$ rpki-client -vvf rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft File: uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft (raw, json) Hash identifier: bM081brVfO0dgkU3ECABcjg0XklgBvQDv4zhj2INpkM= Subject key identifier: 79:3C:D8:2D:69:72:8B:3E:06:FD:42:93:94:02:76:C1:25:9C:D7:91 Authority key identifier: B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D Certificate issuer: /CN=A911F2DF/serialNumber=B84C23969ED79C0E31C13C1450012E2246D3F94D Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft Manifest number: A0 Signing time: Thu 03 Apr 2025 05:32:31 +0000 Manifest this update: Thu 03 Apr 2025 05:32:31 +0000 Manifest next update: Thu 10 Apr 2025 05:32:31 +0000 Files and hashes: 1: uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl (hash: HCiUClIWLUsGymf2m+zPRiwk2QG/tXl13iM7QKASJ9k=) 2: 92E390AC958E11EF87A4040BC4F9AE02.roa (hash: 4kbX2ujy4qSjKYPzPpvI/a65RFfQExKZtEDSWVQAXns=) 3: 7FAE29E8958E11EF9CC0DD0AC4F9AE02.roa (hash: vhC37YtTGPOO5uzRfZzRxsDTfN9B7VElU3UXIp4RhEc=) 4: 659B37E4958E11EFAFF1870AC4F9AE02.roa (hash: sw3b7tOsmtcORcb4/1la/iuF/wIik6QnkMPpzRiIQ4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F2DF Validity Not Before: Apr 3 05:32:31 2025 GMT Not After : Apr 10 05:32:31 2025 GMT Subject: CN=67ee1d6f-b388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:65:91:76:52:d7:a4:9b:4b:86:af:1a:41:a2: 80:84:6f:f8:15:65:1d:ff:0e:d0:f7:52:bc:5f:fa: 62:cb:1e:cd:10:17:16:42:78:20:b4:40:04:2f:bf: 5d:60:96:e6:0a:8f:c8:43:3e:04:9a:2f:df:0f:d1: c9:bc:59:2c:91:a7:82:6c:24:1d:6a:2f:9e:e7:97: 77:5b:c7:8f:89:eb:f0:75:68:4e:7a:65:0c:28:8b: 82:cc:c7:96:53:07:18:f4:35:8c:51:f1:74:41:8f: 03:69:8f:99:b4:69:f0:bb:c4:57:02:4e:b4:55:f7: 00:a6:9f:76:cb:de:9a:fe:db:ca:fc:54:f8:78:8f: 07:b4:80:fc:36:ea:d5:c6:10:2c:6f:19:3a:af:6f: aa:9a:e5:ed:54:4e:54:0b:0a:70:a2:04:f3:e3:ee: 5e:df:04:1b:2c:24:29:5b:11:ef:43:6c:9c:3e:c3: 2c:17:d4:df:3d:be:80:db:a1:91:17:e7:fa:4e:99: 9d:1d:20:12:22:25:f3:fa:05:41:f1:0f:46:f0:72: 65:54:da:f1:c0:60:43:d5:7a:c2:80:7a:56:d6:cd: 2e:e5:6c:92:67:06:a5:66:c4:f2:a2:90:1c:34:6b: ae:9f:d8:11:15:2c:a4:81:cc:02:35:ea:e4:e9:8e: 78:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:3C:D8:2D:69:72:8B:3E:06:FD:42:93:94:02:76:C1:25:9C:D7:91 X509v3 Authority Key Identifier: keyid:B8:4C:23:96:9E:D7:9C:0E:31:C1:3C:14:50:01:2E:22:46:D3:F9:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uEwjlp7XnA4xwTwUUAEuIkbT-U0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F2DF/00501FD223AE11EF9493F45CC4F9AE02/uEwjlp7XnA4xwTwUUAEuIkbT-U0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e8:19:96:84:18:e7:e1:9f:55:1c:46:31:b0:cf:af:b9:63: 5d:38:c0:bb:cd:d7:18:a6:59:42:a8:84:19:2a:2f:fe:81:8e: 57:6b:2c:34:34:4b:b0:d3:ab:e7:36:ca:4a:e1:ec:5d:46:40: 28:37:f6:2c:00:6a:6f:5b:2b:f6:2f:ad:60:b9:2a:88:58:56: 3b:e7:b9:87:1d:67:7b:97:f4:78:80:56:3c:00:a5:c7:53:84: c0:a7:63:b9:27:42:13:e2:24:c6:87:85:84:5c:e5:5b:37:7a: 06:b0:6d:7b:6c:9c:b9:35:e7:1d:47:a8:75:80:d9:4a:5d:d1: d6:55:01:e2:7b:37:cf:7b:27:a2:5e:25:1f:89:2d:92:9e:5a: f4:84:91:a9:44:3e:fe:89:c9:bc:56:64:29:5d:df:58:a5:a8: 50:c1:5a:a2:b3:9e:cf:06:6a:ad:9d:ad:d4:59:a3:1d:16:30: 3d:1d:08:21:37:08:e8:98:6c:13:3c:3d:97:99:1b:39:db:f6: 32:fd:90:3a:ac:43:e0:e7:c3:c6:2c:b3:84:45:61:25:12:c3: c8:4b:7b:ef:35:36:80:4d:1f:bb:e1:cb:ac:af:19:7d:03:12: e0:d5:cd:35:8d:17:ff:9b:cb:9d:2a:09:6b:b6:33:96:ad:ca: b4:04:24:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYyREYxMTAvBgNVBAUTKEI4NEMyMzk2OUVENzlDMEUzMUMxM0MxNDUwMDEyRTIy NDZEM0Y5NEQwHhcNMjUwNDAzMDUzMjMxWhcNMjUwNDEwMDUzMjMxWjAYMRYwFAYD VQQDEw02N2VlMWQ2Zi1iMzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmWRdlLXpJtLhq8aQaKAhG/4FWUd/w7Q91K8X/piyx7NEBcWQnggtEAEL79d YJbmCo/IQz4Emi/fD9HJvFkskaeCbCQdai+e55d3W8ePievwdWhOemUMKIuCzMeW UwcY9DWMUfF0QY8DaY+ZtGnwu8RXAk60VfcApp92y96a/tvK/FT4eI8HtID8NurV xhAsbxk6r2+qmuXtVE5UCwpwogTz4+5e3wQbLCQpWxHvQ2ycPsMsF9TfPb6A26GR F+f6TpmdHSASIiXz+gVB8Q9G8HJlVNrxwGBD1XrCgHpW1s0u5WySZwalZsTyopAc NGuun9gRFSykgcwCNerk6Y54sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHk82C1p cos+Bv1Ck5QCdsElnNeRMB8GA1UdIwQYMBaAFLhMI5ae15wOMcE8FFABLiJG0/lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjJERi8wMDUwMUZEMjIz QUUxMUVGOTQ5M0Y0NUNDNEY5QUUwMi91RXdqbHA3WG5BNHh3VHdVVUFFdUlrYlQt VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VFd2pscDdYbkE0eHdUd1VVQUV1SWtiVC1VMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjJERi8wMDUwMUZEMjIzQUUxMUVGOTQ5M0Y0NUNDNEY5QUUwMi91RXdqbHA3WG5B NHh3VHdVVUFFdUlrYlQtVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO6BmWhBjn4Z9VHEYxsM+vuWNdOMC7zdcYpllCqIQZKi/+gY5Xayw0 NEuw06vnNspK4exdRkAoN/YsAGpvWyv2L61guSqIWFY757mHHWd7l/R4gFY8AKXH U4TAp2O5J0IT4iTGh4WEXOVbN3oGsG17bJy5NecdR6h1gNlKXdHWVQHiezfPeyei XiUfiS2Snlr0hJGpRD7+icm8VmQpXd9YpahQwVqis57PBmqtna3UWaMdFjA9HQgh NwjomGwTPD2XmRs52/Yy/ZA6rEPg58PGLLOERWElEsPIS3vvNTaATR+74cusrxl9 AxLg1c01jRf/m8udKglrtjOWrcq0BCSG -----END CERTIFICATE-----Generated at Fri Apr 4 23:58:40 2025 by rpki-client