$ rpki-client -vvf rpki.apnic.net/member_repository/A9180838/0D19957AE52A11EF8F4ADF19C4F9AE02/U-yPTxCpQGRGKCOqKZuyhmAO3wk.mft File: U-yPTxCpQGRGKCOqKZuyhmAO3wk.mft (raw, json) Hash identifier: LcXLAXkLbRmQdS//MeVKvX0ljHaf9k+jOoSJHTjhne4= Subject key identifier: 49:BF:8F:62:4B:12:64:00:00:C8:15:48:2D:7B:B7:D0:78:1F:66:AC Authority key identifier: 53:EC:8F:4F:10:A9:40:64:46:28:23:AA:29:9B:B2:86:60:0E:DF:09 Certificate issuer: /CN=A9180838/serialNumber=53EC8F4F10A94064462823AA299BB286600EDF09 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-yPTxCpQGRGKCOqKZuyhmAO3wk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180838/0D19957AE52A11EF8F4ADF19C4F9AE02/U-yPTxCpQGRGKCOqKZuyhmAO3wk.mft Manifest number: 3D Signing time: Sat 31 May 2025 07:06:08 +0000 Manifest this update: Sat 31 May 2025 07:06:07 +0000 Manifest next update: Sat 07 Jun 2025 07:06:07 +0000 Files and hashes: 1: U-yPTxCpQGRGKCOqKZuyhmAO3wk.crl (hash: 81A9kEXjR6dyLotC5ZFbJ7ySvWtGTtMi0uzFnZ1GjZw=) 2: 30CC092AE53011EFA140503EC4F9AE02.roa (hash: +368O4g5op3NFEyPxMy/g2aKCfQYvcEtTWG1Z/mxGSQ=) 3: DB1C7FA0E52F11EF8A7DB63DC4F9AE02.roa (hash: zY2HFqsbJ8/jLQBMjPpHRfGu9g3E8mXkzh/HPX8tacQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180838/0D19957AE52A11EF8F4ADF19C4F9AE02/U-yPTxCpQGRGKCOqKZuyhmAO3wk.crl rsync://rpki.apnic.net/member_repository/A9180838/0D19957AE52A11EF8F4ADF19C4F9AE02/U-yPTxCpQGRGKCOqKZuyhmAO3wk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-yPTxCpQGRGKCOqKZuyhmAO3wk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180838, serialNumber=53EC8F4F10A94064462823AA299BB286600EDF09 Validity Not Before: May 31 07:06:07 2025 GMT Not After : Jun 7 07:06:07 2025 GMT Subject: CN=683aaa60-1a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:41:51:7c:39:87:3c:62:e4:6b:c6:b9:fc:9d: 0e:1a:d1:f1:4c:91:07:65:1b:a2:10:89:89:a9:e2: 1e:98:be:86:7a:98:4c:0f:11:6f:d5:da:b4:26:79: e0:d5:8b:c9:e5:66:4c:9c:46:5a:50:85:cf:61:66: 50:4c:fa:39:27:47:4f:c5:8e:90:f7:a1:72:a4:06: f2:22:58:52:ab:c6:8c:ba:f4:7a:c5:c2:63:b6:64: d6:8c:70:1f:9e:dd:f8:c7:9d:15:43:d1:64:68:62: 5b:42:63:3f:fb:0f:23:be:58:a2:06:7d:c3:e0:3b: 13:a9:ef:d8:3f:46:5e:79:ad:fc:ad:11:8d:37:62: cc:df:1d:cb:f4:f8:94:ba:ae:eb:16:49:a1:c6:e2: dc:70:1d:21:e9:bb:65:53:d2:bd:50:83:67:c2:b0: 1a:9f:52:5a:2c:d2:83:96:96:0b:6a:42:62:46:4d: 0e:dc:93:8c:ae:d3:8a:5f:50:ea:c1:e3:20:74:4a: 3b:16:26:41:a9:9e:88:43:2c:fa:47:00:e9:a4:cc: 20:9e:9f:3d:33:95:27:79:d0:84:89:6b:b5:56:3c: f9:29:6f:2c:fd:22:bf:81:f7:03:0a:3d:48:df:fa: db:d7:85:5b:ab:a2:c1:12:5c:32:c5:cf:dc:23:33: 47:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:BF:8F:62:4B:12:64:00:00:C8:15:48:2D:7B:B7:D0:78:1F:66:AC X509v3 Authority Key Identifier: keyid:53:EC:8F:4F:10:A9:40:64:46:28:23:AA:29:9B:B2:86:60:0E:DF:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180838/0D19957AE52A11EF8F4ADF19C4F9AE02/U-yPTxCpQGRGKCOqKZuyhmAO3wk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-yPTxCpQGRGKCOqKZuyhmAO3wk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180838/0D19957AE52A11EF8F4ADF19C4F9AE02/U-yPTxCpQGRGKCOqKZuyhmAO3wk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:ae:85:ef:20:2f:67:dc:61:89:e1:0e:da:6a:c8:74:0b:dd: 02:96:6c:bd:62:aa:f4:16:b8:45:ae:45:2c:54:3b:a6:0d:9c: 92:1b:96:60:43:1d:40:b9:77:f6:51:69:8b:26:d2:5c:77:d0: cc:5c:89:a7:5a:d4:e9:c1:49:fa:38:40:53:ca:10:1e:b3:e5: a7:d1:b1:d2:1e:b3:f1:08:d1:56:ac:34:47:fc:dd:f9:85:e9: 61:df:60:e8:4f:b0:6e:b7:10:f2:3c:cc:d2:cd:9b:b5:5a:f8: ec:51:c2:40:bb:1c:95:09:ff:8a:cf:6c:8f:81:4d:c1:5e:83: 99:50:bc:9b:f8:62:08:bc:ea:1d:d9:9c:3b:a0:a7:6f:ba:88: 59:68:5c:49:af:4c:2c:1c:99:53:8f:67:a1:01:ac:f6:85:df: c6:37:ca:46:86:e8:28:2a:2d:6d:8d:5f:dc:5c:4f:50:8f:5b: ea:dc:10:9d:44:c5:f7:65:4b:85:58:9e:b6:4c:01:0c:d0:25: 9f:c0:df:cb:b5:31:f3:43:64:6f:0b:03:e6:77:f4:73:07:18: 00:54:5d:a2:4e:82:5c:5d:e2:f0:18:33:de:b4:4c:9d:0b:60: 71:7f:83:2c:5a:e4:cc:d3:79:07:be:03:fa:f7:9f:94:f0:ee: 89:ed:a7:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDgzODExMC8GA1UEBRMoNTNFQzhGNEYxMEE5NDA2NDQ2MjgyM0FBMjk5QkIyODY2 MDBFREYwOTAeFw0yNTA1MzEwNzA2MDdaFw0yNTA2MDcwNzA2MDdaMBgxFjAUBgNV BAMTDTY4M2FhYTYwLTFhMGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuQVF8OYc8YuRrxrn8nQ4a0fFMkQdlG6IQiYmp4h6YvoZ6mEwPEW/V2rQmeeDV i8nlZkycRlpQhc9hZlBM+jknR0/FjpD3oXKkBvIiWFKrxoy69HrFwmO2ZNaMcB+e 3fjHnRVD0WRoYltCYz/7DyO+WKIGfcPgOxOp79g/Rl55rfytEY03YszfHcv0+JS6 rusWSaHG4txwHSHpu2VT0r1Qg2fCsBqfUlos0oOWlgtqQmJGTQ7ck4yu04pfUOrB 4yB0SjsWJkGpnohDLPpHAOmkzCCenz0zlSd50ISJa7VWPPkpbyz9Ir+B9wMKPUjf +tvXhVurosESXDLFz9wjM0cNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSb+PYksS ZAAAyBVILXu30HgfZqwwHwYDVR0jBBgwFoAUU+yPTxCpQGRGKCOqKZuyhmAO3wkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwODM4LzBEMTk5NTdBRTUy QTExRUY4RjRBREYxOUM0RjlBRTAyL1UteVBUeENwUUdSR0tDT3FLWnV5aG1BTzN3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVS15UFR4Q3BRR1JHS0NPcUtadXlobUFPM3drLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw ODM4LzBEMTk5NTdBRTUyQTExRUY4RjRBREYxOUM0RjlBRTAyL1UteVBUeENwUUdS R0tDT3FLWnV5aG1BTzN3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK6uhe8gL2fcYYnhDtpqyHQL3QKWbL1iqvQWuEWuRSxUO6YNnJIblmBD HUC5d/ZRaYsm0lx30Mxciada1OnBSfo4QFPKEB6z5afRsdIes/EI0VasNEf83fmF 6WHfYOhPsG63EPI8zNLNm7Va+OxRwkC7HJUJ/4rPbI+BTcFeg5lQvJv4Ygi86h3Z nDugp2+6iFloXEmvTCwcmVOPZ6EBrPaF38Y3ykaG6CgqLW2NX9xcT1CPW+rcEJ1E xfdlS4VYnrZMAQzQJZ/A38u1MfNDZG8LA+Z39HMHGABUXaJOglxd4vAYM960TJ0L YHF/gyxa5MzTeQe+A/r3n5Tw7ontp14= -----END CERTIFICATE-----Generated at Sat May 31 17:33:00 2025 by rpki-client