$ rpki-client -vvf rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft File: uNk1BsinkdH5_6W2fDiBbdwD7ms.mft (raw, json) Hash identifier: CoQR0lFhZHzuJxbmCMdFuBYD7CIjUt0b1Rdm/5ISgvQ= Subject key identifier: 46:3F:C1:9A:B8:04:73:EF:5F:F0:33:B0:9A:1E:C0:26:04:52:79:81 Authority key identifier: B8:D9:35:06:C8:A7:91:D1:F9:FF:A5:B6:7C:38:81:6D:DC:03:EE:6B Certificate issuer: /CN=A9110DEC/serialNumber=B8D93506C8A791D1F9FFA5B67C38816DDC03EE6B Certificate serial: 0A26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft Manifest number: 0A20 Signing time: Thu 24 Apr 2025 19:41:21 +0000 Manifest this update: Thu 24 Apr 2025 19:41:20 +0000 Manifest next update: Thu 01 May 2025 19:41:20 +0000 Files and hashes: 1: uNk1BsinkdH5_6W2fDiBbdwD7ms.crl (hash: wSNwqqZ145Rz8EQD6FLm1of1b0JU3biQqwbQkcKaS5g=) 2: C01674A86BF011EA87B33D25C4F9AE02.roa (hash: 70ds0/DyF5wXCHSmR464rx4ZYg97rO4f023Z3VGG144=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.crl rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2598 (0xa26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110DEC, serialNumber=B8D93506C8A791D1F9FFA5B67C38816DDC03EE6B Validity Not Before: Apr 24 19:41:20 2025 GMT Not After : May 1 19:41:20 2025 GMT Subject: CN=680a93e0-c19c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1c:2e:b2:05:2c:78:10:7d:9d:e6:6b:2c:31: 69:0b:66:78:7d:76:67:cf:cc:b1:98:4f:74:86:76: 18:dd:25:be:4a:36:75:40:ff:93:67:8d:e0:d5:a4: 1d:88:be:d2:07:aa:4c:4c:b2:31:d7:97:c7:b7:d8: a2:e3:fa:aa:03:83:fe:cc:6d:95:e9:3e:5f:da:97: c5:bc:da:d0:fe:f1:ad:5c:7e:a7:4f:c9:7d:4a:3b: 7e:1b:47:d4:63:73:7d:a7:0b:bb:74:eb:78:a8:89: d8:31:d9:5c:7e:b2:b2:53:77:18:38:68:a0:82:88: 2e:45:5b:8a:32:d2:2f:7a:73:73:a9:ff:ed:1d:3c: 25:ea:d7:54:70:a8:5e:b7:cb:b9:84:5f:52:b2:3b: b8:84:29:81:1e:b7:5b:33:cd:86:f9:22:45:f2:64: fb:5d:f2:dc:a5:93:15:22:f3:88:a2:54:45:ea:ef: 92:cf:72:c4:e7:52:ab:e7:05:70:16:b2:f7:6b:44: 3b:19:25:c8:87:46:e3:42:99:ab:49:b0:ed:1a:94: 6f:af:73:f7:8f:0a:3b:6a:e4:04:ac:f6:5f:7f:fd: 31:bb:24:8e:6e:14:8e:9b:54:16:31:25:01:20:ce: 57:6f:7e:02:6c:99:81:19:c6:8b:4e:f0:6f:20:8d: 5f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:3F:C1:9A:B8:04:73:EF:5F:F0:33:B0:9A:1E:C0:26:04:52:79:81 X509v3 Authority Key Identifier: keyid:B8:D9:35:06:C8:A7:91:D1:F9:FF:A5:B6:7C:38:81:6D:DC:03:EE:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uNk1BsinkdH5_6W2fDiBbdwD7ms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110DEC/172D0A246BEF11EAA26A5E22C4F9AE02/uNk1BsinkdH5_6W2fDiBbdwD7ms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:54:37:86:ca:fa:5f:73:15:03:46:19:eb:30:60:26:c1:bb: 09:c0:6d:b0:ce:7d:f7:c7:07:4d:14:e7:61:b0:f6:e4:b3:2f: 81:cc:4f:48:75:58:b4:38:94:98:95:ef:9a:7c:b8:3f:a8:57: 4f:d8:5f:cc:33:e7:d9:ff:4a:0d:ad:2e:69:5e:b0:47:d5:70: 44:98:f2:00:18:17:db:8a:17:ef:c0:ae:aa:85:d2:16:bb:d9: 20:e2:9e:2a:f0:77:7d:a5:86:1a:29:cf:ed:88:9a:f9:49:f0: 5f:50:0d:16:f4:49:c8:56:5f:59:ca:5a:b9:9a:1f:5b:7b:7a: 3f:51:55:f0:71:e9:f6:45:e9:b4:ba:57:f1:88:ec:e9:97:3c: a7:e8:a3:80:46:bf:01:f9:12:d0:d1:5f:fd:52:f9:3b:10:c0: 15:47:1b:e8:88:53:e1:71:c8:5b:09:48:c1:1b:d0:71:48:06: 87:6a:dd:73:7f:7c:b0:63:9b:d5:95:b4:eb:ca:48:cf:91:32: b9:4e:11:5a:38:2d:b6:fc:fd:62:f0:e4:8f:87:a4:0b:e2:a0: b1:03:4f:71:fa:ca:43:d1:2a:bc:a9:c4:85:7b:af:32:fd:74: 46:c6:56:42:63:76:c1:ce:3d:9c:21:76:3b:50:48:a2:c4:9a: 74:8e:0a:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBERUMxMTAvBgNVBAUTKEI4RDkzNTA2QzhBNzkxRDFGOUZGQTVCNjdDMzg4MTZE REMwM0VFNkIwHhcNMjUwNDI0MTk0MTIwWhcNMjUwNTAxMTk0MTIwWjAYMRYwFAYD VQQDEw02ODBhOTNlMC1jMTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphwusgUseBB9neZrLDFpC2Z4fXZnz8yxmE90hnYY3SW+SjZ1QP+TZ43g1aQd iL7SB6pMTLIx15fHt9ii4/qqA4P+zG2V6T5f2pfFvNrQ/vGtXH6nT8l9Sjt+G0fU Y3N9pwu7dOt4qInYMdlcfrKyU3cYOGiggoguRVuKMtIvenNzqf/tHTwl6tdUcKhe t8u5hF9Ssju4hCmBHrdbM82G+SJF8mT7XfLcpZMVIvOIolRF6u+Sz3LE51Kr5wVw FrL3a0Q7GSXIh0bjQpmrSbDtGpRvr3P3jwo7auQErPZff/0xuySObhSOm1QWMSUB IM5Xb34CbJmBGcaLTvBvII1fkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEY/wZq4 BHPvX/AzsJoewCYEUnmBMB8GA1UdIwQYMBaAFLjZNQbIp5HR+f+ltnw4gW3cA+5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMERFQy8xNzJEMEEyNDZC RUYxMUVBQTI2QTVFMjJDNEY5QUUwMi91TmsxQnNpbmtkSDVfNlcyZkRpQmJkd0Q3 bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOazFCc2lua2RINV82VzJmRGlCYmR3RDdtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MERFQy8xNzJEMEEyNDZCRUYxMUVBQTI2QTVFMjJDNEY5QUUwMi91TmsxQnNpbmtk SDVfNlcyZkRpQmJkd0Q3bXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxVDeGyvpfcxUDRhnrMGAmwbsJwG2wzn33xwdNFOdhsPbksy+BzE9I dVi0OJSYle+afLg/qFdP2F/MM+fZ/0oNrS5pXrBH1XBEmPIAGBfbihfvwK6qhdIW u9kg4p4q8Hd9pYYaKc/tiJr5SfBfUA0W9EnIVl9Zylq5mh9be3o/UVXwcen2Rem0 ulfxiOzplzyn6KOARr8B+RLQ0V/9Uvk7EMAVRxvoiFPhcchbCUjBG9BxSAaHat1z f3ywY5vVlbTrykjPkTK5ThFaOC22/P1i8OSPh6QL4qCxA09x+spD0Sq8qcSFe68y /XRGxlZCY3bBzj2cIXY7UEiixJp0jgod -----END CERTIFICATE-----Generated at Sat Apr 26 04:28:03 2025 by rpki-client