$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: bIJ1CJie3SYCTHreT8dnlGiuzoeZ/NKyg+LPlL2PT+4= Subject key identifier: 3B:9B:10:F8:8C:F1:87:8C:C3:53:B2:6F:EA:D2:C6:7F:73:5A:D3:D3 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 0162 Signing time: Fri 13 Jun 2025 02:56:31 +0000 Manifest this update: Fri 13 Jun 2025 02:56:30 +0000 Manifest next update: Fri 20 Jun 2025 02:56:30 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: ilA65ymmiDgW8tJk4xaIA0tOEiYyisZLUYXGcAnpJOY=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: 2h3iteWHWvj7eGZvRPLFqMA2o9nj7836hPNLX4DVTdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Jun 13 02:56:30 2025 GMT Not After : Jun 20 02:56:30 2025 GMT Subject: CN=684b935f-6017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:42:5c:65:86:df:9b:c0:03:cb:b2:44:0b:c3: 3f:06:f0:69:75:2c:20:2d:d6:41:c4:a5:6f:4b:ea: b6:35:eb:18:2a:2d:2d:f8:19:9d:b1:4b:b6:97:f5: 21:fe:e9:71:55:0e:c0:74:a3:86:9a:7e:24:d4:05: 34:2e:d1:21:ac:13:50:2f:4f:0c:70:f0:8e:0c:2a: a9:60:fe:a8:82:c8:b7:4f:9e:f5:9d:58:de:53:af: d1:ab:ac:11:e5:ae:96:94:17:87:46:8a:77:84:57: ae:cf:d4:80:4f:84:f0:83:e1:6f:c8:1d:45:cb:f9: 5c:e3:63:5d:b4:17:9d:c2:7d:5a:56:00:ec:6a:f8: e9:98:e8:ad:b1:34:75:75:25:4b:91:c0:41:70:54: ab:d3:52:a6:24:d8:2d:da:4f:ac:18:7d:1b:18:94: 94:55:53:f6:06:38:19:04:ea:38:6b:c8:b0:0c:73: a0:14:65:8e:75:26:17:d6:16:16:ff:14:8b:5e:dd: bb:b2:b1:34:dc:53:b8:b9:b9:97:cd:36:3d:c5:da: 14:b0:18:65:e7:1c:87:24:14:ae:ac:df:30:ac:ba: e5:22:70:59:5a:57:0a:4c:6a:40:1d:d9:47:54:2e: b6:c2:9b:06:55:34:b5:89:37:f6:46:58:ef:f0:88: 41:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9B:10:F8:8C:F1:87:8C:C3:53:B2:6F:EA:D2:C6:7F:73:5A:D3:D3 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:67:cf:51:50:8e:df:36:fe:24:09:50:23:ef:50:72:84:5a: 28:7b:44:91:b9:92:3a:2c:b4:46:8c:35:be:49:b8:69:f8:0c: be:37:9c:93:8a:68:af:b9:d0:f0:0a:9e:a5:d6:e6:52:7b:cc: 5f:d3:e8:67:29:8c:6d:74:6e:bd:9c:b3:74:07:89:77:3f:0e: 45:0e:09:ef:ea:22:50:4d:dd:16:e3:d3:8e:08:b1:8d:da:da: 4e:6d:0a:b9:d0:e4:67:51:d6:8e:4d:7e:b3:56:4e:3a:53:87: 26:f5:37:cc:45:fb:c3:59:14:70:6b:7d:ca:29:2d:0d:2f:d9: 18:03:b4:3d:82:29:eb:b9:b7:61:e4:0a:03:60:82:7a:cf:d5: 2e:ce:ba:99:6b:e7:2f:e5:8a:4c:80:fd:15:81:4e:0c:47:3a: 75:26:d7:3e:a8:0d:31:a0:08:87:94:c2:6f:94:c0:47:f8:9d: cb:56:c0:53:9b:65:ce:0a:bd:cb:63:28:f1:ec:6e:41:24:f5: ab:48:4d:84:66:dc:46:ae:dc:4d:a2:b5:de:ed:7e:4a:59:97: 93:23:86:41:a2:ea:48:d8:46:f4:3b:cf:0d:3a:e4:64:c2:0d: 71:08:f4:4a:3f:3a:2d:1d:88:eb:54:d6:36:c4:09:45:2d:04: 8b:0f:91:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUwNjEzMDI1NjMwWhcNMjUwNjIwMDI1NjMwWjAYMRYwFAYD VQQDEw02ODRiOTM1Zi02MDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUJcZYbfm8ADy7JEC8M/BvBpdSwgLdZBxKVvS+q2NesYKi0t+BmdsUu2l/Uh /ulxVQ7AdKOGmn4k1AU0LtEhrBNQL08McPCODCqpYP6ogsi3T571nVjeU6/Rq6wR 5a6WlBeHRop3hFeuz9SAT4Twg+FvyB1Fy/lc42NdtBedwn1aVgDsavjpmOitsTR1 dSVLkcBBcFSr01KmJNgt2k+sGH0bGJSUVVP2BjgZBOo4a8iwDHOgFGWOdSYX1hYW /xSLXt27srE03FO4ubmXzTY9xdoUsBhl5xyHJBSurN8wrLrlInBZWlcKTGpAHdlH VC62wpsGVTS1iTf2Rljv8IhB9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDubEPiM 8YeMw1Oyb+rSxn9zWtPTMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIZ89RUI7fNv4kCVAj71ByhFooe0SRuZI6LLRGjDW+Sbhp+Ay+N5yT imivudDwCp6l1uZSe8xf0+hnKYxtdG69nLN0B4l3Pw5FDgnv6iJQTd0W49OOCLGN 2tpObQq50ORnUdaOTX6zVk46U4cm9TfMRfvDWRRwa33KKS0NL9kYA7Q9ginrubdh 5AoDYIJ6z9UuzrqZa+cv5YpMgP0VgU4MRzp1Jtc+qA0xoAiHlMJvlMBH+J3LVsBT m2XOCr3LYyjx7G5BJPWrSE2EZtxGrtxNorXe7X5KWZeTI4ZBoupI2Eb0O88NOuRk wg1xCPRKPzotHYjrVNY2xAlFLQSLD5HJ -----END CERTIFICATE-----Generated at Sat Jun 14 18:46:19 2025 by rpki-client