$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft File: UAxgp_acBL6E_PPGVyPAeXDloSg.mft (raw, json) Hash identifier: H/1tCQPyn7e/kw2kU7aJxWs+VhG0+53MRJBUUGbfSfM= Subject key identifier: 63:32:06:31:35:86:FF:CB:30:5F:08:F5:92:36:8C:23:B2:24:2E:EF Authority key identifier: 50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 Certificate issuer: /CN=A91A7978/serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft Manifest number: 20 Signing time: Thu 03 Apr 2025 07:10:26 +0000 Manifest this update: Thu 03 Apr 2025 07:10:25 +0000 Manifest next update: Thu 10 Apr 2025 07:10:25 +0000 Files and hashes: 1: UAxgp_acBL6E_PPGVyPAeXDloSg.crl (hash: D4SmnsJusm2oyv6HJHZK9QdgICEk8Wh5yCrcnd+ZXKY=) 2: 1EF560BEEA6911EF9AE7CD14C4F9AE02.roa (hash: lILeGFy8FkS3op8pqtEQAN5f/QrMhRlzhtxTRP45JV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:10:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7978 Validity Not Before: Apr 3 07:10:25 2025 GMT Not After : Apr 10 07:10:25 2025 GMT Subject: CN=67ee3462-cba6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1a:de:88:47:bf:41:c1:bc:2b:6e:fb:70:b3: 53:df:d4:8c:0d:aa:c5:18:43:6b:8b:c4:fb:32:f1: df:7e:f7:9b:d7:63:5a:47:ff:89:61:a9:b7:d7:cf: 48:da:83:47:29:fa:05:b1:47:9f:35:05:61:53:12: 8a:1d:ca:c1:07:c6:c1:60:6b:6b:ba:03:93:84:14: 71:c0:ef:0e:83:53:c4:37:e9:72:f4:5b:08:c1:11: 1b:a7:2a:c2:d7:05:be:3d:dc:c0:93:c0:39:cd:f9: 07:e4:52:1a:05:83:02:d7:84:57:40:6c:64:6f:ff: 05:78:e3:1d:63:57:05:f3:c8:4f:d0:3e:91:d9:3d: 30:f8:6d:b4:34:3a:18:2f:ea:9c:58:ec:7c:ce:e0: 81:4b:ff:74:0c:a9:38:db:6c:da:b1:1a:82:b1:cb: d9:92:52:4f:ec:41:8c:3b:20:57:cf:b8:71:1b:b4: 71:41:ff:94:ee:ae:2f:f6:a5:6c:a9:d6:86:ae:09: e7:b0:05:97:99:ed:c1:fa:14:e8:75:89:44:70:28: e1:c4:61:81:3b:fc:ba:e1:c9:0c:82:55:cb:23:83: a1:f0:7e:28:a8:8c:a2:f6:2b:ac:1e:fd:d2:9a:ee: ea:88:99:98:6d:55:2f:f6:91:2a:41:30:af:a9:a1: cf:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:32:06:31:35:86:FF:CB:30:5F:08:F5:92:36:8C:23:B2:24:2E:EF X509v3 Authority Key Identifier: keyid:50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:da:56:12:39:d9:7a:fa:3a:16:d3:6f:3f:d2:28:ce:11:2b: 04:38:d0:a9:9c:c1:52:b5:b0:ad:2f:48:a9:9a:4a:a9:dd:98: 8d:70:cb:4c:d6:b9:66:a9:47:e6:2a:99:de:e0:5e:2a:b7:a7: 35:e8:9e:9e:cc:29:d4:3f:40:ed:49:a2:10:0a:a5:e1:cf:69: ef:2c:0a:0e:71:9a:38:15:14:11:1e:52:bd:53:a1:d0:ab:00: 72:4b:cd:da:38:9f:92:df:a5:65:7f:2a:00:8b:da:8a:da:73: e4:77:f0:91:02:7a:5f:de:6d:44:45:ef:43:c5:86:73:19:3f: 64:02:d1:cf:fc:e5:ac:91:e5:f3:d2:e4:98:30:87:2b:ad:8b: e8:c1:bf:e8:01:f9:02:5c:d9:ab:c8:34:01:7e:0a:d9:b9:97: cf:79:00:1b:68:f6:cf:03:4c:d9:80:74:af:c4:5e:57:27:45: a1:67:97:28:e0:8f:4e:72:99:ad:02:7e:d8:d5:a1:9e:ce:ba: 93:5a:be:3c:11:05:56:cb:9e:c4:ee:4c:9a:4b:f3:8b:4d:ce: 4c:fc:d7:6f:99:5d:a6:fd:de:bb:a0:dc:e7:08:9c:31:db:9b: ce:81:47:46:46:66:30:b8:71:6a:6c:d8:04:c2:ce:c4:f2:a1: 84:1f:68:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB Nzk3ODExMC8GA1UEBRMoNTAwQzYwQTdGNjlDMDRCRTg0RkNGM0M2NTcyM0MwNzk3 MEU1QTEyODAeFw0yNTA0MDMwNzEwMjVaFw0yNTA0MTAwNzEwMjVaMBgxFjAUBgNV BAMTDTY3ZWUzNDYyLWNiYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6Gt6IR79Bwbwrbvtws1Pf1IwNqsUYQ2uLxPsy8d9+95vXY1pH/4lhqbfXz0ja g0cp+gWxR581BWFTEoodysEHxsFga2u6A5OEFHHA7w6DU8Q36XL0WwjBERunKsLX Bb493MCTwDnN+QfkUhoFgwLXhFdAbGRv/wV44x1jVwXzyE/QPpHZPTD4bbQ0Ohgv 6pxY7HzO4IFL/3QMqTjbbNqxGoKxy9mSUk/sQYw7IFfPuHEbtHFB/5Turi/2pWyp 1oauCeewBZeZ7cH6FOh1iURwKOHEYYE7/LrhyQyCVcsjg6HwfiiojKL2K6we/dKa 7uqImZhtVS/2kSpBMK+poc/rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYzIGMTWG /8swXwj1kjaMI7IkLu8wHwYDVR0jBBgwFoAUUAxgp/acBL6E/PPGVyPAeXDloSgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3OTc4LzU2MkJEQjIyRUE2 ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2RV9QUEdWeVBBZVhEbG9T Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUF4Z3BfYWNCTDZFX1BQR1Z5UEFlWERsb1NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 OTc4LzU2MkJEQjIyRUE2ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2 RV9QUEdWeVBBZVhEbG9TZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI/aVhI52Xr6OhbTbz/SKM4RKwQ40KmcwVK1sK0vSKmaSqndmI1wy0zW uWapR+Yqmd7gXiq3pzXonp7MKdQ/QO1JohAKpeHPae8sCg5xmjgVFBEeUr1TodCr AHJLzdo4n5LfpWV/KgCL2orac+R38JECel/ebURF70PFhnMZP2QC0c/85ayR5fPS 5Jgwhyuti+jBv+gB+QJc2avINAF+Ctm5l895ABto9s8DTNmAdK/EXlcnRaFnlyjg j05yma0CftjVoZ7OupNavjwRBVbLnsTuTJpL84tNzkz812+ZXab93rug3OcInDHb m86BR0ZGZjC4cWps2ATCzsTyoYQfaLk= -----END CERTIFICATE-----Generated at Fri Apr 4 21:32:15 2025 by rpki-client