$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft File: UyhhbneUVH65zpK0qPBF5LLMwPw.mft (raw, json) Hash identifier: GIIqBZmyVwFV67I4p4HwFk6LJ/BV86ofgRI4PKKUzLQ= Subject key identifier: BA:04:DF:33:3A:04:D7:50:66:BF:50:F1:9F:5E:E7:A7:35:B1:14:D2 Authority key identifier: 53:28:61:6E:77:94:54:7E:B9:CE:92:B4:A8:F0:45:E4:B2:CC:C0:FC Certificate issuer: /CN=A91847A0/serialNumber=5328616E7794547EB9CE92B4A8F045E4B2CCC0FC Certificate serial: 1D06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft Manifest number: 1CFA Signing time: Mon 12 May 2025 16:07:22 +0000 Manifest this update: Mon 12 May 2025 16:07:21 +0000 Manifest next update: Mon 19 May 2025 16:07:21 +0000 Files and hashes: 1: UyhhbneUVH65zpK0qPBF5LLMwPw.crl (hash: gth2hUHGxTqVphwvY9NalrRmyzmYWNywMwRfiRySoug=) 2: 82E0D450BC5011E6B01A8D4CC4F9AE02.roa (hash: 0pFtdAh/nKnP5eoxsGxODsFcMEqhXHUTJ4P3f5IMFhU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.crl rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7430 (0x1d06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A0, serialNumber=5328616E7794547EB9CE92B4A8F045E4B2CCC0FC Validity Not Before: May 12 16:07:21 2025 GMT Not After : May 19 16:07:21 2025 GMT Subject: CN=68221cba-a2ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c7:a6:8a:90:dd:4e:23:a2:46:d7:c9:6a:7d: 22:66:83:c0:72:c2:dd:da:fc:9c:79:98:af:4b:57: 7b:36:dd:f1:7e:c5:04:f8:19:08:28:c9:e5:c6:27: 41:1d:d7:b8:d7:53:9c:04:6a:71:c0:ce:6f:71:05: 73:6f:15:ec:1a:64:e9:88:e3:c0:e8:c8:ae:69:6c: a0:99:09:6d:b6:5c:09:1a:76:57:be:fe:1e:da:51: 8b:97:3a:99:91:97:3e:c2:f1:e7:bc:64:9f:89:42: 5e:41:ab:de:69:34:5c:26:ac:0f:6d:c5:f2:02:de: e5:86:a8:f0:11:59:5a:61:3b:d6:ab:47:5c:50:32: 81:68:70:d4:29:2d:ef:1a:fa:31:0b:8d:92:f9:26: 31:e2:a6:55:e9:0d:c3:e8:d9:de:eb:70:2b:71:5a: d1:d6:c0:81:96:42:14:6d:bb:fe:75:95:80:43:49: 1f:b6:d0:33:98:fa:d2:7d:44:0b:ee:9a:27:f5:be: a4:d6:ab:e7:08:8f:36:4f:d5:5b:b7:0d:64:d9:e4: f5:e0:21:0f:35:6b:4b:7c:06:dd:65:ca:f1:56:d0: 12:8d:e0:c2:85:06:3e:41:64:d9:27:2c:66:26:2f: 04:33:fc:0f:d1:44:e0:6d:c8:1d:e9:23:27:9b:6b: c0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:04:DF:33:3A:04:D7:50:66:BF:50:F1:9F:5E:E7:A7:35:B1:14:D2 X509v3 Authority Key Identifier: keyid:53:28:61:6E:77:94:54:7E:B9:CE:92:B4:A8:F0:45:E4:B2:CC:C0:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyhhbneUVH65zpK0qPBF5LLMwPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A0/0E4AD128BC4F11E6BAF1C24AC4F9AE02/UyhhbneUVH65zpK0qPBF5LLMwPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:bd:bf:17:71:77:a1:8d:42:49:b3:7a:64:51:fb:fb:15:16: c7:62:df:8c:68:c9:12:1b:61:66:e7:8e:8f:da:69:a2:dc:85: e9:2d:04:22:45:b7:d2:d3:b4:30:5c:3f:8e:78:3f:b1:06:3d: 4b:3e:6f:80:b8:82:33:17:f3:cb:39:f9:83:7a:8b:f4:4d:8a: 5e:de:7a:5b:42:90:47:2a:2e:6c:24:9f:02:b5:13:ce:d0:cc: f2:db:b8:a4:e8:8d:7b:f0:31:a8:32:d9:8e:e2:96:c6:4b:e8: 74:cc:1f:5a:6a:92:aa:53:d5:22:00:ac:9c:6e:75:e9:08:c6: ee:f1:cb:08:cd:74:4a:6a:0d:f7:bf:f8:48:98:a6:13:0d:82: 18:46:98:0b:f5:e5:bd:fb:a5:8c:17:74:8d:cd:78:9b:a2:04: b9:d2:b2:1f:3c:56:1d:21:df:b6:22:47:25:23:2f:27:90:2e: ef:58:3a:a4:2c:c6:a7:27:24:7d:29:2d:9b:10:0b:38:60:11: a6:d5:f2:25:6d:8a:e7:76:41:60:e4:94:64:b3:10:14:3d:3d: d9:25:87:35:1a:e1:5f:bc:05:d7:09:c3:38:58:70:1a:53:03: 75:ad:84:ea:c6:65:8b:50:fa:8e:a3:a2:41:19:45:a5:d2:21: 79:78:13:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTAxMTAvBgNVBAUTKDUzMjg2MTZFNzc5NDU0N0VCOUNFOTJCNEE4RjA0NUU0 QjJDQ0MwRkMwHhcNMjUwNTEyMTYwNzIxWhcNMjUwNTE5MTYwNzIxWjAYMRYwFAYD VQQDEw02ODIyMWNiYS1hMmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsemipDdTiOiRtfJan0iZoPAcsLd2vyceZivS1d7Nt3xfsUE+BkIKMnlxidB Hde411OcBGpxwM5vcQVzbxXsGmTpiOPA6MiuaWygmQlttlwJGnZXvv4e2lGLlzqZ kZc+wvHnvGSfiUJeQaveaTRcJqwPbcXyAt7lhqjwEVlaYTvWq0dcUDKBaHDUKS3v GvoxC42S+SYx4qZV6Q3D6Nne63ArcVrR1sCBlkIUbbv+dZWAQ0kfttAzmPrSfUQL 7pon9b6k1qvnCI82T9Vbtw1k2eT14CEPNWtLfAbdZcrxVtASjeDChQY+QWTZJyxm Ji8EM/wP0UTgbcgd6SMnm2vAQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoE3zM6 BNdQZr9Q8Z9e56c1sRTSMB8GA1UdIwQYMBaAFFMoYW53lFR+uc6StKjwReSyzMD8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMC8wRTRBRDEyOEJD NEYxMUU2QkFGMUMyNEFDNEY5QUUwMi9VeWhoYm5lVVZINjV6cEswcVBCRjVMTE13 UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5aGhibmVVVkg2NXpwSzBxUEJGNUxMTXdQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMC8wRTRBRDEyOEJDNEYxMUU2QkFGMUMyNEFDNEY5QUUwMi9VeWhoYm5lVVZI NjV6cEswcVBCRjVMTE13UHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEvb8XcXehjUJJs3pkUfv7FRbHYt+MaMkSG2Fm546P2mmi3IXpLQQi RbfS07QwXD+OeD+xBj1LPm+AuIIzF/PLOfmDeov0TYpe3npbQpBHKi5sJJ8CtRPO 0Mzy27ik6I178DGoMtmO4pbGS+h0zB9aapKqU9UiAKycbnXpCMbu8csIzXRKag33 v/hImKYTDYIYRpgL9eW9+6WMF3SNzXibogS50rIfPFYdId+2IkclIy8nkC7vWDqk LManJyR9KS2bEAs4YBGm1fIlbYrndkFg5JRksxAUPT3ZJYc1GuFfvAXXCcM4WHAa UwN1rYTqxmWLUPqOo6JBGUWl0iF5eBPG -----END CERTIFICATE-----Generated at Wed May 14 04:32:26 2025 by rpki-client