$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: uIiVwRwYBA7Zsauokkip9nw7nQnsWhlGg/VgJy54N98= Subject key identifier: 46:2A:56:31:AD:09:68:6C:C2:27:65:E8:03:65:F3:A2:25:94:5D:82 Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01B2 Signing time: Thu 15 May 2025 02:45:22 +0000 Manifest this update: Thu 15 May 2025 02:45:22 +0000 Manifest next update: Thu 22 May 2025 02:45:22 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: dGmUChkr5rt1Gx8/7IzMi4lDXtRLjaw13H6xn9zS/fQ=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: May 15 02:45:22 2025 GMT Not After : May 22 02:45:22 2025 GMT Subject: CN=68255542-5c8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:16:99:c9:94:75:73:b9:89:39:ae:43:1e:5b: 54:ec:a3:36:77:79:eb:c2:d1:18:1f:a4:72:1d:47: 7c:7b:f9:23:8f:3d:b3:2e:95:3c:32:13:8d:b6:d8: 0e:23:03:1c:b6:69:19:0a:dc:b0:e0:0b:87:16:a7: b4:9e:e3:78:dd:57:09:3e:1f:90:32:df:cb:f2:86: ae:5a:09:2e:3e:55:d0:e4:9e:40:46:07:09:36:8c: e7:5a:4e:a4:69:fa:30:91:70:85:9e:85:dc:74:34: 19:35:6e:b1:0f:95:ef:dd:36:aa:88:45:21:71:bb: a3:18:d6:39:3f:c3:46:41:df:3a:c8:92:d7:71:f1: 59:18:61:b6:09:41:0c:30:1b:5d:21:39:d4:15:26: f2:77:79:b2:3b:65:a3:9a:c2:e3:bc:8f:50:6a:c0: a8:dd:2d:a1:c6:56:7f:5a:69:82:f5:b7:48:83:cf: 75:8f:fa:09:6d:38:fb:0a:5c:9d:88:da:84:23:6f: 3f:18:17:d3:d0:29:0f:f5:4f:d4:39:8f:7a:76:5c: 0e:72:0f:26:8f:3e:ba:fe:a8:81:b3:36:32:4d:70: 90:d0:16:84:3e:b0:19:d2:28:5b:45:69:33:f8:cd: 24:03:1b:a1:c5:b8:9e:31:ca:f7:1d:82:f3:aa:af: 9d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2A:56:31:AD:09:68:6C:C2:27:65:E8:03:65:F3:A2:25:94:5D:82 X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:cd:f3:72:78:60:a8:8b:b7:4b:c3:5c:c2:dd:f0:b9:48:05: 49:1e:47:64:83:e7:e7:bf:ea:e5:13:59:c6:15:4c:c1:ca:03: 3a:bf:a8:39:2c:33:2b:3b:18:e1:58:4e:28:2b:48:fe:4e:59: 13:63:10:b2:b5:80:9e:cd:01:ab:a6:88:74:1b:2b:de:f8:3e: 4d:f8:c2:02:9c:27:77:4d:08:a8:08:7c:a3:1e:e9:53:20:5a: b6:08:ba:f8:80:2f:39:b5:4d:7c:1e:5b:0b:7e:62:7c:e7:a4: 67:d8:0b:aa:70:5e:c2:ed:bc:44:1b:f5:07:89:b9:ac:41:ef: a0:da:90:40:51:07:38:e4:28:ee:84:18:df:46:88:58:01:b2: 4e:d6:2b:65:33:f7:15:00:45:ee:20:e7:9d:1f:88:1b:a2:ea: 79:ac:89:e2:b1:60:c8:d8:c6:61:cf:96:51:df:30:89:c2:68: 56:40:11:47:d8:97:e0:27:54:31:4c:bb:15:26:23:f4:11:91: 00:35:ca:07:3a:55:6b:f3:4f:e5:72:c7:f6:60:86:d4:c7:8f: f7:22:7e:0b:6f:47:df:8b:f3:dc:e7:bf:c1:2b:2e:b9:0a:4c: 82:a7:4a:89:29:df:d1:e5:e2:50:49:bf:15:04:63:7e:e5:6d: ab:68:a8:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwNTE1MDI0NTIyWhcNMjUwNTIyMDI0NTIyWjAYMRYwFAYD VQQDEw02ODI1NTU0Mi01YzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RaZyZR1c7mJOa5DHltU7KM2d3nrwtEYH6RyHUd8e/kjjz2zLpU8MhONttgO IwMctmkZCtyw4AuHFqe0nuN43VcJPh+QMt/L8oauWgkuPlXQ5J5ARgcJNoznWk6k afowkXCFnoXcdDQZNW6xD5Xv3TaqiEUhcbujGNY5P8NGQd86yJLXcfFZGGG2CUEM MBtdITnUFSbyd3myO2WjmsLjvI9QasCo3S2hxlZ/WmmC9bdIg891j/oJbTj7Clyd iNqEI28/GBfT0CkP9U/UOY96dlwOcg8mjz66/qiBszYyTXCQ0BaEPrAZ0ihbRWkz +M0kAxuhxbieMcr3HYLzqq+dYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYqVjGt CWhswidl6ANl86IllF2CMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVzfNyeGCoi7dLw1zC3fC5SAVJHkdkg+fnv+rlE1nGFUzBygM6v6g5 LDMrOxjhWE4oK0j+TlkTYxCytYCezQGrpoh0Gyve+D5N+MICnCd3TQioCHyjHulT IFq2CLr4gC85tU18HlsLfmJ856Rn2AuqcF7C7bxEG/UHibmsQe+g2pBAUQc45Cju hBjfRohYAbJO1itlM/cVAEXuIOedH4gboup5rInisWDI2MZhz5ZR3zCJwmhWQBFH 2JfgJ1QxTLsVJiP0EZEANcoHOlVr80/lcsf2YIbUx4/3In4Lb0ffi/Pc57/BKy65 CkyCp0qJKd/R5eJQSb8VBGN+5W2raKgU -----END CERTIFICATE-----Generated at Thu May 15 22:24:00 2025 by rpki-client