$ rpki-client -vvf rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft File: uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft (raw, json) Hash identifier: xi1epd0HcEoi9cGD7o6EfGFwV5Bdt/b7m4Jh3QBoVD4= Subject key identifier: A5:A9:C3:E8:D9:8B:57:99:2C:2F:51:84:04:5C:25:47:7E:6B:D2:3C Authority key identifier: B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 Certificate issuer: /CN=A91103CF/serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Certificate serial: 0384 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft Manifest number: 037C Signing time: Mon 05 May 2025 00:32:04 +0000 Manifest this update: Mon 05 May 2025 00:32:04 +0000 Manifest next update: Mon 12 May 2025 00:32:04 +0000 Files and hashes: 1: uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl (hash: 81B6SJA7MZfDJHEyBx2y3G4p89vlxbvPYun8GdwGTv4=) 2: 931A51C07F5811EE82ECE456C4F9AE02.roa (hash: 3ujH7nfRItY8BxT80xm2zxGd128K9q6N1aAV7Q13w4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91103CF, serialNumber=B8AD8D916CD9482B6DA55D307CE95C07A95B2F74 Validity Not Before: May 5 00:32:04 2025 GMT Not After : May 12 00:32:04 2025 GMT Subject: CN=68180704-cf5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:58:73:bd:1c:5c:71:a8:cc:3c:2f:32:f3:d3: 47:bc:03:58:d1:b7:03:f6:ce:63:47:e3:16:a8:7f: 19:10:96:de:0e:ab:e2:6e:9f:7d:45:66:28:83:89: 77:97:9a:3e:39:bb:54:7a:16:bd:65:e8:9e:81:73: f5:01:56:2d:e2:c1:0f:88:ea:5b:30:39:de:60:03: 31:83:b1:62:92:f2:4f:06:fa:3b:41:72:aa:2d:78: 22:4b:18:e5:b7:1a:fd:4c:71:85:4d:d3:3b:37:a8: a5:de:5d:01:0e:94:9f:65:9c:3c:09:56:1f:07:04: f1:8c:be:2a:81:d1:53:ce:d9:cc:f0:61:11:b7:f8: 2d:b5:80:03:9f:9e:dc:cf:ce:a3:55:53:f5:04:d2: ae:3d:cc:ca:a3:ec:4d:3a:44:e4:fd:12:b5:1b:8b: df:43:65:00:98:07:03:48:57:67:40:17:7e:0e:be: 0a:0e:f2:04:95:67:41:32:36:6f:8e:0f:8c:34:3d: 38:32:20:9d:af:76:c4:b6:42:b7:9d:91:2d:b4:a2: d9:01:fe:50:cc:02:98:9d:eb:bb:78:d9:f0:06:bd: 45:b6:fc:88:63:d1:62:8a:65:15:b9:7c:48:73:02: 74:7f:b5:d5:62:2a:75:ee:de:91:59:b9:d5:cb:7c: 1d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A9:C3:E8:D9:8B:57:99:2C:2F:51:84:04:5C:25:47:7E:6B:D2:3C X509v3 Authority Key Identifier: keyid:B8:AD:8D:91:6C:D9:48:2B:6D:A5:5D:30:7C:E9:5C:07:A9:5B:2F:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK2NkWzZSCttpV0wfOlcB6lbL3Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91103CF/17D6E4C2A68A11ECA9A63551C4F9AE02/uK2NkWzZSCttpV0wfOlcB6lbL3Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:d1:02:00:cd:59:35:52:18:98:a7:42:4f:97:10:a3:93:b4: af:b2:fa:f8:84:bc:fc:f8:69:de:62:06:e2:d7:3c:83:8d:20: 91:15:89:db:97:85:ae:cf:08:06:ed:bf:08:11:2c:ab:50:4b: d3:d7:33:bd:a0:af:8a:6b:d7:c9:8c:48:5b:66:f0:1c:e5:de: b7:71:67:a1:71:9e:42:17:2f:4b:31:c7:e7:e9:0f:de:c7:14: ea:00:50:d4:c6:f2:54:95:d3:72:29:62:12:c2:99:95:e8:b6: 3c:32:c2:6d:33:83:a4:b4:6a:35:d1:ba:74:5b:12:96:b5:16: bb:d8:f9:99:ce:d4:3b:92:23:0e:07:48:e0:9b:f5:5c:69:d4: b9:b2:81:ab:72:87:24:97:f9:f6:98:c0:a6:06:b8:af:00:40: 33:c8:0c:ff:50:a2:1d:63:d7:6e:46:31:0b:81:5d:b6:79:e3: b6:2f:0a:26:57:97:92:11:84:74:f8:df:ec:a7:38:83:e9:e0: 7b:eb:7f:13:64:f3:fb:03:78:66:64:50:6d:59:20:97:b8:0f: 36:1c:c1:a8:5b:b4:2e:20:dd:d7:fe:cb:65:2a:96:1c:56:4f: f5:17:94:6d:5c:8a:dd:b3:c0:fc:42:39:43:6c:ea:91:bd:9f: 63:5a:b2:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzQ0YxMTAvBgNVBAUTKEI4QUQ4RDkxNkNEOTQ4MkI2REE1NUQzMDdDRTk1QzA3 QTk1QjJGNzQwHhcNMjUwNTA1MDAzMjA0WhcNMjUwNTEyMDAzMjA0WjAYMRYwFAYD VQQDEw02ODE4MDcwNC1jZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlhzvRxccajMPC8y89NHvANY0bcD9s5jR+MWqH8ZEJbeDqvibp99RWYog4l3 l5o+ObtUeha9ZeiegXP1AVYt4sEPiOpbMDneYAMxg7FikvJPBvo7QXKqLXgiSxjl txr9THGFTdM7N6il3l0BDpSfZZw8CVYfBwTxjL4qgdFTztnM8GERt/gttYADn57c z86jVVP1BNKuPczKo+xNOkTk/RK1G4vfQ2UAmAcDSFdnQBd+Dr4KDvIElWdBMjZv jg+MND04MiCdr3bEtkK3nZEttKLZAf5QzAKYneu7eNnwBr1FtvyIY9FiimUVuXxI cwJ0f7XVYip17t6RWbnVy3wdnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWpw+jZ i1eZLC9RhARcJUd+a9I8MB8GA1UdIwQYMBaAFLitjZFs2UgrbaVdMHzpXAepWy90 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDNDRi8xN0Q2RTRDMkE2 OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlNDdHRwVjB3Zk9sY0I2bGJM M1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLMk5rV3paU0N0dHBWMHdmT2xjQjZsYkwzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDNDRi8xN0Q2RTRDMkE2OEExMUVDQTlBNjM1NTFDNEY5QUUwMi91SzJOa1d6WlND dHRwVjB3Zk9sY0I2bGJMM1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL0QIAzVk1UhiYp0JPlxCjk7Svsvr4hLz8+GneYgbi1zyDjSCRFYnb l4WuzwgG7b8IESyrUEvT1zO9oK+Ka9fJjEhbZvAc5d63cWehcZ5CFy9LMcfn6Q/e xxTqAFDUxvJUldNyKWISwpmV6LY8MsJtM4OktGo10bp0WxKWtRa72PmZztQ7kiMO B0jgm/VcadS5soGrcockl/n2mMCmBrivAEAzyAz/UKIdY9duRjELgV22eeO2Lwom V5eSEYR0+N/spziD6eB7638TZPP7A3hmZFBtWSCXuA82HMGoW7QuIN3X/stlKpYc Vk/1F5RtXIrds8D8QjlDbOqRvZ9jWrJE -----END CERTIFICATE-----Generated at Mon May 5 03:31:19 2025 by rpki-client