$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: I7mpYyiN71ZwmS7TrLO+aQZSIfzylMRC46BeNVveI0w= Subject key identifier: 82:B4:E1:49:CD:8C:71:CB:17:03:56:2E:52:A4:F2:01:5C:59:64:FA Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: 0142 Signing time: Thu 13 Mar 2025 02:43:56 +0000 Manifest this update: Thu 13 Mar 2025 02:43:55 +0000 Manifest next update: Thu 20 Mar 2025 02:43:55 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: VMWHQxwL4EU0xpYwq+BlE7IVOjC4CiY4YSM5drtymls=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: qg93oWWTuAPTiOr/0YJ1p+8YAjeXzMdg4Ry+BJ5sjwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 02:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53 Validity Not Before: Mar 13 02:43:55 2025 GMT Not After : Mar 20 02:43:55 2025 GMT Subject: CN=67d2466c-e5d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ca:fa:60:e1:e5:e3:1b:01:35:fb:e9:05:57: a4:c0:3b:d0:e5:f9:e2:00:be:aa:c8:e0:16:53:63: 21:a7:c8:ca:d7:5f:4f:8a:30:2f:f7:a5:13:cf:c2: cc:d2:e2:21:33:5d:4a:8d:5c:4d:7f:6b:3d:b1:cc: 98:86:31:8f:a5:5d:aa:85:40:8d:da:55:6f:2f:b6: 81:79:e2:7b:9f:6c:09:af:9d:9c:d2:48:79:b9:69: 5f:60:43:28:55:67:42:90:93:a1:c3:81:bd:3d:b9: 90:62:d5:9c:9f:83:21:ba:20:cd:73:22:38:0e:b0: f5:e1:2b:64:05:92:fe:7c:1d:95:22:bd:a8:df:e8: 12:f8:6e:b8:75:24:26:3b:1f:d6:ff:d3:da:ff:b5: dc:71:28:e2:d3:47:95:f0:39:0d:8b:1a:dc:c3:44: cc:cf:2b:7d:41:0e:c7:53:ba:6c:59:aa:8e:b2:e6: c4:a4:04:b3:34:49:9b:28:da:8a:ed:12:04:53:82: 6e:b4:fb:4c:48:95:bd:fb:73:af:51:f9:b4:f3:8a: 5c:64:e2:ce:92:fc:78:ee:ed:a7:70:3c:2f:89:19: 09:bf:43:c8:da:d3:3b:aa:43:e2:a5:10:32:3f:61: 56:4a:59:b9:29:11:b3:0c:04:c2:67:0a:dd:6c:e5: 2c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B4:E1:49:CD:8C:71:CB:17:03:56:2E:52:A4:F2:01:5C:59:64:FA X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:0f:3a:2b:1b:a7:6f:16:da:6b:e2:8e:c9:52:5f:a3:69:7b: 66:4c:40:1d:a5:c1:c6:c0:55:00:ca:7c:15:e2:25:e1:d4:d6: 33:1e:67:49:ec:d3:ea:88:ba:f6:05:39:dd:fa:f2:e7:60:83: 5d:1f:d5:af:8c:35:7e:46:75:64:2a:27:37:44:ce:50:09:39: 39:43:e4:1c:3b:a5:dc:8b:85:0d:9f:d3:3c:67:a0:62:2a:7c: cd:63:72:d5:42:f4:aa:d7:06:43:8a:59:43:5d:3d:31:a1:b9: 21:1f:c1:bc:c5:ee:23:ef:06:19:19:38:48:82:c6:92:2b:a0: 3f:35:79:25:9f:ca:7c:48:ea:03:0d:08:ab:ed:a2:cf:cc:5a: 1d:14:cf:e0:78:34:8a:62:24:25:e9:ff:dd:39:2e:fe:6b:7b: 01:28:58:16:5d:58:72:25:ce:02:58:cd:46:f3:dc:f1:7a:c0: 7d:de:1a:27:5a:a8:9e:d4:19:f7:ee:67:fa:86:49:c7:91:26: 2d:22:e4:ee:2d:f0:73:67:a9:31:b9:70:8a:8e:a2:30:d1:1b: c0:44:c2:9e:91:d6:5d:4a:f8:0e:9d:7e:fc:cb:7f:a0:72:6e: af:a0:9e:b1:a9:0a:d4:0a:55:e4:b5:19:77:ab:c8:10:95:2b: 08:3b:57:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjUwMzEzMDI0MzU1WhcNMjUwMzIwMDI0MzU1WjAYMRYwFAYD VQQDEw02N2QyNDY2Yy1lNWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Mr6YOHl4xsBNfvpBVekwDvQ5fniAL6qyOAWU2Mhp8jK119PijAv96UTz8LM 0uIhM11KjVxNf2s9scyYhjGPpV2qhUCN2lVvL7aBeeJ7n2wJr52c0kh5uWlfYEMo VWdCkJOhw4G9PbmQYtWcn4MhuiDNcyI4DrD14StkBZL+fB2VIr2o3+gS+G64dSQm Ox/W/9Pa/7XccSji00eV8DkNixrcw0TMzyt9QQ7HU7psWaqOsubEpASzNEmbKNqK 7RIEU4JutPtMSJW9+3OvUfm084pcZOLOkvx47u2ncDwviRkJv0PI2tM7qkPipRAy P2FWSlm5KRGzDATCZwrdbOUshQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIK04UnN jHHLFwNWLlKk8gFcWWT6MB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjDzorG6dvFtpr4o7JUl+jaXtmTEAdpcHGwFUAynwV4iXh1NYzHmdJ 7NPqiLr2BTnd+vLnYINdH9WvjDV+RnVkKic3RM5QCTk5Q+QcO6Xci4UNn9M8Z6Bi KnzNY3LVQvSq1wZDillDXT0xobkhH8G8xe4j7wYZGThIgsaSK6A/NXkln8p8SOoD DQir7aLPzFodFM/geDSKYiQl6f/dOS7+a3sBKFgWXVhyJc4CWM1G89zxesB93hon Wqie1Bn37mf6hknHkSYtIuTuLfBzZ6kxuXCKjqIw0RvARMKekdZdSvgOnX78y3+g cm6voJ6xqQrUClXktRl3q8gQlSsIO1dv -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:49 2025 by rpki-client