d: a2:ea:ad:20:d6:35:80:05:f8:a7:66:af:88:da:38: 0c:dd:af:a7:06:2a:24:6b:cb:83:89:89:52:c4:69: 81:1d:fa:94:55:e0:b8:d7:a7:04:02:a7:34:d4:ea: e9:cb:8e:61:fe:21:87:0f:fe:dc:aa:e3:71:67:8d: 36:78:ef:71:e5:de:63:d9:95:b9:7c:43:f3:42:e7: 3c:0f:dc:b8:24:28:4e:fa:75:11:4a:a4:d1:bc:77: c0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:05:1C:4B:85:25:CA:00:73:F9:A8:33:AA:4F:6A:1E:7D:A0:24:FB X509v3 Authority Key Identifier: keyid:B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:8e:ec:a9:18:b7:4b:7b:10:db:02:21:2b:45:3a:09:ec:9e: ee:b1:17:c3:dc:ea:52:55:91:1d:8f:c8:52:e5:59:01:5d:7d: fd:2c:ee:cb:3d:1c:34:aa:80:62:1d:b1:67:91:2b:d5:b0:eb: fe:37:27:0d:57:70:a3:1c:a2:f7:3d:8c:8c:df:5e:c7:39:42: c7:8e:6f:c2:1e:f7:69:4d:bd:f4:62:bd:a8:fc:8c:87:d9:fe: 4f:83:bf:3a:50:ea:68:d8:35:fe:c9:b8:e6:77:64:23:99:bd: bb:86:f2:bc:8f:8b:b4:d5:8f:39:89:66:52:e7:a7:9c:83:60: b2:d7:5a:55:d6:4b:11:44:d3:ec:ff:c6:f9:b4:8c:74:79:83: 90:f8:f8:41:0e:8f:fa:84:32:11:f8:e5:d9:7a:78:b0:16:4c: 86:32:18:97:1e:51:d8:86:e7:3d:a4:60:3f:1a:51:31:fb:56: 42:e6:37:7c:9f:1b:54:7d:84:65:7e:2d:5e:4d:1a:a5:75:d8: ce:11:5f:30:cf:b7:23:12:84:20:f0:5f:31:12:fc:3d:d5:b4: 89:d1:8b:80:bb:2b:fb:62:9c:c8:2d:6b:f6:b7:75:a2:cd:d0: 4c:a0:b0:75:1d:ec:78:6b:a9:fb:7f:0a:9a:45:13:ac:4e:74: 4c:de:f5:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2MDYxMTAvBgNVBAUTKEI4NzJGMzRENTUyNTFGQTc3MEVDQzM5M0QyNjcxMjEw M0Q1NTA3MzcwHhcNMjUwNTMxMDA1MjQ2WhcNMjUwNjA3MDA1MjQ2WjAYMRYwFAYD VQQDEw02ODNhNTJkZS00NjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhxQqAA0tV7iQqpOVcF9bScxjnFYTRFd3lZUrxBLwWj6+01Hc6obFOdpW2Us LDIsiWq38hsIldKSMpzQ74kN0iVhN0eD15f93nJ5kEweU0+8SJ41S6uTWBt+vyvc FaLZmT/jBxR1rss1PLaBR650w13jDUFRX2itn7dNkjs0OjqTfPlPVijWKLJRfKcz HSppZLImJkPXwfHI3BhrUhoZ6M939U2i6q0g1jWABfinZq+I2jgM3a+nBioka8uD iYlSxGmBHfqUVeC416cEAqc01Orpy45h/iGHD/7cquNxZ402eO9x5d5j2ZW5fEPz Quc8D9y4JChO+nURSqTRvHfAXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQFHEuF JcoAc/moM6pPah59oCT7MB8GA1UdIwQYMBaAFLhy801VJR+ncOzDk9JnEhA9VQc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzYwNi83QzhCMTM3QThG QzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2ZHc3TU9UMG1jU0VEMVZC emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITHpUVlVsSDZkdzdNT1QwbWNTRUQxVkJ6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzYwNi83QzhCMTM3QThGQzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2 ZHc3TU9UMG1jU0VEMVZCemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGjuypGLdLexDbAiErRToJ7J7usRfD3OpSVZEdj8hS5VkBXX39LO7L PRw0qoBiHbFnkSvVsOv+NycNV3CjHKL3PYyM317HOULHjm/CHvdpTb30Yr2o/IyH 2f5Pg786UOpo2DX+ybjmd2Qjmb27hvK8j4u01Y85iWZS56ecg2Cy11pV1ksRRNPs /8b5tIx0eYOQ+PhBDo/6hDIR+OXZeniwFkyGMhiXHlHYhuc9pGA/GlEx+1ZC5jd8 nxtUfYRlfi1eTRqlddjOEV8wz7cjEoQg8F8xEvw91bSJ0YuAuyv7YpzILWv2t3Wi zdBMoLB1Hex4a6n7fwqaRROsTnRM3vUh -----END CERTIFICATE-----Generated at Sat May 31 16:57:51 2025 by rpki-client