$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: 71UMvVDOqkzrCYriYaUQHX+3vtg2UBI8f4BtaTN+PEk= Subject key identifier: 09:95:D9:E4:AD:8D:E1:8C:DF:7E:FD:F9:63:ED:C9:D3:26:71:C6:1C Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 03F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 03F1 Signing time: Wed 09 Apr 2025 00:12:46 +0000 Manifest this update: Wed 09 Apr 2025 00:12:45 +0000 Manifest next update: Wed 16 Apr 2025 00:12:45 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: 061bcczYv+Y/ZCN3jHx838IlR46YO8s5kGCDo1oPiWk=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D Validity Not Before: Apr 9 00:12:45 2025 GMT Not After : Apr 16 00:12:45 2025 GMT Subject: CN=67f5bb7d-07ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:51:1d:c3:6f:32:ef:d5:6d:45:1b:c0:73:6e: a7:eb:e6:b5:65:09:ee:e0:32:10:f9:6d:81:f3:05: f8:e8:c5:a3:8d:76:ed:d9:ea:b1:40:21:35:fe:c7: 1c:7d:26:de:8f:45:7f:e5:da:0b:d2:4b:87:66:f3: 98:3f:de:1b:67:55:7f:ab:aa:93:70:58:f2:c5:ce: 0c:e8:88:c1:62:78:71:17:e6:00:27:ee:f5:42:48: 3d:fb:a0:12:1f:9d:c6:38:3a:6f:73:62:39:77:c4: db:26:34:4d:25:53:9d:93:28:f4:3a:74:d9:57:11: ec:6d:ab:fe:12:1b:00:9e:d4:5a:24:49:b4:f7:3d: ea:94:99:20:4d:19:ae:cf:57:ef:cd:c9:6e:93:2a: 2e:d1:2a:6b:f9:a4:b5:99:54:62:f0:ae:74:d5:89: 65:e8:42:92:2d:59:b4:a9:78:ea:66:90:00:73:03: 23:1c:80:66:45:5b:55:12:d1:71:c4:07:93:2d:15: c1:d1:d6:b6:9a:66:f9:24:2b:ee:32:93:74:3e:33: 39:f9:c7:9b:91:5a:14:99:50:9b:01:32:4f:58:b1: 66:45:de:42:60:9c:47:b3:e6:e0:cd:07:15:9a:9c: 0d:82:f1:44:73:6e:c5:81:ad:58:07:e4:a5:6c:f1: bb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:95:D9:E4:AD:8D:E1:8C:DF:7E:FD:F9:63:ED:C9:D3:26:71:C6:1C X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:28:4a:b5:b6:40:7a:ca:ef:7d:d4:e9:d2:84:f9:89:87:6a: f3:50:18:cb:ba:4b:d4:24:13:8a:de:01:39:03:1e:06:b8:8c: dc:be:7e:8c:72:32:95:90:35:03:62:04:21:dc:21:0a:ea:a0: a7:06:91:1a:68:c6:8c:44:35:d6:06:dd:d5:88:77:b8:06:5d: a0:14:42:f4:32:e0:98:fa:02:27:79:c3:0e:a7:8c:22:e3:39: aa:0c:e8:c2:08:b7:2f:37:27:a3:0a:c7:99:1b:11:1d:0c:29: 26:e4:7c:32:2b:4d:08:01:93:8d:2c:a7:d7:8d:1d:3f:7f:bb: a3:76:c2:7f:df:8d:0c:a6:e7:71:cd:d7:f6:a8:ed:aa:f0:2c: 2a:4e:85:8a:d2:8a:b5:ac:48:90:a8:a4:06:8b:d0:4e:23:a2: 19:b6:69:de:be:48:00:df:9d:0c:e9:b6:e1:e9:5f:c2:6d:57: d8:32:4b:9f:36:24:c9:9e:a4:d6:0b:b5:7d:cb:c3:ad:9a:2b: 4b:60:c3:78:f6:f9:d0:82:e3:d0:2d:0b:3a:2c:d3:ca:15:2e: 36:93:fd:ee:e0:b1:8d:e7:df:0f:b3:fc:ea:db:ee:eb:b2:ab: cd:2f:f5:1e:ae:f5:48:d6:64:16:4f:d2:3e:51:4f:e5:7f:b0: d0:b8:13:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwNDA5MDAxMjQ1WhcNMjUwNDE2MDAxMjQ1WjAYMRYwFAYD VQQDEw02N2Y1YmI3ZC0wN2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVEdw28y79VtRRvAc26n6+a1ZQnu4DIQ+W2B8wX46MWjjXbt2eqxQCE1/scc fSbej0V/5doL0kuHZvOYP94bZ1V/q6qTcFjyxc4M6IjBYnhxF+YAJ+71Qkg9+6AS H53GODpvc2I5d8TbJjRNJVOdkyj0OnTZVxHsbav+EhsAntRaJEm09z3qlJkgTRmu z1fvzclukyou0Spr+aS1mVRi8K501Yll6EKSLVm0qXjqZpAAcwMjHIBmRVtVEtFx xAeTLRXB0da2mmb5JCvuMpN0PjM5+cebkVoUmVCbATJPWLFmRd5CYJxHs+bgzQcV mpwNgvFEc27Fga1YB+SlbPG73QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmV2eSt jeGM3379+WPtydMmccYcMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaKEq1tkB6yu991OnShPmJh2rzUBjLukvUJBOK3gE5Ax4GuIzcvn6M cjKVkDUDYgQh3CEK6qCnBpEaaMaMRDXWBt3ViHe4Bl2gFEL0MuCY+gInecMOp4wi 4zmqDOjCCLcvNyejCseZGxEdDCkm5HwyK00IAZONLKfXjR0/f7ujdsJ/340Mpudx zdf2qO2q8CwqToWK0oq1rEiQqKQGi9BOI6IZtmnevkgA350M6bbh6V/CbVfYMkuf NiTJnqTWC7V9y8OtmitLYMN49vnQguPQLQs6LNPKFS42k/3u4LGN598Ps/zq2+7r sqvNL/UervVI1mQWT9I+UU/lf7DQuBOE -----END CERTIFICATE-----Generated at Thu Apr 10 22:09:16 2025 by rpki-client