$ rpki-client -vvf rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft File: uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft (raw, json) Hash identifier: cyej3e9XHrSk+OIbrgmHYEqMuquBSZWgi8LfNdhwxfw= Subject key identifier: 3A:9C:F7:F1:EF:BB:B8:EA:13:D3:27:FD:1D:3D:9E:9D:AF:6A:89:3B Authority key identifier: B9:A0:BE:FF:92:AF:7C:DE:19:00:85:05:2F:1F:4F:1F:92:BD:A4:F2 Certificate issuer: /CN=A9133E16/serialNumber=B9A0BEFF92AF7CDE190085052F1F4F1F92BDA4F2 Certificate serial: 08D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft Manifest number: 08D5 Signing time: Thu 24 Apr 2025 20:18:57 +0000 Manifest this update: Thu 24 Apr 2025 20:18:56 +0000 Manifest next update: Thu 01 May 2025 20:18:56 +0000 Files and hashes: 1: uaC-_5KvfN4ZAIUFLx9PH5K9pPI.crl (hash: Ujz7qFXBle8FVdgll0r3kIYkcxJAq/ZC/uScPtKH4F4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.crl rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:18:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2261 (0x8d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133E16, serialNumber=B9A0BEFF92AF7CDE190085052F1F4F1F92BDA4F2 Validity Not Before: Apr 24 20:18:56 2025 GMT Not After : May 1 20:18:56 2025 GMT Subject: CN=680a9cb0-d4c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:65:1f:f9:64:bb:cf:48:20:22:6e:73:b1:f9: e9:57:06:a7:89:ae:63:e0:8c:26:4d:f6:3a:91:45: 8c:3b:21:4a:b8:48:68:81:fd:d5:91:96:91:37:11: eb:65:12:3d:85:a5:f3:85:c9:c9:47:8e:0a:4e:a3: 04:51:62:c7:df:17:a6:47:11:22:83:b7:63:0d:0b: a0:78:f6:0b:1a:c5:2c:a5:3a:ab:64:02:d4:a7:2f: e1:46:bc:59:35:f8:e9:8d:68:3f:da:b1:b7:57:9e: 6a:68:18:12:5a:31:31:f1:90:84:ad:93:69:a6:83: ea:7e:56:82:f2:b3:28:f6:18:17:48:03:d7:09:9e: 6d:97:3b:49:1c:87:6e:cd:51:4c:1d:17:9a:a9:56: f2:00:e2:02:ff:da:ea:3d:40:af:a7:78:d7:75:8a: c8:6d:32:89:28:32:63:60:4d:ad:2c:59:5b:c3:b3: 4b:ae:a8:ec:91:35:e6:a9:d5:67:64:64:4b:eb:b7: 90:9a:ed:5b:c1:d7:3b:e8:89:c3:78:e5:dd:9a:5a: db:a1:f7:05:82:4a:11:34:fc:d8:21:da:d2:70:26: e6:dc:03:6d:7b:96:2b:8b:23:f9:e7:57:81:0c:c1: 7e:7f:5d:b7:58:c8:c2:11:31:a2:83:7a:dd:33:fc: 6b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9C:F7:F1:EF:BB:B8:EA:13:D3:27:FD:1D:3D:9E:9D:AF:6A:89:3B X509v3 Authority Key Identifier: keyid:B9:A0:BE:FF:92:AF:7C:DE:19:00:85:05:2F:1F:4F:1F:92:BD:A4:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133E16/D5094FA6AC7411EA86EA9F48C4F9AE02/uaC-_5KvfN4ZAIUFLx9PH5K9pPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:21:69:4f:81:5f:9c:99:b6:a5:76:2a:37:ba:b5:9a:3e:7b: 27:dc:43:de:51:6c:d1:a2:73:41:a2:50:18:a8:c7:bc:77:c3: cd:ee:21:fb:de:6a:78:14:06:4c:2f:b2:5b:83:95:1b:7e:b5: 35:2d:74:c0:12:a5:c6:67:d7:f3:72:2b:c6:0a:e6:7e:b4:73: 96:86:04:70:41:e0:2d:cb:48:e7:16:96:5d:36:44:fc:97:94: d2:98:cf:43:28:0f:84:6d:5a:e4:88:37:df:54:f8:a8:1e:c8: de:1a:48:38:f6:0f:09:db:b0:d7:c1:cc:b1:2e:53:1d:16:bd: dc:94:16:1b:83:f9:31:1e:52:22:78:7f:d8:4f:2e:9d:b2:84: 4b:3c:b7:12:9a:0a:b3:b7:98:a4:ec:2e:43:7b:82:a4:5b:98: 17:5b:64:4d:49:b6:ea:cd:a4:d3:e9:8a:16:6b:ed:c4:7a:29: 6a:c4:3e:11:2e:68:a0:0a:66:a1:3e:58:75:72:ce:78:ae:5d: 1d:f8:e5:7e:db:d2:35:5d:24:9d:8d:5f:7a:ba:99:ff:39:79: 20:4e:43:f1:34:86:6a:7b:11:54:2d:54:38:83:c2:17:41:a0: e7:c8:fd:3f:38:01:41:31:45:5b:35:41:5f:af:b8:29:05:bc: a3:1f:ea:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNFMTYxMTAvBgNVBAUTKEI5QTBCRUZGOTJBRjdDREUxOTAwODUwNTJGMUY0RjFG OTJCREE0RjIwHhcNMjUwNDI0MjAxODU2WhcNMjUwNTAxMjAxODU2WjAYMRYwFAYD VQQDEw02ODBhOWNiMC1kNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmUf+WS7z0ggIm5zsfnpVwania5j4IwmTfY6kUWMOyFKuEhogf3VkZaRNxHr ZRI9haXzhcnJR44KTqMEUWLH3xemRxEig7djDQugePYLGsUspTqrZALUpy/hRrxZ NfjpjWg/2rG3V55qaBgSWjEx8ZCErZNppoPqflaC8rMo9hgXSAPXCZ5tlztJHIdu zVFMHReaqVbyAOIC/9rqPUCvp3jXdYrIbTKJKDJjYE2tLFlbw7NLrqjskTXmqdVn ZGRL67eQmu1bwdc76InDeOXdmlrbofcFgkoRNPzYIdrScCbm3ANte5YriyP551eB DMF+f123WMjCETGig3rdM/xrUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqc9/Hv u7jqE9Mn/R09np2vaok7MB8GA1UdIwQYMBaAFLmgvv+Sr3zeGQCFBS8fTx+SvaTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0UxNi9ENTA5NEZBNkFD NzQxMUVBODZFQTlGNDhDNEY5QUUwMi91YUMtXzVLdmZONFpBSVVGTHg5UEg1Szlw UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VhQy1fNUt2Zk40WkFJVUZMeDlQSDVLOXBQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0UxNi9ENTA5NEZBNkFDNzQxMUVBODZFQTlGNDhDNEY5QUUwMi91YUMtXzVLdmZO NFpBSVVGTHg5UEg1SzlwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/IWlPgV+cmbaldio3urWaPnsn3EPeUWzRonNBolAYqMe8d8PN7iH7 3mp4FAZML7Jbg5UbfrU1LXTAEqXGZ9fzcivGCuZ+tHOWhgRwQeAty0jnFpZdNkT8 l5TSmM9DKA+EbVrkiDffVPioHsjeGkg49g8J27DXwcyxLlMdFr3clBYbg/kxHlIi eH/YTy6dsoRLPLcSmgqzt5ik7C5De4KkW5gXW2RNSbbqzaTT6YoWa+3EeilqxD4R LmigCmahPlh1cs54rl0d+OV+29I1XSSdjV96upn/OXkgTkPxNIZqexFULVQ4g8IX QaDnyP0/OAFBMUVbNUFfr7gpBbyjH+oD -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:03 2025 by rpki-client