$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft File: ueYM8Xn06svblJK6X3ys9FI5zPQ.mft (raw, json) Hash identifier: y92MxWlj/AwKG2KB9s7RjulUxoPJB2Gd7pcYYw4Yj3g= Subject key identifier: 42:DF:F0:FA:0C:99:B3:DF:F0:20:C5:AB:16:CC:D4:18:2D:B0:42:10 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 01E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft Manifest number: 01B0 Signing time: Sat 31 May 2025 03:31:26 +0000 Manifest this update: Sat 31 May 2025 03:31:26 +0000 Manifest next update: Sat 07 Jun 2025 03:31:26 +0000 Files and hashes: 1: ueYM8Xn06svblJK6X3ys9FI5zPQ.crl (hash: 9XtarSBYHW5t0bOrpCl+MhF26MfNxIL3ptSyLU/8ZYE=) 2: 7362D03E37C511EFBA013C34C4F9AE02.roa (hash: 9qnuOOqog1w0/6Ft0fo80AwEmtyxbUWJdcXWk0vjBP0=) 3: 14C4C7D4002611EFBD462953C4F9AE02.roa (hash: hi6S2Mh9Zc0AeJAKr2eaBvvBpbecYaUaD50MlmI4NaA=) 4: 43E73F1824D011F0805C1741C4F9AE02.roa (hash: tNRSiapsZeWkhtpGA+SHpuAF0dORUNQbpmMkQLwDzaU=) 5: D2DF3ACCE25911EF9C741573C4F9AE02.roa (hash: mzsLMpqKZHnpS1jxQCrwB8rjSWZK0J6cgj7y6Sy2ob0=) 6: 1DD3ED16BDB611EF8F65515FC4F9AE02.roa (hash: NYziG9pEfTMgU56vyqT4ECUx0+xGwWZL89cQ95occgk=) 7: E35133A60ED911EE8A4E0A23C4F9AE02.roa (hash: +LKQHGBjyQavtGbDYZoM0TZlAhYLHnodgT2xhs31P7o=) 8: A13BE9EE8EE911EE8698A64FC4F9AE02.roa (hash: BbLe+tzPbnaYWKG7gM1VjEH/wcUFNySxqBWUmVUdKKg=) 9: 139300E4BA6911EFA78E2F66C4F9AE02.roa (hash: ewdRPxERVjw1+imIbuRKiOzFgdfb8FXbS7BLrbgntiM=) 10: E17B507E25DF11F0B111A515C4F9AE02.roa (hash: hvgmafeqE7JpAOUh9MIGSNa3kJtd7cqjjE/RR/pff6g=) 11: 3F3EDA068CAB11EF8A61C244C4F9AE02.roa (hash: n8rocIcqcCEqWOhQW6COhKUHQ1TT+r5yq9m/cXvntlg=) 12: 305C2134666211EFB1D51134C4F9AE02.roa (hash: 678Vn3LLWwx5u4uELhujFENcUsNRng8pzaOjm9n/20Y=) 13: AE0A263AB00411EF95939E11C4F9AE02.roa (hash: Hb3S2H5mvG6APMmAW4C0vTeaq85iORr/31KWRV1IZtk=) 14: E7DC24BCC4C211EF8670983EC4F9AE02.roa (hash: uEWJ7/SbDN/8MDuGUTA/PUoegQuUTtnZid1qI1+pgB0=) 15: 7857C144B87211EE98B04B19C4F9AE02.roa (hash: VfjibvprvBmnfdE90FAhNj0D7QO9B7oG8yc/kCD9FSM=) 16: A069EA0C8EE911EE8698A64FC4F9AE02.roa (hash: 1Kpd2YjRlMJbYQzqvODxmlNt6RPiHgoY7Xsf29roK9M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:31:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 487 (0x1e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: May 31 03:31:26 2025 GMT Not After : Jun 7 03:31:26 2025 GMT Subject: CN=683a780e-9ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6c:20:47:0e:e8:fa:d8:5f:87:5c:3b:2c:9e: 44:9d:42:9c:0f:33:70:f6:86:01:5b:97:20:04:07: 84:d0:a8:37:4d:36:96:61:3d:af:b6:13:79:24:4e: 35:56:c5:f9:87:83:12:b1:52:57:13:69:a9:0e:b5: b3:02:00:11:b0:9a:a9:4c:54:4d:30:95:e3:c9:e5: 3b:b3:b1:26:1d:b3:2d:c8:f7:cf:7b:a9:cd:15:b8: 02:79:c5:5e:ee:99:16:00:a6:ee:7a:f4:ab:95:20: 18:82:29:f5:25:9b:b8:e9:14:81:34:7e:e7:4a:52: 44:61:1a:27:81:a2:e9:eb:48:c7:44:e9:8d:54:97: 6f:a1:21:ca:c9:b6:86:b2:8e:5a:2b:19:d9:af:36: e4:5b:77:9f:34:3f:65:6b:0a:9f:db:a9:99:36:d0: 9e:7e:7c:b3:37:d7:af:a5:f4:4a:d4:45:27:56:bc: 8b:c9:04:56:71:68:94:a3:b4:84:7a:4e:b3:4e:81: e0:a6:d3:9c:ca:8c:0d:0e:81:97:00:39:ba:0d:8f: 3d:96:10:ef:bc:ea:5f:62:e4:f6:70:14:b8:bd:b4: 5c:ae:d2:91:dc:fd:c6:f4:0e:2b:d5:c7:45:1a:ec: 6c:b5:49:fe:81:5c:d8:bb:da:bf:88:76:68:d1:ad: 5d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DF:F0:FA:0C:99:B3:DF:F0:20:C5:AB:16:CC:D4:18:2D:B0:42:10 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:53:db:7c:ac:8e:ea:e3:39:ea:61:f9:cc:a6:19:75:79:ce: 5f:49:15:f4:0e:c6:55:81:5e:fc:b6:23:ca:e8:e6:33:b4:d2: c1:24:8a:c9:e4:1c:aa:e5:8c:83:bd:47:b2:64:b9:09:f3:55: b5:7c:65:cc:ea:87:df:78:2d:24:15:28:66:e9:53:c0:41:bf: b6:77:69:78:78:5f:c9:65:68:df:eb:e5:00:bb:a7:3d:a0:73: a5:eb:03:89:55:3f:4e:45:2d:0d:2b:30:bc:4e:73:20:d3:4f: e9:35:c1:db:ce:b3:65:fd:d9:9d:53:a1:1f:94:f9:aa:ee:14: b0:0f:d6:34:fb:9a:5c:1a:e5:93:7c:34:40:c8:ed:85:0e:81: 71:e3:8f:0c:aa:da:7e:78:7e:21:ef:ce:9a:62:0c:2f:09:7a: 71:2c:f0:4d:aa:be:9e:4f:a0:a9:79:36:72:8e:ad:68:60:9c: 79:ee:cf:f4:3b:3c:52:8f:d7:26:77:92:96:9e:4a:f9:2d:6e: f9:73:34:41:a2:88:30:d9:0e:51:1a:ee:3b:45:ef:0f:89:4e: bd:0e:3e:c3:f3:1f:87:e9:c7:7d:c0:ab:2b:cf:63:0a:91:66: 77:b0:e3:e5:6d:b8:ee:fe:fb:61:f9:0e:92:11:b5:9b:73:ed: 64:82:50:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNTMxMDMzMTI2WhcNMjUwNjA3MDMzMTI2WjAYMRYwFAYD VQQDEw02ODNhNzgwZS05YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWwgRw7o+thfh1w7LJ5EnUKcDzNw9oYBW5cgBAeE0Kg3TTaWYT2vthN5JE41 VsX5h4MSsVJXE2mpDrWzAgARsJqpTFRNMJXjyeU7s7EmHbMtyPfPe6nNFbgCecVe 7pkWAKbuevSrlSAYgin1JZu46RSBNH7nSlJEYRongaLp60jHROmNVJdvoSHKybaG so5aKxnZrzbkW3efND9lawqf26mZNtCefnyzN9evpfRK1EUnVryLyQRWcWiUo7SE ek6zToHgptOcyowNDoGXADm6DY89lhDvvOpfYuT2cBS4vbRcrtKR3P3G9A4r1cdF GuxstUn+gVzYu9q/iHZo0a1d9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELf8PoM mbPf8CDFqxbM1BgtsEIQMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTAzQi9BRjk2NzE2NjBCNkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZz dmJsSks2WDN5czlGSTV6UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALU9t8rI7q4znqYfnMphl1ec5fSRX0DsZVgV78tiPK6OYztNLBJIrJ 5Byq5YyDvUeyZLkJ81W1fGXM6offeC0kFShm6VPAQb+2d2l4eF/JZWjf6+UAu6c9 oHOl6wOJVT9ORS0NKzC8TnMg00/pNcHbzrNl/dmdU6EflPmq7hSwD9Y0+5pcGuWT fDRAyO2FDoFx448Mqtp+eH4h786aYgwvCXpxLPBNqr6eT6CpeTZyjq1oYJx57s/0 OzxSj9cmd5KWnkr5LW75czRBoogw2Q5RGu47Re8PiU69Dj7D8x+H6cd9wKsrz2MK kWZ3sOPlbbju/vth+Q6SEbWbc+1kglD9 -----END CERTIFICATE-----Generated at Sat May 31 17:27:51 2025 by rpki-client