$ rpki-client -vvf rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft File: uMGYUq7H2lGkUL59p9lYc77eNzQ.mft (raw, json) Hash identifier: Se3ksK/beLiBChJv8zc0R+nioQPbgpsdSSIx9Ma43mc= Subject key identifier: 3A:E8:07:31:24:8F:EA:1F:35:5F:D4:14:0E:22:3C:66:FE:DE:EB:08 Authority key identifier: B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 Certificate issuer: /CN=A917C78E/serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft Manifest number: 67 Signing time: Fri 25 Apr 2025 05:57:14 +0000 Manifest this update: Fri 25 Apr 2025 05:57:14 +0000 Manifest next update: Fri 02 May 2025 05:57:14 +0000 Files and hashes: 1: uMGYUq7H2lGkUL59p9lYc77eNzQ.crl (hash: TdQ8ZKBLXF5J3EEqpkIt5iUn89WL20TUlpTzRMG7OkY=) 2: 91F29F5E86DD11EFB3D7A929C4F9AE02.roa (hash: YiOcP7W7AOtNltDYNBm9P2k2HnzTcQ0cTjwg3ge15m4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C78E, serialNumber=B8C19852AEC7DA51A450BE7DA7D95873BEDE3734 Validity Not Before: Apr 25 05:57:14 2025 GMT Not After : May 2 05:57:14 2025 GMT Subject: CN=680b243a-ce83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:73:f0:44:f6:0d:4f:60:e8:a6:a0:f3:04:d4: f3:de:38:cf:a5:73:4b:19:e0:35:f7:e3:88:a7:4f: 5a:56:9c:55:c1:cf:b1:65:34:29:64:02:af:ae:41: 7c:63:f4:b0:7f:bd:6b:85:ac:dc:50:f8:06:53:fd: 96:0d:4d:9d:5b:82:f1:18:3f:cd:3c:67:fb:3b:68: 89:b1:09:e9:ab:df:c5:09:58:75:f1:41:96:58:f4: 5f:e1:d0:d5:60:a3:8d:0e:10:09:f9:75:26:3e:e7: 3e:72:8f:0c:36:73:0e:3d:3b:cd:fb:dc:e8:cb:da: b0:6e:c1:be:4d:3b:07:00:47:c4:36:31:db:70:39: ea:e8:b1:21:37:dc:be:38:af:fa:26:4c:dc:f3:05: 0f:17:d5:59:e9:7f:48:66:60:88:45:49:0b:3a:11: 7e:4a:48:be:de:38:a4:6e:1a:71:d0:f2:e7:2c:e2: 43:29:75:e7:eb:e6:7f:60:c9:0f:e9:72:f7:b4:19: b8:a9:7b:8a:a6:90:6a:6d:a3:e9:2d:eb:b6:30:c8: 4f:40:e2:19:91:a2:79:72:6b:16:ff:ba:6f:ee:81: 38:cf:4d:92:79:6c:96:03:d1:89:3c:e6:53:a1:d9: df:6b:1e:37:90:58:03:dd:20:e0:b6:22:cc:42:a8: 15:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E8:07:31:24:8F:EA:1F:35:5F:D4:14:0E:22:3C:66:FE:DE:EB:08 X509v3 Authority Key Identifier: keyid:B8:C1:98:52:AE:C7:DA:51:A4:50:BE:7D:A7:D9:58:73:BE:DE:37:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMGYUq7H2lGkUL59p9lYc77eNzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C78E/A0201B2086DC11EFB9EAD027C4F9AE02/uMGYUq7H2lGkUL59p9lYc77eNzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:f9:12:82:2e:00:66:48:6e:ac:0e:58:2f:db:42:31:47:1d: 05:1b:e3:4e:1b:d9:80:40:da:2b:ec:69:2b:c3:47:06:75:69: 06:45:b3:d3:ce:e7:ff:6c:24:e0:1d:75:a7:a6:2d:a4:a3:b4: 22:e8:6d:12:86:28:4d:b5:fd:1e:f8:fa:13:f8:df:a3:6e:c5: 12:ca:2a:a1:f9:48:2b:ea:ad:70:93:d8:1e:a6:d2:8a:f1:a1: 78:6c:2f:ec:61:da:08:d3:94:80:59:b2:a0:06:50:de:da:5c: ea:82:af:b0:9f:e4:58:81:a7:26:6c:9f:90:df:1c:0a:8e:a5: 40:02:ee:ad:09:74:a3:a2:99:bc:cd:98:70:98:f4:82:99:e3: be:d6:46:31:f0:17:31:88:c8:7d:a7:cc:ba:7c:a9:2d:34:ff: 28:b0:e4:40:ab:16:b1:51:4e:fd:32:70:1c:f4:19:f3:21:f0: ac:d6:26:fd:3f:82:67:50:57:7d:c2:0b:51:e8:88:72:2a:53: 76:e7:7f:5b:c5:33:61:1c:1c:b7:e6:ac:a0:6d:25:00:74:a2: c4:7f:65:3e:4a:68:1f:4c:f4:64:4d:a7:af:72:40:b7:fe:2d: 44:98:53:8f:d7:77:4c:26:4d:38:59:9c:a4:d9:0b:4d:67:c8: 69:d9:85:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Qzc4RTExMC8GA1UEBRMoQjhDMTk4NTJBRUM3REE1MUE0NTBCRTdEQTdEOTU4NzNC RURFMzczNDAeFw0yNTA0MjUwNTU3MTRaFw0yNTA1MDIwNTU3MTRaMBgxFjAUBgNV BAMTDTY4MGIyNDNhLWNlODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChc/BE9g1PYOimoPME1PPeOM+lc0sZ4DX344inT1pWnFXBz7FlNClkAq+uQXxj 9LB/vWuFrNxQ+AZT/ZYNTZ1bgvEYP808Z/s7aImxCemr38UJWHXxQZZY9F/h0NVg o40OEAn5dSY+5z5yjww2cw49O8373OjL2rBuwb5NOwcAR8Q2MdtwOerosSE33L44 r/omTNzzBQ8X1Vnpf0hmYIhFSQs6EX5KSL7eOKRuGnHQ8ucs4kMpdefr5n9gyQ/p cve0Gbipe4qmkGpto+kt67YwyE9A4hmRonlyaxb/um/ugTjPTZJ5bJYD0Yk85lOh 2d9rHjeQWAPdIOC2IsxCqBXnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOugHMSSP 6h81X9QUDiI8Zv7e6wgwHwYDVR0jBBgwFoAUuMGYUq7H2lGkUL59p9lYc77eNzQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNzhFL0EwMjAxQjIwODZE QzExRUZCOUVBRDAyN0M0RjlBRTAyL3VNR1lVcTdIMmxHa1VMNTlwOWxZYzc3ZU56 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdU1HWVVxN0gybEdrVUw1OXA5bFljNzdlTnpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NzhFL0EwMjAxQjIwODZEQzExRUZCOUVBRDAyN0M0RjlBRTAyL3VNR1lVcTdIMmxH a1VMNTlwOWxZYzc3ZU56US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFD5EoIuAGZIbqwOWC/bQjFHHQUb404b2YBA2ivsaSvDRwZ1aQZFs9PO 5/9sJOAddaemLaSjtCLobRKGKE21/R74+hP436NuxRLKKqH5SCvqrXCT2B6m0orx oXhsL+xh2gjTlIBZsqAGUN7aXOqCr7Cf5FiBpyZsn5DfHAqOpUAC7q0JdKOimbzN mHCY9IKZ477WRjHwFzGIyH2nzLp8qS00/yiw5ECrFrFRTv0ycBz0GfMh8KzWJv0/ gmdQV33CC1HoiHIqU3bnf1vFM2EcHLfmrKBtJQB0osR/ZT5KaB9M9GRNp69yQLf+ LUSYU4/Xd0wmTThZnKTZC01nyGnZhQ8= -----END CERTIFICATE-----Generated at Sat Apr 26 05:27:00 2025 by rpki-client