$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: J3t0MeN0It3Tpejp+L42OICaW4MJAkaETOMyLU6LjZw= Subject key identifier: 17:3B:10:49:17:20:15:72:D7:F9:3D:32:11:A9:33:E3:42:48:B9:DC Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 0150 Signing time: Wed 07 May 2025 03:20:46 +0000 Manifest this update: Wed 07 May 2025 03:20:46 +0000 Manifest next update: Wed 14 May 2025 03:20:46 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: DaJn4O8SGAHbCL+vweIKX8Mh7EobHcyEjNqePhgZ9Ek=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: 2h3iteWHWvj7eGZvRPLFqMA2o9nj7836hPNLX4DVTdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 03:20:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: May 7 03:20:46 2025 GMT Not After : May 14 03:20:46 2025 GMT Subject: CN=681ad18e-7c45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:69:80:ef:e6:6f:29:40:d8:af:0b:5f:ef:55: 48:0b:05:1b:35:46:23:06:1a:46:01:0d:6e:9a:dc: 00:22:91:8f:6e:1a:22:90:c5:d3:c9:82:ce:a5:10: c0:b4:2f:a9:5e:71:eb:2c:9b:d8:9c:9c:b0:70:61: 39:3a:80:bd:80:3f:a9:25:4d:6f:bb:c3:0e:99:3f: 8e:3c:61:96:c9:f8:1c:0f:cd:ab:aa:07:b1:fd:d3: 04:38:1b:82:ad:fd:5a:72:f3:17:3f:a3:f5:73:c5: 1b:ec:04:d5:17:3a:91:3b:67:95:d2:ed:8a:90:2b: b2:44:ce:ab:f2:75:be:0a:25:69:b5:e4:28:e8:d2: 5f:cd:03:44:3e:ee:0e:e8:ed:7e:71:76:e2:0d:77: 93:63:63:0b:e5:bd:13:d0:8d:4a:d6:15:21:ed:9f: d8:45:f8:64:c1:bf:a7:89:f6:b0:b9:7b:bf:5e:e9: 23:1c:8f:a2:62:ba:ac:a8:24:09:c9:e9:b5:d6:a2: 57:f7:71:36:8e:22:d2:e7:4c:f1:1d:40:15:e1:51: d5:79:d0:4d:44:b4:16:e3:cd:ff:34:44:01:7e:2c: d8:db:00:6a:6c:70:65:77:e2:19:c8:3a:57:84:15: 89:46:b0:3a:48:49:86:a9:87:c0:80:af:f9:1b:46: e2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3B:10:49:17:20:15:72:D7:F9:3D:32:11:A9:33:E3:42:48:B9:DC X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:63:fe:47:96:5a:49:32:7e:99:55:db:70:53:ba:e1:9e:cc: 9e:8d:ea:0e:fc:84:64:d7:91:8b:63:24:28:76:c1:93:2f:11: bc:3c:a9:84:a7:a0:55:0d:46:b8:95:5a:ed:8f:57:c5:19:c8: 15:20:a5:9a:3e:b8:70:3c:16:38:59:61:c4:63:cc:a3:16:26: f8:aa:b5:a4:51:86:f0:43:e5:66:a0:d8:de:81:a6:33:21:c3: 9b:8b:91:ed:ba:b9:85:e5:07:d2:2e:b8:e1:55:d8:e9:47:a2: 5f:36:06:07:0c:80:9c:73:57:f1:0d:5a:ee:b4:02:1c:f0:95: 40:2a:8b:c3:40:ce:d7:ca:58:a1:8f:91:90:e8:82:02:9b:3f: 81:74:57:3b:0b:d2:4b:65:d0:37:5a:6f:16:b1:b7:c4:83:de: 85:66:26:c8:cd:c1:eb:28:03:9a:29:05:45:aa:47:4c:ea:d6: e2:6c:8d:8b:92:88:46:d1:f4:98:60:a1:09:8e:3a:44:f5:fc: 36:0d:bd:c7:54:ef:fd:9a:cb:80:3f:fe:06:ba:79:5d:8a:91: 6e:8a:f5:91:84:c6:6b:42:a6:eb:f3:68:61:15:61:2f:84:61: 3a:61:c3:b2:45:db:7e:fa:31:91:9a:7b:40:30:87:9a:8d:4d: 10:84:8b:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUwNTA3MDMyMDQ2WhcNMjUwNTE0MDMyMDQ2WjAYMRYwFAYD VQQDEw02ODFhZDE4ZS03YzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmmA7+ZvKUDYrwtf71VICwUbNUYjBhpGAQ1umtwAIpGPbhoikMXTyYLOpRDA tC+pXnHrLJvYnJywcGE5OoC9gD+pJU1vu8MOmT+OPGGWyfgcD82rqgex/dMEOBuC rf1acvMXP6P1c8Ub7ATVFzqRO2eV0u2KkCuyRM6r8nW+CiVpteQo6NJfzQNEPu4O 6O1+cXbiDXeTY2ML5b0T0I1K1hUh7Z/YRfhkwb+nifawuXu/XukjHI+iYrqsqCQJ yem11qJX93E2jiLS50zxHUAV4VHVedBNRLQW483/NEQBfizY2wBqbHBld+IZyDpX hBWJRrA6SEmGqYfAgK/5G0bilQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBc7EEkX IBVy1/k9MhGpM+NCSLncMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1Y/5HllpJMn6ZVdtwU7rhnsyejeoO/IRk15GLYyQodsGTLxG8PKmE p6BVDUa4lVrtj1fFGcgVIKWaPrhwPBY4WWHEY8yjFib4qrWkUYbwQ+VmoNjegaYz IcObi5HturmF5QfSLrjhVdjpR6JfNgYHDICcc1fxDVrutAIc8JVAKovDQM7Xylih j5GQ6IICmz+BdFc7C9JLZdA3Wm8WsbfEg96FZibIzcHrKAOaKQVFqkdM6tbibI2L kohG0fSYYKEJjjpE9fw2Db3HVO/9msuAP/4GunldipFuivWRhMZrQqbr82hhFWEv hGE6YcOyRdt++jGRmntAMIeajU0QhIu3 -----END CERTIFICATE-----Generated at Fri May 9 03:03:14 2025 by rpki-client