$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: PZ5nc5hSDGS1xCbB7g6EVdzF3Ls3dGZmVoXDta7br4w= Subject key identifier: E6:C1:B1:D6:1E:DD:15:01:1C:7A:3C:BA:04:3C:49:C1:38:F1:97:72 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: E4 Signing time: Thu 03 Apr 2025 04:43:28 +0000 Manifest this update: Thu 03 Apr 2025 04:43:28 +0000 Manifest next update: Thu 10 Apr 2025 04:43:28 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: 21ap3+FUMrvR4Jyi2mIfoy2bmPZTrh5VIT0qwQ3wkGw=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: PzMfqv/JTphrRExc8y93sSocbbq7cPC2A1xhsVGan2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070 Validity Not Before: Apr 3 04:43:28 2025 GMT Not After : Apr 10 04:43:28 2025 GMT Subject: CN=67ee11f0-115c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ba:da:89:df:56:ae:f5:76:47:94:46:20:c6: 83:be:9b:23:1a:ab:e1:c7:0e:04:6a:f3:1d:22:77: 4d:a9:8a:65:3c:24:b6:f4:44:cb:5f:5c:df:3a:39: f2:20:8c:38:77:0f:08:71:9f:d1:21:3d:81:b1:bc: 41:74:ff:0d:9e:50:39:99:4c:f7:4c:c3:e0:66:07: ee:e9:32:7b:fa:49:9f:b3:40:2f:bd:30:6b:46:57: 1e:d8:d4:f5:a4:3f:90:d2:34:a3:b9:59:f4:35:73: 32:66:cb:ea:cb:5b:2a:30:2e:b4:87:4d:e9:a8:88: ef:40:04:34:96:d1:dd:3e:e7:d8:32:0e:aa:2d:cc: 8b:3d:bd:ed:c0:8a:7f:ac:e9:ff:c3:77:b2:b2:13: 6a:97:86:87:32:5e:c2:ea:88:8e:79:38:e0:76:4c: 07:bd:1d:8e:9c:08:a8:ec:3a:21:a2:8f:ab:9b:82: 06:60:5e:b2:2d:f1:e7:3f:9a:61:00:4b:5e:4b:1f: 8e:54:5a:b2:23:e4:51:a4:5b:bc:62:82:58:39:a6: 06:ec:ce:ab:1e:84:3b:58:a5:61:23:70:25:ef:29: 81:4e:f5:8a:0f:71:5e:b8:84:34:88:57:21:25:6b: a4:0f:55:db:71:1f:89:c0:75:f6:55:7e:e9:b6:67: 53:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C1:B1:D6:1E:DD:15:01:1C:7A:3C:BA:04:3C:49:C1:38:F1:97:72 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:be:ef:ed:19:29:81:a7:4e:b5:02:80:fb:33:06:79:36:ba: e4:92:fc:ab:2e:ad:ce:d0:07:04:9a:9b:7e:01:5f:d6:f4:b7: 96:bf:f8:c5:c2:bf:e1:97:08:4a:4e:85:dd:91:86:d6:a1:46: 42:86:e2:0a:9d:d3:cd:16:10:d1:7e:80:8b:56:b2:17:ef:0d: 9f:9d:1a:9f:a0:7e:f5:bf:c2:77:f6:8d:6f:48:00:3f:f2:9a: fc:8f:40:e4:93:22:f8:32:a4:38:d6:3f:00:ca:31:a5:ce:ce: 3b:1c:0d:70:df:8c:2c:c0:0d:ba:79:e6:4e:e3:35:f0:9a:f6: 54:51:13:0a:8d:d3:75:13:32:af:d2:e9:85:5c:57:90:fe:7a: 4f:9e:0c:b3:3c:06:95:65:70:a8:2b:b2:4a:83:29:18:2a:da: 2e:5f:c4:bf:6b:28:54:6a:a8:09:60:82:30:c1:87:f7:9a:0b: 5a:1f:f6:11:56:f4:c3:d0:a9:21:d6:7b:0c:9f:6b:55:2c:fe: 9f:24:5d:82:26:34:fd:61:07:76:aa:43:80:e5:cc:32:33:ef: 58:6c:c8:f8:7e:07:2a:a0:83:a5:6f:c0:7c:e6:6c:33:fb:22: e0:2d:6f:e7:92:c5:d9:d8:19:1d:2e:24:0c:0f:35:bb:f1:99: 67:b8:8c:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjUwNDAzMDQ0MzI4WhcNMjUwNDEwMDQ0MzI4WjAYMRYwFAYD VQQDEw02N2VlMTFmMC0xMTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubraid9WrvV2R5RGIMaDvpsjGqvhxw4EavMdIndNqYplPCS29ETLX1zfOjny IIw4dw8IcZ/RIT2BsbxBdP8NnlA5mUz3TMPgZgfu6TJ7+kmfs0AvvTBrRlce2NT1 pD+Q0jSjuVn0NXMyZsvqy1sqMC60h03pqIjvQAQ0ltHdPufYMg6qLcyLPb3twIp/ rOn/w3eyshNql4aHMl7C6oiOeTjgdkwHvR2OnAio7Dohoo+rm4IGYF6yLfHnP5ph AEteSx+OVFqyI+RRpFu8YoJYOaYG7M6rHoQ7WKVhI3Al7ymBTvWKD3FeuIQ0iFch JWukD1XbcR+JwHX2VX7ptmdTgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObBsdYe 3RUBHHo8ugQ8ScE48ZdyMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNvu/tGSmBp061AoD7MwZ5NrrkkvyrLq3O0AcEmpt+AV/W9LeWv/jF wr/hlwhKToXdkYbWoUZChuIKndPNFhDRfoCLVrIX7w2fnRqfoH71v8J39o1vSAA/ 8pr8j0DkkyL4MqQ41j8AyjGlzs47HA1w34wswA26eeZO4zXwmvZUURMKjdN1EzKv 0umFXFeQ/npPngyzPAaVZXCoK7JKgykYKtouX8S/ayhUaqgJYIIwwYf3mgtaH/YR VvTD0Kkh1nsMn2tVLP6fJF2CJjT9YQd2qkOA5cwyM+9YbMj4fgcqoIOlb8B85mwz +yLgLW/nksXZ2BkdLiQMDzW78ZlnuIwg -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:38 2025 by rpki-client