$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft File: Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft (raw, json) Hash identifier: 2WzZeTUKYeYl+p6e2SMKn02W9o2ExQXpyVE3gokuSKI= Subject key identifier: B2:06:0E:A2:D9:4F:82:CC:8C:6E:D3:03:96:CD:A6:D3:0A:D1:63:AD Authority key identifier: 51:AE:BA:23:FB:74:5A:55:3A:5E:49:96:DF:1C:81:73:47:3F:17:98 Certificate issuer: /CN=A9183B33/serialNumber=51AEBA23FB745A553A5E4996DF1C8173473F1798 Certificate serial: 0632 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft Manifest number: 0629 Signing time: Wed 02 Apr 2025 22:44:29 +0000 Manifest this update: Wed 02 Apr 2025 22:44:28 +0000 Manifest next update: Wed 09 Apr 2025 22:44:28 +0000 Files and hashes: 1: Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl (hash: C50/320sIoUdJFN0o+zPgHPU2HQj1j8S+S43V+5uIdQ=) 2: 59018DEE340611ED9C72786AC4F9AE02.roa (hash: rP6Pu7EfL4ZTfd4hkNZXRMND1x04kCFhfmQKKfFcDnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1586 (0x632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B33 Validity Not Before: Apr 2 22:44:28 2025 GMT Not After : Apr 9 22:44:28 2025 GMT Subject: CN=67edbdcd-0594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:de:36:a1:3b:df:f8:14:b9:99:f3:f5:2f:e4: 08:40:e7:0d:c1:e1:9e:6b:14:e2:11:bc:5c:f6:35: a8:ed:98:cb:59:b6:07:36:30:7f:a6:eb:ca:c6:0f: ce:90:a4:79:55:12:fa:4b:49:da:96:dd:62:26:a6: 0d:6f:52:99:88:a5:ae:4a:df:ec:49:5b:ee:d7:8c: ab:9c:a8:0f:10:89:a3:ab:38:42:d5:05:52:7f:af: 2c:6e:32:02:6e:5c:bf:c8:88:0a:4c:24:86:16:e1: e2:2e:a6:37:17:08:ff:fd:30:0a:01:4b:81:d8:e6: d0:f1:5d:06:d8:91:2b:91:67:5f:ae:90:46:b3:c4: d6:85:68:a4:35:0e:74:0d:3b:d1:37:7d:6a:95:b1: 63:67:2a:d9:86:38:3c:2b:04:e8:fe:75:fe:c8:8f: 99:10:30:19:e4:4b:b5:cf:ce:3e:f5:21:27:37:97: 9e:a6:9a:fb:47:4d:8b:d3:da:88:ea:ef:90:d0:c9: a6:b2:71:a8:58:65:a3:9f:13:10:7d:30:00:d9:c1: ba:b4:4a:e8:cc:a5:28:f8:64:5a:1c:20:2a:c0:30: 93:35:70:14:11:6b:4a:fd:6d:12:b3:04:6e:06:04: d9:20:77:9b:fe:06:ad:1c:f0:20:1e:ce:cc:47:3d: 32:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:06:0E:A2:D9:4F:82:CC:8C:6E:D3:03:96:CD:A6:D3:0A:D1:63:AD X509v3 Authority Key Identifier: keyid:51:AE:BA:23:FB:74:5A:55:3A:5E:49:96:DF:1C:81:73:47:3F:17:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ua66I_t0WlU6XkmW3xyBc0c_F5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B33/CD35DB1A912411EB9B72903AC4F9AE02/Ua66I_t0WlU6XkmW3xyBc0c_F5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:0a:87:56:50:eb:c2:79:c3:f0:ae:08:df:95:eb:1b:90:b2: 73:8a:a5:67:da:b0:92:15:5e:cb:a7:34:ec:7d:35:c4:15:93: 96:e5:39:49:b8:cb:1f:b0:c5:2d:02:a3:8c:f3:82:44:47:e4: 89:19:7f:a5:5e:64:7b:16:1b:7e:cb:ed:5c:39:cb:42:38:bd: 35:17:0a:93:98:91:7f:96:fe:e8:59:eb:b1:51:c0:74:a8:7d: 04:2f:06:22:41:89:41:0c:7b:ee:cd:98:b6:28:5b:de:2b:f1: 82:d1:6b:80:1e:07:e3:2e:e4:4e:e7:cf:d9:5e:66:7c:59:d3: f3:25:97:3d:4c:c7:13:f3:79:05:42:01:f9:05:8a:25:9b:ce: 45:d0:5a:c9:ab:0f:84:35:de:42:f8:60:12:aa:4c:54:8d:71: 82:04:2b:5e:49:68:6d:6f:e8:b8:31:40:a0:c1:a6:da:5d:17: 3b:5e:ab:c0:89:9f:ae:1d:c6:fd:7a:42:ce:b5:bd:9f:d1:a9: 4b:9f:d6:aa:36:13:14:b0:ad:f3:56:06:dd:a7:07:f3:35:c7: 11:09:9f:52:fc:10:6f:dd:a5:23:19:c6:26:d9:e4:f8:dd:35: a7:68:4f:5c:25:5e:7a:74:55:07:6a:be:21:fb:fd:92:13:da: 2a:a7:1d:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCMzMxMTAvBgNVBAUTKDUxQUVCQTIzRkI3NDVBNTUzQTVFNDk5NkRGMUM4MTcz NDczRjE3OTgwHhcNMjUwNDAyMjI0NDI4WhcNMjUwNDA5MjI0NDI4WjAYMRYwFAYD VQQDEw02N2VkYmRjZC0wNTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt42oTvf+BS5mfP1L+QIQOcNweGeaxTiEbxc9jWo7ZjLWbYHNjB/puvKxg/O kKR5VRL6S0nalt1iJqYNb1KZiKWuSt/sSVvu14yrnKgPEImjqzhC1QVSf68sbjIC bly/yIgKTCSGFuHiLqY3Fwj//TAKAUuB2ObQ8V0G2JErkWdfrpBGs8TWhWikNQ50 DTvRN31qlbFjZyrZhjg8KwTo/nX+yI+ZEDAZ5Eu1z84+9SEnN5eeppr7R02L09qI 6u+Q0MmmsnGoWGWjnxMQfTAA2cG6tErozKUo+GRaHCAqwDCTNXAUEWtK/W0SswRu BgTZIHeb/gatHPAgHs7MRz0yWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIGDqLZ T4LMjG7TA5bNptMK0WOtMB8GA1UdIwQYMBaAFFGuuiP7dFpVOl5Jlt8cgXNHPxeY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0IzMy9DRDM1REIxQTkx MjQxMUVCOUI3MjkwM0FDNEY5QUUwMi9VYTY2SV90MFdsVTZYa21XM3h5QmMwY19G NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhNjZJX3QwV2xVNlhrbVczeHlCYzBjX0Y1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0IzMy9DRDM1REIxQTkxMjQxMUVCOUI3MjkwM0FDNEY5QUUwMi9VYTY2SV90MFds VTZYa21XM3h5QmMwY19GNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvCodWUOvCecPwrgjflesbkLJziqVn2rCSFV7LpzTsfTXEFZOW5TlJ uMsfsMUtAqOM84JER+SJGX+lXmR7Fht+y+1cOctCOL01FwqTmJF/lv7oWeuxUcB0 qH0ELwYiQYlBDHvuzZi2KFveK/GC0WuAHgfjLuRO58/ZXmZ8WdPzJZc9TMcT83kF QgH5BYolm85F0FrJqw+ENd5C+GASqkxUjXGCBCteSWhtb+i4MUCgwabaXRc7XqvA iZ+uHcb9ekLOtb2f0alLn9aqNhMUsK3zVgbdpwfzNccRCZ9S/BBv3aUjGcYm2eT4 3TWnaE9cJV56dFUHar4h+/2SE9oqpx1h -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:47 2025 by rpki-client