$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: gccU9f2pdqPhmNO1x3Uu7b+6P/PQptbuJQRLefx/GWM= Subject key identifier: B3:20:D1:DC:F0:D6:1B:C3:C2:F5:17:FB:3F:90:0E:CE:57:38:2F:D1 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0BCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0BBE Signing time: Sun 06 Apr 2025 18:42:13 +0000 Manifest this update: Sun 06 Apr 2025 18:42:12 +0000 Manifest next update: Sun 13 Apr 2025 18:42:12 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: wRWzORTw7HONluNzhVkaoeGbeX83lusRlECkwOFMNOg=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: 7j0YGYj1RqHQkRdbQBx20wV0PO4RbHrIjhOnv/h1yok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3022 (0xbce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E Validity Not Before: Apr 6 18:42:12 2025 GMT Not After : Apr 13 18:42:12 2025 GMT Subject: CN=67f2cb04-adc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:09:67:e9:31:41:b6:31:e7:87:f4:99:a3:30: e5:32:7c:0a:79:3c:ca:a1:15:d1:97:e8:fa:39:06: 04:a4:04:a3:3f:2c:d6:52:08:9f:90:ba:0f:41:c5: 33:90:d7:97:56:01:c9:d6:a8:e6:72:c1:10:bf:00: 58:c5:99:5f:42:93:60:a9:d2:88:91:87:ec:23:5c: 8e:a4:25:d3:81:1d:0e:d6:0c:5c:fc:14:93:1c:8f: b3:15:58:5a:fb:7e:06:3e:5b:29:d5:2f:ea:c8:d5: 7b:0d:b6:fe:7c:37:2b:10:fa:9f:01:89:11:43:45: 28:c9:68:df:09:9e:6e:e9:bd:8c:3b:28:40:15:5a: 6d:16:31:83:47:3a:fa:00:4a:c2:d3:50:4c:2d:96: 65:69:9a:38:9e:5b:ec:e1:a7:58:f8:b0:f6:91:89: 73:05:a9:7d:e9:80:15:bd:d6:2b:56:4b:1c:82:eb: f8:ff:94:c9:c3:19:a7:6a:08:03:f8:db:6f:d5:bb: 07:ca:be:b2:99:d7:78:c8:64:b7:32:b4:3a:e6:0f: cb:8a:4e:bf:dc:1a:73:43:59:7a:fe:23:e3:af:ab: dd:14:04:29:35:4d:c2:91:aa:59:92:84:5c:54:13: d6:69:46:24:90:61:81:67:6a:99:e1:b8:95:7e:e4: 83:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:20:D1:DC:F0:D6:1B:C3:C2:F5:17:FB:3F:90:0E:CE:57:38:2F:D1 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:3e:7a:77:7b:cc:86:84:4a:b0:ae:aa:78:35:54:3e:cd:1e: 5c:d8:d0:0c:b3:e6:b8:f3:4d:7d:1c:be:b1:d7:8a:42:f4:85: 49:da:e8:ea:e3:d7:ed:f6:41:6c:38:da:56:fa:6c:b6:5d:8b: 74:1d:6b:30:43:7f:4e:7f:d8:b2:ae:bd:42:a4:c4:9c:b5:25: ea:bc:37:51:8f:d4:e7:2f:37:9f:83:9d:14:e8:ff:14:1b:9d: 00:01:e8:33:e1:19:ae:c7:ea:1b:42:e5:78:3d:87:51:75:cd: 03:dc:c3:0f:ce:10:6d:c4:a6:db:64:35:22:3f:68:e8:23:81: 12:42:d1:8e:25:40:3e:e1:d6:df:40:8c:e1:73:7a:45:f2:8d: 82:35:28:56:80:6a:43:a1:1e:d2:7d:4a:4b:39:52:1a:df:09: 9b:52:b6:25:64:14:c1:90:d6:e3:8b:a9:d4:5d:a1:a8:4c:93: cd:83:4d:32:fc:0e:92:d9:19:25:6e:c7:ef:aa:97:a4:fe:0a: 5d:87:72:42:57:e3:a7:4e:20:90:4c:c7:4d:89:be:4e:7d:ce: 8c:a7:2f:a3:7f:a4:b9:f7:f0:f6:bf:a5:a6:19:7b:d4:50:16: 3b:34:ac:78:d7:96:ac:05:9f:a1:7d:ee:7e:14:67:1c:d9:b6: a4:7f:ae:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjUwNDA2MTg0MjEyWhcNMjUwNDEzMTg0MjEyWjAYMRYwFAYD VQQDEw02N2YyY2IwNC1hZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwln6TFBtjHnh/SZozDlMnwKeTzKoRXRl+j6OQYEpASjPyzWUgifkLoPQcUz kNeXVgHJ1qjmcsEQvwBYxZlfQpNgqdKIkYfsI1yOpCXTgR0O1gxc/BSTHI+zFVha +34GPlsp1S/qyNV7Dbb+fDcrEPqfAYkRQ0UoyWjfCZ5u6b2MOyhAFVptFjGDRzr6 AErC01BMLZZlaZo4nlvs4adY+LD2kYlzBal96YAVvdYrVkscguv4/5TJwxmnaggD +Ntv1bsHyr6ymdd4yGS3MrQ65g/Lik6/3BpzQ1l6/iPjr6vdFAQpNU3CkapZkoRc VBPWaUYkkGGBZ2qZ4biVfuSD1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMg0dzw 1hvDwvUX+z+QDs5XOC/RMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmPnp3e8yGhEqwrqp4NVQ+zR5c2NAMs+a48019HL6x14pC9IVJ2ujq 49ft9kFsONpW+my2XYt0HWswQ39Of9iyrr1CpMSctSXqvDdRj9TnLzefg50U6P8U G50AAegz4Rmux+obQuV4PYdRdc0D3MMPzhBtxKbbZDUiP2joI4ESQtGOJUA+4dbf QIzhc3pF8o2CNShWgGpDoR7SfUpLOVIa3wmbUrYlZBTBkNbji6nUXaGoTJPNg00y /A6S2Rklbsfvqpek/gpdh3JCV+OnTiCQTMdNib5Ofc6Mpy+jf6S59/D2v6WmGXvU UBY7NKx415asBZ+hfe5+FGcc2bakf66E -----END CERTIFICATE-----Generated at Mon Apr 7 05:35:39 2025 by rpki-client