$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft File: ULpjuT-CkSle5HAxuWtFzaXCSw0.mft (raw, json) Hash identifier: vy7JeOpYM3B/jXB8BwHvtcDAJgQXwnGWxubScLM6GA8= Subject key identifier: E4:BA:08:FA:17:DC:01:C6:B3:28:2E:DF:19:B1:2F:A6:81:C1:20:F3 Authority key identifier: 50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D Certificate issuer: /CN=A9199CFF/serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft Manifest number: 43 Signing time: Sat 31 May 2025 07:00:38 +0000 Manifest this update: Sat 31 May 2025 07:00:38 +0000 Manifest next update: Sat 07 Jun 2025 07:00:38 +0000 Files and hashes: 1: ULpjuT-CkSle5HAxuWtFzaXCSw0.crl (hash: WpFMbMf9XIldZPORLL7LhvQqWwUEPENhAEc6UMPa5DI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CFF, serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Validity Not Before: May 31 07:00:38 2025 GMT Not After : Jun 7 07:00:38 2025 GMT Subject: CN=683aa916-7d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8e:20:f6:31:59:65:df:83:3c:64:c0:7c:9a: c6:92:03:c1:7c:4a:f4:92:e9:41:e0:51:a9:f8:0f: fa:8b:b0:ee:21:ce:25:92:89:26:b9:f9:a5:27:06: c7:b3:a1:8c:8d:6b:8a:9d:81:f6:b2:3e:a6:4f:51: e3:a2:4a:cd:d0:f6:c5:7c:f0:a0:06:41:6d:55:0c: db:e9:ba:e8:25:37:d0:3e:b9:81:60:d8:47:41:8a: 2d:59:1c:d8:b7:39:8d:31:a4:b9:cb:80:4a:e5:dc: 57:73:cd:97:1e:97:a5:5a:5b:26:d0:74:f5:84:32: 85:62:5e:d1:60:80:91:a7:0c:14:cb:b2:99:b0:5f: 9a:dd:de:a4:04:35:0d:6a:ce:74:98:35:c8:d5:b8: 65:b3:36:f7:b3:e4:11:13:43:b1:c5:9b:64:e2:37: cc:07:00:22:23:f8:83:a5:e6:b7:67:be:7a:de:85: 74:31:b0:f5:14:60:27:98:85:4a:98:88:29:65:2a: b0:89:fe:20:0c:e0:43:0d:33:4f:99:70:45:96:1c: e1:17:48:3c:50:62:9f:17:41:6d:f7:79:3f:d3:6a: 83:da:27:7c:04:94:d4:f1:f7:b2:55:be:92:b5:91: 2a:27:a9:38:20:9b:87:a2:5d:af:c0:0a:b4:11:30: ba:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:BA:08:FA:17:DC:01:C6:B3:28:2E:DF:19:B1:2F:A6:81:C1:20:F3 X509v3 Authority Key Identifier: keyid:50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:04:ee:7a:37:58:22:a2:f5:74:b5:74:6a:dd:67:63:76:e8: 46:89:0e:c2:93:13:50:cf:76:0e:e2:2d:16:fe:dd:fe:7c:8d: 9d:90:61:98:6e:cc:65:9e:a6:e0:3b:b1:63:08:9f:43:be:e8: c5:ca:24:75:6c:fd:23:ba:5b:40:c1:a3:78:2e:e0:f9:2c:71: 8e:cc:99:7f:75:a3:9b:d7:ed:6b:7a:d8:51:94:ea:b7:9c:bb: 9a:c0:eb:87:39:39:31:c2:fe:9d:a2:df:99:0c:50:1a:85:12: 5f:9f:80:45:ac:24:52:d8:80:1c:24:fa:b1:bc:fd:9f:62:2b: 85:11:1f:fc:b8:33:2a:2f:45:6e:98:05:7a:c1:ea:6a:cc:21: 8b:7f:8d:a7:5a:24:68:05:b6:6b:ee:8b:44:3c:43:5a:57:80: 02:e5:15:dc:f1:f4:b3:93:ea:f1:23:43:60:1d:c4:94:e7:89: 66:d7:03:6a:9f:94:cb:f4:aa:4a:66:0c:c3:2c:e6:b2:3c:2b: 11:ad:bd:20:bf:30:29:a3:33:7d:4b:32:09:66:69:d6:01:d6: a6:e7:bd:89:cf:96:ac:81:ba:07:94:3a:0a:7e:4f:9a:4c:07: ff:19:0a:89:bd:f3:25:46:27:86:45:35:83:b2:52:c8:70:f4: 32:4f:6a:7d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OUNGRjExMC8GA1UEBRMoNTBCQTYzQjkzRjgyOTEyOTVFRTQ3MDMxQjk2QjQ1Q0RB NUMyNEIwRDAeFw0yNTA1MzEwNzAwMzhaFw0yNTA2MDcwNzAwMzhaMBgxFjAUBgNV BAMTDTY4M2FhOTE2LTdkMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+jiD2MVll34M8ZMB8msaSA8F8SvSS6UHgUan4D/qLsO4hziWSiSa5+aUnBsez oYyNa4qdgfayPqZPUeOiSs3Q9sV88KAGQW1VDNvpuuglN9A+uYFg2EdBii1ZHNi3 OY0xpLnLgErl3FdzzZcel6VaWybQdPWEMoViXtFggJGnDBTLspmwX5rd3qQENQ1q znSYNcjVuGWzNvez5BETQ7HFm2TiN8wHACIj+IOl5rdnvnrehXQxsPUUYCeYhUqY iCllKrCJ/iAM4EMNM0+ZcEWWHOEXSDxQYp8XQW33eT/TaoPaJ3wElNTx97JVvpK1 kSonqTggm4eiXa/ACrQRMLoHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5LoI+hfc AcazKC7fGbEvpoHBIPMwHwYDVR0jBBgwFoAUULpjuT+CkSle5HAxuWtFzaXCSw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5Q0ZGLzJBRTE2QTU4RDdF MDExRUY4QjE3M0QyRkM0RjlBRTAyL1VMcGp1VC1Da1NsZTVIQXh1V3RGemFYQ1N3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUxwanVULUNrU2xlNUhBeHVXdEZ6YVhDU3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5 Q0ZGLzJBRTE2QTU4RDdFMDExRUY4QjE3M0QyRkM0RjlBRTAyL1VMcGp1VC1Da1Ns ZTVIQXh1V3RGemFYQ1N3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH8E7no3WCKi9XS1dGrdZ2N26EaJDsKTE1DPdg7iLRb+3f58jZ2QYZhu zGWepuA7sWMIn0O+6MXKJHVs/SO6W0DBo3gu4PkscY7MmX91o5vX7Wt62FGU6rec u5rA64c5OTHC/p2i35kMUBqFEl+fgEWsJFLYgBwk+rG8/Z9iK4URH/y4MyovRW6Y BXrB6mrMIYt/jadaJGgFtmvui0Q8Q1pXgALlFdzx9LOT6vEjQ2AdxJTniWbXA2qf lMv0qkpmDMMs5rI8KxGtvSC/MCmjM31LMglmadYB1qbnvYnPlqyBugeUOgp+T5pM B/8ZCom98yVGJ4ZFNYOyUshw9DJPan0= -----END CERTIFICATE-----Generated at Sat May 31 17:01:15 2025 by rpki-client