$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: Yi40o9UT+F7mScftcL3nJhuffowgKhqGnKZ2UdP2W9o= Subject key identifier: A1:93:F5:57:79:30:FC:40:4A:BD:F9:6C:ED:30:04:45:71:67:1C:87 Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 038E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 038A Signing time: Sat 07 Jun 2025 00:53:11 +0000 Manifest this update: Sat 07 Jun 2025 00:53:10 +0000 Manifest next update: Sat 14 Jun 2025 00:53:10 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: dbarW+sFAtetPXzCv+PjKH5YcZeeohrOoDjdasEMsw0=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: DNm/cKBnOwMLtVf8PNiul90A2LNN5D/9x28AaUpSyDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 00:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5, serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Jun 7 00:53:10 2025 GMT Not After : Jun 14 00:53:10 2025 GMT Subject: CN=68438d77-4789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3b:4c:8f:6c:d1:53:95:91:be:d4:7a:99:5d: 8d:73:36:ed:90:06:42:2a:43:3d:58:58:83:f8:cb: 2e:7c:16:67:00:f9:b4:bb:9b:ee:67:b2:af:d2:4b: 66:11:fb:83:58:9c:4a:29:7c:8f:c4:fa:cf:eb:f4: d8:f8:18:d3:62:fd:5a:4a:d8:a3:e7:e2:37:76:39: 30:ce:b8:29:a3:b3:3d:7f:87:f3:fd:f2:68:24:99: 3b:d6:39:25:73:ee:f3:94:38:41:e9:4c:2a:db:23: 58:ef:e6:27:cd:b6:7d:bc:80:e8:f5:43:7b:88:d2: 17:38:ad:06:dd:5c:08:88:fb:a0:ec:a0:f0:8f:fd: 2f:88:5b:73:3d:a4:f1:a2:8a:e8:bd:6c:e2:44:6a: db:6f:78:72:01:ec:32:70:30:c1:12:37:79:58:9d: a8:26:12:6b:bc:8a:a0:03:5a:7b:2a:b8:15:14:a7: 08:4e:df:53:ed:e8:c8:22:05:29:df:b5:e0:87:3d: 12:66:0f:34:ec:af:01:f3:78:e3:93:39:d8:07:05: 2e:95:00:65:41:6e:a1:25:26:9d:ac:7e:2d:09:c4: fc:8e:80:18:a9:2b:e3:bd:c8:73:85:f1:73:04:1c: 24:86:a1:92:41:b1:91:cb:6c:4d:88:77:42:04:26: 10:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:93:F5:57:79:30:FC:40:4A:BD:F9:6C:ED:30:04:45:71:67:1C:87 X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e1:07:73:fd:e3:69:c6:a5:3d:68:22:51:f1:ec:59:93:2d: 39:54:b0:39:6f:b9:3d:7a:47:a6:27:10:17:a6:75:4d:cc:4b: 36:d0:f9:4f:08:a8:f0:6a:4a:21:e1:6a:64:91:60:29:81:e9: 76:93:4e:9e:5e:c2:be:a9:6a:8a:8e:da:e5:ca:6f:02:7e:c4: f5:06:3d:4b:91:61:c0:62:31:b2:23:2b:c8:9c:42:d8:e7:cd: 3e:c8:fd:5e:ee:38:07:d3:bf:ae:8b:1d:c0:c3:78:d1:e5:e5: 21:52:a2:71:fd:56:3d:ce:e5:cc:84:67:07:34:73:4b:fb:d3: a4:25:c8:e8:b0:bd:1c:d7:ca:d3:5c:0a:49:20:ca:2a:39:5a: 3c:1e:c1:d5:51:a4:03:0b:2f:62:f2:fc:99:e0:3f:d4:81:b7: 07:45:c3:ec:67:3c:ba:a5:ef:ae:b8:b0:d8:f5:6f:9b:d0:7c: 77:47:c1:e6:29:18:47:b6:bf:69:dc:9f:bb:1c:c8:df:50:d3: 6e:ba:f3:e7:c5:ae:8a:39:47:c9:61:e6:ef:2f:0e:91:ac:4c: 7d:9a:75:15:25:6d:b1:80:14:3f:b7:89:58:bb:dc:de:5b:ec: a0:44:4e:22:54:4e:f0:b4:8a:88:ec:e8:5a:ee:15:7a:18:2c: ce:fc:5b:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjUwNjA3MDA1MzEwWhcNMjUwNjE0MDA1MzEwWjAYMRYwFAYD VQQDEw02ODQzOGQ3Ny00Nzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1TtMj2zRU5WRvtR6mV2NczbtkAZCKkM9WFiD+MsufBZnAPm0u5vuZ7Kv0ktm EfuDWJxKKXyPxPrP6/TY+BjTYv1aStij5+I3djkwzrgpo7M9f4fz/fJoJJk71jkl c+7zlDhB6Uwq2yNY7+YnzbZ9vIDo9UN7iNIXOK0G3VwIiPug7KDwj/0viFtzPaTx oorovWziRGrbb3hyAewycDDBEjd5WJ2oJhJrvIqgA1p7KrgVFKcITt9T7ejIIgUp 37Xghz0SZg807K8B83jjkznYBwUulQBlQW6hJSadrH4tCcT8joAYqSvjvchzhfFz BBwkhqGSQbGRy2xNiHdCBCYQ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGT9Vd5 MPxASr35bO0wBEVxZxyHMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA64Qdz/eNpxqU9aCJR8exZky05VLA5b7k9ekemJxAXpnVNzEs20PlP CKjwakoh4WpkkWApgel2k06eXsK+qWqKjtrlym8CfsT1Bj1LkWHAYjGyIyvInELY 580+yP1e7jgH07+uix3Aw3jR5eUhUqJx/VY9zuXMhGcHNHNL+9OkJcjosL0c18rT XApJIMoqOVo8HsHVUaQDCy9i8vyZ4D/UgbcHRcPsZzy6pe+uuLDY9W+b0Hx3R8Hm KRhHtr9p3J+7HMjfUNNuuvPnxa6KOUfJYebvLw6RrEx9mnUVJW2xgBQ/t4lYu9ze W+ygRE4iVE7wtIqI7Oha7hV6GCzO/Fvr -----END CERTIFICATE-----Generated at Sun Jun 8 21:03:00 2025 by rpki-client