$ rpki-client -vvf rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft File: UKsTEAVD9kbAxVN13vhQXRTzZrg.mft (raw, json) Hash identifier: qv5A3suSR7A9sNF9Y2uIqx2vBHfzHigSdRdF10hUlic= Subject key identifier: 23:4E:AD:B3:81:F8:5D:2F:E5:07:0A:54:56:B9:F0:94:12:2D:4D:21 Authority key identifier: 50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 Certificate issuer: /CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Certificate serial: 0B26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft Manifest number: 0B20 Signing time: Thu 24 Apr 2025 19:06:37 +0000 Manifest this update: Thu 24 Apr 2025 19:06:37 +0000 Manifest next update: Thu 01 May 2025 19:06:37 +0000 Files and hashes: 1: UKsTEAVD9kbAxVN13vhQXRTzZrg.crl (hash: BK8E8zxIiwFxzOV7UGekylMg1g58QeK50yvd4JtTR10=) 2: 74D2ABEE39F811EAA4343534C4F9AE02.roa (hash: WNF8DvI+W4AUYThET4ebOd4+s48ZJAgIRPErXZ/X2b4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911270F, serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Validity Not Before: Apr 24 19:06:37 2025 GMT Not After : May 1 19:06:37 2025 GMT Subject: CN=680a8bbd-245d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d7:bc:5e:5a:a3:6e:2d:2a:f4:eb:a4:d2:34: 22:a1:bf:8f:40:04:f6:f7:dd:28:74:64:96:7a:2f: b0:26:93:c7:91:b9:29:3f:6e:8f:f1:46:25:6a:90: c3:c9:2d:a0:f1:34:3d:8f:6b:82:85:3f:2e:a6:31: fd:31:ce:89:33:59:36:11:23:0c:18:65:84:37:d1: 69:1e:a6:b6:0c:02:2a:1c:2e:c7:a2:a1:fb:db:89: f6:2c:f3:69:31:13:d2:3a:1d:8d:2b:c1:bc:61:80: 72:5b:67:1b:a5:a8:2f:b9:60:0f:05:e9:dc:15:d4: 93:42:a4:c6:ec:7f:2d:38:0e:cc:d7:2c:65:14:82: cd:05:c9:c0:2e:9a:cd:2b:51:e8:18:d8:a6:6b:b4: a3:73:b4:fb:78:67:af:c9:7a:0b:d6:97:04:4f:dc: 59:ab:df:6f:7e:f9:6a:70:73:a3:76:4d:56:9b:c5: 1d:26:66:01:6e:13:45:99:c0:8b:c1:64:9d:72:60: 98:99:b4:92:eb:56:cf:3e:db:6a:ac:10:a1:39:ae: 10:3d:ef:19:3c:99:75:ad:a9:b1:cc:e2:75:92:a3: 6d:43:6e:6a:f4:f9:fc:be:c7:62:6e:90:23:c7:b4: 81:b2:8e:d6:2d:ca:a2:37:3b:7a:b4:e6:79:5b:82: 3a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4E:AD:B3:81:F8:5D:2F:E5:07:0A:54:56:B9:F0:94:12:2D:4D:21 X509v3 Authority Key Identifier: keyid:50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:bf:4f:84:77:61:cd:cd:1b:29:76:c4:fe:f6:00:e8:d4:fd: 40:bf:3e:74:f7:49:d3:43:84:24:94:ab:e1:98:7e:41:81:30: 89:f0:11:54:b4:c5:1d:c6:0e:62:7d:8e:e1:78:3a:54:48:35: b7:0c:52:be:43:a2:76:e7:88:b0:cd:e7:98:3a:2d:4f:53:79: 9c:e4:22:7e:7b:c6:78:d0:0b:c1:79:3b:6f:61:30:00:cf:b4: 60:eb:21:0e:8b:df:1c:f1:4e:2e:f8:08:3d:7f:4d:06:0d:e9: 9d:96:4f:78:0a:0c:cb:4f:dd:c8:6a:df:2d:5a:5c:8a:08:47: c1:28:d5:15:38:18:69:7a:bf:5d:2c:7c:e6:5f:2f:df:1b:18: d6:64:38:9f:12:82:24:bb:cf:8d:e9:ce:5c:a0:50:0c:1b:67: 97:7e:1c:f8:5d:12:e0:d8:2b:5f:2e:31:09:87:37:47:10:c9: ed:bf:43:6f:3e:e2:04:72:2c:04:de:2e:c2:62:91:c9:4c:aa: c6:e1:88:82:06:9d:0a:59:c4:fc:dc:36:7e:c6:25:fb:b2:b6: a8:df:dd:b8:41:56:82:21:78:94:91:9d:53:a9:21:cb:6c:12: 81:2f:39:38:62:67:c4:a0:2b:03:30:02:c6:88:c1:53:2c:91: 5c:ad:77:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MEYxMTAvBgNVBAUTKDUwQUIxMzEwMDU0M0Y2NDZDMEM1NTM3NURFRjg1MDVE MTRGMzY2QjgwHhcNMjUwNDI0MTkwNjM3WhcNMjUwNTAxMTkwNjM3WjAYMRYwFAYD VQQDEw02ODBhOGJiZC0yNDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9e8Xlqjbi0q9Ouk0jQiob+PQAT2990odGSWei+wJpPHkbkpP26P8UYlapDD yS2g8TQ9j2uChT8upjH9Mc6JM1k2ESMMGGWEN9FpHqa2DAIqHC7HoqH724n2LPNp MRPSOh2NK8G8YYByW2cbpagvuWAPBencFdSTQqTG7H8tOA7M1yxlFILNBcnALprN K1HoGNima7Sjc7T7eGevyXoL1pcET9xZq99vfvlqcHOjdk1Wm8UdJmYBbhNFmcCL wWSdcmCYmbSS61bPPttqrBChOa4QPe8ZPJl1ramxzOJ1kqNtQ25q9Pn8vsdibpAj x7SBso7WLcqiNzt6tOZ5W4I6WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNOrbOB +F0v5QcKVFa58JQSLU0hMB8GA1UdIwQYMBaAFFCrExAFQ/ZGwMVTdd74UF0U82a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwRi8wNUQ4MkVFMDM5 RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlrYkF4Vk4xM3ZoUVhSVHpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLc1RFQVZEOWtiQXhWTjEzdmhRWFJUelpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjcwRi8wNUQ4MkVFMDM5RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlr YkF4Vk4xM3ZoUVhSVHpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkv0+Ed2HNzRspdsT+9gDo1P1Avz5090nTQ4QklKvhmH5BgTCJ8BFU tMUdxg5ifY7heDpUSDW3DFK+Q6J254iwzeeYOi1PU3mc5CJ+e8Z40AvBeTtvYTAA z7Rg6yEOi98c8U4u+Ag9f00GDemdlk94CgzLT93Iat8tWlyKCEfBKNUVOBhper9d LHzmXy/fGxjWZDifEoIku8+N6c5coFAMG2eXfhz4XRLg2CtfLjEJhzdHEMntv0Nv PuIEciwE3i7CYpHJTKrG4YiCBp0KWcT83DZ+xiX7srao3924QVaCIXiUkZ1TqSHL bBKBLzk4YmfEoCsDMALGiMFTLJFcrXc4 -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:49 2025 by rpki-client