$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: EZmJZxpplwKvc26pEvajGBkHKW3ZlDOblYOi7d1amAQ= Subject key identifier: C8:6F:FE:BB:B4:EF:7F:21:7E:E9:DE:A7:CC:C9:DF:D5:B9:A5:66:AA Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 019D Signing time: Thu 03 Apr 2025 02:50:26 +0000 Manifest this update: Thu 03 Apr 2025 02:50:25 +0000 Manifest next update: Thu 10 Apr 2025 02:50:25 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: Y4iPA1cwPQqhDFZS7xkXPi4L/2+RcTWxyCMRsGa/O/8=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723 Validity Not Before: Apr 3 02:50:25 2025 GMT Not After : Apr 10 02:50:25 2025 GMT Subject: CN=67edf772-5090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:29:1e:8a:47:2e:48:72:fd:07:56:2c:d6:2a: dd:d2:14:08:58:67:3f:87:be:29:51:61:5c:bb:29: e8:79:df:25:31:11:c3:d6:54:9a:5d:bf:aa:41:2c: ca:1f:8b:7f:c4:b5:39:e3:eb:73:98:eb:bf:50:cd: 7c:14:23:48:04:6a:3f:28:0d:36:16:a3:4c:b5:94: e7:7c:37:9c:bc:c7:d2:4a:98:f6:8d:a3:7d:cd:1d: 54:e8:34:5b:19:e6:7a:28:9e:50:7b:61:3c:96:5d: d5:8e:9e:d3:8d:45:02:74:c9:52:32:ba:71:5d:e8: ef:d7:5b:b5:c3:ab:2a:78:d8:a8:ad:db:0b:01:2b: 82:0b:b0:7f:ce:ec:69:22:d3:ce:bd:21:06:ab:2d: dc:ae:62:ba:f7:0e:bc:7e:0d:bf:d0:d7:cd:6b:64: 8b:da:eb:e3:17:20:06:6e:a7:c4:38:7c:ca:f8:81: 2a:9a:b1:2c:52:9b:03:21:9d:a8:82:f4:8a:1a:93: 5c:9a:08:09:d7:9d:b7:66:eb:e4:0e:3e:12:49:4b: 94:41:d9:32:71:6f:4f:37:5c:25:87:bf:e6:ff:3e: 1d:df:ed:d7:ae:ca:ee:00:65:06:0d:57:64:61:44: 84:0f:eb:c7:37:4f:3c:db:f2:16:a7:84:82:b0:8a: 87:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6F:FE:BB:B4:EF:7F:21:7E:E9:DE:A7:CC:C9:DF:D5:B9:A5:66:AA X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:c5:8a:3c:dd:6a:1a:5e:31:40:99:ed:47:1a:f4:66:32:3f: 10:48:26:2c:9b:d1:10:39:72:da:62:d0:2f:99:37:f2:aa:94: 34:7e:2b:63:8a:83:d7:26:5c:50:41:b4:84:79:74:3e:85:8f: 7d:a9:10:7f:1c:d6:f3:7f:59:c1:0c:61:40:91:a9:6e:20:df: ea:c6:ba:28:e1:19:b8:88:36:14:c4:8c:0e:e6:65:1f:07:cb: 9b:d9:81:7b:5c:24:3b:9d:ee:f6:02:c3:cc:7a:40:06:a2:93: de:6c:0a:4a:d7:35:f0:41:ce:10:2e:9f:ac:2b:a9:69:c7:1a: 2c:50:ca:51:29:20:ba:16:17:ba:37:89:18:a7:58:5c:28:3c: 19:b0:bc:d8:01:8a:f7:7b:f3:5e:f8:9e:32:30:3f:43:81:f5: 43:a9:01:2a:19:60:14:29:7f:18:7d:15:f7:f3:1c:74:4e:9e: f2:5b:1e:e1:c1:e9:07:a5:f3:fe:29:2a:12:21:d4:79:9e:d7: b0:d1:b0:4b:9c:95:12:22:2d:04:8d:d3:c3:9d:98:19:89:ea: 3c:df:56:00:e5:42:25:97:a0:61:0c:a1:bf:b1:8a:92:13:c9: 2d:4e:48:c7:7f:a4:05:db:69:ea:91:6f:eb:1e:62:3b:23:24: 5d:11:96:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwNDAzMDI1MDI1WhcNMjUwNDEwMDI1MDI1WjAYMRYwFAYD VQQDEw02N2VkZjc3Mi01MDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CkeikcuSHL9B1Ys1ird0hQIWGc/h74pUWFcuynoed8lMRHD1lSaXb+qQSzK H4t/xLU54+tzmOu/UM18FCNIBGo/KA02FqNMtZTnfDecvMfSSpj2jaN9zR1U6DRb GeZ6KJ5Qe2E8ll3Vjp7TjUUCdMlSMrpxXejv11u1w6sqeNiordsLASuCC7B/zuxp ItPOvSEGqy3crmK69w68fg2/0NfNa2SL2uvjFyAGbqfEOHzK+IEqmrEsUpsDIZ2o gvSKGpNcmggJ1523ZuvkDj4SSUuUQdkycW9PN1wlh7/m/z4d3+3XrsruAGUGDVdk YUSED+vHN0882/IWp4SCsIqHcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhv/ru0 738hfunep8zJ39W5pWaqMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0xYo83WoaXjFAme1HGvRmMj8QSCYsm9EQOXLaYtAvmTfyqpQ0fitj ioPXJlxQQbSEeXQ+hY99qRB/HNbzf1nBDGFAkaluIN/qxroo4Rm4iDYUxIwO5mUf B8ub2YF7XCQ7ne72AsPMekAGopPebApK1zXwQc4QLp+sK6lpxxosUMpRKSC6Fhe6 N4kYp1hcKDwZsLzYAYr3e/Ne+J4yMD9DgfVDqQEqGWAUKX8YfRX38xx0Tp7yWx7h wekHpfP+KSoSIdR5ntew0bBLnJUSIi0EjdPDnZgZieo831YA5UIll6BhDKG/sYqS E8ktTkjHf6QF22nqkW/rHmI7IyRdEZbW -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:46 2025 by rpki-client