$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft File: UGGUcQC8szKJ4moL3-zixfueCdI.mft (raw, json) Hash identifier: dtWL5dR8dAcDA5t9HRbFc7+uV/TXfkpb4DY7D9XJPGc= Subject key identifier: B9:EA:4A:1E:D4:8A:5A:00:C6:4C:5E:5F:90:DA:71:B0:B9:4F:2A:CA Authority key identifier: 50:61:94:71:00:BC:B3:32:89:E2:6A:0B:DF:EC:E2:C5:FB:9E:09:D2 Certificate issuer: /CN=A912BD8E/serialNumber=5061947100BCB33289E26A0BDFECE2C5FB9E09D2 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft Manifest number: 3F Signing time: Fri 09 May 2025 06:29:38 +0000 Manifest this update: Fri 09 May 2025 06:29:38 +0000 Manifest next update: Fri 16 May 2025 06:29:38 +0000 Files and hashes: 1: UGGUcQC8szKJ4moL3-zixfueCdI.crl (hash: 7ETiG0YmrKEoxdHFt3+HHPTu6XUv/v/GxN37MoU2IzI=) 2: 08C7D93ACE8911EFBEC5D618C4F9AE02.roa (hash: nvtKwWFEZOMd88gDjqvdFcOF+TJpXNSXEguvJEtlOSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.crl rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 06:29:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD8E, serialNumber=5061947100BCB33289E26A0BDFECE2C5FB9E09D2 Validity Not Before: May 9 06:29:38 2025 GMT Not After : May 16 06:29:38 2025 GMT Subject: CN=681da0d2-8869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5e:89:d8:6e:0e:68:9d:f3:d1:75:6d:4f:56: d8:84:a2:c3:c1:2a:ec:07:a4:0b:af:df:b2:00:e9: 5c:07:34:29:a5:97:c3:f2:1b:f3:78:9a:41:12:c7: 37:6f:b3:3c:38:f4:ae:d3:03:0b:57:8e:56:cd:73: f4:7f:d7:c0:96:12:06:83:47:2b:42:d9:63:1a:83: a9:c4:36:1b:d1:4b:b1:cc:d4:fc:7f:89:5a:91:35: 8d:c8:8c:64:a1:a2:d2:a8:03:eb:9a:af:a7:a4:6e: 9f:cb:84:09:7a:1b:2b:fd:d5:84:0c:f1:bb:f8:90: a6:2d:17:1b:23:00:e0:40:92:79:bf:84:98:97:0d: 98:9e:61:00:10:f4:03:1b:f9:cb:c2:07:59:a6:18: 5c:92:8e:f9:a6:41:14:e8:ef:27:d3:fc:45:6a:e5: b6:ce:ea:99:7f:52:7d:66:c9:25:11:bc:86:51:7c: 64:ab:b6:e3:fa:6d:66:bd:c7:db:be:9b:29:f6:91: d4:1d:8f:18:4e:7b:2b:75:8c:2c:dd:7c:97:b0:fb: 5c:d8:8b:e7:18:31:2b:f3:3e:ba:b2:9c:b4:93:17: 8f:8a:61:71:87:a2:eb:16:7a:e8:31:f1:41:b9:c6: 4e:90:f0:f4:37:19:ae:31:cf:d4:66:12:d9:7a:a7: 35:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:EA:4A:1E:D4:8A:5A:00:C6:4C:5E:5F:90:DA:71:B0:B9:4F:2A:CA X509v3 Authority Key Identifier: keyid:50:61:94:71:00:BC:B3:32:89:E2:6A:0B:DF:EC:E2:C5:FB:9E:09:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UGGUcQC8szKJ4moL3-zixfueCdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD8E/3AF57FDACE8811EF87C07117C4F9AE02/UGGUcQC8szKJ4moL3-zixfueCdI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:54:ed:25:97:d3:0b:59:07:a7:51:fd:87:a4:27:6e:7e:1b: a6:25:51:e6:b1:b5:51:a0:19:ba:23:a8:0e:84:a6:95:de:4a: 3c:39:c1:e7:ce:24:c6:79:66:cd:b6:7f:90:0a:ac:7b:7a:f4: cd:44:d8:49:62:b3:45:b8:04:af:ce:d9:b3:31:cd:f7:6d:51: ed:35:33:f8:ff:1d:44:be:1c:f5:fd:d3:26:a1:4c:e9:93:9c: a8:7f:cf:9a:3e:fe:08:86:16:d7:27:1d:66:34:b5:12:f5:e5: 85:40:d5:90:8c:fc:df:f2:1c:e7:ee:de:5f:f8:a3:13:51:60: 59:db:42:92:c3:b2:d9:0c:d8:f6:a5:99:d9:a6:55:a4:0a:10: fb:45:3e:ab:41:c3:1e:7a:19:b4:1d:51:ad:e4:e2:e5:c9:0c: d1:fe:b7:82:f5:6f:56:ed:9f:3f:17:f5:39:8e:cc:d1:e4:1e: ea:ab:7b:4c:83:e6:d6:1d:42:1f:fb:7a:7f:fd:51:15:ef:bb: 5d:78:0e:7f:94:26:58:8e:0a:09:9c:2c:56:28:61:1e:3b:c2: 67:1d:90:15:fc:24:4d:db:01:08:ea:1a:57:9d:57:05:d0:93: 11:9e:57:0c:41:5c:d9:e0:1b:b0:9f:de:51:b5:25:59:d5:a3: 8a:70:9c:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QkQ4RTExMC8GA1UEBRMoNTA2MTk0NzEwMEJDQjMzMjg5RTI2QTBCREZFQ0UyQzVG QjlFMDlEMjAeFw0yNTA1MDkwNjI5MzhaFw0yNTA1MTYwNjI5MzhaMBgxFjAUBgNV BAMTDTY4MWRhMGQyLTg4NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRXonYbg5onfPRdW1PVtiEosPBKuwHpAuv37IA6VwHNCmll8PyG/N4mkESxzdv szw49K7TAwtXjlbNc/R/18CWEgaDRytC2WMag6nENhvRS7HM1Px/iVqRNY3IjGSh otKoA+uar6ekbp/LhAl6Gyv91YQM8bv4kKYtFxsjAOBAknm/hJiXDZieYQAQ9AMb +cvCB1mmGFySjvmmQRTo7yfT/EVq5bbO6pl/Un1mySURvIZRfGSrtuP6bWa9x9u+ myn2kdQdjxhOeyt1jCzdfJew+1zYi+cYMSvzPrqynLSTF4+KYXGHousWeugx8UG5 xk6Q8PQ3Ga4xz9RmEtl6pzU3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuepKHtSK WgDGTF5fkNpxsLlPKsowHwYDVR0jBBgwFoAUUGGUcQC8szKJ4moL3+zixfueCdIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCRDhFLzNBRjU3RkRBQ0U4 ODExRUY4N0MwNzExN0M0RjlBRTAyL1VHR1VjUUM4c3pLSjRtb0wzLXppeGZ1ZUNk SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVUdHVWNRQzhzektKNG1vTDMteml4ZnVlQ2RJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC RDhFLzNBRjU3RkRBQ0U4ODExRUY4N0MwNzExN0M0RjlBRTAyL1VHR1VjUUM4c3pL SjRtb0wzLXppeGZ1ZUNkSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALxU7SWX0wtZB6dR/YekJ25+G6YlUeaxtVGgGbojqA6EppXeSjw5wefO JMZ5Zs22f5AKrHt69M1E2Elis0W4BK/O2bMxzfdtUe01M/j/HUS+HPX90yahTOmT nKh/z5o+/giGFtcnHWY0tRL15YVA1ZCM/N/yHOfu3l/4oxNRYFnbQpLDstkM2Pal mdmmVaQKEPtFPqtBwx56GbQdUa3k4uXJDNH+t4L1b1btnz8X9TmOzNHkHuqre0yD 5tYdQh/7en/9URXvu114Dn+UJliOCgmcLFYoYR47wmcdkBX8JE3bAQjqGledVwXQ kxGeVwxBXNngG7Cf3lG1JVnVo4pwnAw= -----END CERTIFICATE-----Generated at Sun May 11 04:53:52 2025 by rpki-client