$ rpki-client -vvf rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft File: UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft (raw, json) Hash identifier: S03Jnuwl8H83NPHtd4ouqmVurJgczgXJmjdJ5w89TcU= Subject key identifier: 25:AA:FD:8A:C2:A8:9D:21:9D:F1:A1:4F:5F:B6:A0:5D:35:DA:B5:59 Authority key identifier: 51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 Certificate issuer: /CN=A91383BF/serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft Manifest number: B2 Signing time: Fri 25 Apr 2025 05:04:25 +0000 Manifest this update: Fri 25 Apr 2025 05:04:24 +0000 Manifest next update: Fri 02 May 2025 05:04:24 +0000 Files and hashes: 1: UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl (hash: qp9maPcVuFc/GjvbBAjgBLWMC/rG9z8jZ7X/R6xvOVg=) 2: C23053B019A911EF97366417C4F9AE02.roa (hash: YYki0NriwMd0PqjU0EOE6kz16/qKzKdVDNbbepKT0IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383BF, serialNumber=51A48258D4CD6E01D2458C5B9216EFA45210B623 Validity Not Before: Apr 25 05:04:24 2025 GMT Not After : May 2 05:04:24 2025 GMT Subject: CN=680b17d9-92f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f5:59:f4:d3:8b:48:64:ba:d7:1a:5a:59:c8: a7:d3:7b:af:79:8a:82:04:44:97:bc:50:38:20:63: 8f:cf:f7:3a:4c:ad:e4:6c:c4:1f:c0:b7:3f:81:ef: fe:da:c1:17:5b:5a:cf:62:54:53:af:5f:7f:ae:69: 54:90:e2:92:5d:44:ab:22:bf:36:09:a8:cd:52:fe: 9f:e0:c2:0b:c5:2c:8a:e4:ca:06:be:a9:cc:75:b7: 8d:1c:ce:cc:46:18:eb:51:f9:95:77:85:ba:f2:c7: 64:61:5e:f6:63:55:d1:9c:fe:ae:55:b5:fb:36:cf: f6:6a:85:41:35:ed:02:52:a1:83:f0:47:80:0b:21: 17:1d:b7:dc:15:82:87:4f:9d:2d:c1:04:f3:73:7b: 3f:51:bc:e4:68:da:ad:ca:50:fa:e0:51:f3:72:ea: bb:0d:bd:14:f7:67:3d:29:3c:f7:1a:c6:ec:3e:3e: 3f:d4:d8:ea:fa:c7:da:f8:b4:df:3b:42:14:d4:aa: a5:e6:00:fd:9b:db:3c:be:b1:91:a4:27:b0:00:0e: a7:87:52:72:7e:b9:ff:4c:6f:76:97:56:84:eb:81: 3b:c9:4b:e4:0f:39:bb:26:76:19:eb:dd:0f:f9:00: 0a:aa:80:86:2c:30:dc:88:6b:9b:8c:8f:ee:4f:67: a0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:AA:FD:8A:C2:A8:9D:21:9D:F1:A1:4F:5F:B6:A0:5D:35:DA:B5:59 X509v3 Authority Key Identifier: keyid:51:A4:82:58:D4:CD:6E:01:D2:45:8C:5B:92:16:EF:A4:52:10:B6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UaSCWNTNbgHSRYxbkhbvpFIQtiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383BF/F67C61EA198111EFA5AC4753C4F9AE02/UaSCWNTNbgHSRYxbkhbvpFIQtiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:7c:e6:4e:03:a3:7f:d3:f5:1f:ed:00:c6:84:e5:46:31:e5: 39:9e:e3:bf:9c:49:67:ba:7d:0a:eb:f1:b5:d6:9b:8c:e2:a4: 03:52:8c:0a:bd:bd:7c:bb:ef:74:ae:4e:0f:e7:f3:04:84:b0: 19:20:dc:bc:e1:db:2c:6c:0c:a4:b6:8c:c7:17:fa:42:5b:53: a7:56:90:6f:76:bf:14:25:10:9f:8c:58:4f:44:c6:bf:cf:2d: 7f:64:b4:6b:0e:d5:94:60:73:b2:39:e2:6a:2c:e0:6c:0d:84: 25:3b:1d:50:f5:f6:c0:c2:84:68:5a:3b:a8:cc:65:a1:08:1c: 8a:03:6c:6a:a3:1d:41:d0:c2:65:c8:01:e6:09:4e:47:90:b3: 66:f8:31:97:da:89:80:41:5b:78:12:9d:63:52:a3:e5:37:e0: 70:0b:00:49:18:49:eb:97:97:d6:5a:26:be:a7:76:46:ec:43: 5e:4c:17:4b:c0:a1:b5:e5:52:c4:ba:e8:91:b9:92:7f:ee:31: 07:f7:a5:83:76:b6:b9:e6:1a:01:e9:52:2f:7b:d7:77:ef:8e: 78:ad:ac:de:75:07:d4:c1:8a:5a:3f:5c:cf:66:b7:25:a2:a7: 9c:ef:8b:1c:b8:29:7f:68:61:0f:24:ff:20:6b:c8:76:bd:d7: 57:03:57:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzQkYxMTAvBgNVBAUTKDUxQTQ4MjU4RDRDRDZFMDFEMjQ1OEM1QjkyMTZFRkE0 NTIxMEI2MjMwHhcNMjUwNDI1MDUwNDI0WhcNMjUwNTAyMDUwNDI0WjAYMRYwFAYD VQQDEw02ODBiMTdkOS05MmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfVZ9NOLSGS61xpaWcin03uveYqCBESXvFA4IGOPz/c6TK3kbMQfwLc/ge/+ 2sEXW1rPYlRTr19/rmlUkOKSXUSrIr82CajNUv6f4MILxSyK5MoGvqnMdbeNHM7M RhjrUfmVd4W68sdkYV72Y1XRnP6uVbX7Ns/2aoVBNe0CUqGD8EeACyEXHbfcFYKH T50twQTzc3s/UbzkaNqtylD64FHzcuq7Db0U92c9KTz3GsbsPj4/1Njq+sfa+LTf O0IU1Kql5gD9m9s8vrGRpCewAA6nh1Jyfrn/TG92l1aE64E7yUvkDzm7JnYZ690P +QAKqoCGLDDciGubjI/uT2egAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWq/YrC qJ0hnfGhT1+2oF012rVZMB8GA1UdIwQYMBaAFFGkgljUzW4B0kWMW5IW76RSELYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNCRi9GNjdDNjFFQTE5 ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJnSFNSWXhia2hidnBGSVF0 aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VhU0NXTlROYmdIU1JZeGJraGJ2cEZJUXRpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODNCRi9GNjdDNjFFQTE5ODExMUVGQTVBQzQ3NTNDNEY5QUUwMi9VYVNDV05UTmJn SFNSWXhia2hidnBGSVF0aU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSfOZOA6N/0/Uf7QDGhOVGMeU5nuO/nElnun0K6/G11puM4qQDUowK vb18u+90rk4P5/MEhLAZINy84dssbAyktozHF/pCW1OnVpBvdr8UJRCfjFhPRMa/ zy1/ZLRrDtWUYHOyOeJqLOBsDYQlOx1Q9fbAwoRoWjuozGWhCByKA2xqox1B0MJl yAHmCU5HkLNm+DGX2omAQVt4Ep1jUqPlN+BwCwBJGEnrl5fWWia+p3ZG7ENeTBdL wKG15VLEuuiRuZJ/7jEH96WDdra55hoB6VIve9d37454razedQfUwYpaP1zPZrcl oqec74scuCl/aGEPJP8ga8h2vddXA1eR -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:42 2025 by rpki-client