$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: k8f4Uj+LPiULl9yartflhFVJaIU3Cxxk1CIcmC9vy/I= Subject key identifier: 1A:2E:CC:F2:6B:70:5F:FA:A4:0A:B3:B3:1A:F1:26:36:D9:05:95:AE Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 05A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 059B Signing time: Fri 18 Apr 2025 23:12:45 +0000 Manifest this update: Fri 18 Apr 2025 23:12:45 +0000 Manifest next update: Fri 25 Apr 2025 23:12:45 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: T09BtC9kCudarAUEy4hvBoyjrfQGuQ6S4tZL6MOlzb4=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: iMlOmr2fNq87x6S0R4H0l10i8IQao1B6aqgg50klXMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 23:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1440 (0x5a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Apr 18 23:12:45 2025 GMT Not After : Apr 25 23:12:45 2025 GMT Subject: CN=6802dc6d-85a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6d:38:e4:3f:e0:0e:4f:26:7f:17:1a:d8:b1: 21:da:25:d4:3d:7d:23:19:1d:59:c6:92:68:45:2a: bf:b8:a7:6c:0b:10:33:e0:55:9d:0f:d3:55:92:ae: 90:1a:13:c8:75:39:13:4f:d5:60:33:ca:8a:7b:78: 4e:2c:22:d6:6d:cc:47:0c:ef:67:fa:7b:7c:ee:1c: 1d:84:cd:37:e5:36:5f:6e:fd:02:cb:3e:08:b3:f9: b2:41:60:e7:14:a7:cc:10:b9:1e:ff:f4:48:e1:6a: dc:e3:af:5d:d5:b7:16:51:98:b7:41:63:de:54:37: 78:4f:8f:55:62:1d:42:56:4b:2c:52:6a:92:59:6a: e5:b5:62:3a:f5:13:58:cf:f8:f8:d4:d1:69:da:6e: cf:5b:7c:34:d0:ff:6b:4b:91:1e:cc:59:18:6c:b8: d8:d6:ab:45:4a:f6:ed:c2:b8:29:8e:58:ec:42:2b: 47:23:f2:d1:f5:ce:35:42:b1:b4:6d:71:28:be:e8: 2c:e5:b0:37:c3:b8:b7:be:c7:1d:0b:96:54:d1:5e: d6:11:cd:9c:32:8e:01:8f:41:a5:c7:ee:7a:19:04: d2:9a:d5:c9:21:43:50:08:27:3c:7a:50:c8:b8:61: 29:43:10:12:c5:4a:92:20:85:63:cb:39:b5:0c:ba: 22:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:2E:CC:F2:6B:70:5F:FA:A4:0A:B3:B3:1A:F1:26:36:D9:05:95:AE X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:f6:ac:cf:ad:c4:96:8d:a5:d0:f9:93:86:04:04:4c:c5:32: 89:df:72:b9:9e:fe:26:03:83:05:58:2e:7a:9e:bc:54:99:12: ce:94:61:a4:f3:dc:e2:b0:65:18:4d:99:4c:3e:51:ec:e8:62: 1f:f2:a9:26:1f:b4:61:ce:a6:9b:79:bf:a4:8e:e0:69:50:f0: 2b:07:ae:e5:e1:23:eb:e4:db:3e:63:6e:0c:d9:a4:d6:b8:39: 74:ef:17:26:71:86:bc:a6:7d:ec:3b:12:0a:9e:37:c1:44:64: bf:fb:9b:26:c4:87:80:38:f2:e6:56:94:47:d8:8d:7a:83:68: 15:fc:41:15:a1:d7:af:be:84:a1:59:fc:ee:29:d0:64:57:f0: 13:db:ab:44:68:62:de:6a:c4:60:a9:f4:c9:0b:60:87:a1:6d: d5:7f:91:ac:fa:75:6b:ca:b0:02:8f:98:4a:10:d9:1d:e1:3f: 20:8f:52:d2:e0:eb:12:48:24:79:2f:a8:9e:8f:6f:0b:7b:5d: f0:4c:8d:90:6f:54:9b:2a:1d:d2:b7:87:39:2e:a5:7c:45:9c: bd:9e:5a:fd:70:0f:a8:d5:e4:e5:69:74:e8:20:2d:16:64:5d: 0c:3c:2f:d9:43:bd:ac:d5:1d:65:57:cf:1f:23:78:b2:10:cc: 50:52:b5:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjUwNDE4MjMxMjQ1WhcNMjUwNDI1MjMxMjQ1WjAYMRYwFAYD VQQDEw02ODAyZGM2ZC04NWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3W045D/gDk8mfxca2LEh2iXUPX0jGR1ZxpJoRSq/uKdsCxAz4FWdD9NVkq6Q GhPIdTkTT9VgM8qKe3hOLCLWbcxHDO9n+nt87hwdhM035TZfbv0Cyz4Is/myQWDn FKfMELke//RI4Wrc469d1bcWUZi3QWPeVDd4T49VYh1CVkssUmqSWWrltWI69RNY z/j41NFp2m7PW3w00P9rS5EezFkYbLjY1qtFSvbtwrgpjljsQitHI/LR9c41QrG0 bXEovugs5bA3w7i3vscdC5ZU0V7WEc2cMo4Bj0Glx+56GQTSmtXJIUNQCCc8elDI uGEpQxASxUqSIIVjyzm1DLoibQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBouzPJr cF/6pAqzsxrxJjbZBZWuMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB69qzPrcSWjaXQ+ZOGBARMxTKJ33K5nv4mA4MFWC56nrxUmRLOlGGk 89zisGUYTZlMPlHs6GIf8qkmH7Rhzqabeb+kjuBpUPArB67l4SPr5Ns+Y24M2aTW uDl07xcmcYa8pn3sOxIKnjfBRGS/+5smxIeAOPLmVpRH2I16g2gV/EEVodevvoSh WfzuKdBkV/AT26tEaGLeasRgqfTJC2CHoW3Vf5Gs+nVryrACj5hKENkd4T8gj1LS 4OsSSCR5L6iej28Le13wTI2Qb1SbKh3St4c5LqV8RZy9nlr9cA+o1eTlaXToIC0W ZF0MPC/ZQ72s1R1lV88fI3iyEMxQUrXy -----END CERTIFICATE-----Generated at Sat Apr 19 12:40:42 2025 by rpki-client