$ rpki-client -vvf rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft File: Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft (raw, json) Hash identifier: +BjfFmXSaT5/0MdbOgZKEkITxcU1DFpV0KiDBgC1o0E= Subject key identifier: D1:EA:49:78:FF:5A:B1:89:E6:11:DC:D0:A8:0D:5C:D9:61:66:79:A8 Authority key identifier: 53:0F:CD:29:9E:77:5B:8A:CB:27:52:A0:3A:FA:A7:D1:81:E5:00:EE Certificate issuer: /CN=A913DC32/serialNumber=530FCD299E775B8ACB2752A03AFAA7D181E500EE Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft Manifest number: 1B Signing time: Fri 25 Apr 2025 06:56:14 +0000 Manifest this update: Fri 25 Apr 2025 06:56:14 +0000 Manifest next update: Fri 02 May 2025 06:56:14 +0000 Files and hashes: 1: Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.crl (hash: KsG4t3iEC5CJCvDv+DXTpeEXb8CQtcWzPVb36l/KVio=) 2: 455B2534FD0811EF85ADED79C4F9AE02.roa (hash: EqPvfZWybFxDEzuqUOMumy7hGqKdVROQozF26OVvW/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.crl rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DC32, serialNumber=530FCD299E775B8ACB2752A03AFAA7D181E500EE Validity Not Before: Apr 25 06:56:14 2025 GMT Not After : May 2 06:56:14 2025 GMT Subject: CN=680b320e-18d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:54:cf:f2:68:a9:66:5e:86:49:4f:81:2b:f0: 21:fb:d2:e9:52:01:e9:8a:cf:6b:b0:c9:8a:1b:e9: 39:28:ac:88:bd:3c:84:e9:73:86:24:cb:95:cd:96: b1:af:97:7d:18:df:bf:7d:c1:57:0f:90:c7:6a:55: 30:e8:4c:a7:98:37:1f:2a:d0:c0:bd:39:2f:4b:25: 34:9d:52:72:25:cf:31:7d:43:a5:b4:2e:e8:4d:5d: d9:47:9c:d3:2c:62:70:6a:4b:14:55:18:d2:03:71: c3:1f:60:a3:8a:46:7d:55:67:f6:bf:76:17:7f:98: 98:d9:37:0b:66:44:4e:d0:16:0e:a9:9e:92:3a:5e: 96:a5:1e:02:8c:57:05:9f:2e:46:d8:07:c2:6e:11: c8:3d:cd:a1:f8:99:f0:fb:12:8b:70:47:51:b9:26: 1b:06:43:d4:e3:36:96:d4:e0:38:67:10:66:6e:b0: 05:4d:30:17:e8:55:d4:0e:09:3f:59:42:3f:bb:10: 56:5c:42:60:01:bc:3a:c8:0b:c8:69:1b:58:f3:7a: e0:64:10:d1:81:22:5a:88:b0:9d:ec:df:4d:64:b6: c7:b5:af:d4:90:b8:60:d7:65:ee:53:aa:74:d9:79: e4:2c:50:60:b5:75:67:a2:fd:8b:67:3a:a1:f0:96: 11:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EA:49:78:FF:5A:B1:89:E6:11:DC:D0:A8:0D:5C:D9:61:66:79:A8 X509v3 Authority Key Identifier: keyid:53:0F:CD:29:9E:77:5B:8A:CB:27:52:A0:3A:FA:A7:D1:81:E5:00:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:53:05:4e:af:72:ba:a5:f7:98:82:c7:68:ba:08:31:c7:69: ba:0b:51:d7:ef:57:76:79:6a:ea:24:e3:54:0d:54:d8:82:a7: 81:a6:3f:a2:35:1d:fc:3b:c9:53:40:9f:0c:e8:e8:70:0a:2b: bf:dc:13:88:5c:25:da:e6:8d:ca:7b:d1:18:d5:54:72:2e:02: 8f:e5:3e:4e:ff:d8:36:67:6d:ca:1b:93:32:84:99:3b:ba:a9: 72:56:05:8c:a9:94:e5:fa:3e:c7:3b:d7:be:10:99:c8:23:ac: 5d:c5:86:c6:54:30:e4:af:e9:33:54:3c:06:9f:74:f5:5c:8a: c1:c9:02:08:81:3f:7a:0e:7e:61:e4:19:51:67:da:fa:6a:6b: 96:6b:99:2e:7a:1d:c0:3e:80:f2:57:be:73:d4:f2:47:70:60: ac:25:e7:87:b3:c1:06:f0:9a:f2:d0:68:78:0e:d0:9e:b5:3b: 1d:4f:0c:31:f9:03:c2:4c:9d:2a:29:ae:6c:d3:52:b5:f6:a4: 68:66:91:82:0a:ad:fb:97:55:dd:ef:ba:2f:ab:85:9d:ae:03: 33:f8:26:81:a7:ec:20:cc:77:39:c3:72:2b:fc:1c:6c:b3:40: c3:b9:62:b3:74:90:d0:59:23:1c:6c:eb:5d:63:30:e3:64:a6: dc:db:98:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz REMzMjExMC8GA1UEBRMoNTMwRkNEMjk5RTc3NUI4QUNCMjc1MkEwM0FGQUE3RDE4 MUU1MDBFRTAeFw0yNTA0MjUwNjU2MTRaFw0yNTA1MDIwNjU2MTRaMBgxFjAUBgNV BAMTDTY4MGIzMjBlLTE4ZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCVM/yaKlmXoZJT4Er8CH70ulSAemKz2uwyYob6TkorIi9PITpc4Yky5XNlrGv l30Y3799wVcPkMdqVTDoTKeYNx8q0MC9OS9LJTSdUnIlzzF9Q6W0LuhNXdlHnNMs YnBqSxRVGNIDccMfYKOKRn1VZ/a/dhd/mJjZNwtmRE7QFg6pnpI6XpalHgKMVwWf LkbYB8JuEcg9zaH4mfD7EotwR1G5JhsGQ9TjNpbU4DhnEGZusAVNMBfoVdQOCT9Z Qj+7EFZcQmABvDrIC8hpG1jzeuBkENGBIlqIsJ3s301ktse1r9SQuGDXZe5TqnTZ eeQsUGC1dWei/YtnOqHwlhFDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0epJeP9a sYnmEdzQqA1c2WFmeagwHwYDVR0jBBgwFoAUUw/NKZ53W4rLJ1KgOvqn0YHlAO4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEQzMyLzg0MEExNkIwRkNG RDExRUZBREI4NjExNUM0RjlBRTAyL1V3X05LWjUzVzRyTEoxS2dPdnFuMFlIbEFP NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVXdfTktaNTNXNHJMSjFLZ092cW4wWUhsQU80LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE QzMyLzg0MEExNkIwRkNGRDExRUZBREI4NjExNUM0RjlBRTAyL1V3X05LWjUzVzRy TEoxS2dPdnFuMFlIbEFPNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACJTBU6vcrql95iCx2i6CDHHaboLUdfvV3Z5auok41QNVNiCp4GmP6I1 Hfw7yVNAnwzo6HAKK7/cE4hcJdrmjcp70RjVVHIuAo/lPk7/2DZnbcobkzKEmTu6 qXJWBYyplOX6Psc7174QmcgjrF3FhsZUMOSv6TNUPAafdPVcisHJAgiBP3oOfmHk GVFn2vpqa5ZrmS56HcA+gPJXvnPU8kdwYKwl54ezwQbwmvLQaHgO0J61Ox1PDDH5 A8JMnSoprmzTUrX2pGhmkYIKrfuXVd3vui+rhZ2uAzP4JoGn7CDMdznDciv8HGyz QMO5YrN0kNBZIxxs611jMONkptzbmI0= -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:52 2025 by rpki-client