$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: UGXfPe3KtUpYSKLFvqBBllkneluv5jcBnebJqMLuPP8= Subject key identifier: 65:72:59:A4:BF:57:82:E2:D6:10:BF:A7:BB:F7:4C:A7:9E:4C:85:C8 Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 0918 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 08F5 Signing time: Wed 14 May 2025 20:35:08 +0000 Manifest this update: Wed 14 May 2025 20:35:08 +0000 Manifest next update: Wed 21 May 2025 20:35:07 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: SSaCebEkNqaDlMGj2Ov98j70N9Zg64u0E5TuH6res4w=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: oYydxPk4UhXwzQt6ATEzMXRyl5GNnPSrO9reRguBtdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2328 (0x918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: May 14 20:35:08 2025 GMT Not After : May 21 20:35:07 2025 GMT Subject: CN=6824fe7c-bec1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:97:f1:ac:99:6c:ac:d0:71:9d:54:cb:de:fd: a4:eb:84:66:0b:a9:90:fa:45:fa:23:ec:6e:90:e5: 86:72:75:06:a8:55:9e:8b:d5:51:5f:22:58:f8:3c: 7b:e4:e3:54:12:c6:25:28:5e:23:a2:98:f0:68:5e: 85:cb:98:5f:37:16:64:ce:77:20:3e:e7:ee:d7:5a: d2:e0:e7:a8:65:40:41:2d:44:2d:95:ab:98:6a:c1: 97:9a:fc:53:01:43:c9:6c:f9:cf:17:5e:f8:46:cd: 71:c3:6d:d2:26:0b:ed:69:65:7a:40:d6:fc:57:94: 47:2f:39:7c:c5:b1:31:dd:e4:9c:c1:cc:53:2b:8d: 7e:69:03:56:c2:1a:cf:aa:15:33:26:a5:61:14:0c: 5c:bf:23:63:ee:5e:9c:88:cd:8f:f7:c4:f1:e0:41: 39:a9:a1:1f:41:4a:65:c3:cb:20:c2:5f:e1:c9:a8: 0a:f1:a4:08:c6:83:6c:e9:21:86:65:18:b4:1a:2e: 8e:77:81:c0:93:04:c5:a1:91:46:8c:db:c0:11:94: d3:3c:af:83:56:80:65:16:dc:07:c3:fb:2c:22:c5: 7e:d8:3d:25:3a:62:1c:05:6e:b6:2d:c6:f1:89:ae: 6c:81:b4:2c:99:03:ee:33:77:02:0f:99:fb:3c:c8: 6c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:72:59:A4:BF:57:82:E2:D6:10:BF:A7:BB:F7:4C:A7:9E:4C:85:C8 X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:82:74:9b:a5:a3:a7:45:e1:d8:e9:3a:24:51:ca:c8:c6:1d: cd:4c:d2:cd:bb:3e:dc:a8:7f:c2:1c:7b:4a:58:1d:59:5c:08: 2f:e7:d8:d0:33:b0:10:10:67:cd:45:b5:87:31:28:49:5f:7c: d1:f2:e1:e6:d2:b7:05:4e:9f:5f:a8:15:7c:cd:ee:f2:96:95: 5d:8e:b5:0e:3a:9c:ba:c9:0a:28:51:0d:6d:08:47:bd:9e:94: a2:43:1d:bc:af:af:25:f6:49:75:a6:eb:4d:34:26:ab:0c:e6: 3f:29:97:90:f0:1b:4e:61:d7:cb:7a:2f:93:5a:fc:f9:1b:3f: 21:37:0e:33:e1:12:8d:8d:1e:d7:bb:a1:b9:44:31:0f:85:c6: 64:51:5b:b2:c6:0c:11:3e:81:fa:16:56:73:e8:69:52:a1:44: 40:66:f7:fb:34:26:ac:53:fa:db:a0:e0:1a:b9:41:99:db:75: 95:d6:fb:0d:43:bf:96:17:17:34:b7:c1:a6:52:18:f6:e1:ad: 87:35:00:6c:93:06:20:b6:a3:98:5d:bf:da:c7:2a:e0:72:bd: 39:9d:de:0c:d4:f7:d6:2c:a6:57:c0:9f:3a:0f:60:19:d1:08: dc:1a:98:2f:47:b3:18:89:12:58:36:a1:bd:42:c8:4b:8d:1e: ed:34:4a:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwNTE0MjAzNTA4WhcNMjUwNTIxMjAzNTA3WjAYMRYwFAYD VQQDEw02ODI0ZmU3Yy1iZWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpfxrJlsrNBxnVTL3v2k64RmC6mQ+kX6I+xukOWGcnUGqFWei9VRXyJY+Dx7 5ONUEsYlKF4jopjwaF6Fy5hfNxZkzncgPufu11rS4OeoZUBBLUQtlauYasGXmvxT AUPJbPnPF174Rs1xw23SJgvtaWV6QNb8V5RHLzl8xbEx3eScwcxTK41+aQNWwhrP qhUzJqVhFAxcvyNj7l6ciM2P98Tx4EE5qaEfQUplw8sgwl/hyagK8aQIxoNs6SGG ZRi0Gi6Od4HAkwTFoZFGjNvAEZTTPK+DVoBlFtwHw/ssIsV+2D0lOmIcBW62Lcbx ia5sgbQsmQPuM3cCD5n7PMhshwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVyWaS/ V4Li1hC/p7v3TKeeTIXIMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbgnSbpaOnReHY6TokUcrIxh3NTNLNuz7cqH/CHHtKWB1ZXAgv59jQ M7AQEGfNRbWHMShJX3zR8uHm0rcFTp9fqBV8ze7ylpVdjrUOOpy6yQooUQ1tCEe9 npSiQx28r68l9kl1putNNCarDOY/KZeQ8BtOYdfLei+TWvz5Gz8hNw4z4RKNjR7X u6G5RDEPhcZkUVuyxgwRPoH6FlZz6GlSoURAZvf7NCasU/rboOAauUGZ23WV1vsN Q7+WFxc0t8GmUhj24a2HNQBskwYgtqOYXb/axyrgcr05nd4M1PfWLKZXwJ86D2AZ 0QjcGpgvR7MYiRJYNqG9QshLjR7tNEol -----END CERTIFICATE-----Generated at Fri May 16 06:10:48 2025 by rpki-client