$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft File: 4UieBUVuksrXFYRyAOSnXWw-Q84.mft (raw, json) Hash identifier: 5VxcUM9TVizyc8P0GRntUYOXkHhdAJ7wvXGjh4sKeOI= Subject key identifier: DE:09:FD:B6:73:7B:DA:63:13:A3:8D:47:3A:60:0F:F0:1F:FE:9C:B6 Authority key identifier: E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE Certificate issuer: /CN=A91F6AE0/serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Certificate serial: 02BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft Manifest number: 02B9 Signing time: Tue 13 May 2025 01:15:28 +0000 Manifest this update: Tue 13 May 2025 01:15:28 +0000 Manifest next update: Tue 20 May 2025 01:15:28 +0000 Files and hashes: 1: 4UieBUVuksrXFYRyAOSnXWw-Q84.crl (hash: VrgebOVTAL59fbzsuzT9TU4RgXtTZgKNWwWbbi4tmMc=) 2: E2DF828CF20211ECBCC9B986C4F9AE02.roa (hash: tfUuxZjAK76Q4T6Ge0ulThHXULE82KNLMMQeccievfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:15:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 702 (0x2be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6AE0, serialNumber=E1489E05456E92CAD715847200E4A75D6C3E43CE Validity Not Before: May 13 01:15:28 2025 GMT Not After : May 20 01:15:28 2025 GMT Subject: CN=68229d30-9f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a1:56:5f:f0:3a:fe:8e:1e:ce:d2:01:65:77: 24:b6:af:07:9d:17:81:a7:9a:a5:5c:05:54:dd:b0: 94:b4:74:e6:e3:3a:42:ab:ee:0d:75:71:22:67:24: b4:b4:35:30:c4:dc:0b:93:3f:23:94:ed:86:18:b0: 64:aa:27:10:36:72:0e:fe:e2:88:a6:40:2e:82:6f: 2a:c0:1d:30:99:0b:6d:cd:fc:cf:b9:31:f3:1a:32: 65:4c:e7:14:09:46:0e:c4:c1:92:fb:ef:81:d6:68: 83:a6:62:33:2e:f6:00:27:01:70:cd:8d:4f:ca:1a: 9e:a8:4a:0b:fe:13:fa:70:c5:6b:1d:dd:c1:11:91: 10:65:8e:98:2f:b4:8c:52:40:a6:aa:97:29:a2:9a: 4c:48:98:ba:a8:8c:34:1d:70:e0:d9:28:56:a8:19: 6f:e8:f7:52:46:54:f5:33:51:f3:97:eb:e6:ac:2e: a6:8d:9b:a3:5f:29:a2:96:db:13:39:ed:5e:85:fc: ef:c1:04:19:b0:7e:24:f1:4f:27:1b:2f:cf:2d:b6: ae:db:33:3a:07:51:df:bf:8c:aa:de:a9:55:b1:8c: 4a:cc:6b:9f:40:a4:5d:7d:35:b5:df:b3:12:7c:04: 38:01:3b:1d:85:d4:84:51:f3:10:44:05:db:62:64: 92:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:09:FD:B6:73:7B:DA:63:13:A3:8D:47:3A:60:0F:F0:1F:FE:9C:B6 X509v3 Authority Key Identifier: keyid:E1:48:9E:05:45:6E:92:CA:D7:15:84:72:00:E4:A7:5D:6C:3E:43:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UieBUVuksrXFYRyAOSnXWw-Q84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6AE0/FA047F54F1FC11EC99B2CB6BC4F9AE02/4UieBUVuksrXFYRyAOSnXWw-Q84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:54:73:88:d8:69:69:31:7e:e9:91:d9:ee:b6:6f:58:cd:91: a5:57:bb:d1:d0:2c:87:09:db:6b:91:ea:79:1e:a7:c9:ba:aa: 0f:fe:1e:da:fc:38:bf:e3:2d:c9:37:8c:ac:da:36:4c:3b:43: c5:98:e1:ef:8d:e6:e8:c1:91:e7:3a:1f:48:47:f6:45:ea:0a: 92:0a:62:40:89:b7:4b:b3:af:fe:b5:31:f5:b9:eb:c6:6e:78: f6:94:d3:67:59:b2:3d:9d:f0:dd:49:52:6e:55:75:4e:12:19: 83:45:bf:f3:93:e7:3e:a2:e0:35:e0:61:b9:9f:6b:39:2e:2e: 4c:b5:ed:33:17:a9:02:3d:ea:02:7b:5d:d8:3b:f1:8f:44:a2: d8:3f:e7:a4:b7:6c:ff:dd:87:4a:f5:b6:08:14:d9:bb:18:f0: 74:fc:70:15:66:64:09:af:42:d5:99:0c:7e:44:db:85:5c:35: e0:84:b2:64:c3:30:69:2c:05:99:57:44:c2:13:72:60:59:9f: 58:33:ed:aa:32:df:f3:50:c0:99:11:39:36:1e:58:e9:43:e5: b6:31:5f:52:7f:dc:e3:bd:c1:2c:35:d7:8b:78:f9:c3:46:45: b0:73:a9:e2:85:c5:6b:de:32:4b:2c:e2:7e:83:24:e5:cf:cb: 8a:8e:28:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBRTAxMTAvBgNVBAUTKEUxNDg5RTA1NDU2RTkyQ0FENzE1ODQ3MjAwRTRBNzVE NkMzRTQzQ0UwHhcNMjUwNTEzMDExNTI4WhcNMjUwNTIwMDExNTI4WjAYMRYwFAYD VQQDEw02ODIyOWQzMC05ZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaFWX/A6/o4eztIBZXcktq8HnReBp5qlXAVU3bCUtHTm4zpCq+4NdXEiZyS0 tDUwxNwLkz8jlO2GGLBkqicQNnIO/uKIpkAugm8qwB0wmQttzfzPuTHzGjJlTOcU CUYOxMGS+++B1miDpmIzLvYAJwFwzY1PyhqeqEoL/hP6cMVrHd3BEZEQZY6YL7SM UkCmqpcpoppMSJi6qIw0HXDg2ShWqBlv6PdSRlT1M1Hzl+vmrC6mjZujXymiltsT Oe1ehfzvwQQZsH4k8U8nGy/PLbau2zM6B1Hfv4yq3qlVsYxKzGufQKRdfTW137MS fAQ4ATsdhdSEUfMQRAXbYmSSFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4J/bZz e9pjE6ONRzpgD/Af/py2MB8GA1UdIwQYMBaAFOFIngVFbpLK1xWEcgDkp11sPkPO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFFMC9GQTA0N0Y1NEYx RkMxMUVDOTlCMkNCNkJDNEY5QUUwMi80VWllQlVWdWtzclhGWVJ5QU9TblhXdy1R ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVaWVCVVZ1a3NyWEZZUnlBT1NuWFd3LVE4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFFMC9GQTA0N0Y1NEYxRkMxMUVDOTlCMkNCNkJDNEY5QUUwMi80VWllQlVWdWtz clhGWVJ5QU9TblhXdy1RODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWVHOI2GlpMX7pkdnutm9YzZGlV7vR0CyHCdtrkep5HqfJuqoP/h7a /Di/4y3JN4ys2jZMO0PFmOHvjebowZHnOh9IR/ZF6gqSCmJAibdLs6/+tTH1uevG bnj2lNNnWbI9nfDdSVJuVXVOEhmDRb/zk+c+ouA14GG5n2s5Li5Mte0zF6kCPeoC e13YO/GPRKLYP+ekt2z/3YdK9bYIFNm7GPB0/HAVZmQJr0LVmQx+RNuFXDXghLJk wzBpLAWZV0TCE3JgWZ9YM+2qMt/zUMCZETk2HljpQ+W2MV9Sf9zjvcEsNdeLePnD RkWwc6nihcVr3jJLLOJ+gyTlz8uKjiik -----END CERTIFICATE-----Generated at Tue May 13 21:59:24 2025 by rpki-client