$ rpki-client -vvf rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft File: UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft (raw, json) Hash identifier: onuEuTLLhUB+i4cU3nYFMpfpld0Dxi9JU1NyHwBMGrw= Subject key identifier: 00:E1:8E:AB:52:53:9A:A9:56:B9:5A:67:3C:EE:4E:1A:85:F6:80:45 Authority key identifier: 51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 Certificate issuer: /CN=A91383BF/serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft Manifest number: A7 Signing time: Thu 03 Apr 2025 05:27:46 +0000 Manifest this update: Thu 03 Apr 2025 05:27:45 +0000 Manifest next update: Thu 10 Apr 2025 05:27:45 +0000 Files and hashes: 1: UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl (hash: s5Md5Wv2N0sUk2voqPgNU1u7ISrN8IjbGuO4laLU3cs=) 2: C23053B019A911EF97366417C4F9AE02.roa (hash: YYki0NriwMd0PqjU0EOE6kz16/qKzKdVDNbbepKT0IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383BF Validity Not Before: Apr 3 05:27:45 2025 GMT Not After : Apr 10 05:27:45 2025 GMT Subject: CN=67ee1c51-890a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e8:16:2e:53:bf:d8:a6:1a:6f:a7:8d:0d:4e: 0c:97:56:ea:ce:dc:c2:e9:b7:45:5d:0d:f7:40:b9: 6d:8b:4d:42:38:fc:bf:0b:b7:cf:78:76:0d:b6:ea: 50:ce:aa:9d:53:e4:c3:54:c0:99:72:d8:d5:23:7a: d0:3a:93:7a:07:eb:f8:92:3d:cc:b0:f0:72:3c:03: d5:18:52:cc:da:ad:4a:dd:0f:75:2b:8f:7c:f8:0b: 81:ba:41:af:7c:0a:47:c0:9e:fc:0d:fd:46:e6:8a: 4b:e9:8a:a1:1b:35:43:5e:d1:c8:c1:2f:7c:16:10: 57:1c:10:a5:23:82:f0:6f:e9:fd:d6:a3:d8:99:99: 23:9f:70:f2:4a:83:66:e8:95:79:92:03:f6:37:53: 9d:81:25:60:5d:27:4b:70:6b:64:1e:ff:2f:11:54: 73:2f:9f:5b:d5:e0:0f:52:5e:f5:b5:61:7b:53:bb: a8:6f:74:91:20:79:75:8d:9f:81:9e:dc:c2:aa:f3: c3:5a:a9:ae:39:3a:1c:bb:26:ee:6f:eb:94:d5:c2: b4:54:a4:42:96:2a:85:77:7c:c3:e0:2b:4c:2f:c8: 71:a5:05:cc:65:a7:ad:6a:63:54:95:bb:da:c3:27: 1a:4b:9a:17:df:03:04:b2:d0:53:61:b7:31:78:79: ce:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E1:8E:AB:52:53:9A:A9:56:B9:5A:67:3C:EE:4E:1A:85:F6:80:45 X509v3 Authority Key Identifier: keyid:51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:c1:3d:90:1c:00:48:d2:8c:bf:df:1a:d4:4f:d0:3d:49:0d: 0f:4f:9a:78:5b:44:1f:d5:56:8e:10:df:48:8e:d0:ab:96:7f: 9d:8c:1e:a7:33:fe:a7:9f:9e:5e:3a:3e:6d:79:be:e5:80:16: e5:87:6d:81:61:49:db:b8:8a:2d:e8:a5:27:41:16:a7:a7:57: 1c:d3:ba:2b:5b:d1:98:d2:a0:40:0d:4a:d1:37:07:4e:c7:ed: d9:2a:b4:47:d2:ea:54:64:7b:ad:f4:87:25:81:bd:c9:56:5c: 14:61:1d:7b:76:e4:47:ef:fa:21:91:94:b8:d5:b4:6b:b4:bf: d8:c8:3c:51:55:6b:fb:38:ba:fa:84:0b:ab:f9:40:99:7c:ee: 42:75:55:24:d7:9d:bd:75:b6:b1:f7:ba:c0:f3:af:46:ec:6b: 14:b6:74:49:5f:88:95:b8:b1:19:09:02:f2:35:44:7f:c2:74: 3a:44:f4:31:82:e7:9b:3a:9d:20:79:98:6b:2d:8b:dd:d1:0f: 11:c5:fb:be:7b:c6:d5:2d:6d:cb:f1:5d:5a:ad:ed:ff:f4:c4: b3:8a:f2:09:23:8d:04:bf:c8:5a:e0:a6:24:bc:cd:86:d8:60: 48:cf:9a:1a:d8:f4:19:c7:4e:4b:6f:2e:91:79:d3:f5:15:73: fe:35:b7:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzQkYxMTAvBgNVBAUTKDUxQTQ4MjU4RDRDRDZFMDFEMjQ1OEM1QjkyMTZFRkE0 NTIxMEI2MjMwHhcNMjUwNDAzMDUyNzQ1WhcNMjUwNDEwMDUyNzQ1WjAYMRYwFAYD VQQDEw02N2VlMWM1MS04OTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwugWLlO/2KYab6eNDU4Ml1bqztzC6bdFXQ33QLlti01COPy/C7fPeHYNtupQ zqqdU+TDVMCZctjVI3rQOpN6B+v4kj3MsPByPAPVGFLM2q1K3Q91K498+AuBukGv fApHwJ78Df1G5opL6YqhGzVDXtHIwS98FhBXHBClI4Lwb+n91qPYmZkjn3DySoNm 6JV5kgP2N1OdgSVgXSdLcGtkHv8vEVRzL59b1eAPUl71tWF7U7uob3SRIHl1jZ+B ntzCqvPDWqmuOTocuybub+uU1cK0VKRCliqFd3zD4CtML8hxpQXMZaetamNUlbva wycaS5oX3wMEstBTYbcxeHnO6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADhjqtS U5qpVrlaZzzuThqF9oBFMB8GA1UdIwQYMBaAFFGkgljUzW4B0kWMW5IW76RSELYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNCRi9GNjdDNjFFQTE5 ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJnSFNSWXhia2hidnBGSVF0 aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhU0NXTlROYmdIU1JZeGJraGJ2cEZJUXRpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODNCRi9GNjdDNjFFQTE5ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJn SFNSWXhia2hidnBGSVF0aU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6wT2QHABI0oy/3xrUT9A9SQ0PT5p4W0Qf1VaOEN9IjtCrln+djB6n M/6nn55eOj5teb7lgBblh22BYUnbuIot6KUnQRanp1cc07orW9GY0qBADUrRNwdO x+3ZKrRH0upUZHut9Iclgb3JVlwUYR17duRH7/ohkZS41bRrtL/YyDxRVWv7OLr6 hAur+UCZfO5CdVUk1529dbax97rA869G7GsUtnRJX4iVuLEZCQLyNUR/wnQ6RPQx guebOp0geZhrLYvd0Q8Rxfu+e8bVLW3L8V1are3/9MSzivIJI40Ev8ha4KYkvM2G 2GBIz5oa2PQZx05Lby6RedP1FXP+Nbe0 -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:56 2025 by rpki-client