$ rpki-client -vvf rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft File: uRm6CzrV4m_DHTlL4TK7yof8yFI.mft (raw, json) Hash identifier: Hd48g6dt+H3AbnBIiUZb9h8axEU6mosCUljYLjKCj0U= Subject key identifier: CB:30:DF:44:91:9C:8C:87:43:FA:1A:80:C3:FF:66:D2:81:A3:69:19 Authority key identifier: B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 Certificate issuer: /CN=A919E4C6/serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Certificate serial: 0249 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft Manifest number: 0245 Signing time: Sun 11 May 2025 01:24:18 +0000 Manifest this update: Sun 11 May 2025 01:24:17 +0000 Manifest next update: Sun 18 May 2025 01:24:17 +0000 Files and hashes: 1: uRm6CzrV4m_DHTlL4TK7yof8yFI.crl (hash: HjqedinC47yqCQ8MtrzVtg5ykCKEYi3bfi0vcHGg1Fs=) 2: 4C0F405E1E1C11EDA19CF560C4F9AE02.roa (hash: Mjvz0g/6VHNBx1WBrf/RAQ24UJcGDEU3e3YasLXb4ZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 585 (0x249) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E4C6, serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Validity Not Before: May 11 01:24:17 2025 GMT Not After : May 18 01:24:17 2025 GMT Subject: CN=681ffc41-c94f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:49:32:71:99:f1:89:5c:6d:67:52:e9:84: e3:bb:b1:f4:8e:2f:99:d6:24:f3:3b:da:f5:90:58: cd:05:e9:a0:62:5a:a5:09:15:bc:e0:38:6c:5a:e5: 87:0f:7b:32:8a:e6:68:8f:fe:7d:ee:c0:18:83:fe: 51:00:4a:39:f9:ae:37:c3:be:d3:e6:47:f4:0f:5b: 0a:6c:19:21:91:3e:37:a6:be:a7:4c:3c:c1:95:7f: f5:7a:40:cd:d8:fe:96:f0:72:6e:fe:52:35:7a:03: 46:40:f1:10:90:d0:23:9d:40:93:4c:83:12:60:90: f6:97:85:57:dd:05:88:d2:cd:2f:c2:b8:72:c1:8b: 81:1c:11:1f:fe:d7:79:bc:a9:7f:5b:fe:a6:dd:d6: 1a:67:af:02:6b:6a:0e:f3:53:10:a4:ac:66:7f:4c: 2e:f2:6e:30:e6:b8:10:6a:4d:26:a6:94:95:81:c7: bd:eb:4e:16:59:94:d6:85:51:a4:c1:cd:77:ff:93: 5e:0c:f3:f6:04:9e:c0:e5:be:bf:1b:d9:d7:2c:41: 24:5b:2d:37:20:c7:37:b3:b3:6a:52:fe:fc:90:27: ff:dd:ce:e3:bb:e4:5a:5e:e6:39:c0:16:53:38:cd: 4e:c2:3d:b2:81:1a:fb:cd:e7:d0:0c:3f:9e:eb:3e: ba:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:30:DF:44:91:9C:8C:87:43:FA:1A:80:C3:FF:66:D2:81:A3:69:19 X509v3 Authority Key Identifier: keyid:B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:43:13:d4:53:3f:60:29:80:19:99:1d:e5:c2:4d:f0:c8:9e: ef:2f:cb:01:6a:bc:9b:41:b7:f6:47:81:22:58:3e:fa:ab:d1: 81:f9:b5:23:4e:d4:69:10:b6:cd:29:2c:bd:9e:6b:70:32:47: 1b:53:36:25:51:71:46:47:d4:13:01:47:03:b2:59:6e:83:6e: b8:f4:26:9c:42:08:62:c4:f3:ac:9f:ff:ae:2c:d5:aa:0d:e4: 99:c2:b6:41:7f:11:8d:36:e5:d6:66:ae:0d:99:06:a4:44:d3: eb:82:f9:fb:52:5c:50:b4:59:8b:7e:88:fd:8c:9e:5a:6e:de: d6:d3:6f:28:cf:48:6a:23:9d:b1:60:fe:f5:59:2a:00:7e:85: 8a:ea:ca:9e:01:38:a8:a3:a4:2e:e1:37:bd:3d:db:06:af:b0: bb:d4:bc:20:ba:fe:05:61:bc:28:16:e6:d0:b8:88:35:ef:4c: c8:00:fd:74:1d:fd:9a:44:f3:4c:50:f7:b0:ff:80:59:c5:cc: d2:4a:83:86:4b:ac:09:0d:2f:b8:83:62:99:ee:93:66:11:e9: a6:2c:b5:b9:ee:1d:be:3c:e7:73:44:23:70:d4:29:be:84:ad: ec:b8:b6:6a:01:02:7b:1d:cd:15:b0:98:bc:4f:36:77:e4:44: 99:8f:73:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU0QzYxMTAvBgNVBAUTKEI5MTlCQTBCM0FENUUyNkZDMzFEMzk0QkUxMzJCQkNB ODdGQ0M4NTIwHhcNMjUwNTExMDEyNDE3WhcNMjUwNTE4MDEyNDE3WjAYMRYwFAYD VQQDEw02ODFmZmM0MS1jOTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxJJMnGZ8YlcbWdS6YTju7H0ji+Z1iTzO9r1kFjNBemgYlqlCRW84DhsWuWH D3syiuZoj/597sAYg/5RAEo5+a43w77T5kf0D1sKbBkhkT43pr6nTDzBlX/1ekDN 2P6W8HJu/lI1egNGQPEQkNAjnUCTTIMSYJD2l4VX3QWI0s0vwrhywYuBHBEf/td5 vKl/W/6m3dYaZ68Ca2oO81MQpKxmf0wu8m4w5rgQak0mppSVgce9604WWZTWhVGk wc13/5NeDPP2BJ7A5b6/G9nXLEEkWy03IMc3s7NqUv78kCf/3c7ju+RaXuY5wBZT OM1Owj2ygRr7zefQDD+e6z66eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsw30SR nIyHQ/oagMP/ZtKBo2kZMB8GA1UdIwQYMBaAFLkZugs61eJvwx05S+Eyu8qH/MhS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTRDNi9FQUI5NDdBODFF MTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRtX0RIVGxMNFRLN3lvZjh5 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VSbTZDenJWNG1fREhUbEw0VEs3eW9mOHlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTRDNi9FQUI5NDdBODFFMTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRt X0RIVGxMNFRLN3lvZjh5RkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6QxPUUz9gKYAZmR3lwk3wyJ7vL8sBarybQbf2R4EiWD76q9GB+bUj TtRpELbNKSy9nmtwMkcbUzYlUXFGR9QTAUcDsllug2649CacQghixPOsn/+uLNWq DeSZwrZBfxGNNuXWZq4NmQakRNPrgvn7UlxQtFmLfoj9jJ5abt7W028oz0hqI52x YP71WSoAfoWK6sqeATioo6Qu4Te9PdsGr7C71Lwguv4FYbwoFubQuIg170zIAP10 Hf2aRPNMUPew/4BZxczSSoOGS6wJDS+4g2KZ7pNmEemmLLW57h2+POdzRCNw1Cm+ hK3suLZqAQJ7Hc0VsJi8TzZ35ESZj3Ng -----END CERTIFICATE-----Generated at Sun May 11 22:32:36 2025 by rpki-client