$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft File: UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft (raw, json) Hash identifier: sd/naeH5HGH+aulikINDfbn+iy56VckLkSka3mfpm8Y= Subject key identifier: 69:B2:B4:C2:1F:6D:01:B1:47:3F:AE:EB:20:D8:25:2F:41:4C:1E:0E Authority key identifier: 51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB Certificate issuer: /CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Certificate serial: 2255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft Manifest number: 2216 Signing time: Fri 18 Apr 2025 16:00:11 +0000 Manifest this update: Fri 18 Apr 2025 16:00:11 +0000 Manifest next update: Fri 25 Apr 2025 16:00:11 +0000 Files and hashes: 1: UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl (hash: dWB/kiQa6id5I/mq/rPzF7IuPj/GFgrDxnKoqG9lZMw=) 2: 6E12CFE0D6D511EEB73F802EC4F9AE02.roa (hash: fu2Y/ef9m4hYpradbNhhquwt+T6O3zblslaEMelPVBA=) 3: 8D93B9E0D8E911EE85D9881FC4F9AE02.roa (hash: AmGEU/vI25utL7crZoKrtfl5OSwvLwWyEhptdWMwqps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 16:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8789 (0x2255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA1C, serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Validity Not Before: Apr 18 16:00:11 2025 GMT Not After : Apr 25 16:00:11 2025 GMT Subject: CN=6802770b-ddf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b5:1b:76:69:9e:df:53:ba:3d:bd:37:e3:c6: 5e:e6:7e:8a:b2:e2:9d:52:7b:8c:81:46:a8:fd:ff: e2:6a:0d:32:6b:ef:96:be:c8:0c:bc:81:f7:77:ab: dd:e6:de:37:38:76:8b:91:46:fc:5d:2d:0a:f2:af: 53:0c:4f:6b:41:8e:0d:95:16:02:b0:fe:2c:91:5c: 11:58:de:80:ee:84:c0:6e:ef:5b:fe:0f:59:88:09: aa:25:f0:70:0e:25:3e:b2:51:14:04:4d:da:0f:92: d5:92:2a:11:c5:40:4e:48:bd:76:9e:de:e1:63:3c: 49:cc:99:e0:77:35:d1:e9:c4:d3:86:44:80:f4:d5: 3e:35:3b:77:44:2b:e6:8c:b4:df:30:13:db:1b:99: 95:44:f9:70:d0:ed:94:51:6a:cb:07:54:a4:a2:92: 73:40:13:e7:7c:2b:59:2d:65:f1:19:e6:d9:6a:b1: b3:02:a4:a7:b2:f0:4b:f7:ee:eb:15:aa:18:85:b5: 53:f2:15:81:e7:53:81:73:80:1a:4a:bd:63:a4:79: a1:07:f7:c6:f1:5a:b3:e2:e7:ff:45:ea:0b:36:97: 99:6f:c8:c4:6b:af:c2:66:48:f1:a9:c7:5e:19:33: 9a:27:4c:47:37:b2:07:4e:da:92:a9:0f:c2:48:3a: c2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B2:B4:C2:1F:6D:01:B1:47:3F:AE:EB:20:D8:25:2F:41:4C:1E:0E X509v3 Authority Key Identifier: keyid:51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:14:d7:cb:b6:5f:18:34:44:b5:22:b5:56:fd:81:b5:6a:fa: e1:58:31:56:d1:94:6c:8d:d4:3e:91:b3:0f:01:82:48:d0:75: f1:92:8b:85:aa:c8:6b:d9:f8:3e:00:b3:92:bb:c5:59:ce:ef: 3e:2c:9b:09:e0:b3:5a:ce:79:52:5c:36:d3:89:e6:d5:76:e5: 96:1d:e7:0f:83:6b:2d:10:b4:13:04:94:68:12:be:2e:e5:eb: cb:bc:da:bb:e0:87:c3:72:26:1c:58:d6:c3:ea:5d:f7:b6:ec: 9a:d5:e7:4a:7c:01:02:8c:b1:68:e2:70:b5:d4:20:14:ea:85: 0e:9a:c0:da:40:74:73:07:6e:84:c9:66:24:c9:18:a0:13:dc: 86:a7:ff:42:74:a6:93:a5:1f:90:44:58:08:33:89:17:53:1a: 36:12:bf:6d:31:87:e3:d4:f2:a3:b9:f1:1c:61:99:ba:03:f7: cd:d7:50:0f:04:c6:f6:6d:72:b1:c5:65:03:3a:b8:f2:3d:57: e3:91:be:b4:6e:ab:4b:78:20:1e:b3:60:1e:c2:9d:e6:05:9e: dd:0b:67:72:de:a9:aa:10:38:63:84:9f:70:2c:3b:8c:1a:9b: 6c:f5:7a:46:37:7e:70:f2:45:b3:ff:c0:da:2c:69:7e:d7:c5: 33:5f:de:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMUMxMTAvBgNVBAUTKDUxQzI2MTFCNDYxREQ1MTE4MzVBNTE0MUY4QUVFNTAy RDNBMzlBRUIwHhcNMjUwNDE4MTYwMDExWhcNMjUwNDI1MTYwMDExWjAYMRYwFAYD VQQDEw02ODAyNzcwYi1kZGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7Ubdmme31O6Pb0348Ze5n6KsuKdUnuMgUao/f/iag0ya++WvsgMvIH3d6vd 5t43OHaLkUb8XS0K8q9TDE9rQY4NlRYCsP4skVwRWN6A7oTAbu9b/g9ZiAmqJfBw DiU+slEUBE3aD5LVkioRxUBOSL12nt7hYzxJzJngdzXR6cTThkSA9NU+NTt3RCvm jLTfMBPbG5mVRPlw0O2UUWrLB1SkopJzQBPnfCtZLWXxGebZarGzAqSnsvBL9+7r FaoYhbVT8hWB51OBc4AaSr1jpHmhB/fG8Vqz4uf/ReoLNpeZb8jEa6/CZkjxqcde GTOaJ0xHN7IHTtqSqQ/CSDrC1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmytMIf bQGxRz+u6yDYJS9BTB4OMB8GA1UdIwQYMBaAFFHCYRtGHdURg1pRQfiu5QLTo5rr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkExQy82M0IyMTRBMkM4 MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFSR0RXbEZCLUs3bEF0T2pt dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VjSmhHMFlkMVJHRFdsRkItSzdsQXRPam11cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkExQy82M0IyMTRBMkM4MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFS R0RXbEZCLUs3bEF0T2ptdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaFNfLtl8YNES1IrVW/YG1avrhWDFW0ZRsjdQ+kbMPAYJI0HXxkouF qshr2fg+ALOSu8VZzu8+LJsJ4LNaznlSXDbTiebVduWWHecPg2stELQTBJRoEr4u 5evLvNq74IfDciYcWNbD6l33tuya1edKfAECjLFo4nC11CAU6oUOmsDaQHRzB26E yWYkyRigE9yGp/9CdKaTpR+QRFgIM4kXUxo2Er9tMYfj1PKjufEcYZm6A/fN11AP BMb2bXKxxWUDOrjyPVfjkb60bqtLeCAes2Aewp3mBZ7dC2dy3qmqEDhjhJ9wLDuM Gpts9XpGN35w8kWz/8DaLGl+18UzX94C -----END CERTIFICATE-----Generated at Sat Apr 19 06:32:48 2025 by rpki-client