$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.mft File: UHOVHlwVgmk6hwcu5UjGVIWwWiw.mft (raw, json) Hash identifier: zbJ1zd0EDKk3pUSIs7XzxLyevqRb23lkjg8YWCDqTqM= Subject key identifier: B8:60:7D:ED:5A:3A:77:98:E2:1C:9C:46:54:4D:4B:65:05:B8:12:DB Authority key identifier: 50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C Certificate issuer: /CN=A91EEE06/serialNumber=5073951E5C1582693A87072EE548C65485B05A2C Certificate serial: 045B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.mft Manifest number: 0432 Signing time: Sat 29 Mar 2025 00:39:02 +0000 Manifest this update: Sat 29 Mar 2025 00:39:01 +0000 Manifest next update: Sat 05 Apr 2025 00:39:01 +0000 Files and hashes: 1: UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl (hash: wZADyDHM6G04FVtcdi9bnsm/yqmGdm4+kqAaOn24oqQ=) 2: DEBDCECAC2CF11EFA805380FC4F9AE02.roa (hash: eaNFZvdgLDMBAG06T+DPbwJUZEPPcKT9xtvEgKy6kbA=) 3: 0294E1EADB0D11EE88489759C4F9AE02.roa (hash: hDxnlutqT9/pJfzJ08YZAIv8bDDIJuJIHzivB3I12dU=) 4: 01CF36F2DB0D11EE88489759C4F9AE02.roa (hash: waCwgO5G1eWxvmW8D4proRstxdhAb+1liP0DXd6paFo=) 5: 0104D0BADB0D11EE88489759C4F9AE02.roa (hash: LPhjXW7HkqepU7G8SEAF/BpJh0/ofgBAEpXIt/PkqcQ=) 6: 71A1BB74759711EFA89BA96BC4F9AE02.roa (hash: 6cUJTPCAVeXzehLIW6gFSNQlXybCjLDilQnNjh4uWfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1115 (0x45b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEE06 Validity Not Before: Mar 29 00:39:01 2025 GMT Not After : Apr 5 00:39:01 2025 GMT Subject: CN=67e74125-ba05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:95:fe:be:66:66:bc:c9:02:a4:b1:b0:68:f6: 79:70:c5:6c:17:3c:6e:e1:b4:04:06:6c:a5:42:41: e8:21:4e:05:48:e3:b8:08:c0:dc:11:21:75:0d:11: c8:9b:b7:dd:d7:87:7c:12:56:81:a6:e5:30:ae:1b: a0:72:e9:1d:a0:ff:aa:5d:16:d1:eb:b2:5c:52:13: 96:10:58:9b:8e:87:f5:76:46:2c:b0:98:aa:08:d2: d4:8a:d7:f6:40:fd:ab:e0:37:06:e1:6f:07:ca:b9: 13:5c:17:67:1a:0a:9d:c9:97:a3:35:0b:52:87:4d: 81:5c:77:b9:e0:6e:9f:e3:1f:80:55:ff:64:7a:89: 31:3f:bf:84:cd:61:cc:bf:58:9e:24:e8:ba:05:30: 6b:ee:aa:65:cf:a5:50:3a:67:6e:ee:6a:7e:d0:cc: a8:69:e6:30:d6:96:bb:5c:ac:bd:65:8f:aa:11:4f: e8:f2:fe:85:04:c8:6e:17:37:34:89:7f:72:5b:46: c2:7e:42:43:1c:d8:bd:f5:34:32:e9:d4:9b:84:2f: 1d:ab:77:02:1e:e3:01:c1:3d:75:1a:05:56:d7:43: fd:e1:19:a2:75:73:33:8f:b4:16:51:fc:26:b8:51: 8f:51:0e:d6:69:c5:5d:9b:47:7e:65:69:78:e1:14: db:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:60:7D:ED:5A:3A:77:98:E2:1C:9C:46:54:4D:4B:65:05:B8:12:DB X509v3 Authority Key Identifier: keyid:50:73:95:1E:5C:15:82:69:3A:87:07:2E:E5:48:C6:54:85:B0:5A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHOVHlwVgmk6hwcu5UjGVIWwWiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEE06/0559EEAE5CBE11ECB273DC7CC4F9AE02/UHOVHlwVgmk6hwcu5UjGVIWwWiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e5:07:0a:e5:1b:e5:f3:dc:4c:49:e0:46:a4:2a:70:85:fc: 09:af:a1:af:fd:c0:ac:a4:02:b6:a2:c4:26:a2:ae:0d:f5:1d: 96:90:67:d8:6a:cf:7b:20:ae:d8:06:7d:82:ca:ef:4c:b5:f5: cb:96:e6:3f:62:a9:d6:f8:3b:ef:32:67:a1:93:93:32:66:d2: 3a:a8:6e:a0:a1:13:4b:f6:18:de:cf:f7:4e:41:32:82:b0:25: 19:2e:53:cd:2b:2b:d5:eb:b0:c1:81:f0:f7:c1:27:9b:ff:f5: b1:dd:ea:c6:be:3b:73:84:1f:86:ac:5b:b5:1a:94:40:d9:f1: aa:24:de:f0:64:e6:ea:53:72:ef:59:1a:91:16:61:77:c2:a7: 88:6e:9a:e7:87:44:00:a1:96:59:b6:fa:e5:13:67:81:52:ae: ae:fd:d1:37:97:46:86:f1:74:cb:d0:53:1a:56:32:2d:37:96: ab:6b:c7:28:a5:c6:91:02:86:32:bc:89:58:01:bc:1b:df:a5: 1f:c4:2f:a6:f6:a2:78:da:5a:3f:fa:1b:4e:75:3c:62:15:d6: 25:b3:42:56:f6:31:2c:53:6c:f0:ff:22:07:87:be:4f:d5:d2: 77:e7:cd:66:6d:e5:e0:2a:19:8e:6a:16:b4:12:10:45:30:5f: 9e:9d:22:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFMDYxMTAvBgNVBAUTKDUwNzM5NTFFNUMxNTgyNjkzQTg3MDcyRUU1NDhDNjU0 ODVCMDVBMkMwHhcNMjUwMzI5MDAzOTAxWhcNMjUwNDA1MDAzOTAxWjAYMRYwFAYD VQQDEw02N2U3NDEyNS1iYTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpX+vmZmvMkCpLGwaPZ5cMVsFzxu4bQEBmylQkHoIU4FSOO4CMDcESF1DRHI m7fd14d8ElaBpuUwrhugcukdoP+qXRbR67JcUhOWEFibjof1dkYssJiqCNLUitf2 QP2r4DcG4W8HyrkTXBdnGgqdyZejNQtSh02BXHe54G6f4x+AVf9keokxP7+EzWHM v1ieJOi6BTBr7qplz6VQOmdu7mp+0MyoaeYw1pa7XKy9ZY+qEU/o8v6FBMhuFzc0 iX9yW0bCfkJDHNi99TQy6dSbhC8dq3cCHuMBwT11GgVW10P94RmidXMzj7QWUfwm uFGPUQ7WacVdm0d+ZWl44RTb2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhgfe1a OneY4hycRlRNS2UFuBLbMB8GA1UdIwQYMBaAFFBzlR5cFYJpOocHLuVIxlSFsFos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUUwNi8wNTU5RUVBRTVD QkUxMUVDQjI3M0RDN0NDNEY5QUUwMi9VSE9WSGx3VmdtazZod2N1NVVqR1ZJV3dX aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VIT1ZIbHdWZ21rNmh3Y3U1VWpHVklXd1dpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUUwNi8wNTU5RUVBRTVDQkUxMUVDQjI3M0RDN0NDNEY5QUUwMi9VSE9WSGx3Vmdt azZod2N1NVVqR1ZJV3dXaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj5QcK5Rvl89xMSeBGpCpwhfwJr6Gv/cCspAK2osQmoq4N9R2WkGfY as97IK7YBn2Cyu9MtfXLluY/YqnW+DvvMmehk5MyZtI6qG6goRNL9hjez/dOQTKC sCUZLlPNKyvV67DBgfD3wSeb//Wx3erGvjtzhB+GrFu1GpRA2fGqJN7wZObqU3Lv WRqRFmF3wqeIbprnh0QAoZZZtvrlE2eBUq6u/dE3l0aG8XTL0FMaVjItN5ara8co pcaRAoYyvIlYAbwb36UfxC+m9qJ42lo/+htOdTxiFdYls0JW9jEsU2zw/yIHh75P 1dJ3581mbeXgKhmOaha0EhBFMF+enSLU -----END CERTIFICATE-----Generated at Fri Apr 4 21:58:10 2025 by rpki-client