$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft File: UyaKJzal_1VLlAcD83T8NXkijDA.mft (raw, json) Hash identifier: t4gsB6VHHnPlGpq8drahm0Q23vorj+ixbfiLL1hBzpo= Subject key identifier: 1B:8E:E5:AB:19:D1:49:5D:69:6B:48:C8:57:74:6F:72:47:DD:58:57 Authority key identifier: 53:26:8A:27:36:A5:FF:55:4B:94:07:03:F3:74:FC:35:79:22:8C:30 Certificate issuer: /CN=A91DCBAD/serialNumber=53268A2736A5FF554B940703F374FC3579228C30 Certificate serial: 0A18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft Manifest number: 0A10 Signing time: Wed 16 Apr 2025 19:39:39 +0000 Manifest this update: Wed 16 Apr 2025 19:39:38 +0000 Manifest next update: Wed 23 Apr 2025 19:39:38 +0000 Files and hashes: 1: UyaKJzal_1VLlAcD83T8NXkijDA.crl (hash: pLXsdcbXkUqhdsqCxjYehPsBTL/50ERPoDk1xXHlIGU=) 2: CF072592709211EAB1D2FA0FC4F9AE02.roa (hash: ZFArAKV3zxqhsKeUT1pzygcRoAdRSBE7vBttPv/BKqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.crl rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 19:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCBAD, serialNumber=53268A2736A5FF554B940703F374FC3579228C30 Validity Not Before: Apr 16 19:39:38 2025 GMT Not After : Apr 23 19:39:38 2025 GMT Subject: CN=6800077a-9d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c5:a0:dc:d1:a1:1b:da:da:2e:c4:62:12:88: e4:96:d1:7b:9d:a6:42:ea:41:8e:03:a7:af:e4:09: d1:5f:7e:ee:41:8a:9b:fe:59:32:72:65:a0:14:8d: 42:06:36:4b:d1:ba:41:6d:c4:c5:f3:4f:73:a8:b4: 8e:03:7c:4c:9d:06:a5:37:a0:f8:83:cb:59:74:9c: 46:24:bb:d0:85:65:fe:d2:53:fe:77:27:92:b9:1f: fe:eb:f8:53:dd:8b:bf:27:79:c9:39:4d:c0:6d:db: a2:e8:fb:f2:94:ab:9e:1d:bd:9b:bd:1e:3c:65:bd: 44:18:37:96:c0:d5:1f:a0:7b:62:10:cd:64:69:8d: e5:d6:bc:c5:88:a8:3f:ba:02:47:94:7c:aa:e9:84: 8f:28:18:49:10:e7:b4:67:7d:8d:ff:71:cd:9c:f0: c2:73:3c:8c:05:ff:a6:a6:75:a7:61:b9:d7:8f:d2: 84:03:5a:6b:b5:64:7f:61:43:2e:76:aa:47:83:01: ff:c8:59:fb:c9:0f:02:4a:f9:55:da:fb:97:bb:bd: 50:5d:24:c0:19:47:ce:d5:c0:53:d8:2e:88:e2:75: 6d:b2:ca:66:94:23:0c:18:db:dd:7d:22:e3:51:74: 9a:fa:5d:e9:3f:5c:7c:11:34:a0:90:33:42:5a:6f: 2c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:8E:E5:AB:19:D1:49:5D:69:6B:48:C8:57:74:6F:72:47:DD:58:57 X509v3 Authority Key Identifier: keyid:53:26:8A:27:36:A5:FF:55:4B:94:07:03:F3:74:FC:35:79:22:8C:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:23:a8:79:cd:dc:bc:ee:1e:38:6f:5c:b6:bf:25:39:9a:aa: 01:b3:c0:af:cf:99:2a:70:1f:12:db:7a:5f:53:5e:87:4a:76: ad:3e:a7:46:e1:64:f9:fb:f8:38:e5:af:83:5d:fd:35:6d:05: f4:12:5b:e4:7a:65:b5:b0:ba:fd:90:70:d0:39:4a:05:7f:a2: 35:0e:b4:9b:f3:2e:27:a1:55:3e:29:fd:0c:f2:be:3a:69:82: 5b:9b:88:6a:49:76:33:bc:ce:0c:70:7f:bc:d4:cc:a5:e5:3c: 10:f9:3e:b4:11:19:fd:84:f8:99:c2:f9:dc:40:fb:fe:37:99: 56:f7:8c:7a:40:8f:8d:03:6b:8a:49:63:a8:91:f8:da:9b:49: 01:7a:12:9f:03:a8:ae:a8:1a:30:9d:63:b5:5a:a8:f1:38:72: 3f:6e:f0:be:ed:9d:b1:38:b1:d8:4c:94:a5:2e:c1:bc:34:ed: 9c:7a:3e:1d:f9:76:bd:60:4c:9a:9e:29:b9:ed:51:67:e9:fb: 8a:7c:6c:e9:8b:b4:3b:6f:6b:d5:b2:3d:25:19:67:b7:f3:ac: 79:4b:d6:ec:b2:cd:68:6f:00:d7:20:3f:65:ef:55:3f:e6:dd: d2:c5:ab:10:1d:9a:b6:0f:34:e1:39:f6:2f:0d:db:43:32:7c: 01:9a:5c:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCQUQxMTAvBgNVBAUTKDUzMjY4QTI3MzZBNUZGNTU0Qjk0MDcwM0YzNzRGQzM1 NzkyMjhDMzAwHhcNMjUwNDE2MTkzOTM4WhcNMjUwNDIzMTkzOTM4WjAYMRYwFAYD VQQDEw02ODAwMDc3YS05ZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmsWg3NGhG9raLsRiEojkltF7naZC6kGOA6ev5AnRX37uQYqb/lkycmWgFI1C BjZL0bpBbcTF809zqLSOA3xMnQalN6D4g8tZdJxGJLvQhWX+0lP+dyeSuR/+6/hT 3Yu/J3nJOU3Abdui6PvylKueHb2bvR48Zb1EGDeWwNUfoHtiEM1kaY3l1rzFiKg/ ugJHlHyq6YSPKBhJEOe0Z32N/3HNnPDCczyMBf+mpnWnYbnXj9KEA1prtWR/YUMu dqpHgwH/yFn7yQ8CSvlV2vuXu71QXSTAGUfO1cBT2C6I4nVtsspmlCMMGNvdfSLj UXSa+l3pP1x8ETSgkDNCWm8sowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBuO5asZ 0UldaWtIyFd0b3JH3VhXMB8GA1UdIwQYMBaAFFMmiic2pf9VS5QHA/N0/DV5Ioww MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0JBRC8zNjU5RTdBRTcw OTExMUVBOEE5QjRFMERDNEY5QUUwMi9VeWFLSnphbF8xVkxsQWNEODNUOE5Ya2lq REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5YUtKemFsXzFWTGxBY0Q4M1Q4TlhraWpEQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0JBRC8zNjU5RTdBRTcwOTExMUVBOEE5QjRFMERDNEY5QUUwMi9VeWFLSnphbF8x VkxsQWNEODNUOE5Ya2lqREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRI6h5zdy87h44b1y2vyU5mqoBs8Cvz5kqcB8S23pfU16HSnatPqdG 4WT5+/g45a+DXf01bQX0ElvkemW1sLr9kHDQOUoFf6I1DrSb8y4noVU+Kf0M8r46 aYJbm4hqSXYzvM4McH+81Myl5TwQ+T60ERn9hPiZwvncQPv+N5lW94x6QI+NA2uK SWOokfjam0kBehKfA6iuqBownWO1WqjxOHI/bvC+7Z2xOLHYTJSlLsG8NO2cej4d +Xa9YEyanim57VFn6fuKfGzpi7Q7b2vVsj0lGWe386x5S9bsss1obwDXID9l71U/ 5t3SxasQHZq2DzThOfYvDdtDMnwBmlxt -----END CERTIFICATE-----Generated at Fri Apr 18 05:47:17 2025 by rpki-client