$ rpki-client -vvf rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft File: u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft (raw, json) Hash identifier: la+qn46ulMcqmuioEPNm0Rt/RT6EBOa5TQKfsuHCquA= Subject key identifier: 75:5C:29:E3:E2:E6:A0:54:B5:27:4E:C5:CD:E0:B2:BA:C1:8F:DD:DB Authority key identifier: BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 Certificate issuer: /CN=A9189122/serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft Manifest number: 01AE Signing time: Sat 31 May 2025 02:54:46 +0000 Manifest this update: Sat 31 May 2025 02:54:46 +0000 Manifest next update: Sat 07 Jun 2025 02:54:46 +0000 Files and hashes: 1: u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl (hash: KdiT9b6w54cokaSuFeVgSlgj781Zr2QSE4dhGVqgH6k=) 2: 9E8DB380B2C611EDBC366A1DC4F9AE02.roa (hash: ztxAi6NVLvlOVRaY5LiA8lZVY+4GBUWq8sHQO2NcSn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189122, serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Validity Not Before: May 31 02:54:46 2025 GMT Not After : Jun 7 02:54:46 2025 GMT Subject: CN=683a6f76-56d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:70:1b:73:9c:fb:7d:50:81:a7:6a:47:3f:70: ab:b2:37:eb:39:fd:23:61:bf:8f:a8:b5:16:9b:83: 06:50:cb:2f:ec:49:1d:ea:72:6e:94:f4:95:9f:b2: 65:9c:c5:3d:49:3b:a8:df:77:da:ec:08:73:f0:50: a7:8c:0e:1e:3d:b1:1e:63:b6:7d:e1:00:e0:10:97: 33:55:70:73:5d:cf:81:4e:a1:d2:ec:fa:c7:10:69: da:82:9e:3d:99:5a:3c:38:b6:3f:d8:88:27:7f:35: fb:98:69:75:f9:57:54:da:ec:c1:50:3a:a4:07:23: c5:da:b0:8c:79:d2:f6:31:f5:b1:f2:14:e1:7c:1f: fa:eb:fd:06:eb:4a:83:75:d3:73:eb:7d:69:45:4d: e5:66:f6:ce:70:e2:fa:e5:8f:40:7b:5f:7e:86:40: 6e:73:8f:59:d3:81:b6:79:95:f0:f9:97:c3:41:57: 79:a2:12:d2:70:b5:1b:fd:ba:9c:e0:e8:0e:be:d1: 02:3c:6d:7b:c1:80:27:58:44:54:9d:94:72:9a:87: 31:8c:e4:ea:0f:82:cf:c7:40:e7:fb:63:ef:31:7f: 0b:b3:3f:35:10:2e:81:7d:8f:25:ba:be:78:7a:7f: ab:1e:fc:21:2f:f1:f3:fd:fa:e5:0c:10:81:3d:b4: 12:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:5C:29:E3:E2:E6:A0:54:B5:27:4E:C5:CD:E0:B2:BA:C1:8F:DD:DB X509v3 Authority Key Identifier: keyid:BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:1d:a7:64:25:9a:b6:7d:43:a5:f6:9e:1c:03:ae:19:ca:12: 9b:54:db:0f:c9:b4:a7:6b:f4:b4:8c:a2:fe:1b:f7:e9:e1:96: d4:f4:90:ca:30:53:77:26:ae:99:5b:93:c3:56:f1:f5:3c:42: 20:2a:97:ae:95:31:01:40:16:18:e7:a7:cb:d6:0f:99:51:6b: 7f:4a:24:18:d3:9a:df:52:ec:af:fe:1b:a0:f8:cb:4f:5b:a2: f6:17:fc:e7:ac:56:64:04:c2:46:53:cb:f7:01:17:05:50:c7: e4:45:f4:e6:be:05:83:46:be:0b:61:bd:f4:9a:66:8d:59:75: e7:f3:02:9b:41:c3:37:18:98:28:6b:39:b3:9e:80:0f:7d:72: 4c:35:07:2e:af:aa:2e:f8:a9:aa:f9:b5:6a:26:79:0a:a5:da: 97:20:2d:2d:c3:fc:5c:39:1e:45:eb:b6:7b:5e:bd:bf:fc:09: 28:e0:4f:13:39:d7:3d:c8:40:de:bc:c1:00:5c:ff:b7:18:01: be:bc:27:b5:6e:b7:82:7a:13:ec:71:80:e1:05:f6:83:e2:55: 3d:e6:36:14:0b:99:75:c1:a1:ac:14:9a:af:60:7e:55:04:8c: a7:41:21:83:57:60:67:53:41:c5:cc:62:3b:2c:31:85:d1:c8: d5:23:ad:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMjIxMTAvBgNVBAUTKEJCNEZBRTg1NTQwQTVBRDlGOTNDQjQ4MkM0NUM5NTc2 RjUyQTNCRjQwHhcNMjUwNTMxMDI1NDQ2WhcNMjUwNjA3MDI1NDQ2WjAYMRYwFAYD VQQDEw02ODNhNmY3Ni01NmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXAbc5z7fVCBp2pHP3CrsjfrOf0jYb+PqLUWm4MGUMsv7Ekd6nJulPSVn7Jl nMU9STuo33fa7Ahz8FCnjA4ePbEeY7Z94QDgEJczVXBzXc+BTqHS7PrHEGnagp49 mVo8OLY/2IgnfzX7mGl1+VdU2uzBUDqkByPF2rCMedL2MfWx8hThfB/66/0G60qD ddNz631pRU3lZvbOcOL65Y9Ae19+hkBuc49Z04G2eZXw+ZfDQVd5ohLScLUb/bqc 4OgOvtECPG17wYAnWERUnZRymocxjOTqD4LPx0Dn+2PvMX8Lsz81EC6BfY8lur54 en+rHvwhL/Hz/frlDBCBPbQSDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVcKePi 5qBUtSdOxc3gsrrBj93bMB8GA1UdIwQYMBaAFLtProVUClrZ+Ty0gsRclXb1Kjv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEyMi8wRkQ0RUY0RUFF RUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0bjVQTFNDeEZ5VmR2VXFP X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UwLXVoVlFLV3RuNVBMU0N4RnlWZHZVcU9fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEyMi8wRkQ0RUY0RUFFRUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0 bjVQTFNDeEZ5VmR2VXFPX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMHadkJZq2fUOl9p4cA64ZyhKbVNsPybSna/S0jKL+G/fp4ZbU9JDK MFN3Jq6ZW5PDVvH1PEIgKpeulTEBQBYY56fL1g+ZUWt/SiQY05rfUuyv/hug+MtP W6L2F/znrFZkBMJGU8v3ARcFUMfkRfTmvgWDRr4LYb30mmaNWXXn8wKbQcM3GJgo azmznoAPfXJMNQcur6ou+Kmq+bVqJnkKpdqXIC0tw/xcOR5F67Z7Xr2//Ako4E8T Odc9yEDevMEAXP+3GAG+vCe1breCehPscYDhBfaD4lU95jYUC5l1waGsFJqvYH5V BIynQSGDV2BnU0HFzGI7LDGF0cjVI62q -----END CERTIFICATE-----Generated at Sat May 31 16:46:50 2025 by rpki-client