$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft File: udznqYvOfA4oMosTy-q1Qx0PZr0.mft (raw, json) Hash identifier: L7Xk7sXU+0jyJ1HGGg/lSWuCFpPGf+aQJf0q8T78Fb4= Subject key identifier: EA:0D:4F:57:3A:2F:6F:24:12:00:00:21:21:9F:E8:6E:C4:70:18:59 Authority key identifier: B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD Certificate issuer: /CN=A91C0C0C/serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Certificate serial: 0386 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft Manifest number: 037C Signing time: Thu 03 Apr 2025 00:53:29 +0000 Manifest this update: Thu 03 Apr 2025 00:53:28 +0000 Manifest next update: Thu 10 Apr 2025 00:53:28 +0000 Files and hashes: 1: udznqYvOfA4oMosTy-q1Qx0PZr0.crl (hash: 34v4d5VPtwQtL9i1ylMOAE1DhglP7DIfmbwdiVqY5Qo=) 2: 5FD6BBF27CEB11EDA3D10364C4F9AE02.roa (hash: ygRSHbg6AmLovZK/dtg2JmH8dnSxazp7bAhfTqwsgBA=) 3: CA86B0DEFC4D11ECA947C41FC4F9AE02.roa (hash: tAoW034xN4l1WVw/tt7SQDK3U+R88WiCSPo7T5B1MyY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 902 (0x386) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0C Validity Not Before: Apr 3 00:53:28 2025 GMT Not After : Apr 10 00:53:28 2025 GMT Subject: CN=67eddc09-5631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:92:ee:1a:d6:60:4c:54:27:5b:40:a6:3f:5c: e3:c7:64:c1:b8:27:7f:ff:ed:ea:e2:51:10:bc:98: 36:7a:01:c7:05:27:42:9a:a7:7f:c6:2f:42:12:ea: d8:7e:73:66:5d:b7:da:70:3c:af:6e:ad:f9:1a:5e: 52:17:2e:9e:c2:ad:47:15:52:ce:45:31:1c:e3:f3: 6e:cd:61:92:6e:54:77:c4:fa:62:3b:c5:bc:92:18: 96:4f:19:57:ea:62:aa:ca:35:bc:86:09:8c:f0:f0: b1:04:36:5f:ba:c4:3a:cb:80:4a:9e:cb:1a:11:28: 9d:00:93:be:4d:a0:27:99:62:14:a3:bb:3c:94:b5: 5d:52:cd:6e:b1:d3:d8:08:27:e9:ae:f5:40:16:03: 15:43:6a:91:33:33:44:ac:87:94:8b:77:47:4f:b6: 46:27:ef:a3:4e:85:dd:5c:07:d4:c2:c6:c9:12:b4: 22:5a:ac:90:b7:26:48:b5:25:49:35:af:75:31:7d: b0:38:b3:97:fc:59:59:49:04:4f:e8:43:a2:c5:6a: 30:0e:3e:05:2b:3b:f5:e6:b6:5f:18:da:ad:f6:05: 8b:42:72:6c:f5:db:81:94:ac:77:5d:f8:27:7d:87: de:85:f9:69:3b:c2:ba:79:34:b0:dc:f8:2d:95:ef: fd:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0D:4F:57:3A:2F:6F:24:12:00:00:21:21:9F:E8:6E:C4:70:18:59 X509v3 Authority Key Identifier: keyid:B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:00:8e:87:49:3b:98:0a:14:d1:9e:ff:00:ea:9e:36:f5:f3: 01:e3:56:eb:7c:1c:a0:47:45:42:23:57:f7:e5:3e:af:44:05: 60:1d:23:94:27:0f:01:c2:04:fa:70:57:cb:40:14:02:fc:37: 09:aa:42:ce:44:d7:f3:80:4f:31:52:77:3c:3a:1a:0b:0d:c8: a8:94:fa:87:96:96:65:16:fe:84:ba:3a:22:5b:00:90:dd:d8: 29:e0:5f:c3:16:22:cf:08:a2:fc:42:12:cb:95:74:2a:90:d4: 85:36:c5:13:66:23:f7:1d:2f:48:fe:3b:2a:37:e2:fa:15:85: 6c:e0:07:2e:b7:89:1c:5c:88:71:48:9b:9d:b8:61:0c:2a:1c: 76:6b:bc:82:de:46:56:a6:4f:fe:04:63:eb:46:df:37:5f:20: 27:bc:de:ad:7c:83:69:b8:ad:6a:6e:a0:73:a4:d2:43:02:49: 7e:8e:4c:a5:7b:00:5b:0d:34:3d:c0:0c:e4:e7:33:9a:82:0c: 97:28:4e:66:95:a6:f0:f1:75:c1:b5:f7:dd:8c:2f:28:c5:21: 97:4d:50:a4:b3:a5:98:57:dc:74:ea:34:94:ac:ce:bc:7a:6a: dd:94:f0:58:a1:f2:3e:c0:e6:e1:a6:0e:9e:48:b3:81:a8:40: e3:f5:48:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEMxMTAvBgNVBAUTKEI5RENFN0E5OEJDRTdDMEUyODMyOEIxM0NCRUFCNTQz MUQwRjY2QkQwHhcNMjUwNDAzMDA1MzI4WhcNMjUwNDEwMDA1MzI4WjAYMRYwFAYD VQQDEw02N2VkZGMwOS01NjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pLuGtZgTFQnW0CmP1zjx2TBuCd//+3q4lEQvJg2egHHBSdCmqd/xi9CEurY fnNmXbfacDyvbq35Gl5SFy6ewq1HFVLORTEc4/NuzWGSblR3xPpiO8W8khiWTxlX 6mKqyjW8hgmM8PCxBDZfusQ6y4BKnssaESidAJO+TaAnmWIUo7s8lLVdUs1usdPY CCfprvVAFgMVQ2qRMzNErIeUi3dHT7ZGJ++jToXdXAfUwsbJErQiWqyQtyZItSVJ Na91MX2wOLOX/FlZSQRP6EOixWowDj4FKzv15rZfGNqt9gWLQnJs9duBlKx3Xfgn fYfehflpO8K6eTSw3Pgtle/9QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoNT1c6 L28kEgAAISGf6G7EcBhZMB8GA1UdIwQYMBaAFLnc56mLznwOKDKLE8vqtUMdD2a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQy8zNTlCOEQzRTlE RkYxMUVDQTRBNTg4NDhDNEY5QUUwMi91ZHpucVl2T2ZBNG9Nb3NUeS1xMVF4MFBa cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vkem5xWXZPZkE0b01vc1R5LXExUXgwUFpyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQy8zNTlCOEQzRTlERkYxMUVDQTRBNTg4NDhDNEY5QUUwMi91ZHpucVl2T2ZB NG9Nb3NUeS1xMVF4MFBacjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCAI6HSTuYChTRnv8A6p429fMB41brfBygR0VCI1f35T6vRAVgHSOU Jw8BwgT6cFfLQBQC/DcJqkLORNfzgE8xUnc8OhoLDciolPqHlpZlFv6EujoiWwCQ 3dgp4F/DFiLPCKL8QhLLlXQqkNSFNsUTZiP3HS9I/jsqN+L6FYVs4Acut4kcXIhx SJuduGEMKhx2a7yC3kZWpk/+BGPrRt83XyAnvN6tfINpuK1qbqBzpNJDAkl+jkyl ewBbDTQ9wAzk5zOaggyXKE5mlabw8XXBtffdjC8oxSGXTVCks6WYV9x06jSUrM68 emrdlPBYofI+wObhpg6eSLOBqEDj9UgY -----END CERTIFICATE-----Generated at Fri Apr 4 21:32:16 2025 by rpki-client