$ rpki-client -vvf rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft File: UKsTEAVD9kbAxVN13vhQXRTzZrg.mft (raw, json) Hash identifier: PHHewzy0Z35Sda8HAolsasVsLvbwoa/qwmd6bu8y6qQ= Subject key identifier: 43:73:28:1A:A0:0E:64:9D:53:14:CE:FC:02:63:F7:D1:4D:B4:99:78 Authority key identifier: 50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 Certificate issuer: /CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Certificate serial: 0B2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft Manifest number: 0B28 Signing time: Sat 10 May 2025 18:57:42 +0000 Manifest this update: Sat 10 May 2025 18:57:41 +0000 Manifest next update: Sat 17 May 2025 18:57:41 +0000 Files and hashes: 1: UKsTEAVD9kbAxVN13vhQXRTzZrg.crl (hash: WUsjpL2wplfZ3aw3v6u/RA3KLHIBjatiz8I4UNx5LV0=) 2: 74D2ABEE39F811EAA4343534C4F9AE02.roa (hash: WNF8DvI+W4AUYThET4ebOd4+s48ZJAgIRPErXZ/X2b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2862 (0xb2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911270F, serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Validity Not Before: May 10 18:57:41 2025 GMT Not After : May 17 18:57:41 2025 GMT Subject: CN=681fa1a5-ced3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c9:ac:b5:6f:e9:d7:85:5e:9a:44:19:b9:c7: ee:91:da:88:73:d8:40:91:94:e0:ec:ec:45:c5:ff: 7e:91:dd:8d:1a:7d:a5:38:46:0d:0d:bb:0d:9c:f7: 7a:d0:1b:86:62:c7:f9:ac:cb:8a:5a:47:8e:97:a7: 65:eb:90:0a:52:fc:1f:80:17:a5:57:17:93:da:29: e2:9a:4b:f3:af:79:89:07:ea:82:08:f8:56:11:dd: 45:a5:27:6e:56:49:76:42:30:e7:c0:9e:6a:c5:bb: d3:18:a0:36:f3:4a:22:f7:0f:4b:0e:05:a2:ff:77: 94:f2:5c:f6:2d:19:7c:3e:d6:34:c0:91:8a:14:5e: ac:61:fd:68:af:29:60:47:87:83:17:51:e7:b6:69: d5:25:13:9e:16:e5:dc:49:97:40:93:1d:14:27:02: e4:4b:37:10:9c:ee:d5:47:a1:69:84:3d:a4:d5:30: 8f:e8:a9:f6:b3:93:22:5f:6c:2a:2e:7e:28:05:3e: 5c:15:f8:c4:20:d7:e9:c1:81:02:d5:e2:98:4c:7c: 8e:48:2b:65:3c:8e:0b:63:6a:16:59:96:29:06:e0: de:bf:4b:98:cc:20:a5:b3:c8:f2:3a:c6:5b:a3:56: ed:be:19:24:34:43:d9:d2:60:eb:b5:d8:44:c6:f2: 7b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:73:28:1A:A0:0E:64:9D:53:14:CE:FC:02:63:F7:D1:4D:B4:99:78 X509v3 Authority Key Identifier: keyid:50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:28:03:f8:57:0f:47:86:3c:3c:e1:88:95:c5:82:b3:42:e4: f5:41:1c:bd:b2:91:85:9d:c0:98:33:1f:f9:6f:62:66:67:1e: d7:4a:32:b5:3e:65:34:e8:82:34:1a:e2:19:48:0b:06:5b:15: 46:d0:da:1a:6f:d2:e7:3d:20:55:56:6a:26:d6:37:e8:e0:12: 5a:2d:9a:06:f0:86:ea:77:b9:a5:2c:e4:38:5b:26:13:21:1b: fc:aa:3e:cc:14:f1:e3:16:ba:bf:05:f3:97:ca:aa:e8:c9:0a: 0c:3f:37:90:38:10:5e:c7:07:c3:ec:d8:f8:17:c3:f8:21:96: 26:1f:ec:1d:33:e5:b3:6b:96:f3:04:72:47:00:ad:17:41:4b: 7e:92:a6:bc:93:f5:dc:d2:11:9c:02:ae:0b:dc:ad:ab:45:c6: f0:46:04:ef:e8:e2:43:dd:91:30:3b:ea:4a:fc:86:05:4b:57: a5:d4:8e:31:a9:02:10:bc:a4:dd:2f:da:6d:a2:e0:be:9e:84: 9c:c3:0c:c3:b7:9b:8a:e8:6b:34:3b:1c:a9:6c:d0:b6:89:c0: 13:23:95:e3:73:5e:63:26:b8:61:22:5f:b3:d2:03:59:6c:e1: 81:c3:9a:fd:b3:62:e4:c5:8e:dc:1f:a5:da:17:c7:e1:93:0f: bf:54:0d:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MEYxMTAvBgNVBAUTKDUwQUIxMzEwMDU0M0Y2NDZDMEM1NTM3NURFRjg1MDVE MTRGMzY2QjgwHhcNMjUwNTEwMTg1NzQxWhcNMjUwNTE3MTg1NzQxWjAYMRYwFAYD VQQDEw02ODFmYTFhNS1jZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusmstW/p14VemkQZucfukdqIc9hAkZTg7OxFxf9+kd2NGn2lOEYNDbsNnPd6 0BuGYsf5rMuKWkeOl6dl65AKUvwfgBelVxeT2inimkvzr3mJB+qCCPhWEd1FpSdu Vkl2QjDnwJ5qxbvTGKA280oi9w9LDgWi/3eU8lz2LRl8PtY0wJGKFF6sYf1orylg R4eDF1HntmnVJROeFuXcSZdAkx0UJwLkSzcQnO7VR6FphD2k1TCP6Kn2s5MiX2wq Ln4oBT5cFfjEINfpwYEC1eKYTHyOSCtlPI4LY2oWWZYpBuDev0uYzCCls8jyOsZb o1btvhkkNEPZ0mDrtdhExvJ7sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENzKBqg DmSdUxTO/AJj99FNtJl4MB8GA1UdIwQYMBaAFFCrExAFQ/ZGwMVTdd74UF0U82a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwRi8wNUQ4MkVFMDM5 RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlrYkF4Vk4xM3ZoUVhSVHpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLc1RFQVZEOWtiQXhWTjEzdmhRWFJUelpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjcwRi8wNUQ4MkVFMDM5RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlr YkF4Vk4xM3ZoUVhSVHpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvKAP4Vw9Hhjw84YiVxYKzQuT1QRy9spGFncCYMx/5b2JmZx7XSjK1 PmU06II0GuIZSAsGWxVG0Noab9LnPSBVVmom1jfo4BJaLZoG8Ibqd7mlLOQ4WyYT IRv8qj7MFPHjFrq/BfOXyqroyQoMPzeQOBBexwfD7Nj4F8P4IZYmH+wdM+Wza5bz BHJHAK0XQUt+kqa8k/Xc0hGcAq4L3K2rRcbwRgTv6OJD3ZEwO+pK/IYFS1el1I4x qQIQvKTdL9ptouC+noScwwzDt5uK6Gs0OxypbNC2icATI5Xjc15jJrhhIl+z0gNZ bOGBw5r9s2LkxY7cH6XaF8fhkw+/VA0d -----END CERTIFICATE-----Generated at Mon May 12 19:18:15 2025 by rpki-client