$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft File: uH-tZU7EIXxlANDwaxm-MZ09rfc.mft (raw, json) Hash identifier: /JnhNEh5Tj4IrzmWxiRgb+4lvJTruRo9iKASRid7U8k= Subject key identifier: 85:45:9F:A2:8B:E9:24:DD:00:0B:F8:28:30:D0:1E:0B:57:7A:99:4C Authority key identifier: B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 Certificate issuer: /CN=A9155725/serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft Manifest number: 17 Signing time: Thu 01 May 2025 07:03:12 +0000 Manifest this update: Thu 01 May 2025 07:03:11 +0000 Manifest next update: Thu 08 May 2025 07:03:11 +0000 Files and hashes: 1: uH-tZU7EIXxlANDwaxm-MZ09rfc.crl (hash: c8cCxH0b/s0Sb32cMkOPSsiz3j6sn7ughYh+pBmlClU=) 2: 7621BEA0084611F08BEB2E2DC4F9AE02.roa (hash: aySEvRngppKs/Lyekhtc0uzM27zK/l0cRA6UmOeIzlU=) 3: 753F0588084611F08BEB2E2DC4F9AE02.roa (hash: v1ibDjxmzIv2LQG97YVedEX5wevRpNJDRuNHyDfGpBg=) 4: 75A4B2D4084611F08BEB2E2DC4F9AE02.roa (hash: JronbENc2C4chw8Lr5GoQXHOGuejfoIjiKRSNDdiR4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 08 May 2025 07:03:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=B87FAD654EC4217C6500D0F06B19BE319D3DADF7 Validity Not Before: May 1 07:03:11 2025 GMT Not After : May 8 07:03:11 2025 GMT Subject: CN=68131caf-af9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:96:16:29:c7:c9:19:15:53:1d:8b:93:99:69: 74:30:29:7a:a9:64:65:5b:25:5f:7c:60:52:18:f7: 86:88:3e:d3:eb:44:f5:55:c0:98:71:5e:60:d8:a4: 39:66:fb:70:ed:aa:3a:50:16:e1:25:0b:35:94:69: 60:17:d4:27:fb:7f:2c:d6:28:e2:ca:0b:bb:93:f4: 7e:5a:f4:48:31:65:2b:dd:17:37:de:24:f8:45:9f: d1:19:30:d6:61:3d:87:df:4c:93:ee:1a:24:11:5f: 09:58:96:cf:93:89:11:57:5a:bf:ff:42:e5:b9:f3: a9:9a:ed:2f:4b:fa:9e:96:30:b9:1a:a6:ee:da:4c: 77:9b:94:2b:47:ad:43:0a:14:ba:43:5a:cb:82:77: a9:13:de:4b:7d:16:b9:41:0e:98:ea:c0:b1:76:7d: 81:3c:5e:72:7c:9d:2d:ea:2b:0d:68:8f:50:e5:18: 16:c1:18:7f:5a:e8:f5:1f:d2:98:07:88:00:4a:c3: fc:92:c4:41:ae:0c:3b:6f:86:db:1c:1f:0c:6c:2e: 8c:c5:99:4e:73:d8:bd:f1:50:d4:37:47:20:95:c1: ec:f7:a9:42:dc:ca:ab:fc:dd:37:5c:43:fd:ae:68: 79:dd:7e:25:f8:ca:57:c0:33:c4:e4:48:47:cc:39: dc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:45:9F:A2:8B:E9:24:DD:00:0B:F8:28:30:D0:1E:0B:57:7A:99:4C X509v3 Authority Key Identifier: keyid:B8:7F:AD:65:4E:C4:21:7C:65:00:D0:F0:6B:19:BE:31:9D:3D:AD:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uH-tZU7EIXxlANDwaxm-MZ09rfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/801BCAA6083A11F09FF1D074C4F9AE02/uH-tZU7EIXxlANDwaxm-MZ09rfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:b6:6a:56:c9:91:63:95:39:4a:9d:4a:a1:9e:d0:02:4f:fd: 5f:e2:4f:39:37:8c:cc:10:3e:06:0b:34:97:ae:1d:df:cb:a2: 3c:78:48:44:72:fc:16:70:01:66:50:1a:bf:9a:f1:86:cb:62: 26:75:67:d7:eb:a3:e2:3c:55:70:75:be:b2:f0:eb:fc:bf:36: c5:da:e0:50:4d:75:d9:2f:2b:bc:48:25:b7:70:f6:de:2e:b4: 7a:dc:ee:d0:22:02:f1:3b:2a:c1:cd:ef:7b:4c:99:cf:68:e9: 5e:4e:0b:ab:0e:47:15:18:52:f2:13:ab:59:15:7b:4c:e6:32: e0:f2:56:04:a9:ff:e2:b8:a3:d5:aa:71:f7:79:65:15:03:3a: ce:f5:60:f0:7c:11:5c:3c:6d:4d:16:d0:ec:14:fa:4c:ba:d0: 68:cb:6c:16:c5:5c:3e:70:a0:da:b5:cd:32:6f:62:90:b7:a3: b4:72:bc:68:11:e9:0b:fb:5b:38:2b:fc:0e:5b:90:65:40:a5: 2a:ed:43:69:c1:fd:8c:51:5d:56:d3:51:20:57:ac:ce:c6:03: 89:c1:e4:be:ac:0e:19:64:f7:3f:3e:17:47:a1:02:fd:2d:51: d1:3a:0f:4e:50:b6:02:8e:47:ce:4f:60:ad:eb:fa:5c:91:9f: 2c:01:60:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoQjg3RkFENjU0RUM0MjE3QzY1MDBEMEYwNkIxOUJFMzE5 RDNEQURGNzAeFw0yNTA1MDEwNzAzMTFaFw0yNTA1MDgwNzAzMTFaMBgxFjAUBgNV BAMTDTY4MTMxY2FmLWFmOWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCslhYpx8kZFVMdi5OZaXQwKXqpZGVbJV98YFIY94aIPtPrRPVVwJhxXmDYpDlm +3DtqjpQFuElCzWUaWAX1Cf7fyzWKOLKC7uT9H5a9EgxZSvdFzfeJPhFn9EZMNZh PYffTJPuGiQRXwlYls+TiRFXWr//QuW586ma7S9L+p6WMLkapu7aTHeblCtHrUMK FLpDWsuCd6kT3kt9FrlBDpjqwLF2fYE8XnJ8nS3qKw1oj1DlGBbBGH9a6PUf0pgH iABKw/ySxEGuDDtvhtscHwxsLozFmU5z2L3xUNQ3RyCVwez3qULcyqv83TdcQ/2u aHndfiX4ylfAM8TkSEfMOdxzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhUWfoovp JN0AC/goMNAeC1d6mUwwHwYDVR0jBBgwFoAUuH+tZU7EIXxlANDwaxm+MZ09rfcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzgwMUJDQUE2MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4bEFORHdheG0tTVowOXJm Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvdUgtdFpVN0VJWHhsQU5Ed2F4bS1NWjA5cmZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzgwMUJDQUE2MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL3VILXRaVTdFSVh4 bEFORHdheG0tTVowOXJmYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGu2albJkWOVOUqdSqGe0AJP/V/iTzk3jMwQPgYLNJeuHd/Lojx4SERy /BZwAWZQGr+a8YbLYiZ1Z9fro+I8VXB1vrLw6/y/NsXa4FBNddkvK7xIJbdw9t4u tHrc7tAiAvE7KsHN73tMmc9o6V5OC6sORxUYUvITq1kVe0zmMuDyVgSp/+K4o9Wq cfd5ZRUDOs71YPB8EVw8bU0W0OwU+ky60GjLbBbFXD5woNq1zTJvYpC3o7RyvGgR 6Qv7Wzgr/A5bkGVApSrtQ2nB/YxRXVbTUSBXrM7GA4nB5L6sDhlk9z8+F0ehAv0t UdE6D05QtgKOR85PYK3r+lyRnywBYCg= -----END CERTIFICATE-----Generated at Sat May 3 01:53:37 2025 by rpki-client