$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: cLBQ/4s2R3EUIMMFxnzFpX0dtrbq2Nr42CK89HvFqDk= Subject key identifier: A1:0A:3B:A0:08:4A:45:2A:B4:BE:D3:FB:C2:2C:B5:75:F4:6E:8F:03 Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 0638 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 0636 Signing time: Fri 30 May 2025 22:52:39 +0000 Manifest this update: Fri 30 May 2025 22:52:38 +0000 Manifest next update: Fri 06 Jun 2025 22:52:38 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: tw6/bqk5n+tM3Ksc6sBUYUMsVobQJzMpHcYmpzOJNKM=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: JGxMB26ttBekYTYeINbF/ZGgUOz7c1MGNzdVG0LlGY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: May 30 22:52:38 2025 GMT Not After : Jun 6 22:52:38 2025 GMT Subject: CN=683a36b7-ea79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:47:64:03:b1:f6:b9:84:1a:4f:ed:b1:47:a9: 67:3c:66:dd:dc:17:30:c6:7c:bc:4b:88:c4:34:f9: dc:d8:52:7f:7e:99:88:c7:a3:a6:12:c9:99:20:1b: 4a:b0:2c:e2:ef:28:1b:ab:80:df:d7:70:77:ed:19: 99:8e:c1:2a:35:ea:dc:70:f4:a3:0a:e9:ea:f1:86: b7:9f:09:0f:c5:eb:e7:3a:74:09:a7:1c:34:fc:ff: 70:86:23:25:23:78:b1:39:6e:fe:90:90:88:da:62: 83:08:d3:b2:8e:59:80:51:d7:f9:57:60:82:b5:f4: d5:c8:34:32:60:5b:6d:d0:f5:e3:c6:e3:fc:b2:a4: 25:7a:dd:6b:77:e9:24:6f:20:0c:75:02:b1:a7:9c: b4:4d:83:ca:a3:e1:ee:c7:04:50:a7:dd:6e:38:7c: 0a:9e:90:01:03:3c:91:fd:04:05:bc:f6:4d:14:0a: dc:29:04:fb:10:3d:5b:c3:05:a2:bb:d1:69:ea:46: c0:91:08:a1:e0:77:f1:d3:49:1e:a0:8e:72:2f:34: 59:af:58:98:f0:5a:d4:d4:54:d0:4e:ca:5c:a4:22: 8e:99:4f:9b:dc:6b:3b:d2:f5:35:f9:70:a4:aa:39: e7:5b:cb:13:5e:9c:a2:a2:4e:bd:e0:be:57:ef:f0: e9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0A:3B:A0:08:4A:45:2A:B4:BE:D3:FB:C2:2C:B5:75:F4:6E:8F:03 X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:3a:9a:06:11:c8:f6:b7:10:fb:df:30:37:4c:55:eb:17:50: b8:e9:b8:94:a2:d2:da:4d:9f:51:c8:5a:4a:9e:2f:27:6c:43: 41:c6:ca:d9:41:78:a8:3e:91:cb:54:02:c0:82:90:10:84:61: 51:56:ad:30:61:7b:78:d2:09:be:1b:e9:6e:80:8a:fc:4b:30: 50:56:0b:c7:85:a9:b4:90:97:cc:97:ac:5d:35:d7:f7:3c:d3: 9b:6a:a3:26:ab:70:63:aa:9f:98:61:3b:b6:cc:00:f7:6a:8d: 49:cc:e7:2e:c6:8b:1c:43:2b:72:f8:9f:50:f7:a6:f2:7e:30: 25:d1:12:12:8f:06:d9:93:69:f8:2c:75:ba:78:73:44:42:40: 91:a1:cc:0a:0e:11:4d:9a:82:e9:ba:94:a7:96:f6:92:5f:46: 54:34:1e:18:19:58:74:26:a6:75:e2:b5:8d:93:fb:9c:c8:f4: fc:29:b5:a7:3b:cc:6c:23:bd:60:61:ea:70:ed:b6:ce:6a:62: 56:af:52:4d:47:38:29:a4:79:59:92:6c:41:87:eb:23:ef:54: cc:f5:58:d1:23:18:ab:57:90:74:cc:d9:b2:ce:6c:30:f4:fe: 74:b5:ce:cf:a3:bf:9e:2f:ab:ca:9d:ec:9b:1d:8b:3a:59:35: f2:c5:59:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUwNTMwMjI1MjM4WhcNMjUwNjA2MjI1MjM4WjAYMRYwFAYD VQQDEw02ODNhMzZiNy1lYTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukdkA7H2uYQaT+2xR6lnPGbd3Bcwxny8S4jENPnc2FJ/fpmIx6OmEsmZIBtK sCzi7ygbq4Df13B37RmZjsEqNerccPSjCunq8Ya3nwkPxevnOnQJpxw0/P9whiMl I3ixOW7+kJCI2mKDCNOyjlmAUdf5V2CCtfTVyDQyYFtt0PXjxuP8sqQlet1rd+kk byAMdQKxp5y0TYPKo+HuxwRQp91uOHwKnpABAzyR/QQFvPZNFArcKQT7ED1bwwWi u9Fp6kbAkQih4Hfx00keoI5yLzRZr1iY8FrU1FTQTspcpCKOmU+b3Gs70vU1+XCk qjnnW8sTXpyiok694L5X7/DpEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEKO6AI SkUqtL7T+8IstXX0bo8DMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxOpoGEcj2txD73zA3TFXrF1C46biUotLaTZ9RyFpKni8nbENBxsrZ QXioPpHLVALAgpAQhGFRVq0wYXt40gm+G+lugIr8SzBQVgvHham0kJfMl6xdNdf3 PNObaqMmq3Bjqp+YYTu2zAD3ao1JzOcuxoscQyty+J9Q96byfjAl0RISjwbZk2n4 LHW6eHNEQkCRocwKDhFNmoLpupSnlvaSX0ZUNB4YGVh0JqZ14rWNk/ucyPT8KbWn O8xsI71gYepw7bbOamJWr1JNRzgppHlZkmxBh+sj71TM9VjRIxirV5B0zNmyzmww 9P50tc7Po7+eL6vKneybHYs6WTXyxVm6 -----END CERTIFICATE-----Generated at Sat May 31 17:07:45 2025 by rpki-client