$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft File: UtXW_72oj1ReUbr5n32s4ZPAblc.mft (raw, json) Hash identifier: N14X+agWI/z4nZCRwAUhqoyRNU37OVRcDKlulZ5FRJY= Subject key identifier: BF:91:E2:18:C8:09:A8:C7:2E:E8:42:65:BC:D5:86:D4:E2:2D:D9:4A Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 07D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft Manifest number: 07D1 Signing time: Fri 30 May 2025 21:18:57 +0000 Manifest this update: Fri 30 May 2025 21:18:56 +0000 Manifest next update: Fri 06 Jun 2025 21:18:56 +0000 Files and hashes: 1: UtXW_72oj1ReUbr5n32s4ZPAblc.crl (hash: XNDE0E2y0lZAZaRBLT9vVB0NOb2kyoJMJtX+eblx+1I=) 2: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (hash: X3Zxmzy65RFAr4wRuSkQChvufHFA8zifcOkEqKI8dKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6, serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: May 30 21:18:56 2025 GMT Not After : Jun 6 21:18:56 2025 GMT Subject: CN=683a20c0-f275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:40:d8:0e:f2:a9:cc:58:29:d1:10:54:0d:ba: c3:60:86:fc:1f:84:f9:75:d9:14:47:ef:9e:70:bc: a6:f5:8e:98:3a:73:6e:0c:6a:c0:9e:b8:e0:5f:45: bc:60:11:3f:aa:70:63:70:0d:9b:e5:15:98:b7:50: 00:46:e6:f6:ef:7b:91:31:92:a6:02:4c:56:6b:a5: 21:e7:96:da:e6:ce:7a:98:cf:a1:bd:d9:dd:ed:da: 5a:1f:62:fd:44:ed:2b:28:cd:97:70:2f:5d:db:e4: df:c5:6c:ac:b8:f1:72:07:33:68:0c:25:d9:17:c2: e2:ca:ff:be:0f:e3:f9:8a:e9:55:33:69:10:44:09: b8:2d:24:1f:a2:fd:da:67:6d:31:88:46:52:0a:f9: 77:42:a4:08:69:fa:d5:bd:48:45:5a:8f:51:e7:cf: 1b:74:a0:2d:f0:04:1e:9d:f5:2b:40:23:00:17:78: c5:9a:cb:a4:bf:7e:95:31:e8:b8:96:a0:d9:b0:e2: 1f:b2:ae:cf:9c:34:57:df:40:5b:8d:3b:f1:14:3e: f8:64:de:e1:8a:00:81:49:8f:aa:02:ff:7c:56:c3: 2d:8f:0a:65:d7:d6:19:79:20:d6:c2:e6:c3:2c:07: 54:17:6a:cb:c7:21:4f:ff:6b:dc:3b:9e:b2:8f:0f: 37:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:91:E2:18:C8:09:A8:C7:2E:E8:42:65:BC:D5:86:D4:E2:2D:D9:4A X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:29:37:2f:8b:ad:e8:49:d4:2a:56:bc:0f:80:06:10:47:6d: dc:63:20:e9:49:85:c9:65:9d:17:62:5c:41:95:b4:a7:60:a6: e3:89:72:24:75:46:7a:21:4d:a8:74:ff:d6:b7:31:02:81:a3: 2b:e0:ff:51:17:59:41:2c:c8:16:35:da:9b:52:00:cb:c3:05: c6:61:32:a5:0f:e4:4b:c4:aa:38:d0:cc:aa:c2:12:94:dd:56: 74:2b:c1:34:3f:05:b3:e6:d6:af:9e:34:b6:48:31:ff:44:2f: 81:fc:89:e6:b5:c7:a0:f8:5c:ef:10:94:a4:25:d3:4d:43:a8: 4e:ad:a5:22:e1:37:54:46:58:a4:9b:f3:53:82:64:fc:33:13: 4e:2c:8d:2c:f6:32:4d:6d:ee:4e:b4:cb:48:3d:16:76:60:01: 66:29:67:c9:0d:38:f2:ab:da:88:ca:10:d2:06:17:dc:f9:a0: 10:ca:d4:26:29:bb:2f:54:e9:e8:8b:6b:fc:29:79:18:fa:aa: 5c:9c:02:5e:bc:07:2e:20:70:09:25:ce:05:40:d7:e4:8f:e7: 40:13:ba:7e:ec:37:b7:59:f2:f3:87:bb:37:65:a2:5e:27:de: 6f:a5:ad:65:62:7b:70:1d:82:81:1d:98:7b:b2:8b:da:94:fd: 31:60:4b:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjUwNTMwMjExODU2WhcNMjUwNjA2MjExODU2WjAYMRYwFAYD VQQDEw02ODNhMjBjMC1mMjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6EDYDvKpzFgp0RBUDbrDYIb8H4T5ddkUR++ecLym9Y6YOnNuDGrAnrjgX0W8 YBE/qnBjcA2b5RWYt1AARub273uRMZKmAkxWa6Uh55ba5s56mM+hvdnd7dpaH2L9 RO0rKM2XcC9d2+TfxWysuPFyBzNoDCXZF8Liyv++D+P5iulVM2kQRAm4LSQfov3a Z20xiEZSCvl3QqQIafrVvUhFWo9R588bdKAt8AQenfUrQCMAF3jFmsukv36VMei4 lqDZsOIfsq7PnDRX30BbjTvxFD74ZN7higCBSY+qAv98VsMtjwpl19YZeSDWwubD LAdUF2rLxyFP/2vcO56yjw834QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+R4hjI CajHLuhCZbzVhtTiLdlKMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdGNi9FRDkzQ0VFOEYyQjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2ox UmVVYnI1bjMyczRaUEFibGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABKTcvi63oSdQqVrwPgAYQR23cYyDpSYXJZZ0XYlxBlbSnYKbjiXIk dUZ6IU2odP/WtzECgaMr4P9RF1lBLMgWNdqbUgDLwwXGYTKlD+RLxKo40MyqwhKU 3VZ0K8E0PwWz5tavnjS2SDH/RC+B/Inmtceg+FzvEJSkJdNNQ6hOraUi4TdURlik m/NTgmT8MxNOLI0s9jJNbe5OtMtIPRZ2YAFmKWfJDTjyq9qIyhDSBhfc+aAQytQm KbsvVOnoi2v8KXkY+qpcnAJevAcuIHAJJc4FQNfkj+dAE7p+7De3WfLzh7s3ZaJe J95vpa1lYntwHYKBHZh7sovalP0xYEuL -----END CERTIFICATE-----Generated at Sat May 31 16:39:46 2025 by rpki-client