$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft File: u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft (raw, json) Hash identifier: TJo5zILUbncYk1+bJlp4J9KXzJuCMCs+Ot/psJI+GmE= Subject key identifier: 4E:F0:DE:B0:05:7F:63:87:B7:EA:D7:F7:3B:05:BA:D0:B1:8F:C4:AF Authority key identifier: BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 Certificate issuer: /CN=A91CEE85/serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft Manifest number: 99 Signing time: Sat 03 May 2025 05:42:54 +0000 Manifest this update: Sat 03 May 2025 05:42:53 +0000 Manifest next update: Sat 10 May 2025 05:42:53 +0000 Files and hashes: 1: u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl (hash: VCYUCcDl2A5BG3udwsZo82fz/OLZ8aPQE7FjmxylHXg=) 2: 4D189DD4728311EFA9CECE43C4F9AE02.roa (hash: Ge+55CQegGWCZISlkeWVyEDQbw8xhE1lFYLjXYnwl5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 05:42:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85, serialNumber=BBE803FB757E0C47D32045452187B74AE27111F0 Validity Not Before: May 3 05:42:53 2025 GMT Not After : May 10 05:42:53 2025 GMT Subject: CN=6815acde-cff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:eb:e5:3d:46:0d:8d:1b:7e:3c:09:7f:f2:38: 36:bc:87:94:c7:50:c2:81:a7:f4:cf:d0:03:90:ee: d0:34:43:9f:eb:b9:e5:0c:29:e9:0c:39:c7:e0:d3: 31:6b:66:87:1b:c3:98:f7:f6:22:f1:4e:14:c9:4a: 5d:60:8f:25:72:a9:8d:1b:48:18:3b:51:d7:91:6d: 6a:47:5e:8f:26:41:11:1a:59:55:a9:a7:19:d2:7d: 56:fc:46:b3:ff:4c:cf:7f:00:50:08:f3:0b:a5:22: 82:ec:41:c4:c5:f9:23:51:6c:6a:55:5e:3b:43:0c: cc:eb:dd:ff:8d:b4:97:79:93:81:ac:8b:d8:ad:ec: d7:d6:7f:10:83:f4:84:f7:bd:63:a1:5e:09:82:82: a8:09:39:4a:00:79:c3:39:3f:d1:e6:28:a8:95:74: 99:b6:6a:49:c5:97:8d:ae:02:8e:11:4a:a8:8a:e8: 0b:33:d0:c4:9f:7f:23:6d:d9:a2:11:a2:36:4d:33: 25:29:2e:2d:44:74:40:7b:cf:10:18:f1:fc:33:37: ee:23:3c:67:da:a1:03:67:3a:48:f7:d7:45:8e:b0: 61:57:38:03:f8:f4:00:c4:3b:de:f2:99:28:dc:69: 1c:97:b5:c8:db:80:27:aa:8a:f1:3f:c7:7d:e6:76: d0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F0:DE:B0:05:7F:63:87:B7:EA:D7:F7:3B:05:BA:D0:B1:8F:C4:AF X509v3 Authority Key Identifier: keyid:BB:E8:03:FB:75:7E:0C:47:D3:20:45:45:21:87:B7:4A:E2:71:11:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-gD-3V-DEfTIEVFIYe3SuJxEfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/05A7CE6845AE11EFB435EB6FC4F9AE02/u-gD-3V-DEfTIEVFIYe3SuJxEfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:db:cb:23:ef:3d:5b:26:67:19:77:37:40:ff:6e:c4:74:3a: 78:84:7d:67:52:67:79:2f:92:da:0a:0d:f5:27:da:81:34:9a: 51:c1:59:b1:fe:00:1a:91:98:fe:0b:fe:ed:7d:ef:92:d7:98: b3:e7:57:40:3d:fb:f1:30:71:df:50:a4:28:f5:7e:8b:a1:60: 1e:fc:f1:5b:de:e3:0f:8d:84:c1:dc:42:9f:8c:85:fa:26:81: c6:57:c7:db:9f:78:7c:da:90:b5:b4:3a:b9:bc:a7:c5:5c:ef: bd:42:4d:28:fd:ca:54:63:3f:bd:38:97:6d:71:af:1e:32:63: 34:70:f6:86:f9:2c:1b:34:ff:57:65:fe:d0:c7:1c:d6:20:6c: 4f:c7:03:4f:9a:88:cc:5b:a0:02:23:dd:0b:de:29:ae:ed:6a: 09:db:bd:e1:e2:f9:fc:7a:ef:d4:16:76:c7:2d:c0:f1:68:29: 8a:c9:3a:18:ae:0d:da:0e:7e:23:05:52:d0:ec:09:e6:19:f9: 6c:1d:69:4f:4e:e6:2d:30:e4:79:0c:8a:34:f9:04:d1:04:7a: ef:3e:41:38:a6:d8:d0:a9:f6:9a:a0:22:b3:5d:21:f3:49:0d: c7:57:8e:67:84:44:21:09:c7:d1:db:f8:48:b1:7a:b5:6b:45: 61:14:75:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VFODUxMTAvBgNVBAUTKEJCRTgwM0ZCNzU3RTBDNDdEMzIwNDU0NTIxODdCNzRB RTI3MTExRjAwHhcNMjUwNTAzMDU0MjUzWhcNMjUwNTEwMDU0MjUzWjAYMRYwFAYD VQQDEw02ODE1YWNkZS1jZmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvevlPUYNjRt+PAl/8jg2vIeUx1DCgaf0z9ADkO7QNEOf67nlDCnpDDnH4NMx a2aHG8OY9/Yi8U4UyUpdYI8lcqmNG0gYO1HXkW1qR16PJkERGllVqacZ0n1W/Eaz /0zPfwBQCPMLpSKC7EHExfkjUWxqVV47QwzM693/jbSXeZOBrIvYrezX1n8Qg/SE 971joV4JgoKoCTlKAHnDOT/R5iiolXSZtmpJxZeNrgKOEUqoiugLM9DEn38jbdmi EaI2TTMlKS4tRHRAe88QGPH8MzfuIzxn2qEDZzpI99dFjrBhVzgD+PQAxDve8pko 3Gkcl7XI24AnqorxP8d95nbQ1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7w3rAF f2OHt+rX9zsFutCxj8SvMB8GA1UdIwQYMBaAFLvoA/t1fgxH0yBFRSGHt0ricRHw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUU4NS8wNUE3Q0U2ODQ1 QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURFZlRJRVZGSVllM1N1SnhF ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtZ0QtM1YtREVmVElFVkZJWWUzU3VKeEVmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU4NS8wNUE3Q0U2ODQ1QUUxMUVGQjQzNUVCNkZDNEY5QUUwMi91LWdELTNWLURF ZlRJRVZGSVllM1N1SnhFZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE28sj7z1bJmcZdzdA/27EdDp4hH1nUmd5L5LaCg31J9qBNJpRwVmx /gAakZj+C/7tfe+S15iz51dAPfvxMHHfUKQo9X6LoWAe/PFb3uMPjYTB3EKfjIX6 JoHGV8fbn3h82pC1tDq5vKfFXO+9Qk0o/cpUYz+9OJdtca8eMmM0cPaG+SwbNP9X Zf7QxxzWIGxPxwNPmojMW6ACI90L3imu7WoJ273h4vn8eu/UFnbHLcDxaCmKyToY rg3aDn4jBVLQ7AnmGflsHWlPTuYtMOR5DIo0+QTRBHrvPkE4ptjQqfaaoCKzXSHz SQ3HV45nhEQhCcfR2/hIsXq1a0VhFHUf -----END CERTIFICATE-----Generated at Mon May 5 03:25:34 2025 by rpki-client