$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft File: u-KUkERtaHB2W05h1-ubIsYARjg.mft (raw, json) Hash identifier: BiNW0+WIM43RY+ZcoBzHmxnxE3lzRdxqAH44yJWEuUE= Subject key identifier: 63:D9:FD:F2:F6:FB:53:1A:AF:9F:D6:A2:A6:47:26:1D:F4:90:58:9A Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0C55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft Manifest number: 0C3D Signing time: Fri 04 Apr 2025 18:38:17 +0000 Manifest this update: Fri 04 Apr 2025 18:38:16 +0000 Manifest next update: Fri 11 Apr 2025 18:38:16 +0000 Files and hashes: 1: u-KUkERtaHB2W05h1-ubIsYARjg.crl (hash: 0r3JgDg28E8KS/SVYEXZZo6I8iiuTzwyjUK+N9RDcJ4=) 2: 8BA504FCB27911EB978CE10AC4F9AE02.roa (hash: I8Ss/Oj3Q9umSrFxZnObaXQe/cu017hGcC027pv/vs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83 Validity Not Before: Apr 4 18:38:16 2025 GMT Not After : Apr 11 18:38:16 2025 GMT Subject: CN=67f02719-a4e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:22:3c:ab:00:2f:8e:5d:ff:3e:59:fa:66:f5: 0f:bb:93:5e:2c:2c:1e:83:a7:59:5e:d9:36:8c:7c: df:3f:35:26:a8:bc:d6:30:49:8c:0d:4f:23:92:f7: 97:81:7e:cc:48:98:8f:5a:70:59:01:11:1d:32:72: c4:4a:a5:ec:8c:90:36:54:77:95:74:86:a3:db:6e: 0c:5a:c8:8f:42:fa:b4:d1:8b:b9:60:55:67:cb:41: 6f:45:13:48:d5:5b:4f:d9:2b:dc:27:a2:8a:eb:67: 0b:a4:cd:69:8a:7d:58:b5:3a:39:f9:27:31:da:41: bc:96:d5:b7:9b:2d:ab:dd:3a:eb:33:0c:d7:70:51: ce:81:58:19:50:c6:77:d7:77:e9:e2:1d:74:8d:eb: 79:82:1c:75:57:55:87:f6:e8:52:cb:9e:af:07:79: 87:05:20:35:9d:cf:9c:b6:ef:6a:5c:d7:73:7c:60: ba:46:4c:92:3d:b8:b7:80:41:ec:12:85:36:75:ca: c7:e8:ac:5f:e8:28:a9:64:8e:f3:94:a8:08:29:4c: 0f:a5:70:f5:fa:bc:b0:93:c1:36:14:66:c9:5a:d7: 25:23:2f:f6:71:af:be:ea:58:b0:67:88:dd:6b:60: 00:18:1f:05:aa:76:1d:87:6b:61:7f:78:98:bf:c3: 6b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D9:FD:F2:F6:FB:53:1A:AF:9F:D6:A2:A6:47:26:1D:F4:90:58:9A X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:79:e6:28:54:fc:18:91:18:a0:9d:6f:e5:3e:64:d9:e0:60: a3:94:c0:a8:cd:47:69:41:7f:93:11:de:9c:52:32:ae:43:33: ff:db:96:7a:67:64:d9:a3:23:6a:e5:9c:2c:fa:47:37:cd:dc: ff:54:ae:60:65:5f:87:49:70:8f:4c:83:eb:68:b2:85:e4:e3: c2:26:50:b4:99:5f:d0:03:72:72:e2:53:d4:ae:45:55:67:b5: 3c:15:29:42:fb:7a:76:c5:e3:0a:a3:cf:c7:32:bc:f6:65:3b: a8:99:bf:a1:5d:82:33:43:ce:b2:1e:f4:85:c5:89:98:91:50: 72:f3:61:d5:6e:79:a9:23:15:21:a0:11:54:75:f0:8c:1c:5a: db:0a:2b:d7:f5:7a:a4:ea:d8:3a:68:09:3a:c3:ad:f6:bc:7d: 15:7d:27:52:77:df:ba:98:31:b7:77:7b:8f:2f:09:88:4e:ae: b8:c7:c4:6b:c6:3c:76:0f:80:0c:f6:57:07:1f:35:93:23:d6: 31:3c:bf:12:f2:dc:90:d9:75:b8:2a:b8:7c:5a:84:4d:84:a1: 61:fd:95:d5:2a:c3:77:b7:c7:71:40:d4:8e:b8:8e:9f:70:02: 73:1c:78:42:d6:45:d6:d1:cf:98:e1:4e:5c:5b:60:5a:a0:21: 56:bd:fd:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjUwNDA0MTgzODE2WhcNMjUwNDExMTgzODE2WjAYMRYwFAYD VQQDEw02N2YwMjcxOS1hNGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yI8qwAvjl3/Pln6ZvUPu5NeLCweg6dZXtk2jHzfPzUmqLzWMEmMDU8jkveX gX7MSJiPWnBZAREdMnLESqXsjJA2VHeVdIaj224MWsiPQvq00Yu5YFVny0FvRRNI 1VtP2SvcJ6KK62cLpM1pin1YtTo5+Scx2kG8ltW3my2r3TrrMwzXcFHOgVgZUMZ3 13fp4h10jet5ghx1V1WH9uhSy56vB3mHBSA1nc+ctu9qXNdzfGC6RkySPbi3gEHs EoU2dcrH6Kxf6CipZI7zlKgIKUwPpXD1+rywk8E2FGbJWtclIy/2ca++6liwZ4jd a2AAGB8FqnYdh2thf3iYv8NrpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPZ/fL2 +1Mar5/WoqZHJh30kFiaMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ4My8xNDk3NDdCRTA2MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFI QjJXMDVoMS11YklzWUFSamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQeeYoVPwYkRignW/lPmTZ4GCjlMCozUdpQX+TEd6cUjKuQzP/25Z6 Z2TZoyNq5Zws+kc3zdz/VK5gZV+HSXCPTIPraLKF5OPCJlC0mV/QA3Jy4lPUrkVV Z7U8FSlC+3p2xeMKo8/HMrz2ZTuomb+hXYIzQ86yHvSFxYmYkVBy82HVbnmpIxUh oBFUdfCMHFrbCivX9Xqk6tg6aAk6w632vH0VfSdSd9+6mDG3d3uPLwmITq64x8Rr xjx2D4AM9lcHHzWTI9YxPL8S8tyQ2XW4Krh8WoRNhKFh/ZXVKsN3t8dxQNSOuI6f cAJzHHhC1kXW0c+Y4U5cW2BaoCFWvf3m -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:12 2025 by rpki-client