$ rpki-client -vvf rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft File: UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft (raw, json) Hash identifier: vBkl7aumV79HBb4FN+J76ux+/OEDFeittduI2+gr8S8= Subject key identifier: 3D:A4:88:59:4E:0A:0E:12:07:3B:FA:EF:EB:99:3A:1B:D9:D9:25:EA Authority key identifier: 52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 Certificate issuer: /CN=A911902E/serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft Manifest number: 064A Signing time: Thu 24 Apr 2025 22:20:05 +0000 Manifest this update: Thu 24 Apr 2025 22:20:05 +0000 Manifest next update: Thu 01 May 2025 22:20:05 +0000 Files and hashes: 1: UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl (hash: qv3SpFjtoCLYY104EhJuxwiXqT7LBCj0jf88W3PfnlY=) 2: C3FEC56C855711EB871D267FC4F9AE02.roa (hash: y8hsODPDu9mxz9gFgQEr+IEal2qwbZYp1jlJlCiW6og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911902E, serialNumber=521B06C29110284AAAFE0875AA6186B0006D2767 Validity Not Before: Apr 24 22:20:05 2025 GMT Not After : May 1 22:20:05 2025 GMT Subject: CN=680ab915-3b18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:fe:05:15:4c:0f:0a:17:47:c3:26:bb:6f:18: de:55:a3:ba:ca:8f:4d:38:8b:6d:28:d0:7a:3a:84: 0a:1f:cf:00:a2:8c:7a:17:79:08:c5:07:c5:b0:6f: bc:19:46:ee:eb:a7:67:72:8c:8d:53:85:aa:41:31: 62:70:76:ed:8f:9e:f8:92:f9:f8:c4:e1:04:fa:8f: e3:2f:aa:54:ab:30:b3:f6:b6:34:03:e1:43:34:a7: aa:e0:fc:59:0c:74:b9:8b:6f:ed:6b:e3:b8:02:f9: 00:71:2c:58:b9:24:d6:b0:65:93:75:4f:dd:7d:b4: 09:50:f6:64:9d:4f:18:e7:6e:ed:f4:66:08:22:f2: a7:5b:9c:2b:9b:29:e7:25:b1:55:d8:e5:b9:ba:e0: 98:5e:f2:42:83:68:e5:f1:f4:73:fa:44:a6:55:43: 02:c5:3a:21:a8:c2:49:cc:65:5c:e9:11:f2:6d:b3: 95:ca:4b:15:dc:f9:5f:76:a6:a4:a9:06:c5:54:ea: 04:5b:f0:2c:3f:f2:38:94:9f:41:39:a9:a5:20:5c: 21:56:f7:b6:a7:f0:46:85:1e:8d:4c:58:f1:ec:d6: fd:24:e8:c8:35:1a:2d:41:79:7d:84:32:4a:2f:1e: 41:5e:ce:55:4c:73:c8:2c:1d:dc:d8:94:77:72:67: 17:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A4:88:59:4E:0A:0E:12:07:3B:FA:EF:EB:99:3A:1B:D9:D9:25:EA X509v3 Authority Key Identifier: keyid:52:1B:06:C2:91:10:28:4A:AA:FE:08:75:AA:61:86:B0:00:6D:27:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UhsGwpEQKEqq_gh1qmGGsABtJ2c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911902E/57AFDB28855511EB94C2215FC4F9AE02/UhsGwpEQKEqq_gh1qmGGsABtJ2c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:cb:3c:6a:76:29:e2:32:40:6a:5e:01:62:54:de:72:a3:3b: a7:fc:72:48:9c:6a:20:89:4b:28:69:14:d8:c7:71:c7:f9:83: d7:a7:5b:51:c0:1a:9c:ec:92:a7:be:a3:59:76:f2:f9:9f:ae: 37:a9:79:fb:c0:4b:d4:e6:25:b4:d1:a9:64:4c:58:66:9e:99: b0:18:4c:6d:ae:93:ca:0b:b1:83:f6:cb:35:6d:18:27:3e:ae: af:d6:53:e7:e5:bb:cb:b2:e6:69:f3:bf:cd:dd:2f:d1:6b:63: 0a:8e:76:3a:d5:c0:01:44:ea:c8:a6:4e:1c:bc:ab:9a:5b:7f: a7:88:bc:17:39:17:1a:57:c4:4e:d5:c2:4b:da:93:33:b8:7b: bc:1c:80:be:62:b5:a7:05:86:f3:25:31:c7:1f:3f:1c:df:da: 74:56:96:04:d2:c9:32:68:44:8c:2a:39:e2:57:ca:78:d9:ad: b2:84:db:d9:85:02:52:2e:45:ee:0f:9c:25:df:fe:21:72:65: 3f:11:1c:63:e7:53:26:d0:28:09:90:34:67:8e:23:40:42:b4: 46:6c:11:a2:75:b8:50:07:bd:84:e2:d1:e9:5b:57:fa:4a:cf: da:7c:c3:a5:0e:9e:d7:62:87:62:6c:3c:ef:fb:2c:bc:2b:31: c9:e9:63:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMkUxMTAvBgNVBAUTKDUyMUIwNkMyOTExMDI4NEFBQUZFMDg3NUFBNjE4NkIw MDA2RDI3NjcwHhcNMjUwNDI0MjIyMDA1WhcNMjUwNTAxMjIyMDA1WjAYMRYwFAYD VQQDEw02ODBhYjkxNS0zYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsP4FFUwPChdHwya7bxjeVaO6yo9NOIttKNB6OoQKH88Aoox6F3kIxQfFsG+8 GUbu66dncoyNU4WqQTFicHbtj574kvn4xOEE+o/jL6pUqzCz9rY0A+FDNKeq4PxZ DHS5i2/ta+O4AvkAcSxYuSTWsGWTdU/dfbQJUPZknU8Y527t9GYIIvKnW5wrmynn JbFV2OW5uuCYXvJCg2jl8fRz+kSmVUMCxTohqMJJzGVc6RHybbOVyksV3Plfdqak qQbFVOoEW/AsP/I4lJ9BOamlIFwhVve2p/BGhR6NTFjx7Nb9JOjINRotQXl9hDJK Lx5BXs5VTHPILB3c2JR3cmcXsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2kiFlO Cg4SBzv67+uZOhvZ2SXqMB8GA1UdIwQYMBaAFFIbBsKREChKqv4IdaphhrAAbSdn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAyRS81N0FGREIyODg1 NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtFcXFfZ2gxcW1HR3NBQnRK MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Voc0d3cEVRS0VxcV9naDFxbUdHc0FCdEoyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTAyRS81N0FGREIyODg1NTUxMUVCOTRDMjIxNUZDNEY5QUUwMi9VaHNHd3BFUUtF cXFfZ2gxcW1HR3NBQnRKMmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzyzxqdiniMkBqXgFiVN5yozun/HJInGogiUsoaRTYx3HH+YPXp1tR wBqc7JKnvqNZdvL5n643qXn7wEvU5iW00alkTFhmnpmwGExtrpPKC7GD9ss1bRgn Pq6v1lPn5bvLsuZp87/N3S/Ra2MKjnY61cABROrIpk4cvKuaW3+niLwXORcaV8RO 1cJL2pMzuHu8HIC+YrWnBYbzJTHHHz8c39p0VpYE0skyaESMKjniV8p42a2yhNvZ hQJSLkXuD5wl3/4hcmU/ERxj51Mm0CgJkDRnjiNAQrRGbBGidbhQB72E4tHpW1f6 Ss/afMOlDp7XYodibDzv+yy8KzHJ6WOe -----END CERTIFICATE-----Generated at Sat Apr 26 18:14:08 2025 by rpki-client