$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft File: UylwC03drZ4_zcMnP00Y0-MEXcA.mft (raw, json) Hash identifier: nUmz8v4+qmhbhVYCp22jR4emiXs29l+SSV47dSnYzMI= Subject key identifier: 0D:69:CB:91:B6:E3:3F:E2:B3:92:E4:01:DD:7D:D0:43:6A:03:96:CF Authority key identifier: 53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 Certificate issuer: /CN=A9143B09/serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Certificate serial: 08BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft Manifest number: 18FA Signing time: Thu 24 Apr 2025 17:22:25 +0000 Manifest this update: Thu 24 Apr 2025 17:22:24 +0000 Manifest next update: Thu 01 May 2025 17:22:24 +0000 Files and hashes: 1: UylwC03drZ4_zcMnP00Y0-MEXcA.crl (hash: rGoA2Z0vfMaFNeQW07tdHSffwjpgBGVtk2N7OGxqUxw=) 2: 31414558B0D511EFB17B942FC4F9AE02.roa (hash: mtUL6kpWcJ0s0WYAq9l26D9HLDGvLgZ5GCmZqFRcyjs=) 3: D9B56C8A7AB211EB99DAFE83C4F9AE02.roa (hash: F8NUI5IF7FjRVcKD/tqhJ5Q4QNzh0QGai7XMrRHjkus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:22:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2237 (0x8bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09, serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Validity Not Before: Apr 24 17:22:24 2025 GMT Not After : May 1 17:22:24 2025 GMT Subject: CN=680a7351-f8e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:8e:21:a4:99:1b:ce:00:89:4b:6e:5c:64:d5: d8:24:f6:7a:8f:bf:37:b9:16:e2:23:16:8a:5b:3b: b3:0d:05:24:4b:d9:71:82:a8:e7:bb:f9:09:13:bb: 5f:4d:c8:2b:00:e1:cd:4f:02:4b:7f:70:98:89:f1: 79:ca:d5:c1:19:d7:07:c1:79:cf:c4:22:84:6d:7f: 6e:3d:67:86:e9:32:fa:c8:4d:8f:b3:ea:36:8d:c6: a0:04:82:13:40:fd:5d:73:a1:58:d1:ee:d3:08:ab: d3:09:b0:7f:fa:8a:72:1a:5e:31:a2:55:36:6a:d2: 5f:f1:e3:94:75:1c:16:80:48:a8:88:dd:22:d8:42: 62:2e:97:7e:49:49:cd:9f:16:4b:5f:fb:99:4f:07: e4:c8:a6:60:11:11:41:3f:12:1f:f5:e7:1d:d9:f8: b3:55:16:83:1d:60:03:96:c0:2c:40:89:39:1d:91: da:c0:d1:d7:8b:c1:87:5f:2e:13:26:b4:39:9b:91: 43:c3:81:5a:b2:eb:a8:38:44:8a:c2:fc:92:91:37: 75:96:ca:24:05:25:aa:23:e7:03:3c:d3:d5:74:15: 35:6b:74:c2:d2:b9:cb:21:8d:b1:7a:2b:0e:b9:b8: 72:c3:bd:70:44:d1:7b:ef:76:70:dd:07:37:aa:cc: ac:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:69:CB:91:B6:E3:3F:E2:B3:92:E4:01:DD:7D:D0:43:6A:03:96:CF X509v3 Authority Key Identifier: keyid:53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:03:c3:0d:c8:93:28:c9:a5:cd:1b:f3:ce:6c:5d:be:e8:85: c0:a9:fa:c1:70:28:42:1c:d1:69:96:92:4a:2e:c1:05:3b:1a: d1:65:d1:fe:49:71:bc:e7:cf:d7:9b:4d:5f:00:60:e9:f3:e7: fa:20:76:c9:b9:bb:36:27:ba:b8:34:ba:17:11:25:17:8e:82: 54:c1:93:bf:91:8e:9a:d6:59:3b:3a:b0:fc:b9:ca:ca:51:40: 24:9a:12:20:7d:f2:4c:e6:01:e7:88:d4:8c:bf:f6:60:b6:ff: b2:2a:a2:f5:23:b5:19:64:99:7e:f2:52:c2:38:8b:28:95:65: c5:15:e7:0a:5e:53:a9:2d:8d:79:eb:47:f2:fa:63:f7:5e:7f: 04:90:b3:79:c9:ce:0e:0d:03:52:4d:b5:78:46:ab:2c:f8:17: 7a:93:38:c4:96:3d:5d:68:40:31:94:b1:3b:b6:86:52:b3:ea: 55:a0:09:3d:5c:97:8c:aa:35:01:64:9c:07:ef:ab:ab:1c:ef: 66:c6:08:59:1c:14:c3:68:6d:5b:cb:b4:37:93:e1:52:a2:31: 2d:18:ec:7f:97:d3:a5:88:8b:90:64:8b:23:e7:7d:51:04:c6: 8e:00:48:78:73:f7:da:a7:7e:4d:a5:98:fa:08:ae:51:a9:f4: e4:91:ab:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKDUzMjk3MDBCNEREREFEOUUzRkNEQzMyNzNGNEQxOEQz RTMwNDVEQzAwHhcNMjUwNDI0MTcyMjI0WhcNMjUwNTAxMTcyMjI0WjAYMRYwFAYD VQQDEw02ODBhNzM1MS1mOGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy44hpJkbzgCJS25cZNXYJPZ6j783uRbiIxaKWzuzDQUkS9lxgqjnu/kJE7tf TcgrAOHNTwJLf3CYifF5ytXBGdcHwXnPxCKEbX9uPWeG6TL6yE2Ps+o2jcagBIIT QP1dc6FY0e7TCKvTCbB/+opyGl4xolU2atJf8eOUdRwWgEioiN0i2EJiLpd+SUnN nxZLX/uZTwfkyKZgERFBPxIf9ecd2fizVRaDHWADlsAsQIk5HZHawNHXi8GHXy4T JrQ5m5FDw4FasuuoOESKwvySkTd1lsokBSWqI+cDPNPVdBU1a3TC0rnLIY2xeisO ubhyw71wRNF773Zw3Qc3qsysQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1py5G2 4z/is5LkAd190ENqA5bPMB8GA1UdIwQYMBaAFFMpcAtN3a2eP83DJz9NGNPjBF3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJaNF96Y01uUDAwWTAtTUVY Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5bHdDMDNkclo0X3pjTW5QMDBZMC1NRVhjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJa NF96Y01uUDAwWTAtTUVYY0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlA8MNyJMoyaXNG/PObF2+6IXAqfrBcChCHNFplpJKLsEFOxrRZdH+ SXG858/Xm01fAGDp8+f6IHbJubs2J7q4NLoXESUXjoJUwZO/kY6a1lk7OrD8ucrK UUAkmhIgffJM5gHniNSMv/Zgtv+yKqL1I7UZZJl+8lLCOIsolWXFFecKXlOpLY15 60fy+mP3Xn8EkLN5yc4ODQNSTbV4Rqss+Bd6kzjElj1daEAxlLE7toZSs+pVoAk9 XJeMqjUBZJwH76urHO9mxghZHBTDaG1by7Q3k+FSojEtGOx/l9OliIuQZIsj531R BMaOAEh4c/fap35NpZj6CK5RqfTkkasW -----END CERTIFICATE-----Generated at Sat Apr 26 08:13:17 2025 by rpki-client