$ rpki-client -vvf rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft File: 7UHN-Ie33i9cIBvogU8ejfPQIB8.mft (raw, json) Hash identifier: FClJpIqINXV1QZ6itATYpF/PQGfEMvL5vqdnO6PWXlU= Subject key identifier: AA:A0:84:2A:BA:15:2A:D8:2C:7F:76:A1:A4:D7:F3:40:D9:2D:FA:69 Authority key identifier: ED:41:CD:F8:87:B7:DE:2F:5C:20:1B:E8:81:4F:1E:8D:F3:D0:20:1F Certificate issuer: /CN=A916C832/serialNumber=ED41CDF887B7DE2F5C201BE8814F1E8DF3D0201F Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft Manifest number: 04 Signing time: Fri 25 Apr 2025 07:11:41 +0000 Manifest this update: Fri 25 Apr 2025 07:11:40 +0000 Manifest next update: Fri 02 May 2025 07:11:40 +0000 Files and hashes: 1: 7UHN-Ie33i9cIBvogU8ejfPQIB8.crl (hash: kEziGDZR5Rqt5FFZiSv/L8kIMch8nhG0gj1+XTgy47Y=) 2: AA3FBE4A1E6111F093F53B75C4F9AE02.roa (hash: LSRr7TMpx9Qi1u09QfccXCZNggaDKCGxTg8r/GddSHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.crl rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C832, serialNumber=ED41CDF887B7DE2F5C201BE8814F1E8DF3D0201F Validity Not Before: Apr 25 07:11:40 2025 GMT Not After : May 2 07:11:40 2025 GMT Subject: CN=680b35ad-f8c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:f6:02:54:95:8c:f7:ed:48:71:a0:e7:0f:c0: 96:0c:06:22:48:c5:a4:7a:0d:6f:8d:b5:36:d4:23: e1:bd:89:11:87:c2:e1:9b:bc:90:2e:4f:f4:f7:f4: 77:36:5a:31:8c:a7:09:ee:21:bc:27:79:1b:b7:91: e6:bc:fb:af:7b:34:35:3a:0c:14:f1:48:56:bc:37: cf:a7:21:d0:e8:71:d2:f6:ad:b8:ca:00:82:88:54: d6:42:1c:b0:b8:ab:c9:6f:e6:6e:39:56:a5:d1:fe: de:f7:10:a2:85:89:cc:a9:aa:e9:67:40:d6:9b:50: 44:3e:c0:16:11:3e:78:6b:55:07:bb:72:f0:c2:2b: 3f:91:fb:ab:c6:db:e5:73:b4:8d:27:e4:2b:4b:82: 89:15:c8:d4:91:55:ef:81:21:4e:15:37:ec:31:b4: 36:6f:01:10:22:0a:c5:df:c2:16:6b:a0:61:75:b2: 59:c6:ea:ca:d5:02:42:24:64:93:27:e6:e1:d1:bb: c8:74:aa:9c:1d:1d:6f:d4:13:5e:a6:fd:dd:bb:24: 3a:95:bb:95:52:48:ed:1a:69:00:91:fe:d2:0b:f8: b5:f3:0d:08:61:b7:bb:ae:a1:c3:33:4e:87:d2:11: f6:d1:05:7f:6c:14:84:6a:fd:ce:e5:e0:3b:bf:8f: 1f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A0:84:2A:BA:15:2A:D8:2C:7F:76:A1:A4:D7:F3:40:D9:2D:FA:69 X509v3 Authority Key Identifier: keyid:ED:41:CD:F8:87:B7:DE:2F:5C:20:1B:E8:81:4F:1E:8D:F3:D0:20:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7UHN-Ie33i9cIBvogU8ejfPQIB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C832/5B6180601E6111F0934F6F74C4F9AE02/7UHN-Ie33i9cIBvogU8ejfPQIB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:37:6f:d4:8f:1d:5e:49:02:75:32:ad:7b:b3:53:97:74:a5: 61:b7:2d:3a:21:52:ef:ce:53:b7:4c:1f:fd:a8:07:0d:e3:97: 04:9c:a6:a0:81:db:4a:20:76:fd:3d:3d:02:95:94:ed:37:2e: 19:5e:7e:0e:67:4f:b1:ec:87:6a:0b:2d:e0:3e:74:1c:94:e2: a0:ca:15:0c:f9:57:7b:51:93:11:9a:ba:3e:cb:fb:53:10:e4: 97:b8:d5:cd:6b:dd:04:29:5e:27:95:04:3a:26:0c:8c:b3:32: 9a:0a:fa:b8:b7:1d:b2:fc:91:79:ef:0c:49:af:c9:f5:be:18: b2:5c:e4:4b:2d:56:28:9c:86:90:13:7e:c5:e7:3b:a6:98:b6: 9d:09:b4:ed:74:ae:d8:53:a5:47:95:eb:d0:37:3e:c3:28:cb: 61:ec:fc:86:75:63:df:af:9c:d3:b6:83:11:6c:c0:69:82:2a: 67:d4:ca:91:6a:c2:bf:b3:bd:90:59:a2:59:cc:ac:23:a2:93: 4f:1b:24:d1:70:ae:2c:2a:6e:22:08:e8:92:a5:01:8f:c2:bf: 7c:43:07:e5:e2:bc:78:a5:94:f1:b8:fe:d9:78:5b:6b:c6:1e: e2:b6:c3:98:6a:5c:85:86:4d:fd:0a:91:d0:f0:e0:52:b6:89: 1e:2d:c3:bf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzgzMjExMC8GA1UEBRMoRUQ0MUNERjg4N0I3REUyRjVDMjAxQkU4ODE0RjFFOERG M0QwMjAxRjAeFw0yNTA0MjUwNzExNDBaFw0yNTA1MDIwNzExNDBaMBgxFjAUBgNV BAMTDTY4MGIzNWFkLWY4YzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv9gJUlYz37UhxoOcPwJYMBiJIxaR6DW+NtTbUI+G9iRGHwuGbvJAuT/T39Hc2 WjGMpwnuIbwneRu3kea8+697NDU6DBTxSFa8N8+nIdDocdL2rbjKAIKIVNZCHLC4 q8lv5m45VqXR/t73EKKFicypqulnQNabUEQ+wBYRPnhrVQe7cvDCKz+R+6vG2+Vz tI0n5CtLgokVyNSRVe+BIU4VN+wxtDZvARAiCsXfwhZroGF1slnG6srVAkIkZJMn 5uHRu8h0qpwdHW/UE16m/d27JDqVu5VSSO0aaQCR/tIL+LXzDQhht7uuocMzTofS EfbRBX9sFIRq/c7l4Du/jx8vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqqCEKroV Ktgsf3ahpNfzQNkt+mkwHwYDVR0jBBgwFoAU7UHN+Ie33i9cIBvogU8ejfPQIB8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDODMyLzVCNjE4MDYwMUU2 MTExRjA5MzRGNkY3NEM0RjlBRTAyLzdVSE4tSWUzM2k5Y0lCdm9nVThlamZQUUlC OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1VITi1JZTMzaTljSUJ2b2dVOGVqZlBRSUI4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZD ODMyLzVCNjE4MDYwMUU2MTExRjA5MzRGNkY3NEM0RjlBRTAyLzdVSE4tSWUzM2k5 Y0lCdm9nVThlamZQUUlCOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACY3b9SPHV5JAnUyrXuzU5d0pWG3LTohUu/OU7dMH/2oBw3jlwScpqCB 20ogdv09PQKVlO03Lhlefg5nT7Hsh2oLLeA+dByU4qDKFQz5V3tRkxGauj7L+1MQ 5Je41c1r3QQpXieVBDomDIyzMpoK+ri3HbL8kXnvDEmvyfW+GLJc5EstViichpAT fsXnO6aYtp0JtO10rthTpUeV69A3PsMoy2Hs/IZ1Y9+vnNO2gxFswGmCKmfUypFq wr+zvZBZolnMrCOik08bJNFwriwqbiII6JKlAY/Cv3xDB+XivHillPG4/tl4W2vG HuK2w5hqXIWGTf0KkdDw4FK2iR4tw78= -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:21 2025 by rpki-client