$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: YScp0DCr9hpZZK7WOivc5UFXPBHX/tVzPUcoJoSPI48= Subject key identifier: EA:C2:20:8C:CB:06:57:E5:24:91:53:44:C7:C0:6D:24:B2:C4:48:66 Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 0370 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 036D Signing time: Sun 13 Apr 2025 00:33:37 +0000 Manifest this update: Sun 13 Apr 2025 00:33:37 +0000 Manifest next update: Sun 20 Apr 2025 00:33:37 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: ddwSWxXZ2q6E3IVGbltumfIo1i6Oe4dXKK10O9PI05I=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: SzmhUiOKFGJoKuBX56C52miBzPamnKu8Ji/qVMaBki8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 00:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 880 (0x370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5, serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Apr 13 00:33:37 2025 GMT Not After : Apr 20 00:33:37 2025 GMT Subject: CN=67fb0661-5688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:96:97:1a:9f:fe:1f:a5:2a:ed:bb:92:81:80: 30:0d:f9:f1:25:71:ba:0a:39:bf:1a:1b:10:de:ec: fc:9f:7c:75:fd:c5:f4:a5:99:99:74:94:db:2e:ee: 4a:f8:e3:60:ac:a7:e9:d9:b3:1b:7d:69:18:ea:7b: 60:38:16:79:5b:7a:cb:eb:0c:7c:cd:ee:66:14:12: eb:58:fc:bd:a5:63:6e:16:a8:ce:22:bb:e4:2e:9b: de:23:8c:bb:12:c1:1b:eb:a0:ea:57:9f:fd:cd:c1: 6f:0e:56:6b:35:d5:2a:6d:a4:03:74:ac:1b:de:69: 68:45:64:e4:e1:5d:f3:44:b8:dc:26:73:7e:74:03: 9b:55:a8:0f:75:d9:2a:b7:7b:0d:b5:90:82:c4:b1: 7e:91:af:30:9e:3f:bc:f4:a4:4a:c9:f9:9f:83:1a: 8a:6f:77:a2:ac:d8:c7:5b:a7:65:14:de:7a:c0:e4: dc:85:6d:2a:95:ec:c5:7e:ae:ae:ac:c7:7a:83:8d: f3:70:7f:4c:1f:2d:5a:db:45:c8:db:e9:82:02:66: bd:fe:09:1e:dd:8c:e6:86:8c:bf:1a:7c:37:85:e0: fe:40:8c:13:d0:8f:6c:2e:b7:f4:2d:b2:fd:e6:e7: 34:23:c9:ee:9c:74:79:5f:fa:ee:0a:1f:58:51:00: 76:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C2:20:8C:CB:06:57:E5:24:91:53:44:C7:C0:6D:24:B2:C4:48:66 X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:9d:ad:a3:64:7e:48:3e:7d:c4:16:f6:8a:ab:97:33:a9:a8: 37:2e:93:94:ff:81:4b:27:59:13:5b:18:b7:53:3d:c1:ea:87: 0a:32:73:8d:d5:65:0e:8d:ac:f8:4d:ac:8a:67:1f:74:c7:6d: ea:ad:e4:43:de:80:ca:4a:e7:17:8f:88:d9:43:02:76:13:a9: 63:a9:ee:71:62:3f:80:a4:73:ba:e9:2d:4e:34:f5:76:ac:f5: 1a:1b:ce:5d:90:8d:53:e8:55:f4:81:c9:6c:0f:88:c6:1f:2d: e7:5a:58:59:96:6a:7d:ae:ac:5a:d2:44:f1:35:98:e1:40:4d: 12:52:e1:65:4f:24:d0:55:f8:41:1a:91:de:a3:95:b5:6c:b3: 00:cf:f6:04:b9:39:35:b4:1a:3c:6a:29:74:9f:b3:05:cb:67: b9:0d:c5:a9:11:c8:97:a0:38:4d:60:81:2e:65:37:b1:6e:36: c8:66:c2:b7:27:ff:2a:82:be:35:97:48:f1:3f:ca:46:13:76: 22:f6:97:1f:62:6c:e2:77:bc:34:41:f9:6c:bf:24:33:4e:72: 40:12:b6:36:2c:f7:71:6d:ef:e4:23:87:9a:46:3b:dd:4c:fb: f2:55:ae:0e:96:3b:32:e4:8e:10:fc:a9:82:c3:ec:24:6d:4b: ab:a7:0a:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjUwNDEzMDAzMzM3WhcNMjUwNDIwMDAzMzM3WjAYMRYwFAYD VQQDEw02N2ZiMDY2MS01Njg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35aXGp/+H6Uq7buSgYAwDfnxJXG6Cjm/GhsQ3uz8n3x1/cX0pZmZdJTbLu5K +ONgrKfp2bMbfWkY6ntgOBZ5W3rL6wx8ze5mFBLrWPy9pWNuFqjOIrvkLpveI4y7 EsEb66DqV5/9zcFvDlZrNdUqbaQDdKwb3mloRWTk4V3zRLjcJnN+dAObVagPddkq t3sNtZCCxLF+ka8wnj+89KRKyfmfgxqKb3eirNjHW6dlFN56wOTchW0qlezFfq6u rMd6g43zcH9MHy1a20XI2+mCAma9/gke3Yzmhoy/Gnw3heD+QIwT0I9sLrf0LbL9 5uc0I8nunHR5X/ruCh9YUQB29wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrCIIzL BlflJJFTRMfAbSSyxEhmMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWna2jZH5IPn3EFvaKq5czqag3LpOU/4FLJ1kTWxi3Uz3B6ocKMnON 1WUOjaz4TayKZx90x23qreRD3oDKSucXj4jZQwJ2E6ljqe5xYj+ApHO66S1ONPV2 rPUaG85dkI1T6FX0gclsD4jGHy3nWlhZlmp9rqxa0kTxNZjhQE0SUuFlTyTQVfhB GpHeo5W1bLMAz/YEuTk1tBo8ail0n7MFy2e5DcWpEciXoDhNYIEuZTexbjbIZsK3 J/8qgr41l0jxP8pGE3Yi9pcfYmzid7w0QflsvyQzTnJAErY2LPdxbe/kI4eaRjvd TPvyVa4Oljsy5I4Q/KmCw+wkbUurpwpr -----END CERTIFICATE-----Generated at Sun Apr 13 04:29:40 2025 by rpki-client