$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft File: UzfctqkbQdUhGkTCFqljq6zH4rA.mft (raw, json) Hash identifier: 8+rAvipDZnr5jZvItox0EL8ITTrU1FiWCIz8ujiEhjQ= Subject key identifier: F8:6F:BE:5B:CD:AC:07:23:49:BD:8A:2D:DE:82:60:CE:B2:7E:BB:9D Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 3480 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft Manifest number: 3476 Signing time: Fri 04 Apr 2025 14:45:38 +0000 Manifest this update: Fri 04 Apr 2025 14:45:37 +0000 Manifest next update: Fri 11 Apr 2025 14:45:37 +0000 Files and hashes: 1: UzfctqkbQdUhGkTCFqljq6zH4rA.crl (hash: qnPw9RS4iQxI4xzZm+mBaKy7fV5dLERudXWG9irt1s8=) 2: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (hash: dOS+EBN8T4gv4pfAW5HZ87ld30CEjTabsXZtn+f9BiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13440 (0x3480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC Validity Not Before: Apr 4 14:45:37 2025 GMT Not After : Apr 11 14:45:37 2025 GMT Subject: CN=67eff091-04ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:f6:8b:f3:5a:39:9b:fb:e6:83:bd:49:ef:a4: 80:b8:ba:fa:ac:6e:0d:12:c5:16:a3:12:c3:0c:cd: 50:3e:4a:e7:eb:25:10:d9:36:5c:3e:27:16:8f:80: 5a:d5:d7:94:e7:61:12:d0:45:9a:41:82:25:b6:aa: 31:57:23:e8:b5:09:43:67:b8:7b:f8:70:e1:e5:9c: eb:a1:44:f3:ec:66:79:ec:9b:23:e3:a8:70:23:d2: 7e:7f:67:77:ea:34:f8:c5:06:ab:4d:1a:6e:9d:fe: 50:2c:b1:dd:d7:b0:49:43:7a:8f:07:bf:fc:a9:99: c3:44:10:e3:54:fb:f3:3e:f3:a6:2e:2c:bb:1d:4e: 0e:a4:b8:47:e1:ed:bf:ff:32:5a:91:b4:73:7e:93: 6e:10:2a:35:73:d4:95:02:bc:ce:11:8c:1d:f7:e2: 59:59:11:23:9e:09:fe:54:dd:d1:20:b6:37:3c:99: 4c:5f:02:67:21:d7:0e:d4:a0:37:5a:a9:ec:02:97: 9d:17:22:68:b0:82:d9:b1:62:72:49:3e:d0:61:2b: 68:95:70:9b:f2:08:51:59:ab:0d:1c:34:c2:4b:a2: 43:1c:0e:ba:e9:c6:89:93:ae:bb:ff:98:93:ce:1e: d8:51:32:b2:11:c4:0b:0a:69:40:72:c1:df:c8:e5: a3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6F:BE:5B:CD:AC:07:23:49:BD:8A:2D:DE:82:60:CE:B2:7E:BB:9D X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:70:f4:26:fa:7d:aa:9e:18:37:76:16:52:24:db:78:0e:f9: 2c:55:b5:60:51:f4:84:da:49:42:d8:64:72:c6:58:bb:bc:c9: 78:4d:32:a2:30:c8:91:90:95:60:45:1f:7c:36:a9:64:10:01: 6b:6b:ef:f6:a2:b4:02:b1:fc:b5:8c:c6:9c:99:eb:cf:ff:e0: d5:ec:3f:c5:06:83:ec:0f:64:06:08:ca:63:8f:8d:75:b5:20: ab:5b:62:24:94:77:c2:d9:aa:58:12:92:15:ca:d2:42:a4:a6: 19:3d:38:4b:d5:54:3f:78:5c:9d:05:30:01:b1:ac:ec:a5:9e: f9:ce:06:5b:4c:2b:81:04:d1:2a:93:9d:4c:74:ac:a6:42:74: 6b:5d:24:83:f8:31:5e:4a:d5:b5:e0:63:01:6d:79:6a:87:21: 89:76:ad:45:b2:ce:f5:be:64:6c:3d:ea:47:e1:36:44:b4:e0: c4:75:4b:dc:83:c4:ac:68:22:e1:a0:78:63:00:03:b3:5c:1c: fb:46:0e:12:24:c6:74:3f:ec:d6:13:9c:75:d1:d3:e2:eb:9f: 59:51:48:3c:7a:2b:3d:8d:67:e7:f0:e8:b7:6f:68:e0:75:14: 44:5f:bc:fe:6a:15:30:53:6a:2c:71:0a:21:61:f2:b7:d8:01: 03:85:05:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjUwNDA0MTQ0NTM3WhcNMjUwNDExMTQ0NTM3WjAYMRYwFAYD VQQDEw02N2VmZjA5MS0wNGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9vaL81o5m/vmg71J76SAuLr6rG4NEsUWoxLDDM1QPkrn6yUQ2TZcPicWj4Ba 1deU52ES0EWaQYIltqoxVyPotQlDZ7h7+HDh5ZzroUTz7GZ57Jsj46hwI9J+f2d3 6jT4xQarTRpunf5QLLHd17BJQ3qPB7/8qZnDRBDjVPvzPvOmLiy7HU4OpLhH4e2/ /zJakbRzfpNuECo1c9SVArzOEYwd9+JZWREjngn+VN3RILY3PJlMXwJnIdcO1KA3 WqnsApedFyJosILZsWJyST7QYStolXCb8ghRWasNHDTCS6JDHA666caJk667/5iT zh7YUTKyEcQLCmlAcsHfyOWjJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhvvlvN rAcjSb2KLd6CYM6yfrudMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZCQy8zNzMwODM4MDFEOTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFk VWhHa1RDRnFsanE2ekg0ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBcPQm+n2qnhg3dhZSJNt4DvksVbVgUfSE2klC2GRyxli7vMl4TTKi MMiRkJVgRR98NqlkEAFra+/2orQCsfy1jMacmevP/+DV7D/FBoPsD2QGCMpjj411 tSCrW2IklHfC2apYEpIVytJCpKYZPThL1VQ/eFydBTABsazspZ75zgZbTCuBBNEq k51MdKymQnRrXSSD+DFeStW14GMBbXlqhyGJdq1Fss71vmRsPepH4TZEtODEdUvc g8SsaCLhoHhjAAOzXBz7Rg4SJMZ0P+zWE5x10dPi659ZUUg8eis9jWfn8Oi3b2jg dRREX7z+ahUwU2oscQohYfK32AEDhQXR -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:05 2025 by rpki-client