$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft File: uokBTrxJS2f9iz-C6LOO9vbFck0.mft (raw, json) Hash identifier: oMU/u0aJVzJC4eOdpA/whfx9thFzPLoVlq7CrY7sjqs= Subject key identifier: D1:1C:C4:BD:09:5C:3B:6C:B6:4C:84:D4:72:64:02:06:8D:27:42:7C Authority key identifier: BA:89:01:4E:BC:49:4B:67:FD:8B:3F:82:E8:B3:8E:F6:F6:C5:72:4D Certificate issuer: /CN=A91C4EC7/serialNumber=BA89014EBC494B67FD8B3F82E8B38EF6F6C5724D Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft Manifest number: ED Signing time: Thu 17 Apr 2025 04:19:18 +0000 Manifest this update: Thu 17 Apr 2025 04:19:17 +0000 Manifest next update: Thu 24 Apr 2025 04:19:17 +0000 Files and hashes: 1: uokBTrxJS2f9iz-C6LOO9vbFck0.crl (hash: qAU5b5jeHOGV838MjVN1yq6uDPge2JrmjwPNXx5RF50=) 2: ED352AAEBFE511EEBB3B4D25C4F9AE02.roa (hash: Cg10Lh1/jWjaqO5EBHv5C6vMK3khuwZ/+iMJMpvh7AE=) 3: 7FC61EDC2E1D11EF933E9981C4F9AE02.roa (hash: lJjM0vXxFGkR8fpKRXKFywWPgH/0gbH+qkVNiWKRaAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.crl rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4EC7, serialNumber=BA89014EBC494B67FD8B3F82E8B38EF6F6C5724D Validity Not Before: Apr 17 04:19:17 2025 GMT Not After : Apr 24 04:19:17 2025 GMT Subject: CN=68008145-f001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:af:e2:23:6e:c3:b3:63:ac:4e:1b:53:30:6e: c1:8c:c3:11:44:29:29:f4:9b:e6:f0:7c:4e:69:64: 61:43:b4:22:08:25:41:10:be:3e:7e:d1:e5:3e:9d: 50:ea:9f:e7:2e:9d:d8:60:48:06:d1:31:93:e4:b4: 21:7c:31:67:5c:59:e9:28:63:b2:f3:5a:b7:78:8d: 7e:b4:31:7e:43:cc:0c:57:b5:b1:ba:d6:57:28:94: 54:16:d6:21:d3:f1:4c:d6:05:52:7b:f5:44:6b:aa: d0:03:f1:67:f6:41:f2:1e:6c:99:c8:51:60:33:4c: 64:e0:97:0b:1d:9a:22:8a:8b:cb:73:85:4e:27:6f: 16:65:2e:78:05:1a:25:40:a2:5b:2e:cb:c5:6d:ad: 13:53:67:66:24:84:f8:ec:92:65:06:e4:1c:8b:e3: 00:18:61:60:7c:71:3e:e8:9d:15:61:af:e8:be:9a: 04:13:81:f2:f5:38:1a:a0:8d:b1:bf:87:00:cb:4c: 11:0b:c9:cf:21:d8:4f:b4:f4:17:e4:77:03:26:b2: 42:10:70:45:ed:25:fc:c7:97:57:47:41:4a:e7:e8: 09:ff:8f:63:c9:6b:47:f0:f1:f8:87:43:51:8e:5f: a9:0a:9a:da:68:f8:7b:20:f8:9a:49:3d:eb:17:a1: 1b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:1C:C4:BD:09:5C:3B:6C:B6:4C:84:D4:72:64:02:06:8D:27:42:7C X509v3 Authority Key Identifier: keyid:BA:89:01:4E:BC:49:4B:67:FD:8B:3F:82:E8:B3:8E:F6:F6:C5:72:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:76:0b:90:31:64:df:b7:21:c5:39:16:4c:fb:bb:4f:70:0a: 11:cb:a2:be:1b:ba:6c:68:8c:00:67:ee:c2:51:b5:c6:0f:56: 14:06:a7:bc:d1:72:77:89:65:b6:7d:35:9b:db:c3:2a:ce:c0: bb:85:63:d7:34:66:77:27:10:6b:b5:da:ce:af:ba:33:1d:62: 39:56:58:4c:cd:b1:17:18:3b:7a:8f:1a:8c:0a:66:46:cd:ca: e8:15:c7:45:14:a6:5f:6f:25:19:fb:c2:a2:6d:80:0e:e0:4d: 44:18:82:9e:e6:2e:a9:6d:db:0c:06:d9:b1:7e:0a:82:71:45: d4:0f:e1:d8:38:53:b2:79:c7:c1:e9:83:b9:20:ef:14:bc:0f: 45:3a:8c:ca:2c:7d:44:9f:aa:f7:a7:2f:ed:74:7d:27:76:3d: ef:20:b6:ff:43:32:7d:e4:e5:b8:ff:ce:03:0c:50:65:80:73: 37:cd:f3:fe:32:e7:7f:9a:e0:8b:9c:5c:a1:d3:b5:7c:a3:36: 56:82:c6:01:13:17:03:83:1d:fd:9e:fa:03:c0:60:4d:94:c9: 3f:f8:e6:3d:fa:f4:da:43:a7:f1:59:5d:bf:d7:28:ca:68:65: 12:44:3e:6b:db:cf:8b:4f:a1:1c:22:66:17:c9:3d:f9:e4:e1: 7e:be:56:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRFQzcxMTAvBgNVBAUTKEJBODkwMTRFQkM0OTRCNjdGRDhCM0Y4MkU4QjM4RUY2 RjZDNTcyNEQwHhcNMjUwNDE3MDQxOTE3WhcNMjUwNDI0MDQxOTE3WjAYMRYwFAYD VQQDEw02ODAwODE0NS1mMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw6/iI27Ds2OsThtTMG7BjMMRRCkp9Jvm8HxOaWRhQ7QiCCVBEL4+ftHlPp1Q 6p/nLp3YYEgG0TGT5LQhfDFnXFnpKGOy81q3eI1+tDF+Q8wMV7WxutZXKJRUFtYh 0/FM1gVSe/VEa6rQA/Fn9kHyHmyZyFFgM0xk4JcLHZoiiovLc4VOJ28WZS54BRol QKJbLsvFba0TU2dmJIT47JJlBuQci+MAGGFgfHE+6J0VYa/ovpoEE4Hy9TgaoI2x v4cAy0wRC8nPIdhPtPQX5HcDJrJCEHBF7SX8x5dXR0FK5+gJ/49jyWtH8PH4h0NR jl+pCpraaPh7IPiaST3rF6EbpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEcxL0J XDtstkyE1HJkAgaNJ0J8MB8GA1UdIwQYMBaAFLqJAU68SUtn/Ys/guizjvb2xXJN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEVDNy83NTc1Nzg3MEJG RTUxMUVFQUFDRTQzMTJDNEY5QUUwMi91b2tCVHJ4SlMyZjlpei1DNkxPTzl2YkZj azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vva0JUcnhKUzJmOWl6LUM2TE9POXZiRmNrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NEVDNy83NTc1Nzg3MEJGRTUxMUVFQUFDRTQzMTJDNEY5QUUwMi91b2tCVHJ4SlMy Zjlpei1DNkxPTzl2YkZjazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+dguQMWTftyHFORZM+7tPcAoRy6K+G7psaIwAZ+7CUbXGD1YUBqe8 0XJ3iWW2fTWb28MqzsC7hWPXNGZ3JxBrtdrOr7ozHWI5VlhMzbEXGDt6jxqMCmZG zcroFcdFFKZfbyUZ+8KibYAO4E1EGIKe5i6pbdsMBtmxfgqCcUXUD+HYOFOyecfB 6YO5IO8UvA9FOozKLH1En6r3py/tdH0ndj3vILb/QzJ95OW4/84DDFBlgHM3zfP+ Mud/muCLnFyh07V8ozZWgsYBExcDgx39nvoDwGBNlMk/+OY9+vTaQ6fxWV2/1yjK aGUSRD5r28+LT6EcImYXyT355OF+vlbS -----END CERTIFICATE-----Generated at Thu Apr 17 21:26:43 2025 by rpki-client