$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft File: UT8gd9itkRrHe1tcWbPiFMeLAjs.mft (raw, json) Hash identifier: J1a+jC4wAA5pHHGwQ3ZiLMAmN8iSbHJaNyT3faz+C+I= Subject key identifier: DF:42:2E:A2:20:2C:C5:14:FF:81:0E:F6:AB:C0:1D:BA:72:72:2A:9D Authority key identifier: 51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B Certificate issuer: /CN=A917E1B9/serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Certificate serial: 05A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft Manifest number: 059E Signing time: Thu 24 Apr 2025 22:59:15 +0000 Manifest this update: Thu 24 Apr 2025 22:59:14 +0000 Manifest next update: Thu 01 May 2025 22:59:14 +0000 Files and hashes: 1: UT8gd9itkRrHe1tcWbPiFMeLAjs.crl (hash: RXdOX+paUDEGefTu3eIUzf+XpWwu/p/CPCg0btvkVKg=) 2: 7F27A9D6C88211EBB7A6F948C4F9AE02.roa (hash: iMlOmr2fNq87x6S0R4H0l10i8IQao1B6aqgg50klXMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:59:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1443 (0x5a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1B9, serialNumber=513F2077D8AD911AC77B5B5C59B3E214C78B023B Validity Not Before: Apr 24 22:59:14 2025 GMT Not After : May 1 22:59:14 2025 GMT Subject: CN=680ac243-840c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:77:9f:24:0a:7e:8b:21:b1:a1:04:50:8f: b9:b6:88:7b:ad:f5:2b:68:9e:22:69:da:eb:38:ed: 74:f8:db:58:9a:09:a5:21:f4:8b:f3:f3:df:be:1a: 83:e2:80:b7:33:e7:5e:c6:71:b1:e6:50:8c:13:e6: 00:45:53:77:f9:b2:31:00:da:8e:ba:5a:a6:29:34: 1e:7e:3c:ea:ef:79:94:be:41:58:05:77:3c:78:44: 80:0f:68:94:b0:ed:a1:4b:ff:d4:0e:2b:18:9b:6b: 45:31:6a:06:b3:06:bd:16:9c:2a:17:55:12:ac:b0: 36:8b:bf:68:6d:4b:70:99:e2:c6:11:b2:50:ab:c4: 34:7a:1c:c0:e0:a8:0e:55:76:01:a0:66:c2:85:b1: 8b:35:b3:91:24:eb:51:10:b9:e6:42:e4:eb:d9:29: 95:5e:ea:a6:df:c3:c0:46:2b:da:d8:4e:e7:e5:07: 34:45:13:4d:34:7a:68:58:02:2e:25:9e:ad:9d:af: 84:4c:df:5e:3e:ab:b8:58:7e:3c:63:29:3c:b4:98: f6:c0:84:cd:f5:5d:9a:bb:a8:8e:79:31:00:00:d1: 1a:4f:b2:ee:c3:e2:b4:06:b7:ba:cd:ea:ad:f5:0f: b3:e8:db:ea:14:ba:53:47:17:6e:a4:33:ed:ce:40: 13:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:42:2E:A2:20:2C:C5:14:FF:81:0E:F6:AB:C0:1D:BA:72:72:2A:9D X509v3 Authority Key Identifier: keyid:51:3F:20:77:D8:AD:91:1A:C7:7B:5B:5C:59:B3:E2:14:C7:8B:02:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT8gd9itkRrHe1tcWbPiFMeLAjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1B9/CDB702F6C87B11EBAFA6953BC4F9AE02/UT8gd9itkRrHe1tcWbPiFMeLAjs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:19:da:a5:ec:90:66:dc:2a:4f:6a:2d:3a:ce:36:f4:1a:a7: 2f:db:1b:45:bc:82:75:b1:bc:33:da:69:15:54:8b:ff:ab:7b: 74:42:c9:ce:e8:7a:9e:e1:9b:15:03:11:f3:d7:69:18:38:46: ea:1b:10:2d:45:5a:30:9d:f5:75:df:01:4b:81:91:62:50:2a: 76:93:d2:06:d7:00:38:f2:be:b1:dd:ea:a4:f4:71:34:7a:87: 5e:50:17:90:f7:d9:33:6a:f2:d2:1f:a8:e8:5e:51:46:28:4a: 11:d5:d5:70:b0:4f:ad:f1:c2:ae:f5:f7:65:4d:4c:88:b0:8e: 4b:41:99:84:9e:f4:67:08:e1:39:be:e0:1f:40:b2:a3:f5:44: 6f:a9:fb:15:0f:8b:7c:e7:dc:ba:0c:a8:4e:41:32:41:41:fa: 13:3b:99:7e:e8:01:64:cb:17:3a:9c:13:2c:09:39:5c:43:0e: 7a:b8:da:0d:ef:9d:a1:ec:4b:f2:81:ca:20:40:62:9d:47:8b: 5b:f8:17:3a:29:83:e5:30:7f:5a:30:87:cd:37:c8:f5:ee:a9: a2:c5:51:e2:9e:8e:b9:3b:77:07:c1:b9:9f:73:97:e9:cc:b8: 15:ae:5e:bb:ee:77:3f:05:aa:da:d5:55:ac:99:a2:f7:1a:65: 5a:2a:be:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxQjkxMTAvBgNVBAUTKDUxM0YyMDc3RDhBRDkxMUFDNzdCNUI1QzU5QjNFMjE0 Qzc4QjAyM0IwHhcNMjUwNDI0MjI1OTE0WhcNMjUwNTAxMjI1OTE0WjAYMRYwFAYD VQQDEw02ODBhYzI0My04NDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLd3nyQKfoshsaEEUI+5toh7rfUraJ4iadrrOO10+NtYmgmlIfSL8/PfvhqD 4oC3M+dexnGx5lCME+YARVN3+bIxANqOulqmKTQefjzq73mUvkFYBXc8eESAD2iU sO2hS//UDisYm2tFMWoGswa9FpwqF1USrLA2i79obUtwmeLGEbJQq8Q0ehzA4KgO VXYBoGbChbGLNbORJOtRELnmQuTr2SmVXuqm38PARiva2E7n5Qc0RRNNNHpoWAIu JZ6tna+ETN9ePqu4WH48Yyk8tJj2wITN9V2au6iOeTEAANEaT7Luw+K0Bre6zeqt 9Q+z6NvqFLpTRxdupDPtzkAT0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9CLqIg LMUU/4EO9qvAHbpyciqdMB8GA1UdIwQYMBaAFFE/IHfYrZEax3tbXFmz4hTHiwI7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFCOS9DREI3MDJGNkM4 N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtSckhlMXRjV2JQaUZNZUxB anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUOGdkOWl0a1JySGUxdGNXYlBpRk1lTEFqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFCOS9DREI3MDJGNkM4N0IxMUVCQUZBNjk1M0JDNEY5QUUwMi9VVDhnZDlpdGtS ckhlMXRjV2JQaUZNZUxBanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5Gdql7JBm3CpPai06zjb0Gqcv2xtFvIJ1sbwz2mkVVIv/q3t0QsnO 6Hqe4ZsVAxHz12kYOEbqGxAtRVownfV13wFLgZFiUCp2k9IG1wA48r6x3eqk9HE0 eodeUBeQ99kzavLSH6joXlFGKEoR1dVwsE+t8cKu9fdlTUyIsI5LQZmEnvRnCOE5 vuAfQLKj9URvqfsVD4t859y6DKhOQTJBQfoTO5l+6AFkyxc6nBMsCTlcQw56uNoN 752h7EvygcogQGKdR4tb+Bc6KYPlMH9aMIfNN8j17qmixVHino65O3cHwbmfc5fp zLgVrl677nc/Bara1VWsmaL3GmVaKr5R -----END CERTIFICATE-----Generated at Sat Apr 26 12:56:24 2025 by rpki-client