$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: ocompUolXSTGsEuN4mk/ZrNk1768Xerp/XYaBzw5kl4= Subject key identifier: 96:E5:8B:17:B8:7F:36:35:7F:2F:AA:13:D2:0B:9D:17:9E:E3:29:60 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 01B5 Signing time: Sat 29 Mar 2025 02:42:01 +0000 Manifest this update: Sat 29 Mar 2025 02:42:01 +0000 Manifest next update: Sat 05 Apr 2025 02:42:01 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: NM8ikIpoa2uK6ijctHdRupZd05rts/xu3JUhtpaoZUY=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: rsMkljZYE/Nxpn7AsH7vTnSee91hZSon99Otp+S0urI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A Validity Not Before: Mar 29 02:42:01 2025 GMT Not After : Apr 5 02:42:01 2025 GMT Subject: CN=67e75df9-0a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a6:cb:d2:2c:4d:39:3c:6c:db:16:aa:d9:73: 0e:74:f5:b1:e5:b5:3a:00:c6:6a:51:90:d3:32:ed: 7f:4a:9b:58:fe:cc:92:46:ab:01:a1:1b:eb:40:c0: 9a:ad:14:46:d2:50:3b:b0:ed:74:e7:c1:c1:d1:f1: 9f:fe:ab:0f:23:e8:29:dd:77:d6:d1:c1:78:ed:85: 7f:cb:bf:f3:3b:94:e9:ef:54:69:10:eb:9a:b1:64: 58:36:6d:c3:76:d1:b6:14:1d:20:d1:e1:7a:e0:80: 87:42:9d:a4:ed:dc:fa:29:ab:9a:21:f7:a8:83:bf: a5:41:c5:44:e2:6b:ea:6d:d7:f1:9d:bd:61:36:93: 60:4b:37:f3:f6:a7:b0:35:1b:21:ff:04:fa:86:f5: 0a:7f:55:e8:5d:0e:87:e0:8b:4b:0d:67:fd:90:ff: a5:b9:03:26:74:d3:27:b5:ac:af:c3:fe:bf:72:34: f3:11:d2:25:67:ae:d9:5e:69:01:19:4f:fb:f8:01: 02:76:b7:3f:12:21:ef:f4:fa:ba:a9:25:78:69:26: 39:3f:2d:a2:19:fa:48:74:3b:93:1c:77:31:27:78: 05:a7:a9:c2:c5:50:90:82:e0:3e:96:1a:bf:e8:0a: f6:b5:18:de:82:d6:50:4f:26:23:93:3b:54:2c:32: f9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E5:8B:17:B8:7F:36:35:7F:2F:AA:13:D2:0B:9D:17:9E:E3:29:60 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:39:d4:b6:a7:dd:67:d8:79:ea:8e:45:10:93:8b:47:a7:b3: 05:c5:63:43:4b:51:a5:89:dd:a8:5f:03:33:74:f9:a2:f9:a0: 03:d7:9a:0e:71:64:86:69:a9:ab:0d:81:3e:62:7e:9d:28:15: 9a:f5:8b:bb:07:0f:0a:3b:0c:0c:7a:13:ad:a3:24:2e:d7:ef: c3:0e:f4:77:fa:63:0c:90:95:4f:81:83:84:13:10:bd:8b:6f: 18:1d:38:1f:32:21:ff:a2:ae:49:df:19:df:f9:55:b0:1a:ef: cf:1d:92:db:b5:c6:d5:f2:90:7d:24:34:2b:e6:26:18:c8:ca: 32:a0:b5:5a:26:48:3e:d6:81:71:12:8f:61:42:ce:fe:72:7a: 2f:7d:b1:c0:76:59:55:b0:51:48:a6:10:88:8a:4c:34:15:1e: 55:85:52:98:e6:ee:15:66:a8:c3:fe:80:70:55:53:88:26:fb: 14:70:26:76:1c:24:47:ba:1f:29:0e:21:d9:0d:93:ba:b1:25: 3c:00:0d:d9:d9:89:70:18:06:3a:7d:eb:b6:d5:e0:64:1b:ed: b8:98:1e:3f:4a:01:8b:77:4d:a3:2d:d5:ad:48:f2:0d:c6:ec: 0a:5f:cf:bd:2f:80:73:22:0a:11:50:35:a4:a9:72:f5:1d:85: 88:19:4c:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUwMzI5MDI0MjAxWhcNMjUwNDA1MDI0MjAxWjAYMRYwFAYD VQQDEw02N2U3NWRmOS0wYTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsabL0ixNOTxs2xaq2XMOdPWx5bU6AMZqUZDTMu1/SptY/sySRqsBoRvrQMCa rRRG0lA7sO1058HB0fGf/qsPI+gp3XfW0cF47YV/y7/zO5Tp71RpEOuasWRYNm3D dtG2FB0g0eF64ICHQp2k7dz6KauaIfeog7+lQcVE4mvqbdfxnb1hNpNgSzfz9qew NRsh/wT6hvUKf1XoXQ6H4ItLDWf9kP+luQMmdNMntayvw/6/cjTzEdIlZ67ZXmkB GU/7+AECdrc/EiHv9Pq6qSV4aSY5Py2iGfpIdDuTHHcxJ3gFp6nCxVCQguA+lhq/ 6Ar2tRjegtZQTyYjkztULDL5+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJblixe4 fzY1fy+qE9ILnRee4ylgMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4OdS2p91n2HnqjkUQk4tHp7MFxWNDS1Glid2oXwMzdPmi+aAD15oO cWSGaamrDYE+Yn6dKBWa9Yu7Bw8KOwwMehOtoyQu1+/DDvR3+mMMkJVPgYOEExC9 i28YHTgfMiH/oq5J3xnf+VWwGu/PHZLbtcbV8pB9JDQr5iYYyMoyoLVaJkg+1oFx Eo9hQs7+cnovfbHAdllVsFFIphCIikw0FR5VhVKY5u4VZqjD/oBwVVOIJvsUcCZ2 HCRHuh8pDiHZDZO6sSU8AA3Z2YlwGAY6feu21eBkG+24mB4/SgGLd02jLdWtSPIN xuwKX8+9L4BzIgoRUDWkqXL1HYWIGUz7 -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:46 2025 by rpki-client