$ rpki-client -vvf rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft File: tUdigfNZTThknMz_UvWLtJtHXwk.mft (raw, json) Hash identifier: mF/OIg3dHJ9etds1cQlN0qJyzSSM2ex0dyhwefBtKEs= Subject key identifier: F4:F7:21:94:A8:31:08:2C:8D:9F:F1:F1:E3:72:AA:47:F2:2C:4D:39 Authority key identifier: B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 Certificate issuer: /CN=A9169351/serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft Manifest number: 011D Signing time: Sat 31 May 2025 04:30:33 +0000 Manifest this update: Sat 31 May 2025 04:30:32 +0000 Manifest next update: Sat 07 Jun 2025 04:30:32 +0000 Files and hashes: 1: tUdigfNZTThknMz_UvWLtJtHXwk.crl (hash: 46u45nkVh9ZaeiASrJw42SwAYoPSErIUq125IQjDOCI=) 2: 86080D8A940511EE8A83F00DC4F9AE02.roa (hash: 6vLkVoo3xeixncmkuul2aavr7vLSk2WGgm6lp66mNlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169351, serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Validity Not Before: May 31 04:30:32 2025 GMT Not After : Jun 7 04:30:32 2025 GMT Subject: CN=683a85e9-dd4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7e:60:02:58:3f:12:86:18:c6:cc:5a:2d:e2: b7:82:af:2d:03:ca:24:89:97:9a:d9:0b:7d:82:16: a7:be:5e:c0:2f:e5:ee:ad:c0:13:12:83:52:15:de: 9c:06:c9:40:1e:de:aa:f3:78:ea:4b:a8:cc:6d:91: 8e:bb:3b:38:db:0c:b5:64:dd:bc:20:03:03:33:c9: e1:96:12:83:25:5e:f0:e1:e3:2f:b9:35:0c:5e:bc: 48:70:15:0e:bb:ff:8a:2f:e3:82:01:63:81:fe:1b: 02:2a:6a:9b:77:c8:cb:d2:da:c5:e7:7d:f2:ea:5d: 7a:60:b9:07:16:34:4e:29:c5:ac:60:bf:81:ac:e4: d7:36:20:ac:00:29:f0:00:97:34:15:44:b2:66:70: 85:72:68:3d:38:b4:2c:0d:02:cf:d1:6d:69:75:52: 83:f5:7d:9e:dc:f0:93:ed:f9:5a:c3:66:ee:af:6f: 36:7f:e1:7a:2a:de:a8:80:ee:b3:38:f7:23:c8:53: cb:b5:af:55:e6:48:7f:7c:7f:57:08:72:b4:1f:08: c2:9a:a7:34:c7:cd:5e:3d:46:82:c5:56:d1:96:ed: 9a:3a:7f:4b:4a:88:21:e7:5e:3a:18:60:15:ac:e1: db:35:bc:69:96:61:5a:72:8b:2e:13:c9:20:eb:3a: 7c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:F7:21:94:A8:31:08:2C:8D:9F:F1:F1:E3:72:AA:47:F2:2C:4D:39 X509v3 Authority Key Identifier: keyid:B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:27:05:41:a9:00:86:64:59:ea:ac:b8:da:66:4d:1a:2c:6d: 78:d4:e4:1d:7c:35:cf:b4:de:91:4f:18:d1:63:f0:5b:60:08: dc:cc:07:c9:89:5d:dd:fc:1a:ec:ed:82:a7:d8:3d:8c:e3:5d: 12:d4:af:01:2c:07:dd:55:c1:d0:99:86:01:cb:ef:37:9c:1b: 1f:bc:af:38:e0:e9:d4:91:cd:a1:2a:67:d4:94:bd:59:55:d4: e2:22:ba:51:05:74:16:2a:5f:a1:57:51:9d:7c:fe:3e:46:5e: 9f:06:90:e0:92:fa:86:6d:3c:7b:e5:11:5c:24:45:e0:59:59: be:6b:7f:96:3b:91:58:c8:7a:94:8a:93:56:5b:a2:77:c7:c9: 28:54:a7:d5:e6:7f:a8:da:bc:8f:97:09:80:0f:c0:e0:18:55: 54:a2:8d:b0:29:af:97:5e:0b:7e:a5:d8:20:03:16:48:d1:01: e5:b2:11:2c:a0:74:69:20:46:a0:c8:03:0c:8e:87:91:7e:55: 9d:05:38:3d:0e:85:ff:2c:c2:7a:fa:7b:63:b3:dd:8c:d9:c9: a6:33:c8:b5:a5:ab:d4:57:c0:b0:4b:e9:14:d2:8a:ec:6e:c8: 7d:9a:20:09:0d:17:75:7b:40:a6:c1:31:ba:b5:82:b9:23:06: d2:84:0f:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzNTExMTAvBgNVBAUTKEI1NDc2MjgxRjM1OTREMzg2NDlDQ0NGRjUyRjU4QkI0 OUI0NzVGMDkwHhcNMjUwNTMxMDQzMDMyWhcNMjUwNjA3MDQzMDMyWjAYMRYwFAYD VQQDEw02ODNhODVlOS1kZDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H5gAlg/EoYYxsxaLeK3gq8tA8okiZea2Qt9ghanvl7AL+XurcATEoNSFd6c BslAHt6q83jqS6jMbZGOuzs42wy1ZN28IAMDM8nhlhKDJV7w4eMvuTUMXrxIcBUO u/+KL+OCAWOB/hsCKmqbd8jL0trF533y6l16YLkHFjROKcWsYL+BrOTXNiCsACnw AJc0FUSyZnCFcmg9OLQsDQLP0W1pdVKD9X2e3PCT7flaw2bur282f+F6Kt6ogO6z OPcjyFPLta9V5kh/fH9XCHK0HwjCmqc0x81ePUaCxVbRlu2aOn9LSogh5146GGAV rOHbNbxplmFacosuE8kg6zp8FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPT3IZSo MQgsjZ/x8eNyqkfyLE05MB8GA1UdIwQYMBaAFLVHYoHzWU04ZJzM/1L1i7SbR18J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTM1MS8zMUEwRDE4Mjk0 MDUxMUVFQTg2ODc1NDdDNEY5QUUwMi90VWRpZ2ZOWlRUaGtuTXpfVXZXTHRKdEhY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVZGlnZk5aVFRoa25Nel9VdldMdEp0SFh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTM1MS8zMUEwRDE4Mjk0MDUxMUVFQTg2ODc1NDdDNEY5QUUwMi90VWRpZ2ZOWlRU aGtuTXpfVXZXTHRKdEhYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyJwVBqQCGZFnqrLjaZk0aLG141OQdfDXPtN6RTxjRY/BbYAjczAfJ iV3d/Brs7YKn2D2M410S1K8BLAfdVcHQmYYBy+83nBsfvK844OnUkc2hKmfUlL1Z VdTiIrpRBXQWKl+hV1GdfP4+Rl6fBpDgkvqGbTx75RFcJEXgWVm+a3+WO5FYyHqU ipNWW6J3x8koVKfV5n+o2ryPlwmAD8DgGFVUoo2wKa+XXgt+pdggAxZI0QHlshEs oHRpIEagyAMMjoeRflWdBTg9DoX/LMJ6+ntjs92M2cmmM8i1pavUV8CwS+kU0ors bsh9miAJDRd1e0CmwTG6tYK5IwbShA/N -----END CERTIFICATE-----Generated at Sat May 31 16:36:55 2025 by rpki-client