$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: akxz2eBPbZxVU5I09kL7J8iW4S4cdKS35QOyLhnBJfo= Subject key identifier: B0:C1:7B:CB:57:0B:93:C1:76:55:15:8C:8F:EB:05:FA:08:21:E6:8B Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 0FB9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 0FB2 Signing time: Wed 12 Mar 2025 15:42:55 +0000 Manifest this update: Wed 12 Mar 2025 15:42:54 +0000 Manifest next update: Wed 19 Mar 2025 15:42:54 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: Fiezd/t/P+4lmP0Kff/QUsmZ1LG0vpSbdgL5PtmZkjE=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: OwotHwrsvHfL9c2xwdii3HVlS9hQiSq8fqoBsWtp67U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 15:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4025 (0xfb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119 Validity Not Before: Mar 12 15:42:54 2025 GMT Not After : Mar 19 15:42:54 2025 GMT Subject: CN=67d1ab7f-a75e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ef:21:58:26:48:d9:f1:c7:98:05:00:7d:af: d1:80:e7:d9:82:20:14:e0:bc:52:1e:47:3e:ef:7e: 40:9d:09:78:e7:3b:a3:5a:c6:4b:49:2e:58:a0:c8: 3b:95:88:41:31:0e:f7:96:64:43:49:79:b5:8e:d7: 04:c6:0a:36:e6:ed:eb:ad:1d:41:90:55:16:ba:d8: ac:20:aa:6c:32:10:61:1e:fd:bb:88:0d:8f:7d:8c: dd:f2:c3:b2:98:3f:90:9a:4f:14:74:2e:e5:b7:25: b1:46:9f:91:69:08:25:06:9a:46:62:eb:f5:4f:32: bc:f1:aa:fb:3b:34:0f:02:1d:f0:80:56:02:1e:20: 84:6a:de:81:e3:68:d0:d1:da:f6:fc:75:d2:f7:b6: 1d:90:8f:80:62:d4:d6:ce:ed:49:90:f4:dd:74:f1: 80:8a:a0:01:25:cc:01:c5:a2:f1:ca:92:fc:e7:cd: 16:ba:4f:7f:2d:05:90:13:9c:5c:20:3c:e1:45:dc: 95:65:09:74:7b:df:f3:62:15:b2:f2:7d:1a:3c:b9: fc:cf:f8:49:b5:1f:0c:5e:75:f9:ac:f6:c0:a0:b7: cb:e6:18:37:47:6b:0e:c8:ec:29:95:10:a7:1b:59: 8b:48:ad:a7:92:69:b3:78:4a:d5:d1:f6:9c:ab:ea: 00:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C1:7B:CB:57:0B:93:C1:76:55:15:8C:8F:EB:05:FA:08:21:E6:8B X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:92:b3:5e:54:74:73:cc:ee:09:df:0b:c3:ac:b4:ec:44:a5: 72:27:26:9f:ea:91:46:80:ff:41:a7:33:00:50:1f:a4:b5:be: c5:36:50:3c:f8:31:7e:41:e7:f9:b9:1e:0c:32:9c:9a:8d:1f: 24:62:a0:3f:b8:32:d8:b7:64:79:3a:39:3d:4e:8d:d5:1a:9a: c6:ab:0c:ba:44:5f:f8:4a:a2:a3:5f:2f:9d:2b:9f:0d:63:21: d5:cb:2f:a1:81:5b:4f:90:0e:ab:ee:3f:40:9a:35:e0:c0:e2: 80:bf:24:a3:b2:f6:3b:da:b8:4c:d6:cc:64:56:25:2c:79:40: b4:12:6f:4c:7f:d3:3d:2d:9a:f9:d9:2a:71:ef:7c:a9:71:5a: fd:0f:80:ee:32:77:c1:31:14:37:14:de:4b:e4:2c:fc:3a:b7: 36:ea:8b:a1:1d:7e:9b:54:b7:c6:3d:c8:45:01:19:06:6f:c7: 7d:e3:37:2e:85:35:a5:14:a5:1e:85:75:8c:59:ad:fd:d4:17: 61:5c:f8:5a:f9:12:2b:6e:77:29:12:ec:85:d1:c7:89:2c:82: e9:45:18:9d:66:1e:3c:26:ed:5c:4b:8d:98:7f:1c:83:bb:08: e7:86:3d:f6:2a:a2:d7:57:1f:d1:5d:c0:e1:fe:a0:40:a1:67: c8:b3:2b:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjUwMzEyMTU0MjU0WhcNMjUwMzE5MTU0MjU0WjAYMRYwFAYD VQQDEw02N2QxYWI3Zi1hNzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsu8hWCZI2fHHmAUAfa/RgOfZgiAU4LxSHkc+735AnQl45zujWsZLSS5YoMg7 lYhBMQ73lmRDSXm1jtcExgo25u3rrR1BkFUWutisIKpsMhBhHv27iA2PfYzd8sOy mD+Qmk8UdC7ltyWxRp+RaQglBppGYuv1TzK88ar7OzQPAh3wgFYCHiCEat6B42jQ 0dr2/HXS97YdkI+AYtTWzu1JkPTddPGAiqABJcwBxaLxypL8580Wuk9/LQWQE5xc IDzhRdyVZQl0e9/zYhWy8n0aPLn8z/hJtR8MXnX5rPbAoLfL5hg3R2sOyOwplRCn G1mLSK2nkmmzeErV0facq+oAoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDBe8tX C5PBdlUVjI/rBfoIIeaLMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATkrNeVHRzzO4J3wvDrLTsRKVyJyaf6pFGgP9BpzMAUB+ktb7FNlA8 +DF+Qef5uR4MMpyajR8kYqA/uDLYt2R5Ojk9To3VGprGqwy6RF/4SqKjXy+dK58N YyHVyy+hgVtPkA6r7j9AmjXgwOKAvySjsvY72rhM1sxkViUseUC0Em9Mf9M9LZr5 2Spx73ypcVr9D4DuMnfBMRQ3FN5L5Cz8Orc26ouhHX6bVLfGPchFARkGb8d94zcu hTWlFKUehXWMWa391BdhXPha+RIrbncpEuyF0ceJLILpRRidZh48Ju1cS42YfxyD uwjnhj32KqLXVx/RXcDh/qBAoWfIsyug -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:50 2025 by rpki-client