$ rpki-client -vvf rpki.apnic.net/member_repository/A913CDC4/F8485F6680CA11ED85DA913DC4F9AE02/Uo9uzggr6z3Qpm2RRz_MZWnNX04.mft File: Uo9uzggr6z3Qpm2RRz_MZWnNX04.mft (raw, json) Hash identifier: xkcrxd48KPbCH2dGUfrf5h3JKfzSgWA46wfr0OxdCS4= Subject key identifier: C9:09:00:F2:4A:A4:45:A9:DF:F3:FA:0D:C9:C3:23:E5:DB:B5:98:90 Authority key identifier: 52:8F:6E:CE:08:2B:EB:3D:D0:A6:6D:91:47:3F:CC:65:69:CD:5F:4E Certificate issuer: /CN=A913CDC4/serialNumber=528F6ECE082BEB3DD0A66D91473FCC6569CD5F4E Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uo9uzggr6z3Qpm2RRz_MZWnNX04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CDC4/F8485F6680CA11ED85DA913DC4F9AE02/Uo9uzggr6z3Qpm2RRz_MZWnNX04.mft Manifest number: 01B7 Signing time: Thu 03 Apr 2025 02:33:43 +0000 Manifest this update: Thu 03 Apr 2025 02:33:42 +0000 Manifest next update: Thu 10 Apr 2025 02:33:42 +0000 Files and hashes: 1: Uo9uzggr6z3Qpm2RRz_MZWnNX04.crl (hash: hppoN1v9V5txpr3Wcwfeq/2odKe5XR0Lv31V5pDXj9g=) 2: 2F38972E672B11EEBA84E00CC4F9AE02.roa (hash: F2m4EZaWhb+L+raUozQ7KqaAu1awnSWg4wSyn9tXN5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CDC4/F8485F6680CA11ED85DA913DC4F9AE02/Uo9uzggr6z3Qpm2RRz_MZWnNX04.crl rsync://rpki.apnic.net/member_repository/A913CDC4/F8485F6680CA11ED85DA913DC4F9AE02/Uo9uzggr6z3Qpm2RRz_MZWnNX04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uo9uzggr6z3Qpm2RRz_MZWnNX04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:33:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CDC4 Validity Not Before: Apr 3 02:33:42 2025 GMT Not After : Apr 10 02:33:42 2025 GMT Subject: CN=67edf387-78b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ef:7d:b1:cf:87:a8:37:6c:90:6b:99:2a:a5: ef:e0:68:47:10:3d:67:fc:7e:a3:a2:c8:35:68:4a: 7e:f0:d8:d7:e4:31:82:e5:58:46:58:50:35:8d:ee: 1c:56:5e:c2:aa:26:7a:cb:28:f1:5c:b2:d7:9c:30: 29:32:de:6a:a6:bc:74:d0:17:a7:18:9a:26:3c:49: 3a:b4:29:b0:76:ed:f4:88:38:d9:a9:0d:4d:6c:b9: b3:da:48:a1:6b:79:f8:d2:6d:57:1e:07:94:af:02: 59:00:7e:5a:61:33:8c:5e:af:26:ff:c9:8c:da:e1: 53:53:a7:d3:39:65:e9:d0:84:1f:2e:c4:41:bb:a3: 11:3f:27:7c:f7:3a:78:b4:a1:22:13:af:1a:1a:1b: 52:75:57:fb:b2:fd:8e:68:80:54:9f:5a:64:8c:20: cb:62:10:56:2c:4e:0a:9a:84:cb:84:24:dd:24:b6: 0e:06:72:4c:c4:6b:8f:70:04:e0:3b:77:ff:8a:bc: 95:ab:ab:4d:f6:7e:87:fb:8a:71:6e:ce:47:04:b1: e8:1d:89:4e:32:58:76:41:10:21:7c:69:fa:b0:27: 70:1a:c4:75:ce:53:af:09:5b:11:98:49:e4:5f:5d: ed:c2:b3:03:26:d9:a8:af:23:39:1b:97:d0:b9:19: 98:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:09:00:F2:4A:A4:45:A9:DF:F3:FA:0D:C9:C3:23:E5:DB:B5:98:90 X509v3 Authority Key Identifier: keyid:52:8F:6E:CE:08:2B:EB:3D:D0:A6:6D:91:47:3F:CC:65:69:CD:5F:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CDC4/F8485F6680CA11ED85DA913DC4F9AE02/Uo9uzggr6z3Qpm2RRz_MZWnNX04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uo9uzggr6z3Qpm2RRz_MZWnNX04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CDC4/F8485F6680CA11ED85DA913DC4F9AE02/Uo9uzggr6z3Qpm2RRz_MZWnNX04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a8:72:99:f8:70:0b:10:c2:62:68:38:cf:c2:9e:27:f1:16: 0e:68:9a:a5:32:06:24:e8:d7:d5:61:6f:f7:7f:c9:4e:de:ad: 57:5d:0c:7f:10:94:ff:15:4d:b4:65:5f:ab:60:e9:79:74:8c: ac:02:96:a8:77:21:22:51:73:ad:99:74:46:f2:8b:4b:8d:5e: 19:9f:f6:23:47:3e:07:d9:2f:3f:ea:5b:96:8e:80:46:8f:5a: 44:d1:4a:97:ff:77:d4:8b:8f:d9:24:b3:b9:84:00:4a:43:c2: 94:23:e4:9a:78:dd:e2:26:fd:c4:af:6b:03:62:65:76:4f:1a: 4e:4f:ad:cb:9b:33:38:55:1f:9f:39:b8:79:14:a5:12:1a:74: 06:e0:9b:65:46:fc:05:8c:b6:1b:d6:cc:b8:99:0c:b8:bf:01: a2:bd:7c:e3:17:5a:e3:e3:87:fa:58:d5:fc:20:00:02:c0:8b: c2:20:26:db:1c:6a:09:1f:81:f6:8e:e3:1d:39:b4:38:dc:04: df:b6:5b:78:e4:7f:91:38:dd:7f:27:c9:f2:80:7e:e0:e8:a7: 90:f6:b7:d8:67:ca:a9:c3:08:91:53:cd:c4:9f:34:d0:60:84: 44:6f:34:10:70:ff:69:f8:74:9a:78:ed:80:e0:f9:07:8d:c5: 1c:75:0d:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NEQzQxMTAvBgNVBAUTKDUyOEY2RUNFMDgyQkVCM0REMEE2NkQ5MTQ3M0ZDQzY1 NjlDRDVGNEUwHhcNMjUwNDAzMDIzMzQyWhcNMjUwNDEwMDIzMzQyWjAYMRYwFAYD VQQDEw02N2VkZjM4Ny03OGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+99sc+HqDdskGuZKqXv4GhHED1n/H6josg1aEp+8NjX5DGC5VhGWFA1je4c Vl7CqiZ6yyjxXLLXnDApMt5qprx00BenGJomPEk6tCmwdu30iDjZqQ1NbLmz2kih a3n40m1XHgeUrwJZAH5aYTOMXq8m/8mM2uFTU6fTOWXp0IQfLsRBu6MRPyd89zp4 tKEiE68aGhtSdVf7sv2OaIBUn1pkjCDLYhBWLE4KmoTLhCTdJLYOBnJMxGuPcATg O3f/iryVq6tN9n6H+4pxbs5HBLHoHYlOMlh2QRAhfGn6sCdwGsR1zlOvCVsRmEnk X13twrMDJtmoryM5G5fQuRmYcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkJAPJK pEWp3/P6DcnDI+XbtZiQMB8GA1UdIwQYMBaAFFKPbs4IK+s90KZtkUc/zGVpzV9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0RDNC9GODQ4NUY2Njgw Q0ExMUVEODVEQTkxM0RDNEY5QUUwMi9Vbzl1emdncjZ6M1FwbTJSUnpfTVpXbk5Y MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvOXV6Z2dyNnozUXBtMlJSel9NWlduTlgwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0RDNC9GODQ4NUY2NjgwQ0ExMUVEODVEQTkxM0RDNEY5QUUwMi9Vbzl1emdncjZ6 M1FwbTJSUnpfTVpXbk5YMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASqHKZ+HALEMJiaDjPwp4n8RYOaJqlMgYk6NfVYW/3f8lO3q1XXQx/ EJT/FU20ZV+rYOl5dIysApaodyEiUXOtmXRG8otLjV4Zn/YjRz4H2S8/6luWjoBG j1pE0UqX/3fUi4/ZJLO5hABKQ8KUI+SaeN3iJv3Er2sDYmV2TxpOT63LmzM4VR+f Obh5FKUSGnQG4JtlRvwFjLYb1sy4mQy4vwGivXzjF1rj44f6WNX8IAACwIvCICbb HGoJH4H2juMdObQ43ATftlt45H+RON1/J8nygH7g6KeQ9rfYZ8qpwwiRU83EnzTQ YIREbzQQcP9p+HSaeO2A4PkHjcUcdQ2R -----END CERTIFICATE-----Generated at Fri Apr 4 18:17:04 2025 by rpki-client