$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: xQjCFW6Gt79x4fBQ0K9djWcypUlp7/5HzCbGIDjW2M8= Subject key identifier: D6:A8:C0:34:06:BA:F1:89:BC:D6:A8:E3:EA:26:10:9D:28:57:BF:49 Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0BE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0BD8 Signing time: Wed 12 Mar 2025 18:37:38 +0000 Manifest this update: Wed 12 Mar 2025 18:37:38 +0000 Manifest next update: Wed 19 Mar 2025 18:37:38 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: B1CQyLCcfagvIHSzXsB0e75cD2pL1HO/Tkb3z1qHJZE=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: J+JzfdPnvnmB6Ay3Ml+qeWmcjb1XIfVxnUqGVNUN7Ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 18:37:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3046 (0xbe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3 Validity Not Before: Mar 12 18:37:38 2025 GMT Not After : Mar 19 18:37:38 2025 GMT Subject: CN=67d1d472-67b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:48:7c:51:ef:eb:04:d6:f7:8f:0b:8b:66:35: 9e:97:5b:2a:16:9c:42:f5:9f:66:ed:96:33:02:f1: 93:04:7c:97:b8:47:80:ae:70:64:93:cd:de:0c:16: 28:e2:a3:7d:10:b3:ea:4f:95:7c:3f:fa:b9:09:c9: 9c:66:ab:ce:c8:19:53:3a:dd:70:66:96:67:20:42: 92:74:04:af:1b:ad:36:6c:be:ce:7f:ae:5a:c6:be: 97:56:a5:bd:38:9b:b1:35:83:64:9c:21:2c:67:9a: 81:23:ad:b0:de:85:31:60:91:e3:64:8f:14:1a:40: df:b1:c2:d1:ce:64:bf:f1:97:58:56:a3:c9:b6:3e: 4f:cc:3a:fc:07:29:7e:0d:e1:3f:4a:8d:25:1b:38: ae:76:3b:c3:fe:52:34:5c:df:6a:1f:28:48:0c:1b: c4:6e:e9:fe:4e:34:14:4f:53:d7:81:6d:21:7e:ac: f0:ce:be:d2:98:99:79:d6:d6:a3:c6:70:02:29:50: 04:91:59:17:e3:00:70:e1:29:a7:ad:bb:01:36:63: b0:e3:a3:77:82:24:71:3e:a3:c7:4a:ab:07:5c:66: 29:59:71:7b:88:c1:72:70:2b:30:3e:2b:d8:1e:f8: b9:78:a7:4f:bf:36:3f:fb:83:44:65:06:74:57:c2: 67:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:A8:C0:34:06:BA:F1:89:BC:D6:A8:E3:EA:26:10:9D:28:57:BF:49 X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:a5:bf:fb:79:38:99:f0:44:6c:27:f6:22:74:0c:5c:ed:f0: e2:7a:52:a4:3b:6a:9d:eb:80:3b:d8:24:87:b9:ae:fb:d8:cc: 8d:5c:0c:5a:d3:e9:b2:78:7a:01:4b:e4:f6:0f:8f:50:a7:2d: 2d:26:c2:71:f2:01:72:6d:5d:7f:fb:6e:f6:5e:94:54:95:d7: 19:4a:b0:81:06:12:7d:d3:0a:14:c1:da:83:d3:23:57:7f:a4: b2:8f:f8:d7:22:0e:1f:70:7a:82:8a:72:77:ab:c7:80:29:bf: 91:28:86:96:a2:12:1a:86:7b:93:ad:c0:df:f7:78:61:82:62: 90:33:bf:59:96:cc:be:16:0a:c9:43:64:b7:6e:c0:d2:e3:29: a1:b8:cd:56:09:49:5f:20:e7:98:a7:e4:4d:ac:67:a8:92:e8: f8:78:94:85:85:ff:66:60:cb:84:f9:15:13:82:f1:53:c4:6a: 9b:77:b5:58:28:3b:67:7b:99:13:24:db:0b:08:12:24:cc:6d: 21:0b:2b:37:74:31:78:e0:49:69:51:c9:c5:d2:eb:ec:a4:24: 9a:8a:a1:2e:b1:a7:a7:97:bd:44:e5:d9:cc:6f:25:15:a5:f0: 0d:d8:0a:c2:c7:6f:cf:4a:20:fd:f6:8d:cf:cf:cf:61:1a:75: 0d:74:db:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwMzEyMTgzNzM4WhcNMjUwMzE5MTgzNzM4WjAYMRYwFAYD VQQDEw02N2QxZDQ3Mi02N2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUh8Ue/rBNb3jwuLZjWel1sqFpxC9Z9m7ZYzAvGTBHyXuEeArnBkk83eDBYo 4qN9ELPqT5V8P/q5CcmcZqvOyBlTOt1wZpZnIEKSdASvG602bL7Of65axr6XVqW9 OJuxNYNknCEsZ5qBI62w3oUxYJHjZI8UGkDfscLRzmS/8ZdYVqPJtj5PzDr8Byl+ DeE/So0lGziudjvD/lI0XN9qHyhIDBvEbun+TjQUT1PXgW0hfqzwzr7SmJl51taj xnACKVAEkVkX4wBw4SmnrbsBNmOw46N3giRxPqPHSqsHXGYpWXF7iMFycCswPivY Hvi5eKdPvzY/+4NEZQZ0V8JnkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaowDQG uvGJvNao4+omEJ0oV79JMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCpb/7eTiZ8ERsJ/YidAxc7fDielKkO2qd64A72CSHua772MyNXAxa 0+myeHoBS+T2D49Qpy0tJsJx8gFybV1/+272XpRUldcZSrCBBhJ90woUwdqD0yNX f6Syj/jXIg4fcHqCinJ3q8eAKb+RKIaWohIahnuTrcDf93hhgmKQM79Zlsy+FgrJ Q2S3bsDS4ymhuM1WCUlfIOeYp+RNrGeokuj4eJSFhf9mYMuE+RUTgvFTxGqbd7VY KDtne5kTJNsLCBIkzG0hCys3dDF44ElpUcnF0uvspCSaiqEusaenl71E5dnMbyUV pfAN2ArCx2/PSiD99o3Pz89hGnUNdNvq -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:24 2025 by rpki-client