$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft File: UAxgp_acBL6E_PPGVyPAeXDloSg.mft (raw, json) Hash identifier: XI7APIxjHyZv9PN9e8tOufgBKZnkeRvtA02xn0Er90M= Subject key identifier: 46:EF:3B:7A:C9:45:85:5E:CB:B5:77:4C:A4:0C:B1:0B:A5:A2:97:B5 Authority key identifier: 50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 Certificate issuer: /CN=A91A7978/serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft Manifest number: 33 Signing time: Sun 11 May 2025 06:25:17 +0000 Manifest this update: Sun 11 May 2025 06:25:16 +0000 Manifest next update: Sun 18 May 2025 06:25:16 +0000 Files and hashes: 1: UAxgp_acBL6E_PPGVyPAeXDloSg.crl (hash: XDpxpNif7gi1fuTNLb1ICUUg/I3lDsq+HEdr9/Xrhjg=) 2: 1EF560BEEA6911EF9AE7CD14C4F9AE02.roa (hash: lILeGFy8FkS3op8pqtEQAN5f/QrMhRlzhtxTRP45JV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7978, serialNumber=500C60A7F69C04BE84FCF3C65723C07970E5A128 Validity Not Before: May 11 06:25:16 2025 GMT Not After : May 18 06:25:16 2025 GMT Subject: CN=682042cd-470f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6b:30:40:20:fb:19:2b:fc:19:5b:6f:1a:ab: f1:00:f5:33:a3:c4:28:42:0d:ae:75:5a:61:f9:7d: fa:7e:bb:7e:9d:c4:ad:cb:d4:66:7c:c0:01:ea:67: 89:8a:2c:9a:0e:7c:de:5b:9c:c4:a7:4b:8c:48:58: 9f:fc:b0:ff:13:c3:0d:aa:39:76:2f:be:8a:7d:0e: de:2b:7d:f4:d4:1b:0f:e4:e4:e2:51:a6:87:9b:f7: 8c:1d:a5:aa:81:16:a2:21:14:47:a3:6a:1f:0a:79: 92:cc:f4:85:31:d2:6a:da:e3:e6:49:8c:18:90:5a: f4:d3:7e:06:0d:48:8f:10:b1:61:89:e1:1a:29:de: e1:7a:9c:07:99:0f:2e:e9:a5:04:fe:73:16:2a:21: 55:fc:23:74:90:04:10:4e:b7:73:05:49:83:b2:0d: 80:62:70:fe:a0:62:1d:ba:73:96:13:41:c2:f7:32: be:c4:fc:a4:a8:61:5b:a7:df:d3:8d:bb:22:c3:ca: 53:20:90:04:7d:35:d4:31:dc:51:4a:ab:37:f0:70: 9c:59:f6:ec:c0:92:ea:e8:2a:55:54:71:3b:38:c8: 3a:a7:bd:04:b5:a8:2c:01:76:e0:06:0e:28:15:3c: cb:5c:28:9a:15:74:92:47:a2:cd:50:98:87:0c:0f: 7d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EF:3B:7A:C9:45:85:5E:CB:B5:77:4C:A4:0C:B1:0B:A5:A2:97:B5 X509v3 Authority Key Identifier: keyid:50:0C:60:A7:F6:9C:04:BE:84:FC:F3:C6:57:23:C0:79:70:E5:A1:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAxgp_acBL6E_PPGVyPAeXDloSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7978/562BDB22EA6811EFB4135C60C4F9AE02/UAxgp_acBL6E_PPGVyPAeXDloSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:f6:47:56:71:cb:0a:1b:1d:5c:a6:71:40:ad:ae:00:b1:b6: 24:15:dd:e7:2b:dd:d3:7f:98:57:17:90:56:64:ba:1c:2d:31: f4:74:1e:e8:28:36:83:91:d4:dd:57:4d:1b:a4:26:0a:7b:d3: 3d:dd:46:42:19:d5:b8:15:7b:21:01:ff:a7:e2:e2:8a:ef:0d: f8:39:00:e5:c7:c2:e0:f4:a4:12:91:53:21:b3:3d:3d:91:26: 52:fd:07:58:de:f6:2d:e0:e4:6d:7f:f4:cd:05:7f:bb:64:16: c8:d5:46:8a:d8:04:6b:2b:0d:36:94:b2:12:3b:7a:56:ab:e2: aa:68:25:39:bb:78:06:f9:c8:e3:92:bb:e2:bf:49:26:8e:4e: 93:d5:2e:20:81:29:ac:9c:c1:ef:d9:a8:21:84:4c:f0:04:6b: 6b:e6:a7:d0:cb:8e:b3:c9:67:38:b7:36:3d:a2:4b:56:ae:f5: aa:94:7f:f2:02:c4:41:f2:dd:ef:61:e5:1f:0f:12:38:41:21: 5b:a3:da:bc:b4:7d:3c:e4:c6:68:6a:fb:e0:b7:5e:8e:b3:87: 13:17:6d:2f:99:a6:51:17:a8:7d:e1:11:32:56:e9:07:7d:ae: f0:62:0e:62:e1:77:96:16:4e:c9:b0:d0:18:05:1d:66:8b:d8: 76:38:32:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB Nzk3ODExMC8GA1UEBRMoNTAwQzYwQTdGNjlDMDRCRTg0RkNGM0M2NTcyM0MwNzk3 MEU1QTEyODAeFw0yNTA1MTEwNjI1MTZaFw0yNTA1MTgwNjI1MTZaMBgxFjAUBgNV BAMTDTY4MjA0MmNkLTQ3MGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIazBAIPsZK/wZW28aq/EA9TOjxChCDa51WmH5ffp+u36dxK3L1GZ8wAHqZ4mK LJoOfN5bnMSnS4xIWJ/8sP8Tww2qOXYvvop9Dt4rffTUGw/k5OJRpoeb94wdpaqB FqIhFEejah8KeZLM9IUx0mra4+ZJjBiQWvTTfgYNSI8QsWGJ4Rop3uF6nAeZDy7p pQT+cxYqIVX8I3SQBBBOt3MFSYOyDYBicP6gYh26c5YTQcL3Mr7E/KSoYVun39ON uyLDylMgkAR9NdQx3FFKqzfwcJxZ9uzAkuroKlVUcTs4yDqnvQS1qCwBduAGDigV PMtcKJoVdJJHos1QmIcMD32VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURu87eslF hV7LtXdMpAyxC6Wil7UwHwYDVR0jBBgwFoAUUAxgp/acBL6E/PPGVyPAeXDloSgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3OTc4LzU2MkJEQjIyRUE2 ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2RV9QUEdWeVBBZVhEbG9T Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUF4Z3BfYWNCTDZFX1BQR1Z5UEFlWERsb1NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 OTc4LzU2MkJEQjIyRUE2ODExRUZCNDEzNUM2MEM0RjlBRTAyL1VBeGdwX2FjQkw2 RV9QUEdWeVBBZVhEbG9TZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFL2R1ZxywobHVymcUCtrgCxtiQV3ecr3dN/mFcXkFZkuhwtMfR0Hugo NoOR1N1XTRukJgp70z3dRkIZ1bgVeyEB/6fi4orvDfg5AOXHwuD0pBKRUyGzPT2R JlL9B1je9i3g5G1/9M0Ff7tkFsjVRorYBGsrDTaUshI7elar4qpoJTm7eAb5yOOS u+K/SSaOTpPVLiCBKaycwe/ZqCGETPAEa2vmp9DLjrPJZzi3Nj2iS1au9aqUf/IC xEHy3e9h5R8PEjhBIVuj2ry0fTzkxmhq++C3Xo6zhxMXbS+ZplEXqH3hETJW6Qd9 rvBiDmLhd5YWTsmw0BgFHWaL2HY4Mqw= -----END CERTIFICATE-----Generated at Sun May 11 15:56:45 2025 by rpki-client