$ rpki-client -vvf rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft File: uRokzwRxERfIw7omSjM5Xad_kbQ.mft (raw, json) Hash identifier: ltVykibX7oAoHZiW5RnL3Rm0QmyGT+a6hORagSQxhnM= Subject key identifier: 91:26:A3:A1:49:B9:93:60:E9:8E:8C:07:5C:8C:8E:17:0E:D7:E0:13 Authority key identifier: B9:1A:24:CF:04:71:11:17:C8:C3:BA:26:4A:33:39:5D:A7:7F:91:B4 Certificate issuer: /CN=A9133BB0/serialNumber=B91A24CF04711117C8C3BA264A33395DA77F91B4 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft Manifest number: 86 Signing time: Fri 25 Apr 2025 05:30:58 +0000 Manifest this update: Fri 25 Apr 2025 05:30:57 +0000 Manifest next update: Fri 02 May 2025 05:30:57 +0000 Files and hashes: 1: uRokzwRxERfIw7omSjM5Xad_kbQ.crl (hash: QUe/DLolzse6+7ekawO/Ih7XELYurp1pkaKa3GZctoU=) 2: 27995372566911EF9D53B517C4F9AE02.roa (hash: xq/tIHChRUQ/SVgEnorDvzsCIu9u4UcNJR+//ggbghs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.crl rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:30:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133BB0, serialNumber=B91A24CF04711117C8C3BA264A33395DA77F91B4 Validity Not Before: Apr 25 05:30:57 2025 GMT Not After : May 2 05:30:57 2025 GMT Subject: CN=680b1e12-bdbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:aa:c8:ba:a5:02:a3:3d:8f:da:31:37:0c:e3: d5:71:70:cb:45:3d:9c:8b:15:48:37:dd:2d:75:7b: 12:18:00:57:b8:c2:2d:6b:e8:67:35:fd:21:16:4c: 40:20:9f:42:01:c2:6e:3b:27:98:7e:f3:8d:76:7a: b0:b5:2b:9d:8c:79:9d:c4:84:71:07:98:aa:9c:15: 05:75:4b:f9:cd:ac:f8:b0:73:46:06:dc:b9:9a:2b: 57:bd:40:0a:a4:a8:1f:11:fa:17:12:83:01:33:4d: a9:d7:db:c7:c4:3d:c5:cb:78:17:e5:3d:1c:bf:d6: 81:86:76:ce:4f:6b:5b:63:64:4e:d7:b2:bb:cc:46: 7f:e4:09:a5:42:a3:23:00:f3:d0:58:a9:e9:5e:42: de:1a:84:14:e9:4f:ef:9f:ea:0d:a5:0a:ab:16:dd: 2a:e4:39:a8:5a:1c:c6:cf:a0:f0:42:dd:71:15:91: 28:02:29:5e:ac:1a:7d:54:c2:f7:0b:7b:56:30:92: b0:79:6d:92:40:4d:65:c4:59:88:31:d2:2b:ce:f5: cf:92:85:b4:32:55:79:58:b7:76:2c:f3:1f:a6:fb: ba:18:74:d3:16:29:2d:2d:ee:5e:00:b1:65:a6:aa: 58:f3:9c:fd:3f:65:58:f3:12:08:24:67:97:e5:0d: 91:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:26:A3:A1:49:B9:93:60:E9:8E:8C:07:5C:8C:8E:17:0E:D7:E0:13 X509v3 Authority Key Identifier: keyid:B9:1A:24:CF:04:71:11:17:C8:C3:BA:26:4A:33:39:5D:A7:7F:91:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uRokzwRxERfIw7omSjM5Xad_kbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133BB0/B865B37E566811EF8E6A775DC4F9AE02/uRokzwRxERfIw7omSjM5Xad_kbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:59:38:30:b4:84:9d:46:81:7f:45:d2:46:6d:32:39:97:f3: e7:0d:91:38:ad:1f:f0:4a:50:cb:c4:8e:53:7d:79:1b:22:ec: 86:f7:db:93:99:8d:99:c7:6d:0d:2e:fe:0d:15:65:58:48:e0: 21:1f:08:bf:84:74:a8:ed:30:f5:14:72:4a:4c:f7:02:7c:1b: bf:ad:cc:1d:3d:95:37:eb:fc:a6:f0:af:6a:bf:58:74:f6:6a: 03:d1:41:22:c3:b2:80:d8:19:8a:21:02:ec:fa:f1:2f:b3:34: a2:f8:0c:33:85:b9:c8:91:55:e0:9b:06:aa:2f:83:11:dd:80: a4:85:9d:66:f3:f3:c7:18:97:5a:17:0a:e0:b3:05:d5:18:61: 36:18:17:b2:2d:c8:50:e3:72:15:c9:2d:10:c1:8f:f3:d6:9c: 01:b8:9f:3e:23:15:76:fc:25:69:67:f9:17:8a:4f:e0:70:d9: 10:85:f2:62:07:4d:a5:33:06:75:b4:3e:68:d0:b8:cd:da:0e: 34:e8:93:ba:3d:69:48:07:23:ca:11:16:28:3f:e2:4d:0c:2b: da:13:d1:58:57:cb:2d:2a:15:e5:7b:1f:da:30:be:23:b9:60: f6:8f:52:c2:fa:33:99:6d:90:99:0d:4d:1c:00:1a:a8:40:8d: b2:03:d7:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCQjAxMTAvBgNVBAUTKEI5MUEyNENGMDQ3MTExMTdDOEMzQkEyNjRBMzMzOTVE QTc3RjkxQjQwHhcNMjUwNDI1MDUzMDU3WhcNMjUwNTAyMDUzMDU3WjAYMRYwFAYD VQQDEw02ODBiMWUxMi1iZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qrIuqUCoz2P2jE3DOPVcXDLRT2cixVIN90tdXsSGABXuMIta+hnNf0hFkxA IJ9CAcJuOyeYfvONdnqwtSudjHmdxIRxB5iqnBUFdUv5zaz4sHNGBty5mitXvUAK pKgfEfoXEoMBM02p19vHxD3Fy3gX5T0cv9aBhnbOT2tbY2RO17K7zEZ/5AmlQqMj APPQWKnpXkLeGoQU6U/vn+oNpQqrFt0q5DmoWhzGz6DwQt1xFZEoAilerBp9VML3 C3tWMJKweW2SQE1lxFmIMdIrzvXPkoW0MlV5WLd2LPMfpvu6GHTTFiktLe5eALFl pqpY85z9P2VY8xIIJGeX5Q2RUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEmo6FJ uZNg6Y6MB1yMjhcO1+ATMB8GA1UdIwQYMBaAFLkaJM8EcREXyMO6JkozOV2nf5G0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0JCMC9CODY1QjM3RTU2 NjgxMUVGOEU2QTc3NURDNEY5QUUwMi91Um9rendSeEVSZkl3N29tU2pNNVhhZF9r YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VSb2t6d1J4RVJmSXc3b21Tak01WGFkX2tiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0JCMC9CODY1QjM3RTU2NjgxMUVGOEU2QTc3NURDNEY5QUUwMi91Um9rendSeEVS Zkl3N29tU2pNNVhhZF9rYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbWTgwtISdRoF/RdJGbTI5l/PnDZE4rR/wSlDLxI5TfXkbIuyG99uT mY2Zx20NLv4NFWVYSOAhHwi/hHSo7TD1FHJKTPcCfBu/rcwdPZU36/ym8K9qv1h0 9moD0UEiw7KA2BmKIQLs+vEvszSi+AwzhbnIkVXgmwaqL4MR3YCkhZ1m8/PHGJda FwrgswXVGGE2GBeyLchQ43IVyS0QwY/z1pwBuJ8+IxV2/CVpZ/kXik/gcNkQhfJi B02lMwZ1tD5o0LjN2g406JO6PWlIByPKERYoP+JNDCvaE9FYV8stKhXlex/aML4j uWD2j1LC+jOZbZCZDU0cABqoQI2yA9dO -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:44 2025 by rpki-client