$ rpki-client -vvf rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft File: UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft (raw, json) Hash identifier: oI8EkiLxDp4HswJafrltbTJADunqUhHSX/cuLS21ToU= Subject key identifier: 65:A4:99:52:1B:30:DA:F3:4A:A1:30:58:2C:6F:D5:7D:10:63:5D:74 Authority key identifier: 51:89:2B:E5:B0:B4:AB:C6:02:54:45:F4:03:9F:C7:95:D8:BA:58:E2 Certificate issuer: /CN=A9139A90/serialNumber=51892BE5B0B4ABC6025445F4039FC795D8BA58E2 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYkr5bC0q8YCVEX0A5_Hldi6WOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft Manifest number: 95 Signing time: Sat 05 Apr 2025 05:40:31 +0000 Manifest this update: Sat 05 Apr 2025 05:40:31 +0000 Manifest next update: Sat 12 Apr 2025 05:40:31 +0000 Files and hashes: 1: UYkr5bC0q8YCVEX0A5_Hldi6WOI.crl (hash: To718u6kscYkkiQs4qwUN1tIz10/QvKYckATTrbNvcc=) 2: 8B584EC2337D11EF9D71B72DC4F9AE02.roa (hash: yZ1LidZrlFrNTxapIhIsCTEZZK7lTYC0s/4RKHkPEsg=) 3: AE977DF8337E11EFB3CCD72FC4F9AE02.roa (hash: OJdZE6RjgM3Hz2T07Mg2BJv0nC0BL01Q/08oABlyEMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.crl rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYkr5bC0q8YCVEX0A5_Hldi6WOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:40:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139A90 Validity Not Before: Apr 5 05:40:31 2025 GMT Not After : Apr 12 05:40:31 2025 GMT Subject: CN=67f0c24f-eaf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:19:6a:87:69:41:bc:35:d8:8e:f3:e1:ee:b1: a5:05:dd:d7:6a:f6:28:a7:cd:f1:84:97:d0:3f:78: 82:65:29:ef:40:7b:25:7a:b5:0e:01:0b:2b:97:10: 60:9b:eb:3e:b2:0c:43:1f:d8:42:0f:7c:e8:e4:09: a9:e5:22:66:47:bb:73:77:83:9d:08:2a:ba:c1:8f: d9:a1:18:6c:98:b6:83:ff:9f:af:14:d6:61:62:ab: 52:30:31:c5:55:18:b8:aa:bf:a8:dd:28:c3:c2:94: 37:cd:03:11:39:e4:be:f1:86:b0:94:97:6c:c8:da: e9:d1:5d:b0:8c:1d:3d:f1:6e:3d:56:93:15:70:6e: 5a:56:76:1c:2a:13:ad:f2:a6:8b:f3:b3:1a:eb:c2: e3:85:a2:a4:2e:6f:5e:8a:ec:04:28:15:32:38:3d: b1:67:1a:e7:a3:77:90:0e:b6:8a:f6:fc:02:aa:1e: bf:e7:9b:2f:f4:30:59:e8:a8:41:87:f0:10:13:99: d9:27:bf:5f:fb:97:45:9b:25:69:d6:03:c0:eb:55: ef:b3:c3:0e:9b:3a:cc:81:79:72:36:dd:b4:27:75: 5f:53:7d:de:30:37:6e:84:3f:e0:22:36:f5:6f:7c: 57:e6:84:8d:53:32:d8:b7:c7:51:ab:0c:b9:d3:c0: dc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A4:99:52:1B:30:DA:F3:4A:A1:30:58:2C:6F:D5:7D:10:63:5D:74 X509v3 Authority Key Identifier: keyid:51:89:2B:E5:B0:B4:AB:C6:02:54:45:F4:03:9F:C7:95:D8:BA:58:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYkr5bC0q8YCVEX0A5_Hldi6WOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139A90/1FE84ED2337611EF993E4673C4F9AE02/UYkr5bC0q8YCVEX0A5_Hldi6WOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:b7:c7:55:91:c4:6c:32:8d:78:34:21:5d:de:df:b8:0f:de: b8:a6:c8:02:c1:94:e8:cf:c8:d4:79:aa:32:9b:31:21:fd:c4: 9b:3c:be:e6:96:e8:0d:0b:58:5c:44:bd:d5:70:8b:01:db:3f: 6e:e2:f8:a1:bb:00:16:c8:26:db:44:2f:6e:b0:c4:a9:b3:69: fe:0e:06:b1:9b:19:f7:9a:b7:83:51:e2:15:49:e8:3d:5d:6f: f5:55:d3:65:2f:72:f0:15:9e:35:01:b5:b5:a9:60:79:9c:32: 12:34:2f:44:88:3e:f3:11:9e:40:01:60:89:52:3c:3b:5e:5e: ba:5a:36:82:85:ee:53:16:67:be:22:39:0f:4f:2a:b4:1b:e3: 6b:2e:03:4b:98:db:bb:f1:67:b4:60:48:fb:5b:12:6f:47:60: 89:f7:7f:f0:c8:be:fb:24:2c:7e:07:7e:c6:2f:24:d0:b2:a4: ca:15:45:8e:ec:cd:53:09:cb:46:f1:d2:8f:24:10:3d:77:10: 5c:0d:85:92:30:eb:3f:0d:28:9e:f7:f4:ca:c8:ba:97:7e:48: 88:1a:54:60:36:69:0c:88:02:89:b6:9f:4a:ba:0e:e5:8f:f0: d8:b1:54:f3:b6:97:0b:d9:f6:f5:c9:0a:c6:78:a2:62:7c:70: 43:e1:eb:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlBOTAxMTAvBgNVBAUTKDUxODkyQkU1QjBCNEFCQzYwMjU0NDVGNDAzOUZDNzk1 RDhCQTU4RTIwHhcNMjUwNDA1MDU0MDMxWhcNMjUwNDEyMDU0MDMxWjAYMRYwFAYD VQQDEw02N2YwYzI0Zi1lYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxlqh2lBvDXYjvPh7rGlBd3XavYop83xhJfQP3iCZSnvQHslerUOAQsrlxBg m+s+sgxDH9hCD3zo5Amp5SJmR7tzd4OdCCq6wY/ZoRhsmLaD/5+vFNZhYqtSMDHF VRi4qr+o3SjDwpQ3zQMROeS+8YawlJdsyNrp0V2wjB098W49VpMVcG5aVnYcKhOt 8qaL87Ma68LjhaKkLm9eiuwEKBUyOD2xZxrno3eQDraK9vwCqh6/55sv9DBZ6KhB h/AQE5nZJ79f+5dFmyVp1gPA61Xvs8MOmzrMgXlyNt20J3VfU33eMDduhD/gIjb1 b3xX5oSNUzLYt8dRqwy508Dc/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWkmVIb MNrzSqEwWCxv1X0QY110MB8GA1UdIwQYMBaAFFGJK+WwtKvGAlRF9AOfx5XYulji MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUE5MC8xRkU4NEVEMjMz NzYxMUVGOTkzRTQ2NzNDNEY5QUUwMi9VWWtyNWJDMHE4WUNWRVgwQTVfSGxkaTZX T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VZa3I1YkMwcThZQ1ZFWDBBNV9IbGRpNldPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OUE5MC8xRkU4NEVEMjMzNzYxMUVGOTkzRTQ2NzNDNEY5QUUwMi9VWWtyNWJDMHE4 WUNWRVgwQTVfSGxkaTZXT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRt8dVkcRsMo14NCFd3t+4D964psgCwZToz8jUeaoymzEh/cSbPL7m lugNC1hcRL3VcIsB2z9u4vihuwAWyCbbRC9usMSps2n+Dgaxmxn3mreDUeIVSeg9 XW/1VdNlL3LwFZ41AbW1qWB5nDISNC9EiD7zEZ5AAWCJUjw7Xl66WjaChe5TFme+ IjkPTyq0G+NrLgNLmNu78We0YEj7WxJvR2CJ93/wyL77JCx+B37GLyTQsqTKFUWO 7M1TCctG8dKPJBA9dxBcDYWSMOs/DSie9/TKyLqXfkiIGlRgNmkMiAKJtp9Kug7l j/DYsVTztpcL2fb1yQrGeKJifHBD4esQ -----END CERTIFICATE-----Generated at Sun Apr 6 06:48:45 2025 by rpki-client