$ rpki-client -vvf rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft File: UKsTEAVD9kbAxVN13vhQXRTzZrg.mft (raw, json) Hash identifier: 4cfxgVdOpv3TMrt0rAHqYHWhzqzssIdkRvXoS79SsB8= Subject key identifier: 24:E4:FE:8A:4A:12:1D:F6:54:D9:6F:17:85:4E:4E:E5:C0:F8:6E:03 Authority key identifier: 50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 Certificate issuer: /CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft Manifest number: 0B17 Signing time: Sun 06 Apr 2025 19:00:52 +0000 Manifest this update: Sun 06 Apr 2025 19:00:52 +0000 Manifest next update: Sun 13 Apr 2025 19:00:52 +0000 Files and hashes: 1: UKsTEAVD9kbAxVN13vhQXRTzZrg.crl (hash: rcK2xIdsB7Cihp1RRcsQPnE94Or3pE48dVMS+o/suGg=) 2: 74D2ABEE39F811EAA4343534C4F9AE02.roa (hash: WNF8DvI+W4AUYThET4ebOd4+s48ZJAgIRPErXZ/X2b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 19:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911270F Validity Not Before: Apr 6 19:00:52 2025 GMT Not After : Apr 13 19:00:52 2025 GMT Subject: CN=67f2cf64-ed33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8b:06:96:65:03:75:d9:13:27:a3:18:8c:cc: b6:19:4a:e0:bb:20:ab:6b:5b:ac:31:37:35:cf:66: 5e:0f:d3:ee:1c:9f:3c:8c:38:cd:6c:9e:d5:a4:2e: 92:d4:8c:dc:33:7c:f5:50:ca:dc:51:08:e3:b4:60: ce:7f:c2:0f:fc:eb:fe:d7:a2:6b:5b:69:a1:2f:d5: 42:86:ff:b8:68:67:94:c1:d8:a8:15:b7:14:0d:fd: b1:c4:f0:77:ab:5c:1f:af:62:21:8e:dc:c9:6a:74: 77:68:44:08:d3:c2:fe:9c:7d:dd:c9:b6:bb:11:74: fb:3c:d2:bf:85:53:02:4a:43:bc:bc:46:df:71:49: b8:21:3d:aa:5d:9f:0a:d7:84:91:2f:18:2f:20:a6: 5c:84:0f:0d:d6:3b:e5:85:6a:25:45:9a:db:11:eb: d1:2c:b4:ca:f2:95:76:89:2e:3f:ea:6c:18:39:67: a4:88:9b:b5:3e:49:5c:a3:71:ca:6a:fc:6c:10:99: b7:fe:1f:4e:08:a4:ce:a6:33:33:87:09:c7:0a:94: 40:0d:32:0c:d3:fa:06:e6:cf:43:74:92:bb:07:bb: a7:59:e8:cb:9b:76:95:0d:7b:fa:e5:79:40:55:1a: 19:74:0d:75:31:01:c0:b8:94:16:9b:39:68:a7:09: 67:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E4:FE:8A:4A:12:1D:F6:54:D9:6F:17:85:4E:4E:E5:C0:F8:6E:03 X509v3 Authority Key Identifier: keyid:50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:37:95:cb:6a:63:25:24:16:76:f7:5c:c4:c8:80:b2:6b:a7: 94:3f:7e:0d:27:08:22:eb:9e:e5:e5:37:24:7c:b4:39:17:aa: b0:4e:a2:0b:27:e0:af:69:fb:66:16:be:5c:98:e9:5b:22:d4: b8:24:ca:3f:3c:c6:4d:f6:82:b2:d0:2b:42:ef:12:32:cc:e0: 2e:81:53:14:b8:38:41:15:7d:62:42:3f:62:5c:40:7b:f9:af: 80:cc:77:94:59:79:6d:83:bf:87:d7:a9:a4:16:c1:9b:4f:7a: ce:16:14:d4:bf:41:81:9e:f6:2c:97:81:f9:41:9b:05:75:c5: 2d:a7:d4:7a:c4:ca:2d:0a:98:33:0c:25:d4:c1:e1:80:38:77: b2:d1:bc:7f:08:8f:05:c7:78:23:40:6d:b0:4d:d8:71:39:36: c7:71:16:cc:7f:6e:7a:a2:cb:45:f8:87:dc:03:c4:cb:84:1b: f2:07:06:12:35:6d:a6:60:bb:3d:57:f6:ad:be:c2:e2:c6:e2: 3b:38:e8:4e:ba:8f:0a:29:e9:33:c0:9a:ef:35:d9:dd:88:88: 78:78:77:69:03:5f:61:1a:ea:e6:87:97:f1:85:5f:56:cf:9f: d0:1e:59:62:69:92:11:d6:d1:7d:bf:16:7c:e1:6b:1c:9d:39: 2e:23:b5:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MEYxMTAvBgNVBAUTKDUwQUIxMzEwMDU0M0Y2NDZDMEM1NTM3NURFRjg1MDVE MTRGMzY2QjgwHhcNMjUwNDA2MTkwMDUyWhcNMjUwNDEzMTkwMDUyWjAYMRYwFAYD VQQDEw02N2YyY2Y2NC1lZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4osGlmUDddkTJ6MYjMy2GUrguyCra1usMTc1z2ZeD9PuHJ88jDjNbJ7VpC6S 1IzcM3z1UMrcUQjjtGDOf8IP/Ov+16JrW2mhL9VChv+4aGeUwdioFbcUDf2xxPB3 q1wfr2IhjtzJanR3aEQI08L+nH3dyba7EXT7PNK/hVMCSkO8vEbfcUm4IT2qXZ8K 14SRLxgvIKZchA8N1jvlhWolRZrbEevRLLTK8pV2iS4/6mwYOWekiJu1Pklco3HK avxsEJm3/h9OCKTOpjMzhwnHCpRADTIM0/oG5s9DdJK7B7unWejLm3aVDXv65XlA VRoZdA11MQHAuJQWmzlopwlnZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTk/opK Eh32VNlvF4VOTuXA+G4DMB8GA1UdIwQYMBaAFFCrExAFQ/ZGwMVTdd74UF0U82a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwRi8wNUQ4MkVFMDM5 RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlrYkF4Vk4xM3ZoUVhSVHpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLc1RFQVZEOWtiQXhWTjEzdmhRWFJUelpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjcwRi8wNUQ4MkVFMDM5RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlr YkF4Vk4xM3ZoUVhSVHpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzN5XLamMlJBZ291zEyICya6eUP34NJwgi657l5TckfLQ5F6qwTqIL J+CvaftmFr5cmOlbItS4JMo/PMZN9oKy0CtC7xIyzOAugVMUuDhBFX1iQj9iXEB7 +a+AzHeUWXltg7+H16mkFsGbT3rOFhTUv0GBnvYsl4H5QZsFdcUtp9R6xMotCpgz DCXUweGAOHey0bx/CI8Fx3gjQG2wTdhxOTbHcRbMf256ostF+IfcA8TLhBvyBwYS NW2mYLs9V/atvsLixuI7OOhOuo8KKekzwJrvNdndiIh4eHdpA19hGurmh5fxhV9W z5/QHlliaZIR1tF9vxZ84WscnTkuI7Vk -----END CERTIFICATE-----Generated at Tue Apr 8 03:55:47 2025 by rpki-client