$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft File: ujgt6jovW4xMIgXskp9gG-NP538.mft (raw, json) Hash identifier: ChZtOTA8BB8Eq7fmDDv69EUmQ6PnLuxl1PIBj/3OjVE= Subject key identifier: 23:3D:F4:B0:88:0E:85:F8:0E:B3:5D:07:38:03:CD:32:EE:05:0E:6E Authority key identifier: BA:38:2D:EA:3A:2F:5B:8C:4C:22:05:EC:92:9F:60:1B:E3:4F:E7:7F Certificate issuer: /CN=A91B7B34/serialNumber=BA382DEA3A2F5B8C4C2205EC929F601BE34FE77F Certificate serial: 0C33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft Manifest number: 0C29 Signing time: Sun 20 Apr 2025 18:22:00 +0000 Manifest this update: Sun 20 Apr 2025 18:22:00 +0000 Manifest next update: Sun 27 Apr 2025 18:22:00 +0000 Files and hashes: 1: ujgt6jovW4xMIgXskp9gG-NP538.crl (hash: 4xscaF40sQ5dr/Di/hV1dPVS3LkwlZDUl30ML5rjbbo=) 2: 52E56FA806C711EA84978821C4F9AE02.roa (hash: pC6YASmlOW3gbC5Njuzzo1yhASqi/WroinaiHpfVYXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.crl rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 18:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B34, serialNumber=BA382DEA3A2F5B8C4C2205EC929F601BE34FE77F Validity Not Before: Apr 20 18:22:00 2025 GMT Not After : Apr 27 18:22:00 2025 GMT Subject: CN=68053b48-687b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e9:b0:ae:a3:48:70:ab:f0:77:3b:7a:8e:36: 76:0a:03:2a:3b:07:20:a2:f7:e8:9f:a1:b2:5e:5d: a8:73:04:c5:bc:b1:45:18:be:72:a4:e8:67:e2:0c: 13:cc:c2:a9:1d:fe:c9:46:f7:63:7c:68:f9:c1:9e: ef:55:4d:03:49:00:ae:c2:10:7a:53:24:96:06:6b: 73:ea:92:70:1f:6d:da:c6:14:7b:c3:e9:40:cd:dd: 61:a9:26:97:28:d5:c6:6c:c9:96:d8:23:e8:dd:da: 01:d7:e0:55:e4:37:6b:cf:44:a7:cf:50:7d:fd:aa: 50:82:23:ae:5f:66:93:ce:fd:3e:2a:9a:93:41:bd: aa:0f:5d:05:bc:9e:8f:69:3f:b9:e4:c6:74:86:9e: 47:21:a7:00:ec:32:93:39:24:c2:6b:73:dd:cf:7f: 2c:97:f8:36:ba:f6:5a:d9:ce:0f:ec:01:ae:a4:72: 80:e8:11:d8:1e:c9:a1:df:5e:b8:e1:8c:54:88:dd: d7:7a:c1:e0:9f:42:33:1a:be:c5:36:5f:71:ec:15: cd:f3:1a:fe:2e:bc:cd:26:8a:01:65:78:f8:ac:8f: d5:70:93:84:d7:d7:c4:3a:21:f1:6d:b6:18:4f:d1: 77:3b:68:e7:5f:46:36:0b:a4:4c:8a:18:24:89:dc: da:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:3D:F4:B0:88:0E:85:F8:0E:B3:5D:07:38:03:CD:32:EE:05:0E:6E X509v3 Authority Key Identifier: keyid:BA:38:2D:EA:3A:2F:5B:8C:4C:22:05:EC:92:9F:60:1B:E3:4F:E7:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:53:06:62:c6:d9:48:38:7e:a8:1c:b3:94:05:e6:51:44:42: c7:d1:48:ef:be:70:ef:dd:88:36:5c:0d:86:76:4d:5c:d7:83: 9e:07:2b:67:e2:83:58:6f:45:92:41:4c:72:6e:a4:c7:22:44: ea:08:88:cc:34:00:6b:97:f4:ee:4b:23:49:a0:53:49:34:dc: 3a:eb:2b:54:5b:76:79:32:33:da:c3:d3:88:61:c9:09:aa:88: f6:01:4d:3d:85:a3:f0:68:1d:2b:4c:de:57:88:6a:42:5b:a2: de:a7:fe:8f:92:30:48:df:1b:cb:a4:e1:24:be:96:d3:c7:e3: 04:56:54:29:d7:9f:9a:4d:fb:5e:97:f1:e5:99:80:20:db:da: 38:87:2a:58:31:bd:da:15:22:91:44:59:ab:31:f7:0d:eb:f3: dc:e1:67:ff:9d:90:9d:29:c7:bf:51:ee:73:90:51:0d:60:55: bc:03:2a:aa:15:d3:ad:d2:39:b5:bf:e8:5a:38:f5:f5:8b:dc: 89:f0:58:ab:fc:a1:a4:ab:d1:ff:b7:0c:2d:65:7d:78:be:33: a9:10:cc:ee:2d:96:9a:c0:39:c1:ab:99:c9:0e:8d:1d:ed:4b: 5b:13:f5:64:f1:c7:78:a7:36:d5:16:16:d9:4a:93:cf:9b:16: 3a:f3:21:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMzQxMTAvBgNVBAUTKEJBMzgyREVBM0EyRjVCOEM0QzIyMDVFQzkyOUY2MDFC RTM0RkU3N0YwHhcNMjUwNDIwMTgyMjAwWhcNMjUwNDI3MTgyMjAwWjAYMRYwFAYD VQQDEw02ODA1M2I0OC02ODdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+mwrqNIcKvwdzt6jjZ2CgMqOwcgovfon6GyXl2ocwTFvLFFGL5ypOhn4gwT zMKpHf7JRvdjfGj5wZ7vVU0DSQCuwhB6UySWBmtz6pJwH23axhR7w+lAzd1hqSaX KNXGbMmW2CPo3doB1+BV5Ddrz0Snz1B9/apQgiOuX2aTzv0+KpqTQb2qD10FvJ6P aT+55MZ0hp5HIacA7DKTOSTCa3Pdz38sl/g2uvZa2c4P7AGupHKA6BHYHsmh3164 4YxUiN3XesHgn0IzGr7FNl9x7BXN8xr+LrzNJooBZXj4rI/VcJOE19fEOiHxbbYY T9F3O2jnX0Y2C6RMihgkidzaPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCM99LCI DoX4DrNdBzgDzTLuBQ5uMB8GA1UdIwQYMBaAFLo4Leo6L1uMTCIF7JKfYBvjT+d/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IzNC9ERUNFM0VCQTA2 QzYxMUVBQTUxQTYwMjFDNEY5QUUwMi91amd0Nmpvdlc0eE1JZ1hza3A5Z0ctTlA1 MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VqZ3Q2am92VzR4TUlnWHNrcDlnRy1OUDUzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IzNC9ERUNFM0VCQTA2QzYxMUVBQTUxQTYwMjFDNEY5QUUwMi91amd0Nmpvdlc0 eE1JZ1hza3A5Z0ctTlA1MzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvUwZixtlIOH6oHLOUBeZRRELH0UjvvnDv3Yg2XA2Gdk1c14OeBytn 4oNYb0WSQUxybqTHIkTqCIjMNABrl/TuSyNJoFNJNNw66ytUW3Z5MjPaw9OIYckJ qoj2AU09haPwaB0rTN5XiGpCW6Lep/6PkjBI3xvLpOEkvpbTx+MEVlQp15+aTfte l/HlmYAg29o4hypYMb3aFSKRRFmrMfcN6/Pc4Wf/nZCdKce/Ue5zkFENYFW8Ayqq FdOt0jm1v+haOPX1i9yJ8Fir/KGkq9H/twwtZX14vjOpEMzuLZaawDnBq5nJDo0d 7UtbE/Vk8cd4pzbVFhbZSpPPmxY68yEQ -----END CERTIFICATE-----Generated at Sun Apr 20 22:33:24 2025 by rpki-client