$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: wYMpcs3lp8qcDuij28PVABWezMIdMZhK0MCtV0BaG+M= Subject key identifier: 73:FC:6A:63:AD:03:F1:1A:F6:2B:94:83:A7:D7:58:92:58:5D:12:24 Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: 0140 Signing time: Sat 31 May 2025 04:00:30 +0000 Manifest this update: Sat 31 May 2025 04:00:30 +0000 Manifest next update: Sat 07 Jun 2025 04:00:30 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: hNtRBwfKbqRG5Muw1ScTXZotDKCbB1Wrp5oEEeyBM9E=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: 33db+G2HmqK4GM+/q2Pot6yftpHMysN5n0HwgMWkack=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C, serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Validity Not Before: May 31 04:00:30 2025 GMT Not After : Jun 7 04:00:30 2025 GMT Subject: CN=683a7ede-b64e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:86:ab:4f:80:7f:d2:ab:c3:40:55:d9:80:97: 5a:29:06:d7:b4:1c:40:a8:51:0a:76:d7:fd:7f:51: 8d:1a:4a:dc:56:f1:d6:65:e4:d5:36:75:91:c5:9f: 82:23:6d:62:6a:d9:e9:ca:4e:5c:1d:82:ae:c1:44: c8:4a:b6:83:2e:43:7c:1b:76:a5:5c:04:14:88:de: 4d:fa:3f:38:48:1c:48:cd:de:e0:3b:36:b5:5c:be: 74:6d:19:30:b7:e0:83:46:98:0f:6a:0d:22:e1:8a: 74:49:2b:f0:ec:89:bb:50:91:c7:a4:c6:63:92:46: 9b:51:4a:ca:e2:b7:84:29:ab:dd:d2:17:6e:4c:59: 2a:d9:08:a1:5e:71:e6:97:1b:47:29:1f:30:1b:56: e8:49:df:8a:29:04:e8:c2:dd:2d:d2:6e:e4:58:68: 89:3d:02:14:ac:7e:e4:23:e7:b8:ce:55:53:d7:05: 80:6e:b3:46:ac:e8:66:53:b2:2e:13:a2:56:07:a5: 10:64:88:44:d8:09:d5:2e:7b:10:e0:c1:70:19:37: fd:2c:fe:85:ba:d2:6b:43:07:2d:8d:5f:ee:c7:96: 80:7e:15:54:01:c4:cb:70:c3:91:17:ea:7e:b7:b7: af:5b:e7:57:f0:44:69:b6:fe:bb:89:75:78:b3:e3: 5c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FC:6A:63:AD:03:F1:1A:F6:2B:94:83:A7:D7:58:92:58:5D:12:24 X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:c4:32:71:fd:05:71:e2:4c:32:e0:4a:21:e9:c2:ad:43:5f: f9:c5:45:de:1d:34:88:5a:dc:8b:80:6f:97:e2:29:c7:d5:d4: 17:66:7c:6e:a8:bc:b8:2f:89:90:03:3a:d2:31:52:3c:52:5f: 38:3b:b2:0e:3d:1f:4f:5a:60:e3:26:b2:e5:d3:83:bc:9b:e8: a3:1b:8a:1d:a8:0a:da:81:ca:89:09:42:88:89:39:60:d2:3d: 39:28:22:56:5e:eb:27:2e:a4:96:d2:a1:ad:44:e8:51:cb:f4: a2:8d:04:64:29:a3:db:c4:8d:f5:7e:40:9c:4d:67:f2:e8:c8: 8d:32:c3:1f:fa:b9:6d:21:63:3e:99:8c:45:11:3c:d0:5e:02: 71:ae:4a:8a:4c:00:56:62:3f:0f:08:f2:50:93:f3:fe:cf:83: 35:8e:a2:47:74:4f:d4:10:3f:88:fa:a0:5a:ff:1f:35:9c:bf: a6:31:ac:50:6b:28:82:94:1e:95:96:a3:6e:ca:fb:2c:8a:49: b9:1a:dd:c0:6e:3a:e1:ed:ee:fa:cb:91:eb:2b:f7:2a:68:60: d3:34:8f:4b:fb:dd:b9:4e:d8:4e:12:d2:09:ff:4c:85:33:cb: dd:84:ac:84:69:b0:ef:6b:64:61:d5:79:c3:4b:fe:f5:ec:f4: 93:b1:19:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjUwNTMxMDQwMDMwWhcNMjUwNjA3MDQwMDMwWjAYMRYwFAYD VQQDEw02ODNhN2VkZS1iNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroarT4B/0qvDQFXZgJdaKQbXtBxAqFEKdtf9f1GNGkrcVvHWZeTVNnWRxZ+C I21iatnpyk5cHYKuwUTISraDLkN8G3alXAQUiN5N+j84SBxIzd7gOza1XL50bRkw t+CDRpgPag0i4Yp0SSvw7Im7UJHHpMZjkkabUUrK4reEKavd0hduTFkq2QihXnHm lxtHKR8wG1boSd+KKQTowt0t0m7kWGiJPQIUrH7kI+e4zlVT1wWAbrNGrOhmU7Iu E6JWB6UQZIhE2AnVLnsQ4MFwGTf9LP6FutJrQwctjV/ux5aAfhVUAcTLcMORF+p+ t7evW+dX8ERptv67iXV4s+NcqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHP8amOt A/Ea9iuUg6fXWJJYXRIkMB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWxDJx/QVx4kwy4Eoh6cKtQ1/5xUXeHTSIWtyLgG+X4inH1dQXZnxu qLy4L4mQAzrSMVI8Ul84O7IOPR9PWmDjJrLl04O8m+ijG4odqAragcqJCUKIiTlg 0j05KCJWXusnLqSW0qGtROhRy/SijQRkKaPbxI31fkCcTWfy6MiNMsMf+rltIWM+ mYxFETzQXgJxrkqKTABWYj8PCPJQk/P+z4M1jqJHdE/UED+I+qBa/x81nL+mMaxQ ayiClB6VlqNuyvssikm5Gt3Abjrh7e76y5HrK/cqaGDTNI9L+925TthOEtIJ/0yF M8vdhKyEabDva2Rh1XnDS/717PSTsRlP -----END CERTIFICATE-----Generated at Sat May 31 17:53:10 2025 by rpki-client