$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft File: UPIOqel1rkxMhmfLV_e89XAhXJY.mft (raw, json) Hash identifier: Un215o7WaLu1Y4hC6Dpv3BdG6pTYLxep5QOTmO5JHMU= Subject key identifier: EE:7E:65:CA:AC:5E:FB:A5:B5:14:C6:10:B9:F9:BA:6C:8A:26:16:D6 Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 249D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft Manifest number: 242A Signing time: Thu 24 Apr 2025 15:50:08 +0000 Manifest this update: Thu 24 Apr 2025 15:50:08 +0000 Manifest next update: Thu 01 May 2025 15:50:08 +0000 Files and hashes: 1: UPIOqel1rkxMhmfLV_e89XAhXJY.crl (hash: 92AljQLLiCnA/HycDIoJiG+wBgWNe4lcriWu3wEpt9E=) 2: 773D7A96B0DC11ECAEC09469C4F9AE02.roa (hash: JSTjxevpQh7Y9WIfXMl2eIjomxLJnjI/r2tIU+oc0Ig=) 3: D327C18CDFEC11ED9AB6E147C4F9AE02.roa (hash: DkDF5ioX13OuJfh2JylvgLRRw6+AIn++z0lBKozZ6IM=) 4: B8951CDCD23611EA8D9E515BC4F9AE02.roa (hash: 3p58ypdk04ElN+6HEttw9qJ/C60XU0tMI9YBNjvhXdM=) 5: E706A8B2BBF111EE8697E433C4F9AE02.roa (hash: cishBm9UdoGGvPuPGzEAmXBlRKMXNl1QLjdbaBeI7B0=) 6: 1A2298A2D23811EABDECA85FC4F9AE02.roa (hash: tFtHJDRq68MkxOGT5VgkwrnSGzaE039FiHh4oq6Q4EQ=) 7: 491B85B2E58911ED94960F39C4F9AE02.roa (hash: 1fv7fZFzFEs/sLkCGSCbMf5alHoPqZF1EHmGHYYm0ys=) 8: 06239EBADFEA11ED835B4D0EC4F9AE02.roa (hash: yndVn7hcuDMCdpxEcUDVR9meRxJpnYlQ5KdYems+Xe0=) 9: 59B3485028C111E7A885571AC4F9AE02.roa (hash: cpxWzbtBjfOYkdrL+G3YkBQCddhQ01gMHqlqKByoADs=) 10: 554E53D4B0B811EC9BE93E24C4F9AE02.roa (hash: zWhiAKzwQg9bP+RZqYCDyP/HTuRht7KXbJE7TpD4TKc=) 11: 5A2BB4DE28C111E7A885571AC4F9AE02.roa (hash: lmPij0yxhpci1H7hfOEpStvrCK/OQdYLZzjGWxHldlQ=) 12: D451FBE0DFEC11ED9AB6E147C4F9AE02.roa (hash: nJrkbLig1vTmSgjt6NVxXjjZt4z8n2VfbVQLKGqNIWA=) 13: D50024D6DFEC11ED9AB6E147C4F9AE02.roa (hash: 2+yQDxtXyRNPNjJL9oTb98cBeK8O2vaQ5rcmSwbKfuo=) 14: AFF73BD2BA0811EAB2479081C4F9AE02.roa (hash: Ei+ixlrSiwniV177dhajGnt3F/FQWmi7BjO5dNbr3pM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9373 (0x249d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B, serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: Apr 24 15:50:08 2025 GMT Not After : May 1 15:50:08 2025 GMT Subject: CN=680a5db0-775f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9d:13:60:93:47:0a:9c:55:c3:66:e5:b6:db: 03:36:d5:3d:e6:03:ea:95:66:47:10:b0:d7:29:77: 90:59:0f:49:be:c7:5f:f4:b5:d0:2a:7f:6a:40:8d: 87:06:49:ae:df:64:31:2a:9c:8f:72:01:bf:13:de: 7d:cb:a2:5a:0c:ae:4a:de:20:b4:62:80:8b:f3:38: 64:ad:03:5e:da:22:3d:13:5a:8d:a3:6c:59:c7:76: a8:cd:98:ae:d0:67:69:59:e8:b5:d9:18:84:bc:63: c9:be:7f:54:15:b0:64:3e:48:d1:16:a9:eb:d4:3d: 89:c5:38:d3:49:9d:6e:74:7a:ee:0f:e3:3f:cb:56: 53:7f:28:40:90:ee:15:92:32:53:6d:a6:16:b0:68: 02:9d:96:9f:6c:d6:fc:3b:4b:2b:3d:f4:e2:5d:fd: 77:f4:3d:63:e5:c6:27:3e:40:6e:bc:e5:0b:1a:0a: 88:e2:c4:2a:b4:ee:88:37:2d:fe:5b:ed:14:08:1f: 2a:72:ae:dd:5c:f4:e4:a3:33:5d:11:a2:6a:f9:68: d8:33:ac:e6:2a:33:09:17:13:ff:63:de:47:39:97: 0c:36:db:a6:ae:25:41:cc:59:79:5b:46:f3:9d:57: ae:78:e4:3b:9e:59:e9:9e:a9:f2:7d:22:3d:09:e0: 01:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:7E:65:CA:AC:5E:FB:A5:B5:14:C6:10:B9:F9:BA:6C:8A:26:16:D6 X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:39:19:59:12:6e:74:09:2c:4d:a9:18:c5:56:96:41:d7:c8: ec:05:f2:d0:43:c4:76:58:bf:04:07:d1:a2:67:0e:f4:29:fb: 24:f5:d2:d0:7a:48:a0:bc:ac:4c:a5:55:19:6c:ed:8f:2c:7d: 27:06:e1:9d:17:e4:f1:0f:9a:fc:b2:8c:72:a8:f4:f8:38:3a: 6b:17:fc:03:c5:e7:06:8f:83:85:31:1e:91:5b:e5:92:a7:1c: 80:cc:35:3c:dd:53:95:8d:4f:a8:7a:c2:94:ae:c7:c3:db:c5: 4d:32:38:a8:94:1e:24:65:37:c9:08:f8:bc:ba:68:c7:06:1c: c2:5b:b7:e6:4f:21:54:1e:c4:5d:9b:22:7a:5a:99:16:68:84: 43:97:7c:76:c8:79:75:97:b1:a2:b1:ec:5b:ee:cd:f8:94:3b: 3d:50:6a:68:ac:3d:83:04:c9:45:86:65:eb:97:9d:ed:9b:97: f5:31:7c:13:d7:31:c3:e9:44:23:84:aa:97:c5:2a:58:6f:db: e5:f1:6f:5d:3a:91:52:95:26:15:a3:b7:fa:01:36:49:ba:28: 51:3d:df:72:53:93:d4:74:65:f5:e2:65:6c:79:15:8a:a2:2d: 4a:2b:60:7d:5d:50:76:9e:1a:73:b3:dd:9c:e9:1b:cf:d3:be: bd:17:12:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjUwNDI0MTU1MDA4WhcNMjUwNTAxMTU1MDA4WjAYMRYwFAYD VQQDEw02ODBhNWRiMC03NzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq50TYJNHCpxVw2blttsDNtU95gPqlWZHELDXKXeQWQ9Jvsdf9LXQKn9qQI2H Bkmu32QxKpyPcgG/E959y6JaDK5K3iC0YoCL8zhkrQNe2iI9E1qNo2xZx3aozZiu 0GdpWei12RiEvGPJvn9UFbBkPkjRFqnr1D2JxTjTSZ1udHruD+M/y1ZTfyhAkO4V kjJTbaYWsGgCnZafbNb8O0srPfTiXf139D1j5cYnPkBuvOULGgqI4sQqtO6INy3+ W+0UCB8qcq7dXPTkozNdEaJq+WjYM6zmKjMJFxP/Y95HOZcMNtumriVBzFl5W0bz nVeueOQ7nlnpnqnyfSI9CeABXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5+Zcqs XvultRTGELn5umyKJhbWMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYyQi82NEEwNTE0NjYwMTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJr eE1obWZMVl9lODlYQWhYSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYORlZEm50CSxNqRjFVpZB18jsBfLQQ8R2WL8EB9GiZw70Kfsk9dLQ ekigvKxMpVUZbO2PLH0nBuGdF+TxD5r8soxyqPT4ODprF/wDxecGj4OFMR6RW+WS pxyAzDU83VOVjU+oesKUrsfD28VNMjiolB4kZTfJCPi8umjHBhzCW7fmTyFUHsRd myJ6WpkWaIRDl3x2yHl1l7Gisexb7s34lDs9UGporD2DBMlFhmXrl53tm5f1MXwT 1zHD6UQjhKqXxSpYb9vl8W9dOpFSlSYVo7f6ATZJuihRPd9yU5PUdGX14mVseRWK oi1KK2B9XVB2nhpzs92c6RvP0769FxJE -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:32 2025 by rpki-client