$ rpki-client -vvf rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft File: U_b3klO824sdFxgs5PGdOf1JnfU.mft (raw, json) Hash identifier: 208hwrvHe9sPVMNcVIlpAK1rRMD9Cet3TPRuZCx3p2c= Subject key identifier: 89:38:E5:94:BC:35:F6:4A:5D:AE:1D:56:18:7A:C7:1C:6B:87:8B:1D Authority key identifier: 53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 Certificate issuer: /CN=A9154340/serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Certificate serial: 0630 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft Manifest number: 062B Signing time: Thu 24 Apr 2025 22:53:25 +0000 Manifest this update: Thu 24 Apr 2025 22:53:24 +0000 Manifest next update: Thu 01 May 2025 22:53:24 +0000 Files and hashes: 1: U_b3klO824sdFxgs5PGdOf1JnfU.crl (hash: 5A41eO+QNfx972TPXYkhNW+g+i+ou1ZMwcVPF+SXxTQ=) 2: 28D1785891E311EBA138E330C4F9AE02.roa (hash: jZlWStDyUEA5NOntBzhPKNNSuOk9+V2s5MhuAGQtCUc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154340, serialNumber=53F6F79253BCDB8B1D17182CE4F19D39FD499DF5 Validity Not Before: Apr 24 22:53:24 2025 GMT Not After : May 1 22:53:24 2025 GMT Subject: CN=680ac0e5-e04f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bc:5b:b6:f7:38:16:8d:17:88:e2:09:62:4a: cb:48:22:fb:b6:27:e2:4a:3d:97:ec:59:07:9d:63: 01:33:14:c2:c0:51:a2:3d:70:bf:16:fe:4d:89:dc: 96:63:c0:7a:6c:01:d7:fc:a2:83:08:26:74:ac:1f: 69:05:3c:94:67:8b:b8:b6:7b:10:70:fc:e6:48:ee: 57:85:41:a5:22:1a:ab:38:c9:a9:21:31:7d:35:c0: 87:38:01:28:01:82:60:db:93:37:f9:c9:4b:46:40: 63:25:b0:11:ab:37:90:46:b1:17:f6:8a:11:0e:bb: fc:82:a8:a0:eb:7a:bb:d5:ed:e5:07:ae:af:48:4c: 17:55:6c:36:79:97:36:02:34:00:b3:e1:65:fd:9a: ee:dc:60:bd:74:47:98:8d:cb:68:39:bb:fe:7d:50: 4a:2a:47:20:46:d8:fa:a7:a9:73:8b:29:aa:59:ab: f4:ab:a7:c4:c8:63:92:77:05:c2:cb:3f:75:93:e6: 84:a2:51:a7:a2:49:5f:0b:30:e6:41:0d:3c:5e:ce: 60:f7:ca:7b:2c:dc:c8:95:9f:9b:d2:6e:53:d9:47: e7:68:ff:52:1a:b4:16:00:9b:1e:c2:b5:33:93:ea: d9:c7:a8:2d:dc:b3:12:5a:bb:86:db:ed:6f:db:36: f6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:38:E5:94:BC:35:F6:4A:5D:AE:1D:56:18:7A:C7:1C:6B:87:8B:1D X509v3 Authority Key Identifier: keyid:53:F6:F7:92:53:BC:DB:8B:1D:17:18:2C:E4:F1:9D:39:FD:49:9D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U_b3klO824sdFxgs5PGdOf1JnfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154340/7C1FD1D291E111EBB6878C2EC4F9AE02/U_b3klO824sdFxgs5PGdOf1JnfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:d4:7a:39:9e:ef:cf:23:12:21:7f:d2:2b:2f:96:dd:c7:e1: 37:2e:e3:70:73:c6:c9:f8:74:dc:e9:94:f2:2b:95:99:a2:27: d4:d7:ab:a1:6a:b6:9a:a4:0c:b8:0e:f7:8c:7c:4d:72:e4:97: 38:b3:38:28:85:7c:43:55:f7:53:86:3f:b0:f8:fc:27:71:29: 4c:ac:12:f9:f0:55:cc:bc:ec:d3:0b:d9:1f:41:ed:48:dd:34: 52:10:19:df:6a:81:42:d8:fd:75:21:7c:b5:27:74:5c:8b:60: 57:bc:9b:61:52:f4:84:23:a9:39:00:36:08:6c:e8:20:ac:ef: 40:5b:03:65:e9:09:40:6c:bd:85:b8:14:b6:58:de:51:dc:91: d1:7f:4e:29:a7:7f:29:a0:21:89:49:32:25:67:40:90:8e:37: 2e:2d:ae:92:fb:01:a4:d9:1b:e5:88:37:18:68:0b:ad:98:d2: cd:84:5a:4f:62:7f:1d:27:35:49:ef:29:6f:24:ee:74:78:1a: 37:74:de:e7:cf:c2:1c:05:c7:e7:70:2f:c5:a4:18:76:99:4b: b6:84:a7:35:c3:90:34:e5:8b:e7:9e:aa:57:19:0d:b5:a8:01: 7f:43:35:b9:f4:85:e5:d0:2a:35:c9:c9:f2:f9:ad:62:9c:4b: c4:0b:77:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNDAxMTAvBgNVBAUTKDUzRjZGNzkyNTNCQ0RCOEIxRDE3MTgyQ0U0RjE5RDM5 RkQ0OTlERjUwHhcNMjUwNDI0MjI1MzI0WhcNMjUwNTAxMjI1MzI0WjAYMRYwFAYD VQQDEw02ODBhYzBlNS1lMDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLxbtvc4Fo0XiOIJYkrLSCL7tifiSj2X7FkHnWMBMxTCwFGiPXC/Fv5NidyW Y8B6bAHX/KKDCCZ0rB9pBTyUZ4u4tnsQcPzmSO5XhUGlIhqrOMmpITF9NcCHOAEo AYJg25M3+clLRkBjJbARqzeQRrEX9ooRDrv8gqig63q71e3lB66vSEwXVWw2eZc2 AjQAs+Fl/Zru3GC9dEeYjctoObv+fVBKKkcgRtj6p6lziymqWav0q6fEyGOSdwXC yz91k+aEolGnoklfCzDmQQ08Xs5g98p7LNzIlZ+b0m5T2UfnaP9SGrQWAJsewrUz k+rZx6gt3LMSWruG2+1v2zb2+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIk45ZS8 NfZKXa4dVhh6xxxrh4sdMB8GA1UdIwQYMBaAFFP295JTvNuLHRcYLOTxnTn9SZ31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM0MC83QzFGRDFEMjkx RTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0c2RGeGdzNVBHZE9mMUpu ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VfYjNrbE84MjRzZEZ4Z3M1UEdkT2YxSm5mVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDM0MC83QzFGRDFEMjkxRTExMUVCQjY4NzhDMkVDNEY5QUUwMi9VX2Iza2xPODI0 c2RGeGdzNVBHZE9mMUpuZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq1Ho5nu/PIxIhf9IrL5bdx+E3LuNwc8bJ+HTc6ZTyK5WZoifU16uh araapAy4DveMfE1y5Jc4szgohXxDVfdThj+w+PwncSlMrBL58FXMvOzTC9kfQe1I 3TRSEBnfaoFC2P11IXy1J3Rci2BXvJthUvSEI6k5ADYIbOggrO9AWwNl6QlAbL2F uBS2WN5R3JHRf04pp38poCGJSTIlZ0CQjjcuLa6S+wGk2RvliDcYaAutmNLNhFpP Yn8dJzVJ7ylvJO50eBo3dN7nz8IcBcfncC/FpBh2mUu2hKc1w5A05YvnnqpXGQ21 qAF/QzW59IXl0Co1ycny+a1inEvEC3di -----END CERTIFICATE-----Generated at Sat Apr 26 04:37:37 2025 by rpki-client