$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft File: R_UMlYv5z1RcYBresE-KBeEB2aU.mft (raw, json) Hash identifier: sEKIywcKguS7jryZu+gAWcMaApQivMPhcLNdDXMTZow= Subject key identifier: 26:D2:62:52:D2:BB:DA:D7:95:F5:83:03:FA:34:BD:EE:FF:67:F7:BB Authority key identifier: 47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 Certificate issuer: /CN=A9153490/serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft Manifest number: DD Signing time: Mon 21 Apr 2025 04:25:12 +0000 Manifest this update: Mon 21 Apr 2025 04:25:11 +0000 Manifest next update: Mon 28 Apr 2025 04:25:11 +0000 Files and hashes: 1: R_UMlYv5z1RcYBresE-KBeEB2aU.crl (hash: ZsiqbVFUIM/Qx18HVrNV6Ir/kdZpUdHSdbtF4T8OPHg=) 2: 0F778EDCEBB411EE9D86095BC4F9AE02.roa (hash: GLQc94rusVtQbATmFzKX5DyXm0E80+RpBsTaqBZ5TIc=) 3: 0F0A0C72EBB411EE9D86095BC4F9AE02.roa (hash: g+h2X039YfWFdq3nneNF8fX2UZhaS8/1cDtSjJwB84Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 04:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153490, serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Validity Not Before: Apr 21 04:25:11 2025 GMT Not After : Apr 28 04:25:11 2025 GMT Subject: CN=6805c8a7-c264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:36:af:d1:5b:50:15:62:e6:15:b3:06:21:4b: d8:42:e4:e1:10:0c:27:b0:73:e8:78:fe:b8:1f:c0: f3:02:21:9e:2b:a7:2b:7f:26:f6:d1:5c:0a:bb:4e: 65:59:88:45:24:fa:cc:ce:f1:4e:24:15:6f:9c:2c: 66:eb:9f:32:a8:ff:12:b8:4a:2d:ff:05:93:26:d5: d8:40:4f:d7:d8:91:76:38:bf:ef:1c:d8:da:1e:30: cb:be:f0:14:81:d7:48:e6:51:d6:83:26:0c:25:85: 87:b7:5d:c8:13:8a:5c:3d:0b:bd:3c:ce:61:90:f9: 07:c3:a0:3c:3f:48:a2:fc:08:0b:99:d6:56:f0:68: a1:d9:b1:ed:a1:d9:b6:7d:92:b6:33:ec:65:57:a1: 86:b7:5f:9b:e4:1d:a6:9b:c2:88:0f:fc:32:ae:fb: eb:0d:15:06:fe:f1:e7:7e:13:22:09:9f:e3:d2:d5: ab:ec:cf:25:21:c0:9b:7b:95:d8:c6:ec:26:d4:1a: 68:5f:ce:72:4d:75:3c:ff:60:f6:e5:a1:9c:92:fa: 5e:e7:1f:b3:34:f1:3c:34:16:f4:53:45:c2:aa:12: b6:87:e3:8a:62:ba:35:ec:cd:3d:bb:11:f7:ba:5a: f7:33:92:4c:17:e1:a2:11:15:b7:d4:54:17:ee:aa: 6b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D2:62:52:D2:BB:DA:D7:95:F5:83:03:FA:34:BD:EE:FF:67:F7:BB X509v3 Authority Key Identifier: keyid:47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:85:15:72:88:d5:60:ae:cf:ce:29:fa:b6:6e:96:f9:01:b7: fe:e3:04:85:80:a0:ca:3c:97:07:d4:63:3c:18:a2:0a:0c:34: 22:3e:5f:ac:ba:ca:c0:f6:f2:cb:d7:32:bc:ad:7b:a0:6d:79: a1:93:51:3e:65:76:4e:af:18:86:03:38:67:c9:54:1b:47:bf: dc:41:4f:74:2e:08:1a:49:97:67:d0:dc:78:56:21:70:0f:2e: 5e:0d:a0:06:fe:15:af:31:a5:10:40:c1:62:52:5b:35:3a:bd: 44:4f:82:43:4a:eb:a9:79:2d:67:49:a7:cf:32:31:5f:c4:d3: 7c:d9:5f:06:fb:1c:fb:30:e1:56:a8:07:14:72:95:16:1b:df: 07:48:80:ff:70:e5:73:93:9d:b8:5a:33:97:9b:2d:f3:03:96: 96:e7:81:7b:3c:c1:9f:f8:9e:cb:5c:c4:88:1a:94:1b:42:f5: 02:a0:7c:29:53:89:7c:2f:78:88:0d:cf:12:0d:b0:05:cf:4c: 90:18:3f:af:41:8e:91:9e:1e:03:d0:8f:65:45:d7:06:77:57: 8e:f7:14:4c:3f:df:db:d1:7e:1a:0c:f9:e2:9a:4c:e3:28:2a: 76:ca:42:89:c4:68:32:b5:f3:f2:44:65:5f:01:9b:16:ae:00: c0:bf:f9:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0OTAxMTAvBgNVBAUTKDQ3RjUwQzk1OEJGOUNGNTQ1QzYwMUFERUIwNEY4QTA1 RTEwMUQ5QTUwHhcNMjUwNDIxMDQyNTExWhcNMjUwNDI4MDQyNTExWjAYMRYwFAYD VQQDEw02ODA1YzhhNy1jMjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTav0VtQFWLmFbMGIUvYQuThEAwnsHPoeP64H8DzAiGeK6crfyb20VwKu05l WYhFJPrMzvFOJBVvnCxm658yqP8SuEot/wWTJtXYQE/X2JF2OL/vHNjaHjDLvvAU gddI5lHWgyYMJYWHt13IE4pcPQu9PM5hkPkHw6A8P0ii/AgLmdZW8Gih2bHtodm2 fZK2M+xlV6GGt1+b5B2mm8KID/wyrvvrDRUG/vHnfhMiCZ/j0tWr7M8lIcCbe5XY xuwm1BpoX85yTXU8/2D25aGckvpe5x+zNPE8NBb0U0XCqhK2h+OKYro17M09uxH3 ulr3M5JMF+GiERW31FQX7qpr3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbSYlLS u9rXlfWDA/o0ve7/Z/e7MB8GA1UdIwQYMBaAFEf1DJWL+c9UXGAa3rBPigXhAdml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQ5MC84RjUyNDg4RUQw NTQxMUVFQUY3OTlGMTZDNEY5QUUwMi9SX1VNbFl2NXoxUmNZQnJlc0UtS0JlRUIy YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JfVU1sWXY1ejFSY1lCcmVzRS1LQmVFQjJhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzQ5MC84RjUyNDg4RUQwNTQxMUVFQUY3OTlGMTZDNEY5QUUwMi9SX1VNbFl2NXox UmNZQnJlc0UtS0JlRUIyYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJhRVyiNVgrs/OKfq2bpb5Abf+4wSFgKDKPJcH1GM8GKIKDDQiPl+s usrA9vLL1zK8rXugbXmhk1E+ZXZOrxiGAzhnyVQbR7/cQU90LggaSZdn0Nx4ViFw Dy5eDaAG/hWvMaUQQMFiUls1Or1ET4JDSuupeS1nSafPMjFfxNN82V8G+xz7MOFW qAcUcpUWG98HSID/cOVzk524WjOXmy3zA5aW54F7PMGf+J7LXMSIGpQbQvUCoHwp U4l8L3iIDc8SDbAFz0yQGD+vQY6Rnh4D0I9lRdcGd1eO9xRMP9/b0X4aDPnimkzj KCp2ykKJxGgytfPyRGVfAZsWrgDAv/lY -----END CERTIFICATE-----Generated at Tue Apr 22 20:00:48 2025 by rpki-client