$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: BWUnojm7PBqUqWDtUeDH3q4KDL54OwJL025ia6A5N6U= Subject key identifier: B3:49:18:0F:3C:E7:40:2E:B3:98:B9:8F:13:B8:2E:8A:08:8F:63:4F Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 05BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 05B8 Signing time: Thu 12 Jun 2025 22:44:35 +0000 Manifest this update: Thu 12 Jun 2025 22:44:34 +0000 Manifest next update: Thu 19 Jun 2025 22:44:34 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: DwG5jMevSBCXaRKXUez04FGdplePzT7UbaBmoEr180k=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: mwVl4hNEaIqbBNWJudlbCJK/THwSQhv97GiC3rtYAeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1470 (0x5be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Jun 12 22:44:34 2025 GMT Not After : Jun 19 22:44:34 2025 GMT Subject: CN=684b5852-fcd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:21:06:f5:44:f7:81:17:fc:07:3d:d8:9b:6a: b2:05:f0:1e:43:05:54:68:16:cf:83:fb:66:16:ff: 27:bd:df:ff:7e:78:d3:d2:20:cc:dc:2e:c7:18:d6: 68:73:7d:25:14:dc:b6:df:73:b3:68:ba:7b:9a:a3: b2:d6:a9:ca:71:ef:b3:af:4b:e9:f4:84:e7:e9:66: 12:f1:21:14:f3:5c:b8:f7:e9:99:90:85:47:94:e2: 14:f1:46:01:67:aa:9a:f3:23:ad:84:e8:75:a8:4a: e6:46:56:8e:d1:88:27:1c:e8:b1:e3:8a:b4:c5:6f: c5:83:56:f0:7b:27:f4:12:fa:25:28:b1:42:fd:ba: e4:02:70:27:56:8c:25:8d:52:7e:37:44:b0:68:92: cb:9b:e0:b7:a1:88:33:91:18:bc:64:5d:85:9f:ab: 44:fd:de:6a:f7:30:ec:7b:bf:37:9f:c0:a3:7a:d7: 30:0d:16:a3:89:89:49:87:a8:c2:cc:d0:0d:53:74: 97:82:5f:e1:83:b0:b7:4c:8a:66:63:7f:3c:96:64: ff:40:76:82:5c:69:0b:f7:30:2f:10:55:7a:d2:64: fb:c4:4d:c5:be:e3:f4:6c:4a:51:18:a3:f5:7b:15: 7a:96:3c:2b:ad:e1:f9:37:e6:db:d9:14:a9:fd:20: b1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:49:18:0F:3C:E7:40:2E:B3:98:B9:8F:13:B8:2E:8A:08:8F:63:4F X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:60:66:4b:bf:67:9d:7b:b3:b6:f9:2e:e5:1f:b4:7d:45:5b: 5a:c9:66:c1:29:a3:ea:99:09:39:63:81:6a:3e:06:bf:57:7a: 37:6a:ee:0c:ff:3d:2c:01:26:a7:76:d5:af:6f:6b:bd:5b:ca: 64:8c:71:5e:f2:3d:07:13:41:66:e6:50:0d:d5:74:9b:44:e1: 64:a3:a8:f8:4b:f1:0b:24:ff:54:5e:67:73:b3:fa:7f:c5:73: fb:0f:dc:c2:4c:18:a4:65:fa:95:2e:2b:6b:d1:46:e0:f5:0d: fd:76:e2:28:8e:a6:e9:42:48:42:75:11:d4:3c:66:ab:9d:72: 02:03:c2:db:43:8d:65:11:59:13:7e:7c:9e:17:cf:00:8c:df: 98:15:7f:a1:ba:f2:1e:66:15:9e:bb:04:27:50:1b:71:15:aa: 46:52:29:10:70:1a:07:77:33:75:88:5f:2b:cf:97:79:4d:1b: c5:3b:3d:cc:24:0b:41:42:0b:d6:16:c5:0f:96:dc:77:cc:10: fc:30:72:3e:59:f4:85:30:46:16:ab:dc:64:72:81:52:73:8c: 01:aa:cf:8f:71:98:c1:e1:13:06:1e:2b:49:3b:e7:47:b5:e5: dd:1a:ee:d1:b6:68:2b:c8:88:bb:2e:98:24:cf:62:e7:f4:ad: c7:56:81:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjUwNjEyMjI0NDM0WhcNMjUwNjE5MjI0NDM0WjAYMRYwFAYD VQQDEw02ODRiNTg1Mi1mY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSEG9UT3gRf8Bz3Ym2qyBfAeQwVUaBbPg/tmFv8nvd//fnjT0iDM3C7HGNZo c30lFNy233OzaLp7mqOy1qnKce+zr0vp9ITn6WYS8SEU81y49+mZkIVHlOIU8UYB Z6qa8yOthOh1qErmRlaO0YgnHOix44q0xW/Fg1bweyf0EvolKLFC/brkAnAnVowl jVJ+N0SwaJLLm+C3oYgzkRi8ZF2Fn6tE/d5q9zDse783n8CjetcwDRajiYlJh6jC zNANU3SXgl/hg7C3TIpmY388lmT/QHaCXGkL9zAvEFV60mT7xE3FvuP0bEpRGKP1 exV6ljwrreH5N+bb2RSp/SCxnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNJGA88 50Aus5i5jxO4LooIj2NPMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeYGZLv2ede7O2+S7lH7R9RVtayWbBKaPqmQk5Y4FqPga/V3o3au4M /z0sASandtWvb2u9W8pkjHFe8j0HE0Fm5lAN1XSbROFko6j4S/ELJP9UXmdzs/p/ xXP7D9zCTBikZfqVLitr0Ubg9Q39duIojqbpQkhCdRHUPGarnXICA8LbQ41lEVkT fnyeF88AjN+YFX+huvIeZhWeuwQnUBtxFapGUikQcBoHdzN1iF8rz5d5TRvFOz3M JAtBQgvWFsUPltx3zBD8MHI+WfSFMEYWq9xkcoFSc4wBqs+PcZjB4RMGHitJO+dH teXdGu7RtmgryIi7Lpgkz2Ln9K3HVoGN -----END CERTIFICATE-----Generated at Fri Jun 13 12:25:33 2025 by rpki-client