$ rpki-client -vvf rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft File: uK3V-E0RutdH--lY1GutO6kTGQM.mft (raw, json) Hash identifier: 9rZiKdzSJVFPkZYhFDCnakh67nE+ietd1Bs2wGWaMoI= Subject key identifier: 16:5D:25:08:C3:C4:D4:2A:94:FC:80:60:7B:98:56:9A:9D:4B:87:58 Authority key identifier: B8:AD:D5:F8:4D:11:BA:D7:47:FB:E9:58:D4:6B:AD:3B:A9:13:19:03 Certificate issuer: /CN=A91F86D2/serialNumber=B8ADD5F84D11BAD747FBE958D46BAD3BA9131903 Certificate serial: 037A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft Manifest number: 036F Signing time: Mon 21 Apr 2025 00:35:22 +0000 Manifest this update: Mon 21 Apr 2025 00:35:21 +0000 Manifest next update: Mon 28 Apr 2025 00:35:21 +0000 Files and hashes: 1: uK3V-E0RutdH--lY1GutO6kTGQM.crl (hash: Zk/PwHMP50G5B4Im3Mx5iid1X9eczesZbpKY634ZN9M=) 2: 1A377B907A7811EF9D5ED47CC4F9AE02.roa (hash: 2FKrneZIYdwek2LQDep+qpyFwMcW7v1PTDAdjyafS0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.crl rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 890 (0x37a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F86D2, serialNumber=B8ADD5F84D11BAD747FBE958D46BAD3BA9131903 Validity Not Before: Apr 21 00:35:21 2025 GMT Not After : Apr 28 00:35:21 2025 GMT Subject: CN=680592c9-a00f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:62:80:8f:f2:1d:00:bd:2c:ec:a5:3a:ec:7f: 0b:ed:ff:f9:31:bc:04:21:5a:de:cc:e6:eb:e6:c9: 82:db:87:83:9b:87:d7:b2:ca:2d:08:39:21:2a:80: dd:b4:95:10:da:a0:df:35:f4:d7:fb:76:18:d6:99: 57:2e:08:be:a5:f6:eb:2f:71:94:21:5d:0b:79:0e: 76:1c:e1:d8:cd:ba:a8:18:e2:40:d9:d8:96:a4:5c: 2b:a9:8a:28:07:d6:3d:dd:71:9b:4c:bc:b8:2c:71: 8d:22:c9:02:a9:13:1b:af:e5:a6:4b:0f:45:25:a2: 77:e2:5b:af:59:cd:4f:99:f4:bd:b0:e6:3a:39:92: d7:a1:05:49:37:1d:d1:a4:90:62:eb:eb:84:f4:93: 5a:e3:74:2c:42:34:56:19:eb:59:a2:0e:86:b5:65: 93:5b:a5:7b:57:47:86:c8:a3:a7:0c:7d:1d:c4:ba: 0a:b8:4f:b9:9e:ee:4f:d3:fd:27:fc:72:58:bf:a8: d0:c7:e9:8a:15:b5:e3:6a:f6:c8:b4:47:91:4c:6a: ea:27:98:b5:e5:22:fb:d6:6c:c1:37:de:68:df:2f: 37:d3:15:01:a2:f5:f2:f1:d0:c7:1e:5d:06:84:74: bf:88:8a:e8:2b:23:49:23:13:c7:86:e1:a7:1b:3a: 83:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5D:25:08:C3:C4:D4:2A:94:FC:80:60:7B:98:56:9A:9D:4B:87:58 X509v3 Authority Key Identifier: keyid:B8:AD:D5:F8:4D:11:BA:D7:47:FB:E9:58:D4:6B:AD:3B:A9:13:19:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1c:6d:ba:bf:32:46:b0:23:6f:19:1b:b6:5e:e6:36:96:2d: 6c:b9:df:f5:36:8b:cc:25:98:e9:e9:6c:ec:4c:93:b2:ce:b5: 11:6e:e7:4e:b3:68:db:65:86:ac:b1:12:3e:df:07:48:be:bc: 90:df:65:31:02:68:b8:60:55:61:af:c5:ff:33:92:c5:cc:90: 0d:6b:f9:fa:94:0a:cf:ef:00:c3:44:03:14:c3:3d:7f:bc:85: e8:0d:02:d9:0f:b6:12:d2:52:5b:67:2a:2f:95:9c:a3:be:14: e3:71:ac:a9:bc:04:e4:f8:df:f3:df:c0:7c:98:0e:e3:ee:9c: 32:fd:38:a4:18:76:9b:9c:c2:f2:3a:76:b0:fd:29:62:b8:a5: 25:ae:e9:a8:48:fe:4f:a0:0f:de:95:1d:bc:67:fb:31:4b:83: 1b:81:3d:48:1f:95:5c:de:e1:f9:9e:b9:9e:a0:75:4b:5a:15: cb:d5:bb:13:4a:b5:ef:bf:5d:11:7f:4e:ff:fc:90:2d:8e:61: df:59:5c:b4:1c:b1:90:9f:78:b2:34:8b:47:d4:40:79:68:eb: 2b:cd:67:c1:31:54:67:85:24:0d:1f:11:ac:27:4e:ab:01:72: a8:bb:0b:f9:21:b8:b4:b7:f8:19:2c:14:5e:73:c8:48:b8:c3: 08:6f:ac:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg2RDIxMTAvBgNVBAUTKEI4QURENUY4NEQxMUJBRDc0N0ZCRTk1OEQ0NkJBRDNC QTkxMzE5MDMwHhcNMjUwNDIxMDAzNTIxWhcNMjUwNDI4MDAzNTIxWjAYMRYwFAYD VQQDEw02ODA1OTJjOS1hMDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGKAj/IdAL0s7KU67H8L7f/5MbwEIVrezObr5smC24eDm4fXssotCDkhKoDd tJUQ2qDfNfTX+3YY1plXLgi+pfbrL3GUIV0LeQ52HOHYzbqoGOJA2diWpFwrqYoo B9Y93XGbTLy4LHGNIskCqRMbr+WmSw9FJaJ34luvWc1PmfS9sOY6OZLXoQVJNx3R pJBi6+uE9JNa43QsQjRWGetZog6GtWWTW6V7V0eGyKOnDH0dxLoKuE+5nu5P0/0n /HJYv6jQx+mKFbXjavbItEeRTGrqJ5i15SL71mzBN95o3y830xUBovXy8dDHHl0G hHS/iIroKyNJIxPHhuGnGzqD8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZdJQjD xNQqlPyAYHuYVpqdS4dYMB8GA1UdIwQYMBaAFLit1fhNEbrXR/vpWNRrrTupExkD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODZEMi8zOUREQ0NEQ0E5 NzUxMUVDQkE1QkRDMzNDNEY5QUUwMi91SzNWLUUwUnV0ZEgtLWxZMUd1dE82a1RH UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLM1YtRTBSdXRkSC0tbFkxR3V0TzZrVEdRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODZEMi8zOUREQ0NEQ0E5NzUxMUVDQkE1QkRDMzNDNEY5QUUwMi91SzNWLUUwUnV0 ZEgtLWxZMUd1dE82a1RHUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArHG26vzJGsCNvGRu2XuY2li1sud/1NovMJZjp6WzsTJOyzrURbudO s2jbZYassRI+3wdIvryQ32UxAmi4YFVhr8X/M5LFzJANa/n6lArP7wDDRAMUwz1/ vIXoDQLZD7YS0lJbZyovlZyjvhTjcaypvATk+N/z38B8mA7j7pwy/TikGHabnMLy Onaw/SliuKUlrumoSP5PoA/elR28Z/sxS4MbgT1IH5Vc3uH5nrmeoHVLWhXL1bsT SrXvv10Rf07//JAtjmHfWVy0HLGQn3iyNItH1EB5aOsrzWfBMVRnhSQNHxGsJ06r AXKouwv5Ibi0t/gZLBRec8hIuMMIb6xk -----END CERTIFICATE-----Generated at Tue Apr 22 12:27:23 2025 by rpki-client