$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: bWVkpi1Ws9Si5rcuRv2mg6JH8bEYRqcSprPMPEN7YQk= Subject key identifier: 13:19:BD:A3:05:30:18:B5:A0:FD:27:7A:1D:0A:82:80:4E:6C:32:15 Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 02C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 02C5 Signing time: Sat 31 May 2025 01:35:55 +0000 Manifest this update: Sat 31 May 2025 01:35:55 +0000 Manifest next update: Sat 07 Jun 2025 01:35:55 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: Ux5ttmA+w4jc+mcR+NPQGQBcLRg2qtVm1uzI4bRtSko=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: May 31 01:35:55 2025 GMT Not After : Jun 7 01:35:55 2025 GMT Subject: CN=683a5cfb-e3c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d9:f6:18:66:67:d5:ae:74:ee:00:da:95:87: 9b:14:db:78:b0:c5:c5:2c:0f:81:4b:b7:93:c6:a8: 7d:d0:d8:79:21:44:4f:89:42:bc:8f:b6:62:46:36: 91:84:6a:7c:cc:b6:6d:b4:41:b5:d9:bb:d2:f3:a7: dd:be:c4:0a:37:44:cc:28:ee:b2:ec:6d:3b:1c:2a: 30:28:9a:68:c7:f9:70:0a:69:8f:c2:ef:32:4c:96: 1f:59:af:a0:09:3a:b8:a1:0c:d8:4d:06:89:eb:d1: e7:56:cc:46:fa:da:ee:6a:5a:84:3f:e1:43:26:b1: eb:70:24:62:8a:38:60:ce:06:12:85:95:d0:10:3d: 2b:73:bf:59:ec:82:bd:27:10:05:53:bc:38:1f:e1: 04:03:b7:1a:c0:50:14:94:3b:64:b7:b7:4c:1f:53: b9:4c:9d:51:2f:d9:90:04:fb:40:44:9a:75:1e:5d: 7e:f4:ea:88:83:1f:46:df:15:cd:de:03:a3:5a:c3: eb:03:8d:65:a9:b8:66:61:f4:2e:2f:24:28:65:2b: 05:77:08:0f:e7:a3:65:c2:08:c6:6a:05:7d:dc:ce: a2:e2:72:1a:bf:7e:ea:95:4a:be:2d:30:0f:9b:f0: 63:46:19:9f:ca:3d:87:55:fb:f4:bb:ae:ec:ec:c7: 2d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:19:BD:A3:05:30:18:B5:A0:FD:27:7A:1D:0A:82:80:4E:6C:32:15 X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:39:ab:2d:57:05:c4:c8:3c:35:f2:59:bf:de:64:80:eb:16: f5:ff:53:be:a6:7a:83:58:7f:50:30:d2:08:af:2f:ae:46:27: 74:0e:86:c5:8b:0a:2f:f4:bf:af:37:46:32:c4:f4:3c:f6:61: 68:83:b5:43:40:ed:e6:d4:c8:d1:d7:86:2f:74:32:d6:fd:75: e3:0d:82:fd:bf:4e:18:42:f3:6a:a7:c6:ea:2c:5a:67:1b:7d: a7:5b:65:46:b4:cb:af:f8:6e:fd:32:c0:7f:77:0d:de:3a:aa: 4b:e9:f0:e7:5b:ac:3b:d9:c6:ae:98:54:46:6a:d7:2f:8b:54: 67:10:7f:a0:5c:1d:74:f2:b7:e7:cc:e5:26:f0:e3:ec:a8:64: ec:d9:e8:33:f1:47:c9:55:1a:96:bf:87:c2:c2:0b:1c:d4:c6: bc:05:76:c0:55:1e:f5:08:69:7a:fb:68:24:d7:f1:33:4e:ae: 56:41:5b:e8:44:09:67:5c:ad:7c:ca:10:51:a5:68:f6:9d:07: 10:15:9d:57:f3:25:e0:ee:0e:e0:6b:30:fc:08:67:35:28:2e: ab:c6:bc:f7:ab:20:c2:24:de:66:95:aa:fe:b0:60:2f:4c:26: 5c:98:4c:00:f9:40:d4:a6:23:23:ea:42:43:f6:2e:b5:d6:82: f2:27:11:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjUwNTMxMDEzNTU1WhcNMjUwNjA3MDEzNTU1WjAYMRYwFAYD VQQDEw02ODNhNWNmYi1lM2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtn2GGZn1a507gDalYebFNt4sMXFLA+BS7eTxqh90Nh5IURPiUK8j7ZiRjaR hGp8zLZttEG12bvS86fdvsQKN0TMKO6y7G07HCowKJpox/lwCmmPwu8yTJYfWa+g CTq4oQzYTQaJ69HnVsxG+trualqEP+FDJrHrcCRiijhgzgYShZXQED0rc79Z7IK9 JxAFU7w4H+EEA7cawFAUlDtkt7dMH1O5TJ1RL9mQBPtARJp1Hl1+9OqIgx9G3xXN 3gOjWsPrA41lqbhmYfQuLyQoZSsFdwgP56NlwgjGagV93M6i4nIav37qlUq+LTAP m/BjRhmfyj2HVfv0u67s7Mct0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMZvaMF MBi1oP0neh0KgoBObDIVMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkOastVwXEyDw18lm/3mSA6xb1/1O+pnqDWH9QMNIIry+uRid0DobF iwov9L+vN0YyxPQ89mFog7VDQO3m1MjR14YvdDLW/XXjDYL9v04YQvNqp8bqLFpn G32nW2VGtMuv+G79MsB/dw3eOqpL6fDnW6w72caumFRGatcvi1RnEH+gXB108rfn zOUm8OPsqGTs2egz8UfJVRqWv4fCwgsc1Ma8BXbAVR71CGl6+2gk1/EzTq5WQVvo RAlnXK18yhBRpWj2nQcQFZ1X8yXg7g7gazD8CGc1KC6rxrz3qyDCJN5mlar+sGAv TCZcmEwA+UDUpiMj6kJD9i611oLyJxER -----END CERTIFICATE-----Generated at Sat May 31 17:46:28 2025 by rpki-client