$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft File: rUMyA4JywtsyFd2jrfsBU1QVaRM.mft (raw, json) Hash identifier: pimaF6pbGOJEjt4wlTqzfWnTXn/xAzaFErlDRMcksM4= Subject key identifier: 69:95:44:BF:9A:01:84:74:6B:A9:29:D5:58:D0:E0:49:52:D4:01:5D Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 Certificate issuer: /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft Manifest number: 7E Signing time: Thu 13 Mar 2025 04:45:12 +0000 Manifest this update: Thu 13 Mar 2025 04:45:11 +0000 Manifest next update: Thu 20 Mar 2025 04:45:11 +0000 Files and hashes: 1: rUMyA4JywtsyFd2jrfsBU1QVaRM.crl (hash: Nuz4GmUi3TfL+CSTrWh5FMLyNlEjSKhLbY84S00zhew=) 2: F74324B0464511EFA4CCFA6DC4F9AE02.roa (hash: fPKFaBZi29sZTZtbLlYUsELWzYxUxH7zVg+U9ijvWSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064 Validity Not Before: Mar 13 04:45:11 2025 GMT Not After : Mar 20 04:45:11 2025 GMT Subject: CN=67d262d8-821d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ac:90:fe:32:7f:9a:8d:45:a2:f3:89:e8:cc: 76:32:a5:3e:20:79:25:a6:ce:f6:a6:92:3b:a6:e0: 01:9e:e3:26:3b:8d:ea:78:f1:33:df:e8:50:0c:10: 64:04:4a:84:69:5f:9b:6d:a3:89:f9:60:ae:b7:4e: ca:af:c9:62:86:32:a5:50:90:33:07:82:46:e3:cc: e2:c2:6e:65:e2:04:7e:a0:a2:5b:1f:08:c6:69:b6: d4:27:17:10:cf:2f:dc:57:b3:7d:bc:78:8f:d0:b8: c2:8e:c1:71:65:a6:f5:7d:e7:79:62:51:a0:57:84: e4:ca:41:92:4d:0f:d3:b6:26:df:98:25:9b:39:27: fb:b7:5c:80:48:f2:92:df:dd:ec:c9:51:5d:dd:97: 96:d0:23:b3:b9:84:40:73:4e:3b:59:74:a2:9b:83: 28:1c:87:7a:f5:0b:f2:68:c6:80:1d:58:9e:f9:5d: f2:53:8b:29:c1:03:a6:60:91:26:70:90:0f:03:26: 9e:89:88:9b:bf:9e:60:5c:2c:8e:2a:a4:be:1c:95: 7f:f2:1f:e1:23:bd:76:74:e8:ab:15:03:b5:ac:57: 20:30:a3:c7:4e:75:e6:b5:b8:4c:cc:25:7b:a3:ab: 84:0a:6a:15:12:2e:be:d5:ca:d2:16:b6:79:dd:a1: 17:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:95:44:BF:9A:01:84:74:6B:A9:29:D5:58:D0:E0:49:52:D4:01:5D X509v3 Authority Key Identifier: keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:56:d5:3a:55:8e:ac:36:ba:70:7a:1f:ef:44:46:c2:65:6e: 13:40:db:54:49:7e:81:53:6a:bc:b6:e6:18:37:4c:ce:c5:33: 5f:d8:8a:f4:37:90:86:44:34:81:00:fd:d1:9b:4d:b4:e4:b5: ce:32:d0:96:ef:b4:da:08:36:63:d1:c0:56:40:07:e7:85:23: f2:44:69:fa:49:04:3b:9b:4c:cc:77:90:89:51:5e:b5:8f:7f: ba:a9:6e:a3:ad:db:80:e3:92:c2:3b:de:45:42:be:b0:71:c4: d3:4b:a2:9e:ea:3b:12:f4:d3:4f:a3:3e:05:33:ad:f9:f6:8c: 79:10:56:3d:11:07:9d:aa:e6:be:0d:76:16:1c:67:f1:d5:3a: 1d:a5:89:2a:a6:bf:ab:e1:c8:a9:d3:da:60:54:4d:82:97:12: 99:b2:8e:23:a7:b0:a5:5d:19:c0:74:b1:f1:5a:11:41:de:c2: 20:7a:03:c1:e3:1f:76:16:1d:03:4a:cd:86:8b:cf:52:5f:d1: b6:8b:6f:1d:62:bf:2b:dc:45:3d:18:92:74:05:db:0a:cc:04: 18:3e:b6:3d:21:5a:5e:41:45:88:2f:2c:b7:72:32:10:d3:da: 45:2a:46:9d:0e:01:59:5e:82:11:11:6f:70:25:73:2b:4a:63: 07:ff:ef:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEFENDMzMjAzODI3MkMyREIzMjE1RERBM0FERkIwMTUz NTQxNTY5MTMwHhcNMjUwMzEzMDQ0NTExWhcNMjUwMzIwMDQ0NTExWjAYMRYwFAYD VQQDEw02N2QyNjJkOC04MjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ayQ/jJ/mo1FovOJ6Mx2MqU+IHklps72ppI7puABnuMmO43qePEz3+hQDBBk BEqEaV+bbaOJ+WCut07Kr8lihjKlUJAzB4JG48ziwm5l4gR+oKJbHwjGabbUJxcQ zy/cV7N9vHiP0LjCjsFxZab1fed5YlGgV4TkykGSTQ/TtibfmCWbOSf7t1yASPKS 393syVFd3ZeW0COzuYRAc047WXSim4MoHId69QvyaMaAHVie+V3yU4spwQOmYJEm cJAPAyaeiYibv55gXCyOKqS+HJV/8h/hI712dOirFQO1rFcgMKPHTnXmtbhMzCV7 o6uECmoVEi6+1crSFrZ53aEXWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmVRL+a AYR0a6kp1VjQ4ElS1AFdMB8GA1UdIwQYMBaAFK1DMgOCcsLbMhXdo637AVNUFWkT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GM0NBNjE3MjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0c3lGZDJqcmZzQlUxUVZh Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjA2NC9GM0NBNjE3MjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0 c3lGZDJqcmZzQlUxUVZhUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyVtU6VY6sNrpweh/vREbCZW4TQNtUSX6BU2q8tuYYN0zOxTNf2Ir0 N5CGRDSBAP3Rm0205LXOMtCW77TaCDZj0cBWQAfnhSPyRGn6SQQ7m0zMd5CJUV61 j3+6qW6jrduA45LCO95FQr6wccTTS6Ke6jsS9NNPoz4FM6359ox5EFY9EQedqua+ DXYWHGfx1TodpYkqpr+r4cip09pgVE2ClxKZso4jp7ClXRnAdLHxWhFB3sIgegPB 4x92Fh0DSs2Gi89SX9G2i28dYr8r3EU9GJJ0BdsKzAQYPrY9IVpeQUWILyy3cjIQ 09pFKkadDgFZXoIREW9wJXMrSmMH/+/i -----END CERTIFICATE-----Generated at Thu Mar 13 21:30:57 2025 by rpki-client