$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: RricI0vS/UjjOyTmE8SCtiKVxTZc9LPlMvF0bBw8RFc= Subject key identifier: 1D:22:CA:DB:09:18:D6:5B:F5:D0:AA:31:8F:89:35:76:DF:3B:AE:C5 Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0BF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0BF1 Signing time: Fri 30 May 2025 18:57:09 +0000 Manifest this update: Fri 30 May 2025 18:57:08 +0000 Manifest next update: Fri 06 Jun 2025 18:57:08 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: F47DeFCz9aC9Mr5Ic+Ud21rN/xGVM72Alp2Ov4BBYOA=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3064 (0xbf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: May 30 18:57:08 2025 GMT Not After : Jun 6 18:57:08 2025 GMT Subject: CN=6839ff85-ce83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:aa:3d:7e:43:b7:5e:a2:16:7e:df:22:ad:6e: 0f:00:c2:71:29:dc:0e:d2:8b:6b:55:9c:4b:4f:ef: b7:67:8c:48:3b:fd:02:79:f5:95:c9:77:a1:79:9e: ff:07:18:2e:ba:78:9e:fd:c7:9b:1b:5b:39:9a:98: d2:b8:09:12:e6:b5:6c:ae:10:78:92:1d:fe:31:70: ad:80:af:92:f2:ef:82:70:ab:27:bf:6d:d1:0b:27: 54:7e:2a:64:14:06:1b:fe:2d:04:94:e7:fa:b0:76: 16:ee:cc:41:96:1b:88:84:04:46:77:fa:56:c3:0e: d7:29:7f:52:2e:b4:fe:ad:3f:67:c8:4b:f9:3c:44: 33:8b:66:c0:9e:0b:40:cc:1a:24:45:6a:7a:c6:02: 5d:56:d1:f6:d0:c6:a2:74:92:c2:2a:2a:1b:6f:47: a7:71:35:78:88:cf:73:9b:50:c7:80:80:73:56:a7: f5:49:04:df:a7:c3:ec:a0:88:fc:2d:fa:d4:d0:b4: 5a:61:53:17:84:2e:bf:0e:fb:32:98:78:6d:e9:53: 6f:2a:e5:32:a4:cb:3d:1d:8a:4c:63:6e:37:ec:2d: 14:91:65:cf:d6:fa:74:b2:0c:60:c7:a5:9b:da:61: ed:12:86:ad:09:7a:d4:04:ae:fa:66:d9:ef:c5:e8: 6d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:22:CA:DB:09:18:D6:5B:F5:D0:AA:31:8F:89:35:76:DF:3B:AE:C5 X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:b1:40:02:b1:c2:f2:20:a5:af:68:f2:a1:46:4c:f7:35:85: 7d:87:bf:eb:06:1e:6e:83:d3:e1:7c:54:bf:b3:9a:b2:40:80: af:1d:e9:38:9d:b3:e6:14:4a:3e:7a:8b:09:18:fd:db:58:0f: b7:5b:cd:a9:cc:3b:0c:a8:44:c9:0a:88:2d:f9:15:dc:3f:93: 8e:17:3b:5f:92:52:f1:b2:34:51:e1:ab:14:ea:57:fe:30:8e: c7:fc:1f:c0:cc:12:55:9b:4f:1a:fc:80:45:5b:22:1d:34:33: eb:b9:21:62:61:27:ee:7b:40:43:50:30:20:f8:b7:b1:9b:a1: c8:3c:c5:d2:24:b1:71:e2:31:29:5e:95:e1:a9:22:97:b5:91: 11:e0:78:9e:25:26:b8:36:f6:1c:fe:94:ca:2a:78:b1:b6:14: a7:db:88:ca:99:13:f3:e1:10:77:6e:ea:f8:cb:df:06:fd:fa: 43:e8:54:5a:3d:91:64:6d:9e:24:5d:a7:e9:9a:f4:24:4e:09: 4f:c6:7b:08:17:86:44:dc:35:9a:eb:65:31:7b:81:51:f1:17: 4a:0a:9d:86:02:8a:5c:a1:42:7c:af:ea:9b:9a:6c:09:86:5a: fa:72:e8:75:80:90:20:86:9f:ac:81:46:d3:0a:0c:be:a9:d2: 82:41:6c:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUwNTMwMTg1NzA4WhcNMjUwNjA2MTg1NzA4WjAYMRYwFAYD VQQDEw02ODM5ZmY4NS1jZTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKo9fkO3XqIWft8irW4PAMJxKdwO0otrVZxLT++3Z4xIO/0CefWVyXeheZ7/ Bxguunie/cebG1s5mpjSuAkS5rVsrhB4kh3+MXCtgK+S8u+CcKsnv23RCydUfipk FAYb/i0ElOf6sHYW7sxBlhuIhARGd/pWww7XKX9SLrT+rT9nyEv5PEQzi2bAngtA zBokRWp6xgJdVtH20MaidJLCKiobb0encTV4iM9zm1DHgIBzVqf1SQTfp8PsoIj8 LfrU0LRaYVMXhC6/DvsymHht6VNvKuUypMs9HYpMY2437C0UkWXP1vp0sgxgx6Wb 2mHtEoatCXrUBK76ZtnvxehtZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0iytsJ GNZb9dCqMY+JNXbfO67FMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmsUACscLyIKWvaPKhRkz3NYV9h7/rBh5ug9PhfFS/s5qyQICvHek4 nbPmFEo+eosJGP3bWA+3W82pzDsMqETJCogt+RXcP5OOFztfklLxsjRR4asU6lf+ MI7H/B/AzBJVm08a/IBFWyIdNDPruSFiYSfue0BDUDAg+Lexm6HIPMXSJLFx4jEp XpXhqSKXtZER4HieJSa4NvYc/pTKKnixthSn24jKmRPz4RB3bur4y98G/fpD6FRa PZFkbZ4kXafpmvQkTglPxnsIF4ZE3DWa62Uxe4FR8RdKCp2GAopcoUJ8r+qbmmwJ hlr6cuh1gJAghp+sgUbTCgy+qdKCQWzM -----END CERTIFICATE-----Generated at Sat May 31 17:02:18 2025 by rpki-client