$ rpki-client -vvf rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft File: 5ufguvNPIMPZye8md2gF84JGO4Y.mft (raw, json) Hash identifier: Ft7fawkTtnsZpHq39YzV/boKJXXxl1p9iG2AplXrpJU= Subject key identifier: ED:2E:8E:72:42:8D:6E:50:EA:12:E6:92:47:F1:14:F9:3C:1D:3E:A5 Authority key identifier: E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 Certificate issuer: /CN=A9160BD2/serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Certificate serial: 0651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft Manifest number: 064C Signing time: Fri 28 Mar 2025 22:44:44 +0000 Manifest this update: Fri 28 Mar 2025 22:44:44 +0000 Manifest next update: Fri 04 Apr 2025 22:44:43 +0000 Files and hashes: 1: 5ufguvNPIMPZye8md2gF84JGO4Y.crl (hash: 3BBeBFpgM/lPjHxPg7TJbb3WxklGCn6Ju2WRfYuaT58=) 2: 159A3C967D7211EBA0A7FF60C4F9AE02.roa (hash: Zxo0mKrJYkISVsqHRZIlLeBZhk5GaXEPMnvmTBTNLew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:44:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160BD2 Validity Not Before: Mar 28 22:44:44 2025 GMT Not After : Apr 4 22:44:43 2025 GMT Subject: CN=67e7265c-90ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5f:03:93:63:00:97:d5:52:7c:51:5b:48:fc: 6f:48:b4:a9:4d:c0:ff:76:72:c7:c8:fd:bb:d4:00: 49:0e:18:5b:9e:eb:c9:bb:45:cc:68:a0:7f:ca:67: 91:cd:a0:33:60:9e:4a:4f:83:9e:23:af:52:95:b7: 25:78:24:f6:e6:45:56:10:b8:3a:b1:eb:51:1d:36: e0:2b:05:72:80:64:c6:91:cc:94:57:52:78:e8:5c: 7d:45:87:a0:a6:13:45:43:58:e8:07:82:a7:22:8b: d4:56:f2:c8:2d:1d:c0:62:d0:e6:a7:b0:9f:12:dd: 76:b7:cb:0b:1c:95:d1:06:92:e4:7c:3d:22:4d:14: e3:97:4e:ad:8a:62:c5:81:a4:b6:01:fa:ae:f1:13: 91:5a:61:97:9d:cf:fa:e6:c6:f5:f6:ba:40:d7:b1: 5e:2c:01:21:f2:f3:1a:40:6a:90:d0:6c:45:0c:18: 5c:ce:ab:9d:94:b8:de:b0:dd:2e:2b:37:f8:a1:05: 05:cc:e0:44:c0:e8:80:dd:d7:c7:9c:69:24:bb:d6: e4:f1:ce:7d:6a:2d:57:ac:40:b3:47:6b:e6:39:26: 50:21:e9:56:26:1b:ed:2f:9e:a7:9b:78:5b:eb:ae: ac:d5:7b:ab:3b:a4:03:86:0a:31:36:f1:8a:c7:cb: 71:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2E:8E:72:42:8D:6E:50:EA:12:E6:92:47:F1:14:F9:3C:1D:3E:A5 X509v3 Authority Key Identifier: keyid:E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f3:ef:c3:b2:f3:b6:fa:27:96:0a:60:67:58:11:5a:2e:4b: 93:18:44:b5:f1:8c:a3:ce:83:92:82:46:40:49:bb:95:bd:f7: 8d:bc:6b:55:9a:b6:2d:c3:36:c2:8c:ff:50:b1:be:7c:ab:3e: 10:50:2a:e5:9c:1e:19:4e:9f:ec:f3:af:c5:03:1a:e2:53:b2: 5c:6f:d2:73:52:d6:b0:1f:28:d3:5d:39:d5:03:1f:88:6c:c9: 10:18:a2:b5:74:d6:52:7d:7a:65:30:4a:50:61:28:2a:ff:41: 63:c1:26:43:ff:47:17:22:21:3f:40:21:f1:8d:36:60:f5:29: 86:2b:22:f5:88:64:86:e3:b3:cb:05:59:74:56:bd:30:3b:ea: 9a:f0:f4:af:7a:2c:23:6d:1d:97:23:1d:41:82:32:3a:73:12: 50:99:e1:cb:8a:a5:21:02:fc:a2:95:7f:8a:3f:6e:a3:ab:77: 75:5e:fb:13:3f:d5:43:d2:cf:cb:5d:b4:14:8c:eb:8f:99:27: de:d0:0e:a5:34:0b:31:5d:a3:8d:05:15:4c:17:dd:a7:be:19: 4c:2c:bd:bc:06:5a:5f:99:c1:96:71:43:5a:53:8a:df:54:a1: 42:a6:c7:85:c4:ca:03:f1:c3:7e:8b:55:77:47:63:53:3a:c2: 50:b8:7c:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBCRDIxMTAvBgNVBAUTKEU2RTdFMEJBRjM0RjIwQzNEOUM5RUYyNjc3NjgwNUYz ODI0NjNCODYwHhcNMjUwMzI4MjI0NDQ0WhcNMjUwNDA0MjI0NDQzWjAYMRYwFAYD VQQDEw02N2U3MjY1Yy05MGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0F8Dk2MAl9VSfFFbSPxvSLSpTcD/dnLHyP271ABJDhhbnuvJu0XMaKB/ymeR zaAzYJ5KT4OeI69SlbcleCT25kVWELg6setRHTbgKwVygGTGkcyUV1J46Fx9RYeg phNFQ1joB4KnIovUVvLILR3AYtDmp7CfEt12t8sLHJXRBpLkfD0iTRTjl06timLF gaS2Afqu8RORWmGXnc/65sb19rpA17FeLAEh8vMaQGqQ0GxFDBhczqudlLjesN0u Kzf4oQUFzOBEwOiA3dfHnGkku9bk8c59ai1XrECzR2vmOSZQIelWJhvtL56nm3hb 666s1XurO6QDhgoxNvGKx8txRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0ujnJC jW5Q6hLmkkfxFPk8HT6lMB8GA1UdIwQYMBaAFObn4LrzTyDD2cnvJndoBfOCRjuG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEJEMi9FN0U5MDQwMDdE NkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElNUFp5ZThtZDJnRjg0SkdP NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV1Zmd1dk5QSU1QWnllOG1kMmdGODRKR080WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEJEMi9FN0U5MDQwMDdENkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElN UFp5ZThtZDJnRjg0SkdPNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/8+/DsvO2+ieWCmBnWBFaLkuTGES18YyjzoOSgkZASbuVvfeNvGtV mrYtwzbCjP9Qsb58qz4QUCrlnB4ZTp/s86/FAxriU7Jcb9JzUtawHyjTXTnVAx+I bMkQGKK1dNZSfXplMEpQYSgq/0FjwSZD/0cXIiE/QCHxjTZg9SmGKyL1iGSG47PL BVl0Vr0wO+qa8PSveiwjbR2XIx1BgjI6cxJQmeHLiqUhAvyilX+KP26jq3d1XvsT P9VD0s/LXbQUjOuPmSfe0A6lNAsxXaONBRVMF92nvhlMLL28BlpfmcGWcUNaU4rf VKFCpseFxMoD8cN+i1V3R2NTOsJQuHwe -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:25 2025 by rpki-client