$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: qdfGrIAsgAkeFGVhTVTDgV+RIqo1IUpQ99F49Shu36U= Subject key identifier: 80:42:BA:6D:16:7A:38:AB:48:44:03:59:50:7B:B3:5D:60:16:E2:F4 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 01D4 Signing time: Sat 31 May 2025 02:33:29 +0000 Manifest this update: Sat 31 May 2025 02:33:29 +0000 Manifest next update: Sat 07 Jun 2025 02:33:29 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: 9At1fHcZNjfhV39RaELZkAY5AVTII7jVt8fJf9jSNi4=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: rsMkljZYE/Nxpn7AsH7vTnSee91hZSon99Otp+S0urI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: May 31 02:33:29 2025 GMT Not After : Jun 7 02:33:29 2025 GMT Subject: CN=683a6a79-9693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a7:72:d8:a1:7b:e7:24:5f:29:fa:b5:32:b6: a6:e7:11:98:e9:33:f5:d5:07:04:31:a9:51:f9:0a: f1:5a:23:09:2a:4f:71:e0:e8:b5:4b:b5:1b:fe:d8: 0c:d1:00:c9:56:84:5e:72:c9:f9:3a:5e:d5:de:2c: ed:81:60:7a:bb:a2:27:cc:4d:c6:65:b6:00:04:48: 97:82:e5:4c:f0:fb:3a:27:d9:6a:7e:9f:a5:d1:03: 85:ed:38:63:bb:7d:f2:90:79:af:44:bf:aa:84:e2: 1e:c3:06:b1:06:b3:ba:7b:ce:97:a2:c9:84:da:e5: 29:6a:a7:a5:ac:1b:b0:ca:a9:09:2a:04:52:58:9f: d1:8f:93:00:fb:08:3f:f6:4e:20:41:c8:76:20:02: f5:58:95:20:ea:cf:53:44:2c:43:e8:88:7f:b2:b5: c7:0f:c4:35:f8:1f:a1:90:64:52:85:e2:c4:45:c3: e5:1a:0d:9c:f2:b1:f3:d3:da:5f:2f:ce:1a:4b:28: 3b:bb:10:0c:de:4b:4b:db:87:94:e8:b1:54:47:87: 3b:0d:bb:00:18:22:86:71:4c:f8:f6:3c:2b:17:8b: b2:68:b9:c4:59:76:ec:8b:87:57:98:63:4e:6b:11: 63:4b:a6:cb:1a:45:4f:f0:67:2c:de:f9:cb:65:32: aa:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:42:BA:6D:16:7A:38:AB:48:44:03:59:50:7B:B3:5D:60:16:E2:F4 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ac:51:97:c8:b2:c7:e4:63:96:90:21:1a:4e:90:9a:e9:ee: 2c:43:ed:48:fd:17:0a:e2:e1:ab:0a:4b:07:ad:cc:74:b5:95: f3:e0:1b:da:98:5b:3d:02:42:4c:9f:06:f0:32:d2:02:9a:e2: 58:cb:ac:ae:7e:2d:76:be:31:a0:a0:54:bc:09:ba:eb:69:18: cd:3b:6b:44:d7:e7:d0:2a:7c:e0:d2:4c:41:3c:5e:d9:cd:ef: 93:f7:03:08:2e:12:32:35:8f:d6:c6:8d:87:20:75:22:fd:94: f2:3e:bf:fe:cb:71:37:38:e1:5d:38:f9:30:e0:84:8d:20:e8: 1a:87:e8:2b:49:34:44:e9:e2:c0:fc:6c:c9:ac:1f:0c:b3:53: ed:5d:09:e7:c7:41:d8:25:97:eb:00:ae:00:7b:78:81:af:97: 01:f7:f0:59:a3:ed:a1:c4:d8:1c:32:cc:89:2f:d8:c0:3b:55: f4:c7:87:70:5e:2f:47:a1:9f:0c:96:e6:74:ac:53:f2:48:3e: dd:47:ad:02:68:35:3e:a4:04:27:25:51:d8:f7:1d:be:8a:f4: ab:20:35:f8:06:2b:9f:ea:e3:3b:1c:27:13:ef:a8:03:66:30: f2:21:1b:ff:78:d3:ad:0a:d2:0b:d8:b1:ad:f8:8b:ef:9d:b3: 9b:97:10:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUwNTMxMDIzMzI5WhcNMjUwNjA3MDIzMzI5WjAYMRYwFAYD VQQDEw02ODNhNmE3OS05NjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqdy2KF75yRfKfq1Mram5xGY6TP11QcEMalR+QrxWiMJKk9x4Oi1S7Ub/tgM 0QDJVoRecsn5Ol7V3iztgWB6u6InzE3GZbYABEiXguVM8Ps6J9lqfp+l0QOF7Thj u33ykHmvRL+qhOIewwaxBrO6e86XosmE2uUpaqelrBuwyqkJKgRSWJ/Rj5MA+wg/ 9k4gQch2IAL1WJUg6s9TRCxD6Ih/srXHD8Q1+B+hkGRSheLERcPlGg2c8rHz09pf L84aSyg7uxAM3ktL24eU6LFUR4c7DbsAGCKGcUz49jwrF4uyaLnEWXbsi4dXmGNO axFjS6bLGkVP8Gcs3vnLZTKq6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIBCum0W ejirSEQDWVB7s11gFuL0MB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCrFGXyLLH5GOWkCEaTpCa6e4sQ+1I/RcK4uGrCksHrcx0tZXz4Bva mFs9AkJMnwbwMtICmuJYy6yufi12vjGgoFS8CbrraRjNO2tE1+fQKnzg0kxBPF7Z ze+T9wMILhIyNY/Wxo2HIHUi/ZTyPr/+y3E3OOFdOPkw4ISNIOgah+grSTRE6eLA /GzJrB8Ms1PtXQnnx0HYJZfrAK4Ae3iBr5cB9/BZo+2hxNgcMsyJL9jAO1X0x4dw Xi9HoZ8MluZ0rFPySD7dR60CaDU+pAQnJVHY9x2+ivSrIDX4Biuf6uM7HCcT76gD ZjDyIRv/eNOtCtIL2LGt+IvvnbOblxBs -----END CERTIFICATE-----Generated at Sat May 31 17:48:41 2025 by rpki-client