$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: rXQ+RA5H/J5mrcngxN6zRPsrpj2t7/Fzu6ESgp7fHhY= Subject key identifier: 8B:B7:DA:F8:BD:77:5F:BA:12:99:08:3E:28:90:6F:1D:61:0F:F6:E9 Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 02AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 02A9 Signing time: Thu 03 Apr 2025 01:29:42 +0000 Manifest this update: Thu 03 Apr 2025 01:29:41 +0000 Manifest next update: Thu 10 Apr 2025 01:29:41 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: 9Z49yHPhiyxq3he3dKuJfujRO4KaxDnKL8XBbys6VbU=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1 Validity Not Before: Apr 3 01:29:41 2025 GMT Not After : Apr 10 01:29:41 2025 GMT Subject: CN=67ede485-3844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9b:be:35:fb:d8:44:1a:f2:73:1c:38:5e:82: 21:d0:a8:8d:28:5a:b7:3f:04:a8:a6:61:55:98:be: 02:65:d2:bc:ae:14:76:c5:29:fd:0c:1f:8b:80:6a: 86:59:89:7e:6f:9d:00:13:5b:f5:0e:8f:ab:c8:64: 80:a6:90:2c:78:a0:8b:23:5f:c7:0d:53:ef:a9:5a: 7d:eb:36:42:21:97:23:b8:ce:55:b2:72:cf:fa:47: ec:1c:73:58:bc:d8:f9:c9:7f:6b:cf:25:d6:51:ae: ad:f3:27:7f:15:bf:a2:89:22:49:c6:bd:ab:9f:b1: 49:69:41:f4:3b:cf:9f:1a:14:b9:a6:f0:30:68:ce: 2e:23:cd:ad:12:9f:43:a6:f8:15:9a:40:7d:7f:1c: 70:22:c3:03:2f:32:11:97:84:eb:2a:86:2d:49:01: d1:e3:13:01:fc:11:f2:54:bc:91:75:b5:1d:b0:7f: ac:33:57:d1:ab:a1:62:cb:76:d7:43:91:4f:84:53: 74:1b:c0:59:86:8c:23:17:3e:08:2b:df:65:ed:28: 75:00:c9:30:29:75:e9:7c:c8:d1:4e:f5:22:a4:e1: 51:38:eb:95:95:8d:d8:1f:e7:64:70:5a:00:eb:93: 3b:4f:5b:3f:7a:e6:c4:e6:29:f7:f7:ae:e8:da:c3: 21:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B7:DA:F8:BD:77:5F:BA:12:99:08:3E:28:90:6F:1D:61:0F:F6:E9 X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:6c:92:05:97:b7:3e:f1:89:32:94:d4:a6:65:ad:d3:16:d4: d1:ac:5f:2a:3f:11:2a:d8:aa:59:33:88:e5:42:0e:39:9c:a5: 61:c7:e6:00:28:e8:5f:2e:90:86:65:f5:18:2e:c1:0d:7d:72: 0b:a0:da:d5:87:fd:a5:f8:94:90:b4:db:c3:67:ff:c1:42:8f: b3:26:77:10:92:06:1d:02:22:e7:1e:ab:db:be:30:3f:8b:ef: cd:55:5a:af:66:f2:7e:2f:57:44:25:23:16:8c:f4:60:ab:9a: f3:2d:28:4f:79:3b:c1:19:0b:57:38:91:8b:d5:73:34:44:ec: 02:b6:30:28:8b:3c:95:e2:2a:88:07:81:83:9f:6c:63:67:e0: ba:18:a3:26:4f:02:9a:87:d3:5e:0e:ea:88:54:6e:80:16:c6: 7c:ff:f9:98:59:68:b7:2c:8d:ad:6a:fe:da:e5:93:0b:a7:cf: f9:7a:31:30:2e:22:08:c2:21:a4:29:ab:6a:02:de:a7:8f:c8: 1a:96:b0:2a:c9:6f:9f:c4:b1:97:fd:08:6a:cb:58:6c:fd:7e: 5e:9a:85:91:32:f7:1d:f5:e8:96:59:73:b0:06:59:46:db:d1: 40:e0:d1:9c:e1:b8:38:02:ff:8b:b6:1d:a2:25:83:7e:4c:d7: 09:d0:08:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjUwNDAzMDEyOTQxWhcNMjUwNDEwMDEyOTQxWjAYMRYwFAYD VQQDEw02N2VkZTQ4NS0zODQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5u+NfvYRBrycxw4XoIh0KiNKFq3PwSopmFVmL4CZdK8rhR2xSn9DB+LgGqG WYl+b50AE1v1Do+ryGSAppAseKCLI1/HDVPvqVp96zZCIZcjuM5VsnLP+kfsHHNY vNj5yX9rzyXWUa6t8yd/Fb+iiSJJxr2rn7FJaUH0O8+fGhS5pvAwaM4uI82tEp9D pvgVmkB9fxxwIsMDLzIRl4TrKoYtSQHR4xMB/BHyVLyRdbUdsH+sM1fRq6Fiy3bX Q5FPhFN0G8BZhowjFz4IK99l7Sh1AMkwKXXpfMjRTvUipOFROOuVlY3YH+dkcFoA 65M7T1s/eubE5in3967o2sMhLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIu32vi9 d1+6EpkIPiiQbx1hD/bpMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEbJIFl7c+8YkylNSmZa3TFtTRrF8qPxEq2KpZM4jlQg45nKVhx+YA KOhfLpCGZfUYLsENfXILoNrVh/2l+JSQtNvDZ//BQo+zJncQkgYdAiLnHqvbvjA/ i+/NVVqvZvJ+L1dEJSMWjPRgq5rzLShPeTvBGQtXOJGL1XM0ROwCtjAoizyV4iqI B4GDn2xjZ+C6GKMmTwKah9NeDuqIVG6AFsZ8//mYWWi3LI2tav7a5ZMLp8/5ejEw LiIIwiGkKatqAt6nj8galrAqyW+fxLGX/Qhqy1hs/X5emoWRMvcd9eiWWXOwBllG 29FA4NGc4bg4Av+Lth2iJYN+TNcJ0Aht -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:02 2025 by rpki-client