$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: gUv6wvzsedv/0SGaxpRQcJgEfwW9rGnVyUY66nE8a6k= Subject key identifier: F7:41:BB:C4:A8:B3:AE:34:90:08:71:36:91:6C:85:52:6A:4A:5D:83 Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 0381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 037B Signing time: Sun 11 May 2025 00:28:29 +0000 Manifest this update: Sun 11 May 2025 00:28:29 +0000 Manifest next update: Sun 18 May 2025 00:28:29 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: dBdW/U2s1jdBdAd/LG7bDsxDRGDeJ8RU3x80csCfqpc=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:28:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: May 11 00:28:29 2025 GMT Not After : May 18 00:28:29 2025 GMT Subject: CN=681fef2d-9fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:86:9d:21:bb:0a:48:d4:37:05:14:f3:62:0e: f7:6d:f5:7f:31:d7:c4:4c:aa:fc:4c:ac:fc:20:5c: da:6f:7c:02:88:a1:93:ae:d7:f4:91:a2:73:3f:a8: 2e:4d:90:16:14:58:a6:75:25:b4:b8:0e:c2:d0:33: f2:9f:1f:5f:ac:cc:1e:e4:0a:2c:e2:f2:99:d5:9f: 19:f8:b9:2a:6a:45:28:67:e7:84:e1:fb:65:b5:28: 64:7e:fd:8f:54:a5:11:dc:cd:7d:e6:ee:39:b8:38: 8d:b0:dc:07:f6:d4:45:09:65:d8:c8:21:51:2e:fe: 57:9f:57:7d:b8:30:cb:10:69:f6:65:67:f0:17:05: 02:22:16:58:99:05:66:a4:72:fd:67:fa:c6:e3:aa: 9e:5f:81:96:62:1e:a3:ea:5e:dc:33:ee:60:2c:09: f3:8d:c1:60:7a:83:38:ef:cb:61:39:4f:74:a6:f1: 8a:0d:79:91:bc:45:b3:63:95:ff:42:c6:08:d6:48: db:67:f6:2d:3d:fd:b0:c2:cb:55:33:b4:31:55:15: fe:77:43:4d:d7:94:d7:73:7c:95:d8:ba:f2:53:81: 23:70:73:76:ae:b6:41:45:f6:2a:9e:90:3d:41:f3: 33:87:a9:f7:06:17:a5:7e:fe:69:16:77:fb:07:0f: 98:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:41:BB:C4:A8:B3:AE:34:90:08:71:36:91:6C:85:52:6A:4A:5D:83 X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ad:c0:27:d9:a5:36:69:e6:42:dd:a5:c1:a0:8f:5f:9a:0f: 7f:f0:c6:9b:d9:5a:6a:54:4b:e7:ca:c1:ed:69:75:fe:40:65: 2e:e3:8d:92:34:35:c3:f7:03:12:83:29:67:7e:37:20:a2:50: 6c:49:0f:84:1e:e1:22:7d:30:7a:2f:97:a9:dd:62:9c:c5:95: d2:eb:c1:16:41:d9:f9:d1:d7:25:97:80:5a:63:c0:8b:5e:45: 5e:ca:cc:4c:99:2b:80:65:52:b1:d0:56:7d:b9:58:f3:f4:d7: e5:b9:78:f8:1f:8d:30:28:d9:27:f5:5b:f0:fb:0b:ae:32:38: 77:05:f7:6d:f5:91:63:bb:4d:17:b7:72:ac:d9:19:ac:a3:37: b0:21:ba:e2:8d:02:d3:5e:c3:7c:45:a0:4d:a3:8e:2b:4c:d3: b8:40:09:83:07:64:61:83:ed:0b:c1:5a:af:ba:fd:22:66:ff: 9a:87:91:91:5c:d4:a8:6f:7d:d5:12:bd:32:ea:05:f6:44:d2: de:b7:8a:e7:1f:72:fd:ae:51:fa:f0:4f:bb:cd:71:11:f8:fd: 07:95:e8:14:29:f7:97:08:be:a5:79:93:40:a0:fe:d3:87:cf: 22:cf:86:87:2e:4a:54:be:0d:f4:ee:42:ee:36:b5:ba:40:c4: b2:4f:9d:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUwNTExMDAyODI5WhcNMjUwNTE4MDAyODI5WjAYMRYwFAYD VQQDEw02ODFmZWYyZC05ZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YadIbsKSNQ3BRTzYg73bfV/MdfETKr8TKz8IFzab3wCiKGTrtf0kaJzP6gu TZAWFFimdSW0uA7C0DPynx9frMwe5Aos4vKZ1Z8Z+LkqakUoZ+eE4ftltShkfv2P VKUR3M195u45uDiNsNwH9tRFCWXYyCFRLv5Xn1d9uDDLEGn2ZWfwFwUCIhZYmQVm pHL9Z/rG46qeX4GWYh6j6l7cM+5gLAnzjcFgeoM478thOU90pvGKDXmRvEWzY5X/ QsYI1kjbZ/YtPf2wwstVM7QxVRX+d0NN15TXc3yV2LryU4EjcHN2rrZBRfYqnpA9 QfMzh6n3Bhelfv5pFnf7Bw+YEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdBu8So s640kAhxNpFshVJqSl2DMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChrcAn2aU2aeZC3aXBoI9fmg9/8Mab2VpqVEvnysHtaXX+QGUu442S NDXD9wMSgylnfjcgolBsSQ+EHuEifTB6L5ep3WKcxZXS68EWQdn50dcll4BaY8CL XkVeysxMmSuAZVKx0FZ9uVjz9NfluXj4H40wKNkn9Vvw+wuuMjh3Bfdt9ZFju00X t3Ks2RmsozewIbrijQLTXsN8RaBNo44rTNO4QAmDB2Rhg+0LwVqvuv0iZv+ah5GR XNSob33VEr0y6gX2RNLet4rnH3L9rlH68E+7zXER+P0HlegUKfeXCL6leZNAoP7T h88iz4aHLkpUvg307kLuNrW6QMSyT51n -----END CERTIFICATE-----Generated at Mon May 12 19:10:13 2025 by rpki-client