$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: HVzcqb7SdzwQhkTIDEEk+baeG39qIKPeH0czq3vtmaQ= Subject key identifier: 3D:FB:5E:5D:54:48:98:1A:16:88:74:29:19:3E:DC:1F:8E:4B:EE:78 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 010D Signing time: Fri 25 Apr 2025 04:05:11 +0000 Manifest this update: Fri 25 Apr 2025 04:05:11 +0000 Manifest next update: Fri 02 May 2025 04:05:11 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: Rj5A3Gr+4Pvl4CJbDFWdRxel4E0FhoOiDT/ijrZ3kDQ=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: Apr 25 04:05:11 2025 GMT Not After : May 2 04:05:11 2025 GMT Subject: CN=680b09f7-301c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ae:42:b9:bb:a9:91:69:12:4a:17:11:d5:2e: 18:ae:ef:01:23:31:b9:be:29:05:90:54:9b:9f:ee: b3:ae:e4:2d:11:1c:e0:a2:43:43:dc:51:2e:47:c7: f7:49:37:53:b3:9a:5b:6a:1c:e6:f1:76:6a:91:62: 12:80:71:47:44:ba:d1:16:ef:a9:53:5e:a1:27:a5: 64:67:4e:7f:b3:a5:a2:b2:39:00:73:4b:e7:c6:25: 11:6c:26:e1:34:c7:d9:a4:c0:9f:81:e8:cb:69:f1: 87:65:94:ac:42:0c:5b:3e:85:69:58:c5:84:5c:e2: dd:ae:74:22:33:82:cf:da:54:88:d4:06:dc:34:49: 47:5c:d8:04:64:31:e3:08:12:4a:74:54:9b:f0:26: 13:7d:d7:ab:84:e6:79:f3:3e:ea:d7:bb:cf:64:c1: a9:2d:5a:55:3f:79:ed:4f:59:e4:13:29:aa:a0:37: 70:09:b2:54:93:3c:5d:db:04:d2:2c:50:17:a5:ad: 1a:f8:ba:1f:f5:22:c6:9a:43:ae:1c:03:87:9d:d0: 4c:70:21:34:ef:4c:6f:43:2f:ed:fa:b9:d0:4d:12: 69:30:b7:07:30:ad:47:b5:23:db:f7:b7:ff:2b:86: 4e:56:92:0c:02:74:4d:cf:59:40:09:3b:04:a8:bb: 74:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:FB:5E:5D:54:48:98:1A:16:88:74:29:19:3E:DC:1F:8E:4B:EE:78 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:a5:4f:0d:3a:17:6c:a2:a6:4f:9b:f1:2b:ca:fa:63:0e:09: 15:6e:eb:4f:60:fe:33:f2:f0:c3:7e:24:53:df:9e:2a:c4:97: 14:cd:73:4f:8a:c0:b5:4d:86:b6:4e:33:28:52:aa:96:60:c2: 4f:70:84:6f:b6:43:7f:18:94:64:b8:e9:10:ac:4e:b2:7f:08: b1:4f:ac:2b:72:b2:a6:18:27:d5:97:e6:c6:cc:af:e7:8f:f5: d2:27:75:97:7f:2e:ba:56:2b:83:63:c4:2a:c3:0d:d3:1f:fb: ab:79:3d:8c:2b:92:63:d9:80:16:75:0e:a0:cc:f6:73:a9:6a: b0:c7:5e:ca:ad:3b:fb:c9:65:64:b7:5e:c2:f6:d6:b4:96:ef: 28:ee:27:09:d8:b4:5c:06:ad:cb:1e:8c:98:03:1a:0c:8f:30: 81:0c:0c:62:39:1e:33:02:f7:4c:d3:2a:fd:a2:8a:88:7e:1b: 7f:4e:43:4c:21:76:82:10:49:9c:d3:14:cd:6a:b2:15:c7:8d: 4d:5c:24:d6:d2:64:46:cc:78:1d:68:17:aa:42:8d:28:01:a6: 14:86:c9:79:32:3e:61:27:6c:25:a3:7a:d8:b6:9a:b7:94:7a: 90:99:af:53:63:92:b0:2d:0f:6f:c2:aa:a6:87:8f:de:a1:3a: d8:85:f0:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwNDI1MDQwNTExWhcNMjUwNTAyMDQwNTExWjAYMRYwFAYD VQQDEw02ODBiMDlmNy0zMDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr65CubupkWkSShcR1S4Yru8BIzG5vikFkFSbn+6zruQtERzgokND3FEuR8f3 STdTs5pbahzm8XZqkWISgHFHRLrRFu+pU16hJ6VkZ05/s6WisjkAc0vnxiURbCbh NMfZpMCfgejLafGHZZSsQgxbPoVpWMWEXOLdrnQiM4LP2lSI1AbcNElHXNgEZDHj CBJKdFSb8CYTfderhOZ58z7q17vPZMGpLVpVP3ntT1nkEymqoDdwCbJUkzxd2wTS LFAXpa0a+Lof9SLGmkOuHAOHndBMcCE070xvQy/t+rnQTRJpMLcHMK1HtSPb97f/ K4ZOVpIMAnRNz1lACTsEqLt0+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD37Xl1U SJgaFoh0KRk+3B+OS+54MB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJpU8NOhdsoqZPm/EryvpjDgkVbutPYP4z8vDDfiRT354qxJcUzXNP isC1TYa2TjMoUqqWYMJPcIRvtkN/GJRkuOkQrE6yfwixT6wrcrKmGCfVl+bGzK/n j/XSJ3WXfy66ViuDY8Qqww3TH/ureT2MK5Jj2YAWdQ6gzPZzqWqwx17KrTv7yWVk t17C9ta0lu8o7icJ2LRcBq3LHoyYAxoMjzCBDAxiOR4zAvdM0yr9ooqIfht/TkNM IXaCEEmc0xTNarIVx41NXCTW0mRGzHgdaBeqQo0oAaYUhsl5Mj5hJ2wlo3rYtpq3 lHqQma9TY5KwLQ9vwqqmh4/eoTrYhfDs -----END CERTIFICATE-----Generated at Sat Apr 26 14:18:55 2025 by rpki-client