$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft File: uYUInIuVHhACl2u9XU0d0kGB8Z8.mft (raw, json) Hash identifier: MRogYtA3I15w9bnkFv0gd0sE1SnXMJgGl8s9WMEJFYk= Subject key identifier: BB:A0:A1:1C:F3:B6:67:98:67:25:EF:64:47:C8:3E:91:0B:C8:72:AB Authority key identifier: B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F Certificate issuer: /CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Certificate serial: 05C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft Manifest number: 05C1 Signing time: Fri 30 May 2025 23:17:53 +0000 Manifest this update: Fri 30 May 2025 23:17:52 +0000 Manifest next update: Fri 06 Jun 2025 23:17:52 +0000 Files and hashes: 1: uYUInIuVHhACl2u9XU0d0kGB8Z8.crl (hash: Yd+M/FmrllRckkfEAnEdpe9RkZvUjH7FGbGQs0k4eyQ=) 2: 432BBA90C1F611EBAD8D7477C4F9AE02.roa (hash: hkJ88WsZE+BHMinN6yfbuiaAGQUAch41Smzi5V2G9DM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1478 (0x5c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA3C, serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Validity Not Before: May 30 23:17:52 2025 GMT Not After : Jun 6 23:17:52 2025 GMT Subject: CN=683a3ca1-1d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5f:8f:61:59:66:c2:15:fa:61:36:5a:42:ef: e3:e3:18:3b:c6:6d:03:ad:9d:1f:a3:0c:20:7e:ef: f9:6c:9e:cc:b8:e6:53:8b:2f:8e:2a:10:02:1c:74: 20:09:b0:db:eb:56:0a:32:06:94:6c:7a:8f:4e:af: b8:9b:e6:79:18:79:2b:96:a8:ee:b0:b5:c4:19:f4: 90:78:d4:28:be:99:11:09:72:eb:c5:66:d3:f4:89: 7c:31:76:f3:3a:1c:f2:95:4c:f5:07:9b:00:7f:36: 7e:b2:ae:4f:ef:b2:dc:81:82:c3:06:92:5a:c9:e5: dc:e9:51:fd:47:8d:a8:9c:fb:ad:de:f1:08:ac:b3: af:8f:b7:f4:00:6e:25:3e:8c:2a:21:ad:24:10:1d: 69:0f:ad:dc:e1:52:10:fc:0d:0c:16:be:56:df:4b: a8:5c:6e:ae:39:b4:03:26:74:cc:c1:32:ae:f1:03: b1:e2:43:d7:83:cb:6e:f7:87:c5:95:cc:eb:cb:33: 01:8b:a6:fa:72:f5:6e:c5:be:c1:47:19:24:34:49: fa:6a:20:32:15:36:13:4a:61:6e:6e:5e:1e:c9:3f: c7:05:39:4c:ba:41:d9:0d:78:0a:bd:9c:b9:21:84: cc:fc:14:a6:e2:33:b2:23:1a:40:3d:0c:db:8e:dd: b3:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A0:A1:1C:F3:B6:67:98:67:25:EF:64:47:C8:3E:91:0B:C8:72:AB X509v3 Authority Key Identifier: keyid:B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:26:49:0a:61:a9:37:d1:ce:a2:2d:0d:93:96:b3:b8:1e:3c: 54:23:e3:f5:08:bf:23:ae:3a:f3:99:fa:40:01:51:c8:eb:51: ce:49:01:15:9a:60:7f:59:c1:27:6c:e7:d7:fc:90:df:23:c5: ff:0b:73:14:9d:d2:08:c2:84:79:1d:64:52:9f:a2:9f:0a:67: a0:cc:f9:ab:dc:40:92:07:33:85:08:35:f0:1e:7b:f1:2c:23: a3:f7:4e:37:18:e6:1e:7b:31:91:47:55:df:b2:f4:1c:f3:64: 43:9c:84:3f:f4:e6:8b:7b:96:63:ea:64:54:58:08:7a:17:76: 29:00:09:aa:f5:d4:51:02:ce:6a:14:88:6c:c1:c1:ac:1e:d0: 10:6e:35:c9:6c:18:24:ae:19:36:a5:d7:b5:e6:5a:44:f2:7c: 22:0d:b0:d6:1c:6c:8a:37:35:4f:54:c5:69:cd:ed:d6:33:5d: ea:5e:90:10:f9:64:9e:32:fd:7f:a0:6d:d9:2f:3d:64:38:64: 04:fe:df:ed:53:17:41:43:11:56:7a:25:9e:36:6e:fc:c4:ab: a1:d8:a9:3a:22:b8:de:d0:ab:98:5b:65:30:af:8e:a2:f0:bd: 2e:d7:1c:2d:2b:74:2f:a2:cb:b2:ac:df:a9:e4:b5:28:95:ad: f6:df:e9:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBM0MxMTAvBgNVBAUTKEI5ODUwODlDOEI5NTFFMTAwMjk3NkJCRDVENEQxREQy NDE4MUYxOUYwHhcNMjUwNTMwMjMxNzUyWhcNMjUwNjA2MjMxNzUyWjAYMRYwFAYD VQQDEw02ODNhM2NhMS0xZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2F+PYVlmwhX6YTZaQu/j4xg7xm0DrZ0fowwgfu/5bJ7MuOZTiy+OKhACHHQg CbDb61YKMgaUbHqPTq+4m+Z5GHkrlqjusLXEGfSQeNQovpkRCXLrxWbT9Il8MXbz OhzylUz1B5sAfzZ+sq5P77LcgYLDBpJayeXc6VH9R42onPut3vEIrLOvj7f0AG4l PowqIa0kEB1pD63c4VIQ/A0MFr5W30uoXG6uObQDJnTMwTKu8QOx4kPXg8tu94fF lczryzMBi6b6cvVuxb7BRxkkNEn6aiAyFTYTSmFubl4eyT/HBTlMukHZDXgKvZy5 IYTM/BSm4jOyIxpAPQzbjt2zZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLugoRzz tmeYZyXvZEfIPpELyHKrMB8GA1UdIwQYMBaAFLmFCJyLlR4QApdrvV1NHdJBgfGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0EzQy9EODM2NDZGRUMx RjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1VkhoQUNsMnU5WFUwZDBrR0I4 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VZVUluSXVWSGhBQ2wydTlYVTBkMGtHQjhaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0EzQy9EODM2NDZGRUMxRjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1Vkho QUNsMnU5WFUwZDBrR0I4WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbJkkKYak30c6iLQ2TlrO4HjxUI+P1CL8jrjrzmfpAAVHI61HOSQEV mmB/WcEnbOfX/JDfI8X/C3MUndIIwoR5HWRSn6KfCmegzPmr3ECSBzOFCDXwHnvx LCOj9043GOYeezGRR1XfsvQc82RDnIQ/9OaLe5Zj6mRUWAh6F3YpAAmq9dRRAs5q FIhswcGsHtAQbjXJbBgkrhk2pde15lpE8nwiDbDWHGyKNzVPVMVpze3WM13qXpAQ +WSeMv1/oG3ZLz1kOGQE/t/tUxdBQxFWeiWeNm78xKuh2Kk6Irje0KuYW2Uwr46i 8L0u1xwtK3QvosuyrN+p5LUola323+lL -----END CERTIFICATE-----Generated at Sat May 31 16:46:56 2025 by rpki-client