$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft File: UzfctqkbQdUhGkTCFqljq6zH4rA.mft (raw, json) Hash identifier: VIVGzMxgKOuxOtrhhJHyhZElt9z6iXFgMyhPdC9p/XU= Subject key identifier: 3D:90:90:A4:CC:74:DA:7E:B0:1D:33:7E:91:15:B3:0D:7C:29:9B:DE Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 349D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft Manifest number: 3493 Signing time: Sat 31 May 2025 14:44:33 +0000 Manifest this update: Sat 31 May 2025 14:44:32 +0000 Manifest next update: Sat 07 Jun 2025 14:44:32 +0000 Files and hashes: 1: UzfctqkbQdUhGkTCFqljq6zH4rA.crl (hash: 5qJ2ZZPCt/XgGZyKP62ZxjASNm1NZ0Ik40E1TJ9/zXQ=) 2: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (hash: dOS+EBN8T4gv4pfAW5HZ87ld30CEjTabsXZtn+f9BiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:44:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13469 (0x349d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC, serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: May 31 14:44:32 2025 GMT Not After : Jun 7 14:44:32 2025 GMT Subject: CN=683b15d0-c3b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2e:f4:80:9f:bf:91:39:ba:0d:17:cf:47:e6: e2:e6:3c:a2:e0:96:14:16:fb:7b:ed:bb:87:a4:34: 54:49:92:15:5e:ab:e5:0b:77:e5:fe:54:e0:67:c7: f4:b8:65:f7:bc:de:04:86:ae:28:5f:9b:4d:47:e4: 79:a2:34:14:b9:e0:75:bf:11:5b:3b:a0:00:df:a3: bd:a1:57:1a:60:b2:7a:02:59:49:de:2d:2c:e8:50: 40:fe:a8:4d:c8:dd:72:74:98:eb:a8:45:c7:84:ec: 33:ef:f7:c5:18:2e:78:ce:31:71:fd:82:f7:ec:43: fd:1f:97:75:08:83:6b:14:ed:68:0c:07:29:f4:d7: 9e:08:f3:91:a3:9b:4f:58:bb:52:42:7c:d6:a2:5e: 56:f0:b0:20:eb:e6:5c:67:6d:87:7e:84:ae:1e:bf: ce:e3:2b:9d:d6:17:eb:3f:ac:d3:79:be:e9:ec:4a: c9:3b:a9:69:64:ed:29:d4:62:1c:7f:ca:d4:9e:8c: 5e:a5:ec:15:67:7b:08:50:27:00:0b:a9:d9:e8:90: 26:10:f8:a2:e6:86:d7:ef:86:2f:f6:f3:0b:e3:f3: 62:04:05:62:d7:65:91:7e:cc:bc:b3:a3:04:5d:0c: 32:34:f2:a8:77:00:12:45:e9:1d:58:38:35:5a:f8: eb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:90:90:A4:CC:74:DA:7E:B0:1D:33:7E:91:15:B3:0D:7C:29:9B:DE X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:2f:b9:a5:1b:48:6f:e7:dd:65:28:63:5d:02:4e:f6:a4:bb: f1:35:f7:37:bc:57:8a:e2:b9:7d:47:69:a4:38:93:4d:dc:a1: d4:42:0e:99:f8:aa:e8:dd:4a:1b:b0:30:a7:79:7a:1d:09:36: e7:dc:df:35:77:4d:6f:32:c0:16:83:77:05:88:93:5d:c0:66: be:d9:0e:1a:02:53:ca:b6:3d:81:58:28:fc:de:cc:ed:0d:ad: bf:63:62:e4:d6:f5:1a:ab:39:8e:16:2a:7f:e1:f7:b8:13:56: d8:56:9d:07:a5:d2:14:a2:0e:bf:b1:f2:01:a0:04:c7:89:8a: a6:16:ed:4d:85:00:56:c8:41:5d:1e:c3:e4:ba:10:0d:7f:49: ac:c4:13:ed:82:22:be:29:c9:f8:5c:51:cc:b8:1a:60:af:c4: f7:14:8d:c4:cb:d7:9b:be:13:83:8c:f2:dc:c5:5a:2c:28:e3: af:2b:93:97:30:4c:c3:ae:60:35:de:1c:f3:49:bc:c8:69:86: 9d:24:29:5f:a4:94:cf:4d:e6:a0:d5:7c:05:4b:0d:aa:c0:3b: de:43:07:58:de:08:c9:05:22:25:5c:e7:43:36:ee:71:13:f6: 48:e2:5d:51:09:24:56:0e:0f:85:fa:87:fa:d2:0f:32:34:5f: df:e1:da:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjUwNTMxMTQ0NDMyWhcNMjUwNjA3MTQ0NDMyWjAYMRYwFAYD VQQDEw02ODNiMTVkMC1jM2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsS70gJ+/kTm6DRfPR+bi5jyi4JYUFvt77buHpDRUSZIVXqvlC3fl/lTgZ8f0 uGX3vN4Ehq4oX5tNR+R5ojQUueB1vxFbO6AA36O9oVcaYLJ6AllJ3i0s6FBA/qhN yN1ydJjrqEXHhOwz7/fFGC54zjFx/YL37EP9H5d1CINrFO1oDAcp9NeeCPORo5tP WLtSQnzWol5W8LAg6+ZcZ22HfoSuHr/O4yud1hfrP6zTeb7p7ErJO6lpZO0p1GIc f8rUnoxepewVZ3sIUCcAC6nZ6JAmEPii5obX74Yv9vML4/NiBAVi12WRfsy8s6ME XQwyNPKodwASRekdWDg1WvjrNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2QkKTM dNp+sB0zfpEVsw18KZveMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZCQy8zNzMwODM4MDFEOTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFk VWhHa1RDRnFsanE2ekg0ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhL7mlG0hv591lKGNdAk72pLvxNfc3vFeK4rl9R2mkOJNN3KHUQg6Z +Kro3UobsDCneXodCTbn3N81d01vMsAWg3cFiJNdwGa+2Q4aAlPKtj2BWCj83szt Da2/Y2Lk1vUaqzmOFip/4fe4E1bYVp0HpdIUog6/sfIBoATHiYqmFu1NhQBWyEFd HsPkuhANf0msxBPtgiK+Kcn4XFHMuBpgr8T3FI3Ey9ebvhODjPLcxVosKOOvK5OX MEzDrmA13hzzSbzIaYadJClfpJTPTeag1XwFSw2qwDveQwdY3gjJBSIlXOdDNu5x E/ZI4l1RCSRWDg+F+of60g8yNF/f4dqS -----END CERTIFICATE-----Generated at Sat May 31 17:34:21 2025 by rpki-client