$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft File: cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft (raw, json) Hash identifier: O4uh7rRET6l0BkKsMlgBiuBYOotEvnForCWD9EMvd9A= Subject key identifier: 60:B0:EC:81:14:3C:41:A1:B5:BE:96:D9:CF:7A:9A:54:27:F4:BA:D2 Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 2256 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft Manifest number: 2224 Signing time: Thu 24 Apr 2025 15:53:55 +0000 Manifest this update: Thu 24 Apr 2025 15:53:54 +0000 Manifest next update: Thu 01 May 2025 15:53:54 +0000 Files and hashes: 1: cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl (hash: RuSjJFaCxdmS/lM9zTUC3UeWCHLKVhZP/iUCW2aPbCw=) 2: BB62FBD82AEC11EA972CB627C4F9AE02.roa (hash: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8790 (0x2256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Apr 24 15:53:54 2025 GMT Not After : May 1 15:53:54 2025 GMT Subject: CN=680a5e93-003f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:56:15:40:3a:85:3c:04:d4:05:7d:2f:8e:ee: 52:7b:6e:06:cd:a6:d1:ee:65:1f:8e:d6:77:38:a1: fb:3b:2f:fc:a1:65:36:5a:f3:57:de:14:d9:d6:3b: 31:cb:cc:82:e0:6c:19:fa:ee:53:6a:cc:ba:cf:91: cf:05:12:5a:7d:23:70:7c:a5:45:3e:03:9c:b2:79: e6:69:e5:a9:28:a1:c7:06:a4:28:e5:89:36:a0:e3: 63:34:08:a4:92:2c:6b:b8:f1:9c:cd:91:56:d8:66: 38:42:e1:2e:60:84:a4:31:e5:c5:bf:ca:4e:6f:82: 11:45:07:1a:01:58:f2:57:8d:b4:09:ff:df:11:59: ef:86:63:3a:f9:10:56:6d:aa:ce:76:c7:98:0d:34: 39:c0:bf:fd:13:c2:8e:9a:90:81:53:39:2f:32:84: b4:8e:91:da:e6:41:a6:40:93:63:48:ab:c4:5f:da: c9:58:34:0b:0a:a5:35:c4:4f:25:e3:b9:f9:5a:c8: 06:fe:4b:90:b7:0b:3b:28:3c:9d:cb:64:d3:40:70: be:96:c1:26:1d:2a:36:01:75:d3:7b:74:34:59:03: e2:6a:92:73:aa:04:e5:8d:df:2c:74:a4:71:c9:a3: ed:a0:0a:66:fb:f3:cf:1d:a1:94:87:2f:63:21:52: cc:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B0:EC:81:14:3C:41:A1:B5:BE:96:D9:CF:7A:9A:54:27:F4:BA:D2 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:bc:e6:de:41:af:a3:5c:9f:06:4b:48:1a:b2:94:de:ec:17: 2d:6d:54:7b:f2:a6:9b:8d:55:4f:c7:79:e5:b1:8c:4d:0e:42: 67:0d:a4:ec:05:c1:91:ea:4e:e5:4a:a1:3b:99:e3:83:25:67: 9f:d5:17:6c:29:a6:c5:95:46:59:31:e9:2b:e8:2b:b6:3b:16: 6e:ea:c7:c9:e4:b6:3e:41:40:70:3b:04:db:89:b3:9e:11:c7: 86:30:7f:81:3f:b9:e6:e3:91:7f:01:a7:04:e8:e2:98:3d:78: 35:85:18:0e:4a:38:4c:77:0c:ee:0a:a8:e3:b6:58:81:da:2a: bb:99:a9:bd:43:8f:e7:ac:67:5d:0b:a2:2f:a5:d0:64:a6:b6: 8d:37:9c:69:eb:26:89:af:64:09:78:5a:ab:f5:7a:9e:61:3e: 9e:25:42:e5:68:e9:d0:1d:af:f1:e0:5b:0d:f6:85:fc:72:97: 0d:c9:3e:89:c1:97:63:09:a6:25:8a:27:69:99:0b:bd:db:8b: 29:ff:44:0a:9b:ec:75:46:20:80:fa:97:4e:a3:6f:51:8e:08: 96:8e:64:d6:c5:e9:5a:de:fc:0f:70:c8:58:ca:d8:e1:53:4b: 15:db:61:90:1d:27:a4:93:99:a1:b9:85:60:10:86:9b:51:58: 25:47:cd:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUwNDI0MTU1MzU0WhcNMjUwNTAxMTU1MzU0WjAYMRYwFAYD VQQDEw02ODBhNWU5My0wMDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVYVQDqFPATUBX0vju5Se24GzabR7mUfjtZ3OKH7Oy/8oWU2WvNX3hTZ1jsx y8yC4GwZ+u5Tasy6z5HPBRJafSNwfKVFPgOcsnnmaeWpKKHHBqQo5Yk2oONjNAik kixruPGczZFW2GY4QuEuYISkMeXFv8pOb4IRRQcaAVjyV420Cf/fEVnvhmM6+RBW barOdseYDTQ5wL/9E8KOmpCBUzkvMoS0jpHa5kGmQJNjSKvEX9rJWDQLCqU1xE8l 47n5WsgG/kuQtws7KDydy2TTQHC+lsEmHSo2AXXTe3Q0WQPiapJzqgTljd8sdKRx yaPtoApm+/PPHaGUhy9jIVLMdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCw7IEU PEGhtb6W2c96mlQn9LrSMB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhENi8yODk5MDUzMEJFNTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5 UVpjQi10TnlvMHQ4WnMtcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEvObeQa+jXJ8GS0gaspTe7BctbVR78qabjVVPx3nlsYxNDkJnDaTs BcGR6k7lSqE7meODJWef1RdsKabFlUZZMekr6Cu2OxZu6sfJ5LY+QUBwOwTbibOe EceGMH+BP7nm45F/AacE6OKYPXg1hRgOSjhMdwzuCqjjtliB2iq7mam9Q4/nrGdd C6IvpdBkpraNN5xp6yaJr2QJeFqr9XqeYT6eJULlaOnQHa/x4FsN9oX8cpcNyT6J wZdjCaYliidpmQu924sp/0QKm+x1RiCA+pdOo29RjgiWjmTWxela3vwPcMhYytjh U0sV22GQHSekk5mhuYVgEIabUVglR83N -----END CERTIFICATE-----Generated at Sat Apr 26 15:24:26 2025 by rpki-client