$ rpki-client -vvf rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft File: 7UHN-Ie33i9cIBvogU8ejfPQIB8.mft (raw, json) Hash identifier: SLPoAlP4h2jbuH87QNe9X8PXh9UGVYOlqzjtsHbPtH8= Subject key identifier: EA:DF:F0:43:5E:1A:25:0B:32:7B:05:3F:3C:CD:50:F0:42:37:86:A6 Authority key identifier: ED:41:CD:F8:87:B7:DE:2F:5C:20:1B:E8:81:4F:1E:8D:F3:D0:20:1F Certificate issuer: /CN=A916C832/serialNumber=ED41CDF887B7DE2F5C201BE8814F1E8DF3D0201F Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft Manifest number: 1C Signing time: Sun 15 Jun 2025 06:59:16 +0000 Manifest this update: Sun 15 Jun 2025 06:59:16 +0000 Manifest next update: Sun 22 Jun 2025 06:59:16 +0000 Files and hashes: 1: 7UHN-Ie33i9cIBvogU8ejfPQIB8.crl (hash: 1bG+ENZcPJluYHB9qCMGWwZk+G1CSBhziTAXdN+1kxs=) 2: AA3FBE4A1E6111F093F53B75C4F9AE02.roa (hash: LSRr7TMpx9Qi1u09QfccXCZNggaDKCGxTg8r/GddSHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.crl rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C832, serialNumber=ED41CDF887B7DE2F5C201BE8814F1E8DF3D0201F Validity Not Before: Jun 15 06:59:16 2025 GMT Not After : Jun 22 06:59:16 2025 GMT Subject: CN=684e6f44-ddcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f3:d6:b6:00:b1:35:93:8a:3c:fa:0e:c8:73: 04:49:20:91:c6:f8:85:62:0d:3f:c6:c9:a6:0d:52: de:51:50:fa:72:f0:b1:f3:09:f1:a5:d5:d5:38:2e: fc:1c:0e:57:03:a3:4c:4b:6c:53:ea:46:86:bd:c9: 2d:e3:4f:1b:dd:cd:be:d8:d3:f8:c5:d9:29:77:0f: 93:91:2f:f0:ba:09:71:94:b2:f9:6c:c4:67:b4:ba: 0b:93:08:2e:22:f6:68:f2:26:63:27:a6:33:e5:93: 5a:8a:5f:39:2f:3e:56:b5:20:ad:cf:aa:39:df:5c: a7:52:67:d6:56:83:dc:55:ac:d0:6e:21:7c:08:f8: b1:1b:fc:fa:85:be:f6:40:5c:7b:b0:0d:05:03:2a: 73:9a:1c:8f:0d:23:3a:e8:1e:9e:20:7a:27:b1:37: 91:e8:78:67:b2:df:3e:af:39:3a:31:ee:02:06:cc: bc:29:a3:81:a5:9c:76:95:a9:42:49:20:6b:12:31: fb:ab:1e:13:dc:65:4b:9e:b0:e7:06:76:ff:88:26: 11:cc:e5:83:df:79:15:ca:53:b1:52:9f:9d:ba:9a: 12:cb:b8:3c:77:40:eb:31:9e:d8:49:fb:a5:99:73: cb:e5:d5:7e:47:6c:ee:e1:2e:c2:c7:d6:ea:6f:63: 39:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:DF:F0:43:5E:1A:25:0B:32:7B:05:3F:3C:CD:50:F0:42:37:86:A6 X509v3 Authority Key Identifier: keyid:ED:41:CD:F8:87:B7:DE:2F:5C:20:1B:E8:81:4F:1E:8D:F3:D0:20:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:cf:03:30:f1:41:bb:6f:c8:67:e9:25:59:94:71:b4:f3:87: 5a:03:f8:96:49:e2:f1:55:7f:0f:d6:db:37:d4:c9:fb:45:18: c8:d9:e5:d6:2b:a8:f7:39:38:66:89:5b:13:97:dc:de:5f:05: a3:03:6e:76:ed:4d:d7:af:68:4f:e1:c4:c4:14:eb:89:4a:6e: 7c:ba:b6:9b:60:a6:22:73:65:c5:23:2b:39:db:ed:aa:06:40: 8f:ac:0e:9d:5c:48:ac:34:2c:29:df:9a:26:db:af:1d:57:1e: 08:b3:2e:4a:c2:12:0e:db:a0:2e:aa:88:2f:25:94:75:9e:30: 3e:fa:28:4e:7a:5a:68:52:ae:88:1f:fd:09:03:45:d4:23:d7: 1c:31:6b:4c:a4:58:9f:78:c4:1e:e7:30:85:d2:6a:9f:31:a9: cc:7c:5f:d7:a8:81:c3:3b:36:5b:4f:69:0e:54:27:ee:02:fc: 2f:75:56:b9:c7:df:87:6a:66:7b:e4:ef:b4:e2:3f:f1:c0:59: 49:8f:bb:aa:e8:29:d7:c8:d9:77:20:30:7b:6f:7c:05:1e:8a: c4:ef:b0:1e:f9:3c:b1:1a:57:96:c2:4a:57:a4:f0:13:81:70: 86:a1:3d:7b:60:93:06:75:f3:e5:eb:4b:95:cc:2e:a5:13:5a: 72:77:5c:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzgzMjExMC8GA1UEBRMoRUQ0MUNERjg4N0I3REUyRjVDMjAxQkU4ODE0RjFFOERG M0QwMjAxRjAeFw0yNTA2MTUwNjU5MTZaFw0yNTA2MjIwNjU5MTZaMBgxFjAUBgNV BAMTDTY4NGU2ZjQ0LWRkY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDc89a2ALE1k4o8+g7IcwRJIJHG+IViDT/GyaYNUt5RUPpy8LHzCfGl1dU4Lvwc DlcDo0xLbFPqRoa9yS3jTxvdzb7Y0/jF2Sl3D5ORL/C6CXGUsvlsxGe0uguTCC4i 9mjyJmMnpjPlk1qKXzkvPla1IK3PqjnfXKdSZ9ZWg9xVrNBuIXwI+LEb/PqFvvZA XHuwDQUDKnOaHI8NIzroHp4geiexN5HoeGey3z6vOTox7gIGzLwpo4GlnHaVqUJJ IGsSMfurHhPcZUuesOcGdv+IJhHM5YPfeRXKU7FSn526mhLLuDx3QOsxnthJ+6WZ c8vl1X5HbO7hLsLH1upvYzl7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6t/wQ14a JQsyewU/PM1Q8EI3hqYwHwYDVR0jBBgwFoAU7UHN+Ie33i9cIBvogU8ejfPQIB8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDODMyLzVCNjE4MDYwMUU2 MTExRjA5MzRGNkY3NEM0RjlBRTAyLzdVSE4tSWUzM2k5Y0lCdm9nVThlamZQUUlC OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1VITi1JZTMzaTljSUJ2b2dVOGVqZlBRSUI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD ODMyLzVCNjE4MDYwMUU2MTExRjA5MzRGNkY3NEM0RjlBRTAyLzdVSE4tSWUzM2k5 Y0lCdm9nVThlamZQUUlCOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB3PAzDxQbtvyGfpJVmUcbTzh1oD+JZJ4vFVfw/W2zfUyftFGMjZ5dYr qPc5OGaJWxOX3N5fBaMDbnbtTdevaE/hxMQU64lKbny6tptgpiJzZcUjKznb7aoG QI+sDp1cSKw0LCnfmibbrx1XHgizLkrCEg7boC6qiC8llHWeMD76KE56WmhSrogf /QkDRdQj1xwxa0ykWJ94xB7nMIXSap8xqcx8X9eogcM7NltPaQ5UJ+4C/C91VrnH 34dqZnvk77TiP/HAWUmPu6roKdfI2XcgMHtvfAUeisTvsB75PLEaV5bCSlek8BOB cIahPXtgkwZ18+XrS5XMLqUTWnJ3XCY= -----END CERTIFICATE-----Generated at Sun Jun 15 10:05:48 2025 by rpki-client