$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: gnBkdoyQtUiKFA8fVFfOm/LVs4Hmxw/NYeK+jDAUopg= Subject key identifier: 12:35:D3:36:A1:E1:03:92:70:1F:FF:86:50:FA:86:CF:80:92:B0:68 Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 01B6 Signing time: Sat 29 Mar 2025 02:40:30 +0000 Manifest this update: Sat 29 Mar 2025 02:40:29 +0000 Manifest next update: Sat 05 Apr 2025 02:40:29 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: /tLIjxR3Kdvd4LUoMJ6ctG2Po+BUwlYYGwrKz0LRW74=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD Validity Not Before: Mar 29 02:40:29 2025 GMT Not After : Apr 5 02:40:29 2025 GMT Subject: CN=67e75d9e-db09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8b:5e:8e:c6:3a:91:79:e4:42:06:9c:43:b2: 0c:08:55:f1:f7:cd:71:88:cc:5b:48:e8:be:4d:d8: 71:21:ab:5c:e8:23:2d:85:c5:30:9d:fd:da:96:36: a1:d0:d2:e5:49:68:39:8d:f5:d8:b8:31:9d:17:c7: 93:aa:4b:e7:4f:a5:cc:2a:c0:7e:74:92:d8:d6:2b: bc:85:5d:2f:cb:ae:e4:13:aa:4c:51:71:27:e2:01: ac:4e:3f:81:5a:04:cb:8c:b8:c2:ca:6d:6f:8e:35: d4:c1:12:d7:e4:31:2c:82:96:7e:81:0e:00:82:ec: ef:ed:be:2a:7c:52:b2:83:c9:d0:a1:27:06:4c:78: df:c5:32:d4:a1:49:24:da:84:9c:35:a8:a9:04:71: ab:41:68:f6:31:cd:8f:0e:ba:7f:61:89:cb:e7:41: a5:02:45:86:91:f6:d0:dd:12:ff:fa:30:00:e5:16: 75:3a:89:21:b4:40:03:72:89:77:80:28:00:de:65: 07:7b:e5:a1:f2:ec:21:54:02:2e:77:64:ab:98:a0: a8:3c:26:20:7f:4d:5b:5b:ab:4b:dd:94:4d:e4:3d: 57:45:84:80:1b:8d:8e:26:72:4f:71:92:54:ae:b3: 48:5e:a0:84:7f:26:91:30:e6:78:ae:a3:e5:8e:bd: 99:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:35:D3:36:A1:E1:03:92:70:1F:FF:86:50:FA:86:CF:80:92:B0:68 X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:e4:b7:db:22:5b:e9:5b:04:9c:c2:5c:8e:71:39:56:2a:ad: 3e:8c:85:90:4e:f4:7e:3c:54:35:cc:d5:f4:9d:3d:97:e8:3a: 14:f9:16:88:0b:be:b0:ec:84:d7:f1:0a:93:6f:2e:3d:d6:8c: 4f:3f:80:b1:32:91:3e:9f:3d:87:3a:2a:1a:b0:eb:05:2c:75: 06:35:cb:6c:a7:49:37:f2:39:00:ac:0d:25:fc:c4:73:e1:22: df:c6:4e:8a:2e:7d:5b:47:a1:20:e7:52:bf:9a:c4:06:6e:b8: 10:17:30:90:4f:75:61:46:8c:f0:92:42:d8:9e:14:df:2d:b6: 4d:5c:06:63:0d:2f:54:70:bd:e9:ce:2d:5b:87:f3:02:27:75: 00:e8:3c:37:f7:82:e8:55:ef:d2:3b:e0:1f:6d:87:ba:eb:0a: 6c:f6:80:a0:e3:d6:73:fb:1e:6b:7b:de:be:c2:93:b7:66:b5: 6b:d0:13:58:b5:47:4a:e3:05:6e:11:8b:ea:04:9f:35:d4:fa: 0e:6c:92:93:d7:ed:f3:73:04:4d:69:b7:12:aa:3d:fe:b5:2f: 34:7f:d2:91:3e:a3:8f:8b:f9:d7:5e:f8:8b:14:71:c6:f1:4b: 70:f3:d4:15:52:c6:b6:65:36:59:63:a1:2f:4a:39:7a:ef:bf: 9c:fe:a6:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUwMzI5MDI0MDI5WhcNMjUwNDA1MDI0MDI5WjAYMRYwFAYD VQQDEw02N2U3NWQ5ZS1kYjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4tejsY6kXnkQgacQ7IMCFXx981xiMxbSOi+TdhxIatc6CMthcUwnf3aljah 0NLlSWg5jfXYuDGdF8eTqkvnT6XMKsB+dJLY1iu8hV0vy67kE6pMUXEn4gGsTj+B WgTLjLjCym1vjjXUwRLX5DEsgpZ+gQ4Aguzv7b4qfFKyg8nQoScGTHjfxTLUoUkk 2oScNaipBHGrQWj2Mc2PDrp/YYnL50GlAkWGkfbQ3RL/+jAA5RZ1OokhtEADcol3 gCgA3mUHe+Wh8uwhVAIud2SrmKCoPCYgf01bW6tL3ZRN5D1XRYSAG42OJnJPcZJU rrNIXqCEfyaRMOZ4rqPljr2ZWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBI10zah 4QOScB//hlD6hs+AkrBoMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa5LfbIlvpWwScwlyOcTlWKq0+jIWQTvR+PFQ1zNX0nT2X6DoU+RaI C76w7ITX8QqTby491oxPP4CxMpE+nz2HOioasOsFLHUGNctsp0k38jkArA0l/MRz 4SLfxk6KLn1bR6Eg51K/msQGbrgQFzCQT3VhRozwkkLYnhTfLbZNXAZjDS9UcL3p zi1bh/MCJ3UA6Dw394LoVe/SO+AfbYe66wps9oCg49Zz+x5re96+wpO3ZrVr0BNY tUdK4wVuEYvqBJ811PoObJKT1+3zcwRNabcSqj3+tS80f9KRPqOPi/nXXviLFHHG 8Utw89QVUsa2ZTZZY6EvSjl677+c/qa0 -----END CERTIFICATE-----Generated at Fri Apr 4 18:28:46 2025 by rpki-client