$ rpki-client -vvf rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft File: uMGYUq7H2lGkUL59p9lYc77eNzQ.mft (raw, json) Hash identifier: 1RnqwhihQxTeou8tz/gmMP0lWaBItputAsWv4yCsliU= Subject key identifier: E6:45:ED:3B:82:98:32:0A:88:13:74:CF:79:79:C0:45:44:A7:63:EB Authority key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 Certificate issuer: /CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft Manifest number: 5C Signing time: Thu 03 Apr 2025 06:20:57 +0000 Manifest this update: Thu 03 Apr 2025 06:20:57 +0000 Manifest next update: Thu 10 Apr 2025 06:20:57 +0000 Files and hashes: 1: uMGYUq7H2lGkUL59p9lYc77eNzQ.crl (hash: B++NcgL82coqvKZ0f/pY14R3W1lBt1xAftqVNqgFiqY=) 2: 91F29F5E86DD11EFB3D7A929C4F9AE02.roa (hash: YiOcP7W7AOtNltDYNBm9P2k2HnzTcQ0cTjwg3ge15m4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C78E Validity Not Before: Apr 3 06:20:57 2025 GMT Not After : Apr 10 06:20:57 2025 GMT Subject: CN=67ee28c9-1a30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:41:c6:0d:18:56:54:07:dd:89:de:76:2b:25: a6:23:9b:8c:97:9e:e0:86:e9:3e:e5:ca:aa:ea:df: a3:dd:ec:b0:df:f0:15:0a:ef:a4:ac:75:5f:a5:64: d4:64:e0:3f:8f:17:e3:67:4a:c6:5a:00:d9:0a:68: a9:78:97:b0:b4:e2:7e:b6:4e:0f:32:8a:b2:7b:44: c9:48:4d:d3:3b:a7:68:6d:93:cc:93:a8:ec:0e:e8: 63:3f:10:42:9c:14:8f:f2:ab:1c:db:d8:62:6e:6a: 05:df:7f:e9:36:93:94:ac:70:3b:88:05:f2:a4:4c: 5a:6c:da:01:73:95:25:1a:63:08:b4:01:08:eb:c1: 4d:22:9b:10:ba:02:27:ea:8c:1c:f9:0b:b3:08:1a: 1d:e3:5c:85:e3:64:e4:0c:47:a0:18:11:0a:ce:85: ff:b8:38:1d:1a:57:1c:83:e1:22:03:a0:29:68:a8: e2:68:1e:7b:0f:ae:6e:30:71:14:59:d7:b6:39:de: c1:d7:45:90:fe:e9:b4:55:45:45:7a:11:a2:b4:d6: 48:00:5d:f6:28:a3:9e:c0:fe:f0:dc:b0:76:96:fc: be:b7:10:53:4a:4a:a3:98:df:8c:14:c4:7c:42:6f: 20:98:b4:41:9d:02:f8:19:f4:fb:39:3d:4c:90:ac: e5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:45:ED:3B:82:98:32:0A:88:13:74:CF:79:79:C0:45:44:A7:63:EB X509v3 Authority Key Identifier: keyid:B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:72:5d:27:cc:97:a9:5f:c9:d3:9d:ad:99:35:35:89:29:10: b0:3a:2e:16:26:00:9a:ce:38:9e:d1:52:f7:ba:7b:13:3c:a6: d3:a9:fb:10:b3:c1:d4:df:16:a0:c2:73:ef:8a:2c:06:a4:72: 6e:25:1b:e0:3c:45:71:35:5d:ad:16:c6:3e:64:2f:29:f0:01: 2f:9f:0f:6d:90:eb:7a:c8:9c:ed:44:59:eb:74:2a:d7:2a:bc: cd:9c:6a:1e:4c:d8:b3:c6:f5:1d:d6:cf:c7:d7:6b:b4:5b:27: 41:8c:8e:a0:7b:62:78:31:30:ee:9e:48:0e:bc:d1:3b:3f:db: fd:d4:a1:4b:d2:61:49:99:45:ae:e1:0e:5b:e1:6d:30:4e:34: 42:65:43:4d:b4:e3:ab:31:31:4b:f1:a1:49:cf:32:dd:0a:0b: 5e:12:c1:d7:e1:68:e1:76:fc:f1:48:6f:37:ed:85:cc:2c:22: b3:3a:d9:4c:8a:25:10:70:1d:8b:c6:2f:c5:eb:e5:46:b6:da: 65:ee:e7:98:70:fa:1c:90:34:9d:1d:b8:8f:be:63:68:a0:40: d1:05:17:14:29:18:a9:5d:d2:46:e2:4c:28:e5:92:cd:5c:56: 50:f2:82:68:d7:51:4d:89:e1:e3:91:43:85:13:f2:7e:0a:0b: 6a:33:01:fb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Qzc4RTExMC8GA1UEBRMoQjhDMTk4NTJBRUM3REE1MUE0NTBCRTdEQTdEOTU4NzNC RURFMzczNDAeFw0yNTA0MDMwNjIwNTdaFw0yNTA0MTAwNjIwNTdaMBgxFjAUBgNV BAMTDTY3ZWUyOGM5LTFhMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSQcYNGFZUB92J3nYrJaYjm4yXnuCG6T7lyqrq36Pd7LDf8BUK76SsdV+lZNRk 4D+PF+NnSsZaANkKaKl4l7C04n62Tg8yirJ7RMlITdM7p2htk8yTqOwO6GM/EEKc FI/yqxzb2GJuagXff+k2k5SscDuIBfKkTFps2gFzlSUaYwi0AQjrwU0imxC6Aifq jBz5C7MIGh3jXIXjZOQMR6AYEQrOhf+4OB0aVxyD4SIDoCloqOJoHnsPrm4wcRRZ 17Y53sHXRZD+6bRVRUV6EaK01kgAXfYoo57A/vDcsHaW/L63EFNKSqOY34wUxHxC byCYtEGdAvgZ9Ps5PUyQrOWDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5kXtO4KY MgqIE3TPeXnARUSnY+swHwYDVR0jBBgwFoAUuMGYUq7H2lGkUL59p9lYc77eNzQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNzhFL0EwMjAxQjIwODZE QzExRUZCOUVBRDAyN0M0RjlBRTAyL3VNR1lVcTdIMmxHa1VMNTlwOWxZYzc3ZU56 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdU1HWVVxN0gybEdrVUw1OXA5bFljNzdlTnpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NzhFL0EwMjAxQjIwODZEQzExRUZCOUVBRDAyN0M0RjlBRTAyL3VNR1lVcTdIMmxH a1VMNTlwOWxZYzc3ZU56US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJhyXSfMl6lfydOdrZk1NYkpELA6LhYmAJrOOJ7RUve6exM8ptOp+xCz wdTfFqDCc++KLAakcm4lG+A8RXE1Xa0Wxj5kLynwAS+fD22Q63rInO1EWet0Ktcq vM2cah5M2LPG9R3Wz8fXa7RbJ0GMjqB7YngxMO6eSA680Ts/2/3UoUvSYUmZRa7h DlvhbTBONEJlQ02046sxMUvxoUnPMt0KC14SwdfhaOF2/PFIbzfthcwsIrM62UyK JRBwHYvGL8Xr5Ua22mXu55hw+hyQNJ0duI++Y2igQNEFFxQpGKld0kbiTCjlks1c VlDygmjXUU2J4eORQ4UT8n4KC2ozAfs= -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:36 2025 by rpki-client