$ rpki-client -vvf rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft File: UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft (raw, json) Hash identifier: IpnhYi5D6GmgUFgrJSXCjw9js3cpEt4ODT9cCMVYO3Q= Subject key identifier: 8F:68:68:E3:95:77:51:51:7F:67:AE:2C:82:2F:03:1F:F7:B5:04:9C Authority key identifier: 50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 Certificate issuer: /CN=A9157031/serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Certificate serial: 03F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft Manifest number: 03EC Signing time: Fri 13 Jun 2025 00:04:17 +0000 Manifest this update: Fri 13 Jun 2025 00:04:16 +0000 Manifest next update: Fri 20 Jun 2025 00:04:16 +0000 Files and hashes: 1: UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl (hash: VnP+HjpCd4vjPwY7xIi7JoK7VTbSiAkKs/R7Httt1OQ=) 2: 32D8FF34C99E11ED98E9BE5BC4F9AE02.roa (hash: c5V6Lua8bVtI2cCUYsdMWFX4y1DX6zS+QDVuvCq2xVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1008 (0x3f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157031, serialNumber=50E50EDAF64A2C25B731239673D9070F61830279 Validity Not Before: Jun 13 00:04:16 2025 GMT Not After : Jun 20 00:04:16 2025 GMT Subject: CN=684b6b00-0ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:34:f1:aa:87:06:0b:7c:e0:54:55:73:71:11: 1d:34:55:a3:93:07:b7:86:bd:dd:92:3e:b5:a4:ff: 64:f2:46:8f:a1:1d:b2:08:4d:5f:ef:97:73:cd:68: f0:ea:64:12:03:55:3c:a4:4b:f6:44:2e:b2:b3:dc: 66:ef:ee:df:29:bb:0d:55:d4:d5:ee:ca:e5:07:77: 0b:d7:bf:f5:1d:e6:a3:61:23:6d:73:b3:71:89:8f: 45:3f:37:26:88:5f:52:57:4b:02:16:66:4c:66:f0: 8d:52:ed:74:1d:bc:79:ca:d7:b3:a8:d9:d4:2c:1a: f5:92:57:ae:ba:fb:03:7b:9d:ec:0f:01:ed:a1:3b: b6:7a:8d:82:09:cc:ba:b2:45:69:67:dd:38:c2:02: 6e:08:ed:f3:67:da:f8:d7:af:11:9a:99:e8:52:ab: b2:9e:e1:f4:ea:5b:9d:75:96:60:e7:82:5a:99:a9: 24:c7:a3:47:b2:2a:1f:1d:3b:cc:22:cc:22:75:40: df:e5:29:bc:be:2b:eb:a0:5a:4d:7d:d7:63:10:44: ad:b9:78:ab:01:b6:78:19:fc:a7:ca:f0:97:90:6c: 8d:93:54:86:5a:7d:2c:40:c9:06:4e:32:52:af:e6: 44:92:60:6c:10:18:57:e6:a1:84:73:fb:87:40:9d: e3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:68:68:E3:95:77:51:51:7F:67:AE:2C:82:2F:03:1F:F7:B5:04:9C X509v3 Authority Key Identifier: keyid:50:E5:0E:DA:F6:4A:2C:25:B7:31:23:96:73:D9:07:0F:61:83:02:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UOUO2vZKLCW3MSOWc9kHD2GDAnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157031/7A004F787EC911EC84EC4418C4F9AE02/UOUO2vZKLCW3MSOWc9kHD2GDAnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ea:7b:e1:b5:58:4a:07:0f:88:5d:e8:97:7d:d5:6c:80:39: f8:18:c3:b3:cb:4b:99:9f:c9:3f:93:0d:ef:9b:f0:07:8d:2c: 3b:ab:db:4e:71:6c:d0:1a:e1:02:eb:90:3f:e9:fe:0b:a1:0c: 62:d0:70:cd:97:57:ef:75:00:3e:cd:22:c6:de:d6:dc:54:f2: 29:5f:42:fe:f4:83:6d:ab:41:e0:65:b2:f9:53:21:85:b9:22: 2c:b6:d5:ca:aa:7e:ce:6d:20:13:3b:a8:83:f1:bc:37:1b:af: 98:64:7c:fb:19:02:eb:d6:62:71:8e:5c:e2:34:3f:e3:e2:fa: e4:01:7d:2c:88:45:00:4f:53:91:38:1c:54:60:6e:1b:ae:e4: 75:7b:87:72:65:80:85:f1:f8:35:08:70:29:f3:0f:ac:70:aa: 3d:40:8b:23:6a:35:13:9a:ab:d5:1d:1c:57:b6:ed:ae:c6:aa: 5f:ba:bd:a6:4f:08:a8:e8:6a:53:22:68:86:61:70:34:60:cf: 05:6e:10:bf:60:fa:eb:9a:6b:f0:c8:35:3f:d7:ad:b9:fe:f0: 05:0e:ce:dc:43:f7:35:db:f6:31:86:a4:2f:8f:fb:7d:ef:75: 40:43:46:c9:0b:5b:a4:8a:ae:b5:62:7c:aa:ce:d1:0f:b8:3d: b0:2e:09:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTcwMzExMTAvBgNVBAUTKDUwRTUwRURBRjY0QTJDMjVCNzMxMjM5NjczRDkwNzBG NjE4MzAyNzkwHhcNMjUwNjEzMDAwNDE2WhcNMjUwNjIwMDAwNDE2WjAYMRYwFAYD VQQDEw02ODRiNmIwMC0wZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjTxqocGC3zgVFVzcREdNFWjkwe3hr3dkj61pP9k8kaPoR2yCE1f75dzzWjw 6mQSA1U8pEv2RC6ys9xm7+7fKbsNVdTV7srlB3cL17/1HeajYSNtc7NxiY9FPzcm iF9SV0sCFmZMZvCNUu10Hbx5ytezqNnULBr1kleuuvsDe53sDwHtoTu2eo2CCcy6 skVpZ904wgJuCO3zZ9r4168RmpnoUquynuH06luddZZg54Jamakkx6NHsiofHTvM IswidUDf5Sm8vivroFpNfddjEEStuXirAbZ4GfynyvCXkGyNk1SGWn0sQMkGTjJS r+ZEkmBsEBhX5qGEc/uHQJ3j4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9oaOOV d1FRf2euLIIvAx/3tQScMB8GA1UdIwQYMBaAFFDlDtr2SiwltzEjlnPZBw9hgwJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzAzMS83QTAwNEY3ODdF QzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xDVzNNU09XYzlrSEQyR0RB bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPVU8ydlpLTENXM01TT1djOWtIRDJHREFuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzAzMS83QTAwNEY3ODdFQzkxMUVDODRFQzQ0MThDNEY5QUUwMi9VT1VPMnZaS0xD VzNNU09XYzlrSEQyR0RBbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq6nvhtVhKBw+IXeiXfdVsgDn4GMOzy0uZn8k/kw3vm/AHjSw7q9tO cWzQGuEC65A/6f4LoQxi0HDNl1fvdQA+zSLG3tbcVPIpX0L+9INtq0HgZbL5UyGF uSIsttXKqn7ObSATO6iD8bw3G6+YZHz7GQLr1mJxjlziND/j4vrkAX0siEUAT1OR OBxUYG4bruR1e4dyZYCF8fg1CHAp8w+scKo9QIsjajUTmqvVHRxXtu2uxqpfur2m Twio6GpTImiGYXA0YM8FbhC/YPrrmmvwyDU/1625/vAFDs7cQ/c12/YxhqQvj/t9 73VAQ0bJC1ukiq61YnyqztEPuD2wLgkm -----END CERTIFICATE-----Generated at Sat Jun 14 17:18:23 2025 by rpki-client