$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: RiBEfczTLB3sQBr1IQnGsFpRujivzIj/N+w6r66n2mo= Subject key identifier: 3B:D7:58:71:EE:5B:CD:10:4F:A2:43:AE:A6:47:AD:48:D6:2A:19:77 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 013D Signing time: Thu 03 Apr 2025 03:36:38 +0000 Manifest this update: Thu 03 Apr 2025 03:36:37 +0000 Manifest next update: Thu 10 Apr 2025 03:36:37 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: wJo2oIbBVzj9Snjvop7tc9VG4cY6rJxBoTjKfUQa4UI=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: jQ/0lCjJIMkOJNGjS+k508Q8Du2UjlHI8yBfLB/rzdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD Validity Not Before: Apr 3 03:36:37 2025 GMT Not After : Apr 10 03:36:37 2025 GMT Subject: CN=67ee0245-e3e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c2:ab:35:8a:92:e0:e1:4a:5b:67:7c:ef:ac: a5:85:d5:ef:3f:7c:f3:35:ec:8e:37:6e:00:df:ff: 97:22:35:81:75:e8:ea:4d:ba:de:f7:10:d0:99:8b: ea:53:f1:a7:a2:3e:1a:4d:6c:80:81:52:0f:0d:4c: 79:bd:8d:fa:b5:fb:4f:7c:87:fc:25:21:13:4b:c8: 60:bc:f1:9f:73:02:9c:ad:81:ca:f6:99:58:0c:d3: 81:80:d0:0f:2e:76:3d:74:bd:11:3c:70:23:bf:cc: 82:43:60:ee:4e:ea:0f:b4:d8:21:60:9c:d4:43:31: 9b:80:10:00:53:d2:f8:cf:3c:6a:15:04:66:5d:f8: 38:70:a7:26:12:a4:a0:31:52:4e:94:4d:31:ff:da: ae:ae:db:41:aa:f0:f2:24:84:5c:dd:bc:cf:f8:8d: b6:0c:50:93:7c:3d:df:a6:94:a5:c2:7c:16:7d:a8: c7:fa:36:fb:d2:7f:8e:c0:27:29:78:95:a3:93:b9: 4a:72:74:a5:1c:31:c0:ee:4b:4e:52:fa:45:8b:82: c6:c9:df:ec:db:96:c1:62:28:9e:bc:64:4d:91:55: b6:97:e5:75:c7:e3:a2:f7:bc:60:6f:16:48:71:6c: 24:17:77:66:bf:69:89:e0:ae:3f:86:3b:5d:62:52: a5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D7:58:71:EE:5B:CD:10:4F:A2:43:AE:A6:47:AD:48:D6:2A:19:77 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:88:20:e4:a6:a5:b3:a3:bc:ad:73:99:9f:3f:0b:30:b6:db: b1:2c:0d:b9:3a:3d:a7:1d:bc:fa:16:74:3f:90:9b:65:19:b0: d2:98:a7:9e:1e:1a:c3:77:36:06:89:0b:c7:78:84:0b:58:73: 81:15:17:66:ca:46:69:4c:b6:a8:4d:e5:40:5c:29:3d:f9:2c: 16:04:56:9d:b9:03:c2:a7:60:f8:4c:32:36:14:09:e7:00:56: 7d:54:4d:a9:59:8b:9f:ad:0d:60:e4:a7:ce:f2:28:c9:4a:66: ce:cc:e6:8a:d6:21:17:bf:f7:11:bf:ef:b6:97:73:49:e4:cf: 50:6b:a0:c0:ba:bd:b7:db:be:74:68:81:64:2e:a9:16:64:b6: 24:11:21:50:16:34:88:bc:ff:1a:51:cc:ad:5d:86:aa:af:46: 02:b1:20:07:7d:72:e0:ae:9e:4e:83:2b:58:68:fa:20:37:25: aa:f5:17:1b:84:bd:3d:ef:bf:8b:9c:2f:83:e5:0e:02:52:2c: 5d:d4:aa:fb:41:a6:a0:b2:fb:29:a3:b9:1f:09:7b:7b:f8:db: 0f:ef:43:5d:b2:8e:4e:f0:70:cd:b1:e2:bb:47:c6:6d:f8:30: b1:f6:42:fb:d3:0b:7b:e1:a8:ad:c0:ca:d2:fd:d6:dc:a3:d1: f6:f4:9f:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUwNDAzMDMzNjM3WhcNMjUwNDEwMDMzNjM3WjAYMRYwFAYD VQQDEw02N2VlMDI0NS1lM2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMKrNYqS4OFKW2d876ylhdXvP3zzNeyON24A3/+XIjWBdejqTbre9xDQmYvq U/Gnoj4aTWyAgVIPDUx5vY36tftPfIf8JSETS8hgvPGfcwKcrYHK9plYDNOBgNAP LnY9dL0RPHAjv8yCQ2DuTuoPtNghYJzUQzGbgBAAU9L4zzxqFQRmXfg4cKcmEqSg MVJOlE0x/9qurttBqvDyJIRc3bzP+I22DFCTfD3fppSlwnwWfajH+jb70n+OwCcp eJWjk7lKcnSlHDHA7ktOUvpFi4LGyd/s25bBYiievGRNkVW2l+V1x+Oi97xgbxZI cWwkF3dmv2mJ4K4/hjtdYlKlOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvXWHHu W80QT6JDrqZHrUjWKhl3MB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdiCDkpqWzo7ytc5mfPwswttuxLA25Oj2nHbz6FnQ/kJtlGbDSmKee HhrDdzYGiQvHeIQLWHOBFRdmykZpTLaoTeVAXCk9+SwWBFaduQPCp2D4TDI2FAnn AFZ9VE2pWYufrQ1g5KfO8ijJSmbOzOaK1iEXv/cRv++2l3NJ5M9Qa6DAur232750 aIFkLqkWZLYkESFQFjSIvP8aUcytXYaqr0YCsSAHfXLgrp5OgytYaPogNyWq9Rcb hL0977+LnC+D5Q4CUixd1Kr7Qaagsvspo7kfCXt7+NsP70Ndso5O8HDNseK7R8Zt +DCx9kL70wt74aitwMrS/dbco9H29J+W -----END CERTIFICATE-----Generated at Fri Apr 4 21:47:32 2025 by rpki-client