$ rpki-client -vvf rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft File: UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft (raw, json) Hash identifier: pXUqjLf7mxi+zL++hjLWk7gQo6RkBX8XEi6+xZdraVE= Subject key identifier: 8C:6D:F0:0F:BB:8B:DF:E3:0E:F6:0A:9E:58:00:3D:6E:D5:54:EB:28 Authority key identifier: 50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 Certificate issuer: /CN=A913318E/serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft Manifest number: D7 Signing time: Tue 13 May 2025 04:50:23 +0000 Manifest this update: Tue 13 May 2025 04:50:23 +0000 Manifest next update: Tue 20 May 2025 04:50:23 +0000 Files and hashes: 1: UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl (hash: CdK3GfivuEauEg0O/1yDdoGx2k65SiGlJriDQ3urkkc=) 2: 6EAE50E8EBFA11EEA937307AC4F9AE02.roa (hash: n4jE/JU888DErTDFi7j6yPAf5IRm3HLfX3pJFCp7TIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913318E, serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Validity Not Before: May 13 04:50:23 2025 GMT Not After : May 20 04:50:23 2025 GMT Subject: CN=6822cf8f-0599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:57:2c:91:e1:76:a3:de:6f:23:3e:dd:49:60: b1:b7:e4:42:24:75:24:76:96:3a:b4:e6:53:dd:6c: f9:a1:65:70:69:ec:36:c6:56:cf:95:cf:ee:8d:ed: 7c:64:e3:1d:b2:02:ed:d2:d0:34:ec:ed:8d:6e:2a: a3:73:d3:81:2a:20:0a:60:47:c6:46:17:54:55:9a: 6e:c0:0f:d3:94:68:fb:1f:ee:a0:af:4f:aa:0e:d3: 1a:c3:0c:c6:b5:53:07:93:0b:8c:70:b2:3e:10:e6: 34:05:9e:c3:1b:de:f6:e5:12:f6:06:3e:b8:f1:73: 9b:cb:2e:48:12:3c:67:44:45:1f:05:89:61:ca:48: 07:42:7d:90:91:65:65:c7:9c:49:32:19:53:5b:80: 2a:66:c4:a4:1c:7e:19:15:12:08:ad:71:25:4c:b2: 68:69:9b:44:8e:e9:5f:69:5e:3e:45:5a:f7:3f:16: c8:46:33:9a:8e:55:32:67:06:a2:99:86:63:5d:04: 12:22:e1:e6:b9:40:c8:7a:81:db:c1:01:31:b3:26: 8b:e7:38:2b:56:eb:7d:62:a2:52:8a:4c:0e:5f:77: 15:1b:d6:88:76:fe:16:43:56:86:b4:ed:b0:b6:a4: f4:b0:47:29:28:09:75:1f:ca:02:7e:25:9a:0d:df: 0e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:6D:F0:0F:BB:8B:DF:E3:0E:F6:0A:9E:58:00:3D:6E:D5:54:EB:28 X509v3 Authority Key Identifier: keyid:50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:b2:f0:ae:74:ec:9f:82:74:18:8e:68:27:3c:e3:c6:70:fe: ab:cb:37:2a:c0:aa:d8:6d:09:bc:99:1f:e3:5c:f3:a2:b6:17: 93:aa:78:17:66:19:b3:cf:d2:63:4c:60:61:69:8c:ab:ed:cf: be:bc:98:fb:f5:96:80:4c:81:4b:10:c1:dc:b4:7e:80:2c:a2: aa:a4:3d:bc:30:86:9b:ba:10:b2:82:f7:a8:c6:e9:30:08:1d: aa:3b:f0:59:14:87:77:1e:42:c4:53:a4:6f:fa:e6:5c:3c:0d: 69:ed:e7:d9:72:29:bd:1b:31:59:fb:86:7c:1b:46:ad:54:28: cd:86:c4:db:80:95:0a:e2:1d:7f:50:cd:6d:91:39:5a:f2:4a: dd:1c:f3:09:99:cd:c2:66:8e:ff:74:65:0e:17:11:c8:3e:62: 5c:c7:a8:07:fc:79:8a:4e:c8:86:2f:83:b9:50:a9:b3:0d:ba: 2e:9d:d0:3f:6b:b6:5c:68:0b:1e:9d:56:98:5e:e6:3c:d7:28: 81:dc:e2:1e:f3:97:f9:50:92:39:75:88:a7:56:28:82:a3:ac: ce:3f:de:dc:19:a8:17:24:ef:27:f1:0a:1e:5c:43:e3:48:e4: 01:e9:59:bd:64:9f:60:e9:7f:83:04:1a:bb:12:6d:0e:96:bd: 5e:47:46:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzMxOEUxMTAvBgNVBAUTKDUwMEY5MjAwRUI4NkRDNUZEMDZEQjc4NkMwQ0VBNDUy RDBDRTcyMzAwHhcNMjUwNTEzMDQ1MDIzWhcNMjUwNTIwMDQ1MDIzWjAYMRYwFAYD VQQDEw02ODIyY2Y4Zi0wNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1cskeF2o95vIz7dSWCxt+RCJHUkdpY6tOZT3Wz5oWVwaew2xlbPlc/uje18 ZOMdsgLt0tA07O2Nbiqjc9OBKiAKYEfGRhdUVZpuwA/TlGj7H+6gr0+qDtMawwzG tVMHkwuMcLI+EOY0BZ7DG9725RL2Bj648XObyy5IEjxnREUfBYlhykgHQn2QkWVl x5xJMhlTW4AqZsSkHH4ZFRIIrXElTLJoaZtEjulfaV4+RVr3PxbIRjOajlUyZwai mYZjXQQSIuHmuUDIeoHbwQExsyaL5zgrVut9YqJSikwOX3cVG9aIdv4WQ1aGtO2w tqT0sEcpKAl1H8oCfiWaDd8OQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxt8A+7 i9/jDvYKnlgAPW7VVOsoMB8GA1UdIwQYMBaAFFAPkgDrhtxf0G23hsDOpFLQznIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzE4RS82QTkwQUY4NEVC RjkxMUVFOURBNzlCNzdDNEY5QUUwMi9VQS1TQU91RzNGX1FiYmVHd002a1V0RE9j akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBLVNBT3VHM0ZfUWJiZUd3TTZrVXRET2NqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzE4RS82QTkwQUY4NEVCRjkxMUVFOURBNzlCNzdDNEY5QUUwMi9VQS1TQU91RzNG X1FiYmVHd002a1V0RE9jakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPsvCudOyfgnQYjmgnPOPGcP6ryzcqwKrYbQm8mR/jXPOitheTqngX Zhmzz9JjTGBhaYyr7c++vJj79ZaATIFLEMHctH6ALKKqpD28MIabuhCygveoxukw CB2qO/BZFId3HkLEU6Rv+uZcPA1p7efZcim9GzFZ+4Z8G0atVCjNhsTbgJUK4h1/ UM1tkTla8krdHPMJmc3CZo7/dGUOFxHIPmJcx6gH/HmKTsiGL4O5UKmzDboundA/ a7ZcaAsenVaYXuY81yiB3OIe85f5UJI5dYinViiCo6zOP97cGagXJO8n8QoeXEPj SOQB6Vm9ZJ9g6X+DBBq7Em0Olr1eR0a1 -----END CERTIFICATE-----Generated at Wed May 14 07:45:25 2025 by rpki-client