$ rpki-client -vvf rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/ufrcQefh-XVse8mz3jlyy_bPYLU.mft File: ufrcQefh-XVse8mz3jlyy_bPYLU.mft (raw, json) Hash identifier: 7C64yhKxb9L/pdZ13eTsvDnyjXQDVR8ZM08upKv6y6E= Subject key identifier: 28:64:11:0E:8D:E3:FE:9F:65:15:CE:A0:7E:D3:98:EA:93:6E:B8:0B Authority key identifier: B9:FA:DC:41:E7:E1:F9:75:6C:7B:C9:B3:DE:39:72:CB:F6:CF:60:B5 Certificate issuer: /CN=A9140562/serialNumber=B9FADC41E7E1F9756C7BC9B3DE3972CBF6CF60B5 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ufrcQefh-XVse8mz3jlyy_bPYLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/ufrcQefh-XVse8mz3jlyy_bPYLU.mft Manifest number: 16 Signing time: Sat 29 Mar 2025 07:18:25 +0000 Manifest this update: Sat 29 Mar 2025 07:18:25 +0000 Manifest next update: Sat 05 Apr 2025 07:18:25 +0000 Files and hashes: 1: ufrcQefh-XVse8mz3jlyy_bPYLU.crl (hash: lNIR5vMybHEasMiqH7/JKSPXbDD7s77Mkvqci7iCFII=) 2: 5FCE01D8EDFA11EF8193933AC4F9AE02.roa (hash: 97oa3zBzp7Gq4BpVUI5kKb706Ag3AZCc/4WlkzLjgfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/ufrcQefh-XVse8mz3jlyy_bPYLU.crl rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/ufrcQefh-XVse8mz3jlyy_bPYLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ufrcQefh-XVse8mz3jlyy_bPYLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140562 Validity Not Before: Mar 29 07:18:25 2025 GMT Not After : Apr 5 07:18:25 2025 GMT Subject: CN=67e79ec1-bd3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:cb:eb:97:bc:1e:7e:18:ef:1d:62:2e:f3: cc:13:dd:b9:62:05:3b:ae:06:64:c1:df:cc:b8:50: 10:93:59:81:94:0a:73:0a:26:c3:64:cb:b4:6a:96: 77:bc:95:f8:81:14:91:68:11:aa:85:41:61:ab:cb: 41:28:f6:fc:0b:79:16:88:34:85:58:3e:30:1a:38: 91:b4:6c:78:1e:3d:a4:7e:c4:79:d8:d4:a0:41:7f: 26:05:81:2e:01:a4:30:ee:0f:a4:c9:ae:e9:7e:21: 36:c5:10:56:36:a8:54:26:2f:38:f0:54:db:81:74: 04:5a:e4:60:0c:11:d8:35:f8:9e:b0:a2:ce:40:f5: 15:31:3a:8e:f5:ab:44:74:a9:26:ef:bb:c1:9d:ac: a2:fe:6e:de:d1:61:c4:af:0d:c6:06:a2:13:54:41: 83:66:55:10:9b:dd:3e:66:8a:15:dd:63:de:47:3c: 5d:95:74:25:aa:b3:77:14:03:c7:14:63:bc:dd:e4: 88:78:31:6f:9a:5a:e9:54:c3:1c:3b:e1:7d:d8:8f: 05:d0:87:13:99:18:a2:5d:34:5a:2a:98:f7:dd:d2: c8:da:c1:10:47:31:f4:a3:f5:eb:59:4e:e7:4e:48: 2b:ef:0e:4d:47:2e:62:12:86:42:3f:2c:f5:eb:64: 51:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:64:11:0E:8D:E3:FE:9F:65:15:CE:A0:7E:D3:98:EA:93:6E:B8:0B X509v3 Authority Key Identifier: keyid:B9:FA:DC:41:E7:E1:F9:75:6C:7B:C9:B3:DE:39:72:CB:F6:CF:60:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/ufrcQefh-XVse8mz3jlyy_bPYLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ufrcQefh-XVse8mz3jlyy_bPYLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140562/66C3C97EEDF911EFA9CDA838C4F9AE02/ufrcQefh-XVse8mz3jlyy_bPYLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:76:d9:70:a9:a6:b0:26:db:d5:15:90:17:a8:b3:ab:de:47: 76:62:7e:32:d4:89:e7:4f:34:9b:72:15:a6:50:7e:ce:bb:f7: 33:b5:f5:4b:b2:cf:d8:40:85:82:16:47:16:37:bb:0e:36:ef: 9c:84:36:fb:71:c1:8c:e4:14:2d:92:e4:50:35:93:4c:98:6c: dc:ea:84:84:36:17:ca:ff:15:c8:28:90:76:da:c4:7d:e7:a1: 34:12:c2:8b:c3:92:87:0e:7e:7a:17:99:d5:4b:64:00:46:74: b1:38:ad:68:1b:eb:ad:3d:a3:0c:87:7b:bf:f7:ef:62:4b:56: dd:e3:87:45:df:3d:be:ac:db:35:74:8e:24:b2:30:07:ab:57: a2:3e:a4:39:16:3b:3a:7f:70:97:17:fd:7f:84:91:55:af:30: 1a:aa:e6:49:d2:92:05:66:ac:60:5e:bb:8a:25:d5:15:a1:66: 3c:f0:9f:49:fb:33:70:a8:d3:41:1e:1d:98:0c:52:23:1f:15: 65:37:43:dc:7b:e6:f6:d0:dc:4a:7b:e9:8a:fb:b7:cf:61:95: 07:3c:f3:bd:50:bd:52:02:f5:66:ae:12:22:ba:a5:50:3b:a4: 60:04:91:95:e6:60:b6:9a:01:15:3c:3a:f8:8e:4c:59:69:f3: 0a:8c:4a:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MDU2MjExMC8GA1UEBRMoQjlGQURDNDFFN0UxRjk3NTZDN0JDOUIzREUzOTcyQ0JG NkNGNjBCNTAeFw0yNTAzMjkwNzE4MjVaFw0yNTA0MDUwNzE4MjVaMBgxFjAUBgNV BAMTDTY3ZTc5ZWMxLWJkM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/5cvrl7wefhjvHWIu88wT3bliBTuuBmTB38y4UBCTWYGUCnMKJsNky7Rqlne8 lfiBFJFoEaqFQWGry0Eo9vwLeRaINIVYPjAaOJG0bHgePaR+xHnY1KBBfyYFgS4B pDDuD6TJrul+ITbFEFY2qFQmLzjwVNuBdARa5GAMEdg1+J6wos5A9RUxOo71q0R0 qSbvu8GdrKL+bt7RYcSvDcYGohNUQYNmVRCb3T5mihXdY95HPF2VdCWqs3cUA8cU Y7zd5Ih4MW+aWulUwxw74X3YjwXQhxOZGKJdNFoqmPfd0sjawRBHMfSj9etZTudO SCvvDk1HLmIShkI/LPXrZFHvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKGQRDo3j /p9lFc6gftOY6pNuuAswHwYDVR0jBBgwFoAUufrcQefh+XVse8mz3jlyy/bPYLUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQwNTYyLzY2QzNDOTdFRURG OTExRUZBOUNEQTgzOEM0RjlBRTAyL3VmcmNRZWZoLVhWc2U4bXozamx5eV9iUFlM VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdWZyY1FlZmgtWFZzZThtejNqbHl5X2JQWUxVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQw NTYyLzY2QzNDOTdFRURGOTExRUZBOUNEQTgzOEM0RjlBRTAyL3VmcmNRZWZoLVhW c2U4bXozamx5eV9iUFlMVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADR22XCpprAm29UVkBeos6veR3ZifjLUiedPNJtyFaZQfs679zO19Uuy z9hAhYIWRxY3uw4275yENvtxwYzkFC2S5FA1k0yYbNzqhIQ2F8r/FcgokHbaxH3n oTQSwovDkocOfnoXmdVLZABGdLE4rWgb6609owyHe7/372JLVt3jh0XfPb6s2zV0 jiSyMAerV6I+pDkWOzp/cJcX/X+EkVWvMBqq5knSkgVmrGBeu4ol1RWhZjzwn0n7 M3Co00EeHZgMUiMfFWU3Q9x75vbQ3Ep76Yr7t89hlQc8871QvVIC9WauEiK6pVA7 pGAEkZXmYLaaARU8OviOTFlp8wqMSgU= -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:28 2025 by rpki-client