$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: FhvCIWbimITJawQQVQHWT1Z31qCyyPETrHfQo7iOe8w= Subject key identifier: B4:25:50:50:6C:32:58:EC:1C:BD:60:36:5B:51:19:A8:25:3C:3E:DC Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: 0124 Signing time: Thu 03 Apr 2025 03:55:22 +0000 Manifest this update: Thu 03 Apr 2025 03:55:21 +0000 Manifest next update: Thu 10 Apr 2025 03:55:21 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: /Y88QfXLPIgNT6uoRoOfLg5n+/eEXSA0DWnkUMIrg7s=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: 33db+G2HmqK4GM+/q2Pot6yftpHMysN5n0HwgMWkack=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C Validity Not Before: Apr 3 03:55:21 2025 GMT Not After : Apr 10 03:55:21 2025 GMT Subject: CN=67ee06aa-403d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:18:b9:5d:28:f1:80:7e:05:d0:08:9b:8f:45: fb:2b:ab:17:df:01:90:4a:fa:32:f0:b8:f0:47:39: 74:4d:f7:12:58:9b:e8:f2:31:8f:c5:9d:b3:28:b3: 8b:19:57:41:e3:cc:95:8f:a5:18:0f:f3:2d:43:e7: 1f:f1:84:bf:ae:d1:b3:8b:02:21:96:df:48:36:72: 06:8d:71:f2:c3:69:27:d8:b8:72:4d:f9:b9:87:4d: dd:e4:03:5a:1a:8d:57:8b:74:f3:28:27:a7:6a:52: 5b:60:fb:ea:86:7b:27:93:20:8c:3a:e3:b1:bc:86: 52:87:32:08:dc:c0:f9:f0:01:e3:e4:5c:54:22:8c: ed:d5:73:a4:b0:3e:0a:3e:0b:1a:7d:aa:38:a2:ac: 42:65:e2:e7:38:98:a8:e9:b7:d7:b5:d3:e3:62:b5: a2:44:d7:fd:51:c8:21:2e:60:d2:05:63:e4:f1:01: f5:87:ea:96:14:71:91:c5:95:86:3e:5d:7e:0d:5f: 48:19:16:36:96:3a:f0:aa:a1:d0:d5:8d:f7:cd:05: b5:d5:3a:02:1a:3f:c4:0a:99:11:08:d7:e5:1d:e2: c9:21:82:e6:9a:18:50:11:98:e0:4f:34:6c:8d:41: e1:6b:53:12:93:74:35:78:13:33:66:36:d1:7a:d5: d2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:25:50:50:6C:32:58:EC:1C:BD:60:36:5B:51:19:A8:25:3C:3E:DC X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:53:e1:8c:7f:99:4f:6d:1c:3a:a8:1a:d7:34:3a:7a:26:51: 9b:f0:78:fc:65:eb:14:b2:cb:ce:c5:2d:06:73:87:40:5b:7f: 71:c6:c4:71:4b:bd:dd:4c:2c:33:8e:04:37:0d:a5:5c:08:9b: 59:84:ec:bd:61:b2:51:c4:f4:f3:8f:3a:6f:5c:58:34:9b:8d: bb:37:c9:8b:69:79:e3:68:25:2b:e6:87:70:11:b0:02:a6:5a: 88:37:c4:4d:4b:d7:af:9f:9d:28:85:77:34:19:69:29:de:99: bb:de:f0:a5:d4:a5:67:bb:2c:9c:d0:e7:df:53:e1:61:1f:17: 4e:cc:f0:03:1a:35:4e:5c:eb:03:b4:f8:c8:07:79:c7:0f:ac: 4e:ed:69:56:10:9f:5b:e8:4a:5d:72:10:33:9c:ce:8e:0f:99: 43:d8:c4:93:4c:18:71:c9:ce:8f:09:84:34:97:fb:3a:a6:a9: 85:32:f0:c5:35:47:99:8a:4a:c7:39:a2:2a:18:12:7b:8d:8c: 2e:45:29:ff:6c:2a:f9:cc:8d:36:5a:08:c6:06:1c:d1:21:c3: 7b:6b:36:26:f4:a9:b4:03:8a:bd:17:35:b1:49:cc:d4:9e:5f: 99:ee:45:b8:25:ca:a2:d2:45:b1:f3:48:ef:a3:b1:bd:5d:42: 02:c1:4e:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjUwNDAzMDM1NTIxWhcNMjUwNDEwMDM1NTIxWjAYMRYwFAYD VQQDEw02N2VlMDZhYS00MDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Bi5XSjxgH4F0Aibj0X7K6sX3wGQSvoy8LjwRzl0TfcSWJvo8jGPxZ2zKLOL GVdB48yVj6UYD/MtQ+cf8YS/rtGziwIhlt9INnIGjXHyw2kn2LhyTfm5h03d5ANa Go1Xi3TzKCenalJbYPvqhnsnkyCMOuOxvIZShzII3MD58AHj5FxUIozt1XOksD4K Pgsafao4oqxCZeLnOJio6bfXtdPjYrWiRNf9UcghLmDSBWPk8QH1h+qWFHGRxZWG Pl1+DV9IGRY2ljrwqqHQ1Y33zQW11ToCGj/ECpkRCNflHeLJIYLmmhhQEZjgTzRs jUHha1MSk3Q1eBMzZjbRetXSPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQlUFBs MljsHL1gNltRGaglPD7cMB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcU+GMf5lPbRw6qBrXNDp6JlGb8Hj8ZesUssvOxS0Gc4dAW39xxsRx S73dTCwzjgQ3DaVcCJtZhOy9YbJRxPTzjzpvXFg0m427N8mLaXnjaCUr5odwEbAC plqIN8RNS9evn50ohXc0GWkp3pm73vCl1KVnuyyc0OffU+FhHxdOzPADGjVOXOsD tPjIB3nHD6xO7WlWEJ9b6EpdchAznM6OD5lD2MSTTBhxyc6PCYQ0l/s6pqmFMvDF NUeZikrHOaIqGBJ7jYwuRSn/bCr5zI02WgjGBhzRIcN7azYm9Km0A4q9FzWxSczU nl+Z7kW4Jcqi0kWx80jvo7G9XUICwU5Q -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:48 2025 by rpki-client