$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft File: ULpjuT-CkSle5HAxuWtFzaXCSw0.mft (raw, json) Hash identifier: 9hVBm+Doe8A2B+ecmo7P+C1EkgC3vM25BPUtWXpaFcw= Subject key identifier: 74:42:6B:92:96:94:AD:0E:26:AD:DA:CF:24:60:AE:32:BB:5D:66:D1 Authority key identifier: 50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D Certificate issuer: /CN=A9199CFF/serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft Manifest number: 24 Signing time: Sat 29 Mar 2025 07:08:31 +0000 Manifest this update: Sat 29 Mar 2025 07:08:30 +0000 Manifest next update: Sat 05 Apr 2025 07:08:30 +0000 Files and hashes: 1: ULpjuT-CkSle5HAxuWtFzaXCSw0.crl (hash: 6vaZ9dBCUoIU2mcmZ7ZFAzYtcmXnu+Xx3B7cUqlhTXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CFF Validity Not Before: Mar 29 07:08:30 2025 GMT Not After : Apr 5 07:08:30 2025 GMT Subject: CN=67e79c6e-1388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b1:90:ce:66:9e:ad:b4:e2:5e:58:4d:95:ce: 91:3b:17:70:87:5d:72:69:ba:b5:c7:6e:8d:08:95: f4:fa:49:e2:03:a3:a4:7d:09:64:09:5a:98:51:72: f9:fb:60:c4:97:05:50:25:7f:35:b6:89:32:87:fe: 9e:b9:36:ad:92:f0:36:17:f0:78:55:51:d9:f2:48: 4f:85:d1:dc:f0:fe:25:1e:c9:ca:9a:e5:fc:d3:5f: 60:12:4c:79:04:c4:c4:6a:08:f2:aa:6e:c4:81:19: 25:54:b4:7c:b5:c7:06:a4:63:c7:83:b3:5e:1e:3d: db:45:f6:03:d4:ef:d5:75:ea:d4:2e:fc:62:78:f7: de:60:e5:b5:2e:90:a5:9b:5a:7d:38:cf:da:1d:fa: 7b:25:20:e7:11:79:92:9d:a9:59:d3:16:09:2c:3d: eb:77:54:a2:2f:0b:e1:ee:06:4d:a5:7b:e4:3d:20: 3d:f1:7d:cf:a1:28:1c:48:f0:51:15:29:ea:dc:3c: 9a:8d:ad:89:f4:0f:d2:d6:7a:18:28:ab:ac:46:b7: 7f:d8:8d:e3:cc:75:4f:04:c3:a0:43:91:02:b3:58: 88:11:a9:a0:3f:a5:96:17:de:5c:ca:fc:13:0a:fc: 26:c5:3d:78:d7:78:7c:0c:23:16:4a:ac:54:9d:fe: 90:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:42:6B:92:96:94:AD:0E:26:AD:DA:CF:24:60:AE:32:BB:5D:66:D1 X509v3 Authority Key Identifier: keyid:50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ef:61:71:e3:18:cf:fd:b1:ec:07:3a:7e:25:0e:63:26:cb:35: 0c:af:63:30:e9:f5:b7:2e:b8:be:84:b9:db:6c:19:a4:f0:ae: 70:fb:fa:1c:85:22:cd:fb:ca:41:39:40:b5:85:75:2c:15:73: 33:a6:14:a2:d3:40:b0:95:db:20:83:05:b1:67:52:03:cc:5a: 3a:4f:69:9c:07:ab:3c:e1:39:59:71:ce:40:58:9c:f6:27:1a: a1:9d:a6:6f:2a:da:10:a3:d7:04:2e:f1:ae:e7:d0:17:ad:41: f9:ca:f0:fe:4e:0e:11:0d:f1:c7:7d:56:67:aa:7c:13:92:8f: 04:c8:c4:bb:0b:6a:5a:ab:4c:83:93:ad:97:d5:c9:1d:30:f8: a7:c6:75:12:26:2a:10:0e:fb:f0:8a:0b:87:ef:4d:05:90:6e: cc:9b:7d:94:7b:7d:66:33:ae:a7:72:ee:e7:bc:cd:31:90:62: 89:57:c0:ec:26:40:a7:1e:a1:1a:e3:a2:aa:8c:3e:81:db:39: 23:1c:06:74:4a:1f:6e:50:1d:f2:ee:d7:84:a6:a6:e6:41:fa: 6c:1d:44:30:55:53:96:37:a4:81:6a:bb:5b:22:9d:79:23:30: 88:7e:53:e4:12:2c:f0:09:35:51:a7:17:c0:51:4c:3b:fc:44: 89:7d:bb:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OUNGRjExMC8GA1UEBRMoNTBCQTYzQjkzRjgyOTEyOTVFRTQ3MDMxQjk2QjQ1Q0RB NUMyNEIwRDAeFw0yNTAzMjkwNzA4MzBaFw0yNTA0MDUwNzA4MzBaMBgxFjAUBgNV BAMTDTY3ZTc5YzZlLTEzODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjsZDOZp6ttOJeWE2VzpE7F3CHXXJpurXHbo0IlfT6SeIDo6R9CWQJWphRcvn7 YMSXBVAlfzW2iTKH/p65Nq2S8DYX8HhVUdnySE+F0dzw/iUeycqa5fzTX2ASTHkE xMRqCPKqbsSBGSVUtHy1xwakY8eDs14ePdtF9gPU79V16tQu/GJ4995g5bUukKWb Wn04z9od+nslIOcReZKdqVnTFgksPet3VKIvC+HuBk2le+Q9ID3xfc+hKBxI8FEV KercPJqNrYn0D9LWehgoq6xGt3/YjePMdU8Ew6BDkQKzWIgRqaA/pZYX3lzK/BMK /CbFPXjXeHwMIxZKrFSd/pBNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdEJrkpaU rQ4mrdrPJGCuMrtdZtEwHwYDVR0jBBgwFoAUULpjuT+CkSle5HAxuWtFzaXCSw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5Q0ZGLzJBRTE2QTU4RDdF MDExRUY4QjE3M0QyRkM0RjlBRTAyL1VMcGp1VC1Da1NsZTVIQXh1V3RGemFYQ1N3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUxwanVULUNrU2xlNUhBeHVXdEZ6YVhDU3cwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5 Q0ZGLzJBRTE2QTU4RDdFMDExRUY4QjE3M0QyRkM0RjlBRTAyL1VMcGp1VC1Da1Ns ZTVIQXh1V3RGemFYQ1N3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAO9hceMYz/2x7Ac6fiUOYybLNQyvYzDp9bcuuL6EudtsGaTwrnD7+hyF Is37ykE5QLWFdSwVczOmFKLTQLCV2yCDBbFnUgPMWjpPaZwHqzzhOVlxzkBYnPYn GqGdpm8q2hCj1wQu8a7n0BetQfnK8P5ODhEN8cd9VmeqfBOSjwTIxLsLalqrTIOT rZfVyR0w+KfGdRImKhAO+/CKC4fvTQWQbsybfZR7fWYzrqdy7ue8zTGQYolXwOwm QKceoRrjoqqMPoHbOSMcBnRKH25QHfLu14SmpuZB+mwdRDBVU5Y3pIFqu1sinXkj MIh+U+QSLPAJNVGnF8BRTDv8RIl9u88= -----END CERTIFICATE-----Generated at Fri Apr 4 22:02:00 2025 by rpki-client