$ rpki-client -vvf rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft File: UjrFjamEDQscqom9_54NzkZ2fEo.mft (raw, json) Hash identifier: KWrsmIG7YK5iLPczY+FGTVQN+VBfxs0evlIzEA9P66M= Subject key identifier: 04:FE:17:44:78:7C:FB:74:B3:0F:D2:2B:D7:C7:FD:6F:6F:B6:9E:3B Authority key identifier: 52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A Certificate issuer: /CN=A9124B27/serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft Manifest number: 4C Signing time: Sun 11 May 2025 06:07:27 +0000 Manifest this update: Sun 11 May 2025 06:07:27 +0000 Manifest next update: Sun 18 May 2025 06:07:27 +0000 Files and hashes: 1: UjrFjamEDQscqom9_54NzkZ2fEo.crl (hash: 0+/fryaO6SsqLRSRrNxlJ2ngDQ7UKmFqbHA03s8GcT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B27, serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Validity Not Before: May 11 06:07:27 2025 GMT Not After : May 18 06:07:27 2025 GMT Subject: CN=68203e9f-64e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:68:ea:e1:9c:c4:56:4e:64:29:40:75:31:72: 62:d1:68:5b:f5:3a:ff:dd:b2:f1:f3:a7:ae:a9:ec: d0:17:25:54:fb:ff:84:04:5e:24:a5:82:5a:49:b1: 68:6a:08:70:2c:aa:2d:a5:9f:fb:f1:1e:4f:86:d1: ee:4f:e9:2c:ef:b4:9a:c7:58:1d:cb:82:d4:45:9f: 9d:b6:cc:fe:52:47:bb:26:a3:4b:49:34:91:4d:22: c0:46:4f:e1:a5:61:28:c2:73:1e:18:c8:6c:51:01: ad:e4:52:85:fb:47:0e:ab:c8:14:36:30:d6:a3:15: 61:42:23:50:17:31:98:33:2e:75:6b:37:37:2c:08: 86:3f:01:48:89:f6:91:24:11:ca:21:3e:ec:d3:0f: 66:4e:0c:f6:9f:5a:9d:ac:2f:01:e4:dd:8e:c5:d6: 11:d5:d4:04:02:67:39:30:78:b4:18:f8:93:1f:e6: 93:30:85:6b:60:d3:c7:20:59:3d:38:31:a1:af:14: 49:27:88:ed:eb:ed:6f:f3:41:dc:1b:95:44:6c:ea: fd:f4:40:11:5e:41:ad:5d:e3:99:77:ff:5c:c6:f8: ff:47:f8:02:64:58:21:93:d1:e8:8b:5d:42:93:0a: 1b:b9:e9:69:5c:ec:d3:bf:eb:a7:2b:29:80:77:95: 05:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:FE:17:44:78:7C:FB:74:B3:0F:D2:2B:D7:C7:FD:6F:6F:B6:9E:3B X509v3 Authority Key Identifier: keyid:52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:51:58:69:d4:14:d0:e8:56:1a:95:59:7a:ba:15:45:61:37: 8e:6d:59:e3:ad:82:0f:30:43:51:7e:a8:db:81:97:9b:23:0e: 48:9e:68:b5:6b:9c:88:6d:ba:47:20:28:72:a8:5e:c1:0a:5c: 45:94:40:e3:5e:02:be:39:91:36:54:11:8e:03:c6:1d:a2:36: 82:9f:29:b4:19:f3:a8:b4:1b:b9:cb:2e:c3:4a:e0:aa:bb:67: c1:86:bd:77:86:cd:b8:ed:36:00:5d:da:a5:d5:07:cb:ee:6c: 74:70:2c:ad:f0:0d:ed:cc:3e:8b:ac:ab:70:82:f9:75:5c:db: 74:61:3f:d1:8a:a4:23:ea:d4:3d:ec:8a:b2:32:8a:5b:74:bc: c5:95:e9:8e:0d:6f:e2:24:e6:2d:35:5a:47:6f:29:a1:5d:bf: 2c:34:ee:0d:14:5f:ff:4f:27:64:e3:d5:96:c5:03:55:f1:7c: 95:ec:f3:3c:df:b9:11:d8:90:3b:ad:98:a5:5b:aa:31:78:fa: c7:30:7e:c2:a5:b9:19:8a:6b:6a:e2:50:4a:63:b2:0c:77:5b: aa:32:90:c4:86:a1:00:e4:08:0b:48:f2:73:e2:72:c3:10:8c: 03:25:03:2b:8f:6b:5b:ab:b6:cd:de:22:39:2d:bf:78:91:2c: c6:ae:8b:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NEIyNzExMC8GA1UEBRMoNTIzQUM1OERBOTg0MEQwQjFDQUE4OUJERkY5RTBEQ0U0 Njc2N0M0QTAeFw0yNTA1MTEwNjA3MjdaFw0yNTA1MTgwNjA3MjdaMBgxFjAUBgNV BAMTDTY4MjAzZTlmLTY0ZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNaOrhnMRWTmQpQHUxcmLRaFv1Ov/dsvHzp66p7NAXJVT7/4QEXiSlglpJsWhq CHAsqi2ln/vxHk+G0e5P6SzvtJrHWB3LgtRFn522zP5SR7smo0tJNJFNIsBGT+Gl YSjCcx4YyGxRAa3kUoX7Rw6ryBQ2MNajFWFCI1AXMZgzLnVrNzcsCIY/AUiJ9pEk EcohPuzTD2ZODPafWp2sLwHk3Y7F1hHV1AQCZzkweLQY+JMf5pMwhWtg08cgWT04 MaGvFEkniO3r7W/zQdwblURs6v30QBFeQa1d45l3/1zG+P9H+AJkWCGT0eiLXUKT Chu56Wlc7NO/66crKYB3lQWFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBP4XRHh8 +3SzD9Ir18f9b2+2njswHwYDVR0jBBgwFoAUUjrFjamEDQscqom9/54NzkZ2fEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0QjI3LzUwMDYxOERDQzZF ODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFzY3FvbTlfNTROemtaMmZF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWpyRmphbUVEUXNjcW9tOV81NE56a1oyZkVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 QjI3LzUwMDYxOERDQzZFODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFz Y3FvbTlfNTROemtaMmZFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEtRWGnUFNDoVhqVWXq6FUVhN45tWeOtgg8wQ1F+qNuBl5sjDkieaLVr nIhtukcgKHKoXsEKXEWUQONeAr45kTZUEY4Dxh2iNoKfKbQZ86i0G7nLLsNK4Kq7 Z8GGvXeGzbjtNgBd2qXVB8vubHRwLK3wDe3MPousq3CC+XVc23RhP9GKpCPq1D3s irIyilt0vMWV6Y4Nb+Ik5i01WkdvKaFdvyw07g0UX/9PJ2Tj1ZbFA1XxfJXs8zzf uRHYkDutmKVbqjF4+scwfsKluRmKa2riUEpjsgx3W6oykMSGoQDkCAtI8nPicsMQ jAMlAyuPa1urts3eIjktv3iRLMauizA= -----END CERTIFICATE-----Generated at Sun May 11 19:33:48 2025 by rpki-client