$ rpki-client -vvf rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft File: uHMcMIhjyygE4HbVjowHFZtOXxk.mft (raw, json) Hash identifier: vNElHoO7F+2h9D3aJBJvTN9Q6qcUA0YAUcE3O2G0iUc= Subject key identifier: 18:57:76:87:6B:B4:DA:C8:73:E1:99:98:E8:7E:66:AC:45:31:5A:45 Authority key identifier: B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 Certificate issuer: /CN=A9164663/serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Certificate serial: 07FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft Manifest number: 1A07 Signing time: Thu 24 Apr 2025 17:09:23 +0000 Manifest this update: Thu 24 Apr 2025 17:09:22 +0000 Manifest next update: Thu 01 May 2025 17:09:22 +0000 Files and hashes: 1: uHMcMIhjyygE4HbVjowHFZtOXxk.crl (hash: ILQ+YUGrI9OymXcghHRGBKBRpJNBVcZEhu5IWxJjvp8=) 2: 3D626CDC065111F0BFE43624C4F9AE02.roa (hash: PyysKZ+hZFXrRWA3LPUfHO46XtpZrkwg+n+8mnDBEZE=) 3: 7BB2BC009FFA11ECA13C2839C4F9AE02.roa (hash: K7jgwtFrPBKypxv1Ln8vBllbtClVCUlvOXHISxYGRB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2045 (0x7fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164663, serialNumber=B8731C308863CB2804E076D58E8C07159B4E5F19 Validity Not Before: Apr 24 17:09:22 2025 GMT Not After : May 1 17:09:22 2025 GMT Subject: CN=680a7043-de90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:22:7f:52:5a:a0:f0:c1:41:49:93:e2:35:dd: 7d:5a:cc:bd:5c:74:b7:02:8c:97:f0:17:dc:2e:51: bd:df:65:7b:09:eb:eb:6a:94:fc:84:47:6c:00:db: ce:4f:3d:9e:4b:0a:37:7f:cd:ff:c7:fe:f2:9d:70: f8:60:ee:f7:8b:5a:96:68:1b:7c:43:67:44:65:3e: d2:f5:17:94:f8:0c:66:18:88:28:38:9c:9d:c4:dc: 1a:0e:9d:f2:1c:c3:4e:6a:13:00:63:d6:8d:c6:46: 21:04:ad:3c:57:26:84:f2:8c:1e:df:0c:a1:46:bd: 89:1c:38:97:62:87:01:0d:37:7a:6e:48:05:fb:17: 9f:95:05:cf:62:ca:3b:9e:83:86:b9:ce:5b:b5:c5: 53:72:d7:70:7c:16:07:1d:cc:cc:06:98:78:46:17: 67:7e:de:84:4a:96:08:3b:0a:1e:cf:37:d0:35:16: 08:ea:e0:e8:1a:e2:c0:e2:22:f2:7c:b7:b1:de:b1: 6a:37:9e:c9:c8:7a:a3:ec:7a:3f:9d:70:06:9c:5f: df:62:a6:05:ee:56:de:19:09:32:aa:b9:00:ab:b1: 6d:14:e8:ac:75:b2:e0:a1:90:3f:ca:7f:3b:d8:7c: d6:03:3c:68:0a:19:24:b9:5d:8d:c0:27:46:58:25: 66:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:57:76:87:6B:B4:DA:C8:73:E1:99:98:E8:7E:66:AC:45:31:5A:45 X509v3 Authority Key Identifier: keyid:B8:73:1C:30:88:63:CB:28:04:E0:76:D5:8E:8C:07:15:9B:4E:5F:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHMcMIhjyygE4HbVjowHFZtOXxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164663/14EAA9FADA7911E89B95A672C4F9AE02/uHMcMIhjyygE4HbVjowHFZtOXxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:a4:55:db:5b:3c:c4:01:78:a2:48:7d:d4:c5:7a:7e:47:73: ee:c7:de:a6:4c:6a:43:9d:d1:70:e9:5f:94:f1:f9:5b:d2:5d: cb:ca:a7:b4:2a:fb:7c:f0:f6:a1:92:b8:ba:6b:97:a6:cd:d6: e2:b8:6e:1c:76:ba:ce:ce:bc:44:41:92:3a:0b:51:77:6b:62: 7f:e7:d3:e9:bd:cf:f1:ff:37:8e:98:a6:d0:76:d2:aa:96:94: b9:d8:86:b8:13:d2:e6:5b:2b:ee:00:9d:54:45:b9:4e:27:b8: df:b5:4c:d0:a1:8a:c0:22:26:50:79:61:d6:ca:0e:8f:98:c4: a5:df:c9:11:84:26:92:5f:52:d9:07:65:e0:52:af:b2:b8:1e: 63:99:4b:7a:e5:cb:24:82:3f:56:42:af:05:c2:c5:f7:18:03: 32:3c:d6:c0:7e:d2:cd:81:d6:57:e6:88:93:ab:ad:eb:4d:4b: 37:71:a3:78:39:62:a3:58:68:9b:6d:85:6c:9e:aa:6c:0b:7f: 27:30:3f:c4:d6:5d:9a:e3:c3:9c:af:0f:bf:74:9e:95:a7:94: a5:5d:96:e7:fd:93:02:9c:9d:89:99:90:39:f0:ec:20:18:40: 3e:75:57:da:24:c5:44:16:6e:3c:b6:7b:f3:be:f9:6d:82:da: 55:24:d3:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NjMxMTAvBgNVBAUTKEI4NzMxQzMwODg2M0NCMjgwNEUwNzZENThFOEMwNzE1 OUI0RTVGMTkwHhcNMjUwNDI0MTcwOTIyWhcNMjUwNTAxMTcwOTIyWjAYMRYwFAYD VQQDEw02ODBhNzA0My1kZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyJ/Ulqg8MFBSZPiNd19Wsy9XHS3AoyX8BfcLlG932V7CevrapT8hEdsANvO Tz2eSwo3f83/x/7ynXD4YO73i1qWaBt8Q2dEZT7S9ReU+AxmGIgoOJydxNwaDp3y HMNOahMAY9aNxkYhBK08VyaE8owe3wyhRr2JHDiXYocBDTd6bkgF+xeflQXPYso7 noOGuc5btcVTctdwfBYHHczMBph4Rhdnft6ESpYIOwoezzfQNRYI6uDoGuLA4iLy fLex3rFqN57JyHqj7Ho/nXAGnF/fYqYF7lbeGQkyqrkAq7FtFOisdbLgoZA/yn87 2HzWAzxoChkkuV2NwCdGWCVmxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhXdodr tNrIc+GZmOh+ZqxFMVpFMB8GA1UdIwQYMBaAFLhzHDCIY8soBOB21Y6MBxWbTl8Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY2My8xNEVBQTlGQURB NzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5Z0U0SGJWam93SEZadE9Y eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITWNNSWhqeXlnRTRIYlZqb3dIRlp0T1h4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY2My8xNEVBQTlGQURBNzkxMUU4OUI5NUE2NzJDNEY5QUUwMi91SE1jTUloanl5 Z0U0SGJWam93SEZadE9YeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkpFXbWzzEAXiiSH3UxXp+R3Pux96mTGpDndFw6V+U8flb0l3Lyqe0 Kvt88Pahkri6a5emzdbiuG4cdrrOzrxEQZI6C1F3a2J/59Ppvc/x/zeOmKbQdtKq lpS52Ia4E9LmWyvuAJ1URblOJ7jftUzQoYrAIiZQeWHWyg6PmMSl38kRhCaSX1LZ B2XgUq+yuB5jmUt65cskgj9WQq8FwsX3GAMyPNbAftLNgdZX5oiTq63rTUs3caN4 OWKjWGibbYVsnqpsC38nMD/E1l2a48Ocrw+/dJ6Vp5SlXZbn/ZMCnJ2JmZA58Owg GEA+dVfaJMVEFm48tnvzvvltgtpVJNMx -----END CERTIFICATE-----Generated at Sat Apr 26 08:17:55 2025 by rpki-client