$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft File: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft (raw, json) Hash identifier: Ehaupp99BNpqXXTo7wrY6PONReKOjN+15517s1/Xx/0= Subject key identifier: 04:53:64:5E:2C:B5:BA:23:88:FD:01:50:6E:4E:C6:15:BA:C8:5D:B3 Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft Manifest number: 33 Signing time: Sun 27 Apr 2025 06:28:35 +0000 Manifest this update: Sun 27 Apr 2025 06:28:34 +0000 Manifest next update: Sun 04 May 2025 06:28:34 +0000 Files and hashes: 1: lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl (hash: GNypWCED9TSYUqWcmjkgtRffk7OxayKMMuP6hKR6bYQ=) 2: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (hash: vxR6lGSB92W4nyf39qOZTHQvzgJz2i4ET4hSQ71BeOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 06:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: Apr 27 06:28:34 2025 GMT Not After : May 4 06:28:34 2025 GMT Subject: CN=680dce93-d79b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:79:0a:10:5c:52:04:30:89:4b:e0:05:36:d8: cc:b8:bf:e5:d3:2e:39:d3:a6:b2:cc:8a:0d:3b:fd: b7:40:93:2c:0d:28:6b:e7:04:98:b1:2b:8f:77:7f: 91:e1:be:6d:77:b3:a6:b3:77:5a:8d:cb:f4:8a:59: 72:c0:ce:bd:37:da:c7:b0:53:42:9d:44:cd:c8:a1: 60:96:d8:48:88:d4:6c:08:b4:4e:a2:35:9f:7e:df: d1:fc:e3:0a:e7:f3:f6:7c:8e:5a:b8:1e:8f:59:69: 18:1f:d3:e0:8e:39:53:75:dc:20:23:cc:f7:71:91: 0b:7e:06:5a:18:2f:f8:0c:81:7a:29:98:e0:4a:06: 26:11:3c:13:28:9f:d4:83:6e:f5:33:94:d3:de:83: b0:5e:cc:a8:6f:c0:64:48:2f:de:77:b4:1b:ac:df: d8:73:73:4a:fd:14:b3:17:be:d9:07:a3:18:8f:38: 26:45:0c:fb:97:5f:72:c1:93:2a:8f:6a:33:f4:b7: 82:9d:20:cd:aa:53:76:85:74:bd:c4:82:74:d6:9a: e5:99:6b:6d:15:c8:42:ef:6f:2b:c0:69:26:0d:da: db:a0:e5:28:85:9c:f9:39:34:b6:e8:6a:88:66:fc: 01:94:cd:3d:d3:8c:37:ce:59:bf:22:80:ba:d4:94: 9f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:53:64:5E:2C:B5:BA:23:88:FD:01:50:6E:4E:C6:15:BA:C8:5D:B3 X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:9a:44:21:07:12:b7:a4:e9:af:4d:b8:37:28:e0:85:2a:59: f8:e7:de:dd:ac:7f:ad:40:53:ea:60:9b:ea:43:18:a1:72:fc: e7:ae:cf:73:75:9d:4e:25:ec:68:12:9d:f8:7e:94:f0:44:13: b1:18:1d:79:94:2e:25:fb:39:61:56:f2:a2:5b:59:53:ae:f4: 7e:00:ae:2d:89:6c:70:7b:78:f3:eb:23:32:4b:b4:10:ce:8e: 6b:2c:29:c4:ca:1b:89:63:16:39:ff:69:08:80:39:e9:8d:24: 23:ea:ea:7f:94:e5:59:8e:08:d5:87:f1:d8:2d:30:9a:9c:d0: de:3d:73:b3:c0:be:41:47:d2:b7:79:58:b5:43:18:3b:ec:36: 40:c4:6e:fd:d4:d1:8d:92:5e:dd:a5:8d:95:85:ab:be:a8:b8: 92:7f:60:ce:aa:f6:9a:38:5d:5e:4b:16:85:23:40:9c:96:3e: cd:95:9e:81:37:80:1b:de:e4:fd:b0:91:d9:d1:b9:58:ac:42: 85:3f:b0:e0:90:fb:9f:b6:ed:9d:61:b6:91:4e:d8:f6:f1:56: e2:c5:cf:05:33:b5:e2:c5:15:ac:fe:64:3b:d5:22:9d:1e:50: d1:4b:c4:46:1a:00:c9:56:e8:41:20:a3:92:0e:21:21:a0:69: 15:7c:57:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODc0OTExMC8GA1UEBRMoOTU0NTlENUQxRUIwNDA5NUZEMTYzRjBEODREMUYzQTQ2 QzE1RTRGMDAeFw0yNTA0MjcwNjI4MzRaFw0yNTA1MDQwNjI4MzRaMBgxFjAUBgNV BAMTDTY4MGRjZTkzLWQ3OWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDeQoQXFIEMIlL4AU22My4v+XTLjnTprLMig07/bdAkywNKGvnBJixK493f5Hh vm13s6azd1qNy/SKWXLAzr032sewU0KdRM3IoWCW2EiI1GwItE6iNZ9+39H84wrn 8/Z8jlq4Ho9ZaRgf0+COOVN13CAjzPdxkQt+BloYL/gMgXopmOBKBiYRPBMon9SD bvUzlNPeg7BezKhvwGRIL953tBus39hzc0r9FLMXvtkHoxiPOCZFDPuXX3LBkyqP ajP0t4KdIM2qU3aFdL3EgnTWmuWZa20VyELvbyvAaSYN2tug5SiFnPk5NLboaohm /AGUzT3TjDfOWb8igLrUlJ+JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBFNkXiy1 uiOI/QFQbk7GFbrIXbMwHwYDVR0jBBgwFoAUlUWdXR6wQJX9Fj8NhNHzpGwV5PAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4NzQ5L0JBNTdEQkE2REMy MDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFVXZFhSNndRSlg5Rmo4TmhOSHpwR3dWNVBBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4 NzQ5L0JBNTdEQkE2REMyMDExRUY5MUI1NDAxRUM0RjlBRTAyL2xVV2RYUjZ3UUpY OUZqOE5oTkh6cEd3VjVQQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMGaRCEHErek6a9NuDco4IUqWfjn3t2sf61AU+pgm+pDGKFy/Oeuz3N1 nU4l7GgSnfh+lPBEE7EYHXmULiX7OWFW8qJbWVOu9H4Ari2JbHB7ePPrIzJLtBDO jmssKcTKG4ljFjn/aQiAOemNJCPq6n+U5VmOCNWH8dgtMJqc0N49c7PAvkFH0rd5 WLVDGDvsNkDEbv3U0Y2SXt2ljZWFq76ouJJ/YM6q9po4XV5LFoUjQJyWPs2VnoE3 gBve5P2wkdnRuVisQoU/sOCQ+5+27Z1htpFO2PbxVuLFzwUzteLFFaz+ZDvVIp0e UNFLxEYaAMlW6EEgo5IOISGgaRV8V3U= -----END CERTIFICATE-----Generated at Sun Apr 27 16:49:23 2025 by rpki-client