$ rpki-client -vvf rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.mft File: UHRCEm0jxuW-SuMZdJsnbhcum1w.mft (raw, json) Hash identifier: QIN1n9DP0aoNARHV6p9hA3Se1USHEqavC4P59Fn8FUo= Subject key identifier: 33:B6:43:35:15:20:95:C2:7F:A1:D2:AF:64:BB:CA:D2:84:D0:FD:04 Authority key identifier: 50:74:42:12:6D:23:C6:E5:BE:4A:E3:19:74:9B:27:6E:17:2E:9B:5C Certificate issuer: /CN=A91790ED/serialNumber=507442126D23C6E5BE4AE319749B276E172E9B5C Certificate serial: 0E52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHRCEm0jxuW-SuMZdJsnbhcum1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.mft Manifest number: 0E52 Signing time: Sat 14 Jun 2025 17:38:40 +0000 Manifest this update: Sat 14 Jun 2025 17:38:40 +0000 Manifest next update: Sat 21 Jun 2025 17:38:40 +0000 Files and hashes: 1: UHRCEm0jxuW-SuMZdJsnbhcum1w.crl (hash: wjBiapFqhnG1jspatDz+zGxd5VW+5TjlZ0zG05Oc/2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.crl rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHRCEm0jxuW-SuMZdJsnbhcum1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3666 (0xe52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790ED, serialNumber=507442126D23C6E5BE4AE319749B276E172E9B5C Validity Not Before: Jun 14 17:38:40 2025 GMT Not After : Jun 21 17:38:40 2025 GMT Subject: CN=684db3a0-178b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:40:33:88:da:5e:19:2e:10:6e:bb:9d:2d:40: f9:80:41:f6:cd:99:75:69:23:78:7b:70:03:73:d2: 5a:97:e6:f2:76:57:20:dc:45:ab:c3:9e:24:d1:16: a9:d1:f7:04:30:eb:c6:f1:f7:f8:6b:4e:0e:98:32: 17:d8:46:e1:58:d3:04:2d:ca:bc:46:bd:87:03:55: 88:cb:f3:2b:3e:c6:59:4c:68:c2:92:6f:cd:f3:78: bd:d3:47:6d:77:27:2f:f0:75:fb:c2:de:14:1d:d0: c4:b6:f7:5c:cc:e4:ad:e7:b0:8d:6d:dd:86:e4:7d: 9a:e0:bf:f9:41:a4:22:9e:10:d6:19:3f:be:a9:0f: 44:49:e6:e7:1c:4f:09:dc:e2:87:42:44:9d:45:fd: ef:75:d7:6a:b8:59:ca:84:ab:93:4c:ba:b0:58:ee: d1:6c:19:99:04:c0:90:da:89:b9:74:7d:ee:dc:4c: d3:13:25:c4:d1:0f:b6:67:73:44:de:36:04:11:1e: a1:77:d6:32:bb:42:10:2f:91:88:72:b8:37:28:05: 19:72:b2:d6:6e:38:50:8e:58:c1:91:7f:d8:60:6e: f8:6b:9c:b5:68:ed:86:28:ab:3a:96:f6:fe:bd:28: de:90:7f:1b:f7:ab:4e:7b:d7:dc:62:10:81:ec:d5: 36:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B6:43:35:15:20:95:C2:7F:A1:D2:AF:64:BB:CA:D2:84:D0:FD:04 X509v3 Authority Key Identifier: keyid:50:74:42:12:6D:23:C6:E5:BE:4A:E3:19:74:9B:27:6E:17:2E:9B:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHRCEm0jxuW-SuMZdJsnbhcum1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790ED/0ABB86429D1B11E9BDD6E574C4F9AE02/UHRCEm0jxuW-SuMZdJsnbhcum1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:35:85:f1:12:d1:e6:8c:7e:09:36:05:f3:86:a2:48:b1:ba: 59:5c:5d:4c:26:85:ae:60:21:1f:17:2a:39:86:bc:12:9c:7f: ff:6d:24:6f:c7:cf:e9:51:8e:2c:df:fb:9c:e3:e5:e2:9d:5d: 3d:c4:89:85:ab:7a:bc:97:21:9d:11:e6:13:77:a2:57:53:3a: 25:92:d2:ba:79:0f:9e:d6:92:f7:e2:05:a7:ed:b0:e7:62:0f: 7c:76:6b:9f:37:9e:ac:95:38:6a:0f:c6:c1:5d:9b:54:f5:2f: 0d:1e:47:3c:41:fc:eb:90:5b:f7:9b:29:81:23:50:d3:1a:0a: 14:9d:97:8f:14:d9:da:17:34:15:ca:d5:76:97:31:e1:8f:61: 98:68:a3:8d:06:b6:50:3e:ff:c8:be:b2:cc:eb:0f:64:91:71: ac:39:83:92:2a:3a:7b:63:e7:de:bf:70:00:ef:14:77:b8:ad: c9:e6:d7:f6:a1:8a:f8:83:31:e0:78:c8:ca:c0:17:50:42:57: 81:34:af:38:70:05:24:3d:74:9c:ab:7e:69:ea:14:1a:39:a9: 0c:1b:6d:a6:b5:80:b1:7b:f1:14:8b:f2:f9:37:52:40:01:96: b8:62:7f:87:a1:a4:f6:61:66:ed:ca:a5:9f:27:15:63:98:ac: a4:14:f9:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUQxMTAvBgNVBAUTKDUwNzQ0MjEyNkQyM0M2RTVCRTRBRTMxOTc0OUIyNzZF MTcyRTlCNUMwHhcNMjUwNjE0MTczODQwWhcNMjUwNjIxMTczODQwWjAYMRYwFAYD VQQDEw02ODRkYjNhMC0xNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10AziNpeGS4QbrudLUD5gEH2zZl1aSN4e3ADc9Jal+bydlcg3EWrw54k0Rap 0fcEMOvG8ff4a04OmDIX2EbhWNMELcq8Rr2HA1WIy/MrPsZZTGjCkm/N83i900dt dycv8HX7wt4UHdDEtvdczOSt57CNbd2G5H2a4L/5QaQinhDWGT++qQ9ESebnHE8J 3OKHQkSdRf3vdddquFnKhKuTTLqwWO7RbBmZBMCQ2om5dH3u3EzTEyXE0Q+2Z3NE 3jYEER6hd9Yyu0IQL5GIcrg3KAUZcrLWbjhQjljBkX/YYG74a5y1aO2GKKs6lvb+ vSjekH8b96tOe9fcYhCB7NU2HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDO2QzUV IJXCf6HSr2S7ytKE0P0EMB8GA1UdIwQYMBaAFFB0QhJtI8blvkrjGXSbJ24XLptc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFRC8wQUJCODY0MjlE MUIxMUU5QkRENkU1NzRDNEY5QUUwMi9VSFJDRW0wanh1Vy1TdU1aZEpzbmJoY3Vt MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VIUkNFbTBqeHVXLVN1TVpkSnNuYmhjdW0xdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFRC8wQUJCODY0MjlEMUIxMUU5QkRENkU1NzRDNEY5QUUwMi9VSFJDRW0wanh1 Vy1TdU1aZEpzbmJoY3VtMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+NYXxEtHmjH4JNgXzhqJIsbpZXF1MJoWuYCEfFyo5hrwSnH//bSRv x8/pUY4s3/uc4+XinV09xImFq3q8lyGdEeYTd6JXUzolktK6eQ+e1pL34gWn7bDn Yg98dmufN56slThqD8bBXZtU9S8NHkc8QfzrkFv3mymBI1DTGgoUnZePFNnaFzQV ytV2lzHhj2GYaKONBrZQPv/IvrLM6w9kkXGsOYOSKjp7Y+fev3AA7xR3uK3J5tf2 oYr4gzHgeMjKwBdQQleBNK84cAUkPXScq35p6hQaOakMG22mtYCxe/EUi/L5N1JA AZa4Yn+HoaT2YWbtyqWfJxVjmKykFPko -----END CERTIFICATE-----Generated at Sat Jun 14 19:41:18 2025 by rpki-client