$ rpki-client -vvf rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft File: 0UdMHaQ5s05IfCjCRynmh-CUfXM.mft (raw, json) Hash identifier: k3T3mztPbq4SrVOb/2XOgmep/baYKzft7ZGJmzQRHPM= Subject key identifier: D1:63:1D:BC:BF:53:9D:92:D6:5A:DA:07:C7:76:23:E6:24:29:BF:E6 Authority key identifier: D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 Certificate issuer: /CN=A91840A8/serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Certificate serial: 0632 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft Manifest number: 0619 Signing time: Thu 24 Apr 2025 22:41:11 +0000 Manifest this update: Thu 24 Apr 2025 22:41:11 +0000 Manifest next update: Thu 01 May 2025 22:41:11 +0000 Files and hashes: 1: 0UdMHaQ5s05IfCjCRynmh-CUfXM.crl (hash: 0o8BEHS0jh2jXqxjDjbenIi/6DTi10AeeI6mezO6gTU=) 2: AB4B141CA24211ED92C4107BC4F9AE02.roa (hash: gNOxN0jS6tigz/fNFU0Y3AnQczkJKZKVIShHQJ5nxmY=) 3: DD7CA58EA23F11EDBCDB6D73C4F9AE02.roa (hash: Bdwc8QswyKEgheRUIFpGKVEVqvl2AD4iR5m0y3NHcjU=) 4: E9FB74DCE57711ECBC483554C4F9AE02.roa (hash: z9ucsnrgZh6AB82HfRMNRNeuXi0RQH7hg4PLxBkGO2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1586 (0x632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91840A8, serialNumber=D1474C1DA439B34E487C28C24729E687E0947D73 Validity Not Before: Apr 24 22:41:11 2025 GMT Not After : May 1 22:41:11 2025 GMT Subject: CN=680abe07-198e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:58:78:7c:8b:0b:2d:ce:50:b7:b0:c6:9f:f8: 08:ca:66:0c:fe:56:7b:c9:24:52:e6:5b:65:80:9c: 24:ed:28:23:97:90:a9:d9:34:84:b8:4f:35:d2:b2: e2:b1:b6:50:1c:0c:9f:c4:30:05:af:e4:37:9f:bb: 59:ff:d0:5c:24:0f:5e:94:aa:8a:fa:96:ef:2d:ac: d4:36:36:80:65:ee:c5:b3:fd:23:70:69:81:78:21: f6:8d:4a:e5:2b:7d:10:7c:8d:ca:90:24:52:1e:ce: ce:be:97:cc:ae:36:5f:ba:57:c7:a7:07:af:35:26: 90:88:4e:b1:03:da:b3:e7:27:11:12:2f:38:8a:0b: 51:95:d1:59:d1:3e:40:72:ba:32:2b:99:dc:a9:34: 03:26:b7:2c:f8:64:40:af:77:fc:26:e6:a3:d0:86: 45:36:81:80:1e:60:e6:36:30:7d:0e:72:21:94:8f: 0d:6a:6f:f6:e6:3b:b1:d2:cf:ee:21:58:81:d1:f8: b5:80:d7:3f:15:ca:16:e6:6f:c0:7e:74:8f:fc:86: c4:8e:c6:30:6d:fa:0f:97:6e:1b:35:b5:af:37:81: 85:9b:f4:3b:20:fa:1d:60:1e:84:cf:06:a0:e1:fc: 79:7f:42:98:7a:0c:04:2a:cd:f9:ca:ef:08:5d:4d: a1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:63:1D:BC:BF:53:9D:92:D6:5A:DA:07:C7:76:23:E6:24:29:BF:E6 X509v3 Authority Key Identifier: keyid:D1:47:4C:1D:A4:39:B3:4E:48:7C:28:C2:47:29:E6:87:E0:94:7D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0UdMHaQ5s05IfCjCRynmh-CUfXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91840A8/70C2EB7AA19611EB8200CF09C4F9AE02/0UdMHaQ5s05IfCjCRynmh-CUfXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:37:c9:04:96:c0:f2:36:50:8c:36:ff:fd:bf:6a:70:90:8d: ee:c5:b0:a2:23:d0:59:8c:67:94:3c:35:be:60:a5:44:26:9c: a0:b1:11:fc:dc:d5:69:e2:c1:60:5b:65:52:c7:2b:14:72:70: 6b:66:af:fe:34:e7:a5:ff:44:b5:b7:ed:a1:11:2b:48:4e:20: f6:f1:2e:ce:a2:52:e1:8a:ce:e3:e1:66:78:74:04:53:47:6c: 0f:86:7a:1c:eb:24:19:cf:08:29:09:fc:22:34:69:9b:5d:dc: f2:f9:f0:63:e8:70:54:76:71:85:6b:17:f0:88:a6:7f:c9:72: 8f:9b:7f:92:bd:4d:00:f0:2b:36:e8:d3:c0:bd:16:0c:aa:f6: ba:63:65:e4:17:21:48:4c:db:0d:c9:c7:2f:1d:02:fb:4d:07: a8:fe:d2:78:1a:78:c5:de:da:50:4d:40:66:6d:80:b4:a2:54: 3f:dc:13:a0:94:04:a5:5c:a8:aa:e2:55:f5:95:0f:e9:55:63: 09:6e:31:d0:d5:2e:cc:32:a8:99:ee:04:64:99:ab:a0:fe:3f: 5b:c0:df:17:57:0b:bf:d3:84:d1:b0:1c:98:51:6f:1d:36:73: 55:1d:18:3d:13:4a:da:a4:f3:e4:4a:6f:01:f8:06:54:cc:de: 0a:eb:3e:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwQTgxMTAvBgNVBAUTKEQxNDc0QzFEQTQzOUIzNEU0ODdDMjhDMjQ3MjlFNjg3 RTA5NDdENzMwHhcNMjUwNDI0MjI0MTExWhcNMjUwNTAxMjI0MTExWjAYMRYwFAYD VQQDEw02ODBhYmUwNy0xOThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVh4fIsLLc5Qt7DGn/gIymYM/lZ7ySRS5ltlgJwk7Sgjl5Cp2TSEuE810rLi sbZQHAyfxDAFr+Q3n7tZ/9BcJA9elKqK+pbvLazUNjaAZe7Fs/0jcGmBeCH2jUrl K30QfI3KkCRSHs7OvpfMrjZfulfHpwevNSaQiE6xA9qz5ycREi84igtRldFZ0T5A croyK5ncqTQDJrcs+GRAr3f8Juaj0IZFNoGAHmDmNjB9DnIhlI8Nam/25jux0s/u IViB0fi1gNc/FcoW5m/AfnSP/IbEjsYwbfoPl24bNbWvN4GFm/Q7IPodYB6Ezwag 4fx5f0KYegwEKs35yu8IXU2hHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFjHby/ U52S1lraB8d2I+YkKb/mMB8GA1UdIwQYMBaAFNFHTB2kObNOSHwowkcp5ofglH1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDBBOC83MEMyRUI3QUEx OTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMwNUlmQ2pDUnlubWgtQ1Vm WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBVZE1IYVE1czA1SWZDakNSeW5taC1DVWZYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDBBOC83MEMyRUI3QUExOTYxMUVCODIwMENGMDlDNEY5QUUwMi8wVWRNSGFRNXMw NUlmQ2pDUnlubWgtQ1VmWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8N8kElsDyNlCMNv/9v2pwkI3uxbCiI9BZjGeUPDW+YKVEJpygsRH8 3NVp4sFgW2VSxysUcnBrZq/+NOel/0S1t+2hEStITiD28S7OolLhis7j4WZ4dART R2wPhnoc6yQZzwgpCfwiNGmbXdzy+fBj6HBUdnGFaxfwiKZ/yXKPm3+SvU0A8Cs2 6NPAvRYMqva6Y2XkFyFITNsNyccvHQL7TQeo/tJ4GnjF3tpQTUBmbYC0olQ/3BOg lASlXKiq4lX1lQ/pVWMJbjHQ1S7MMqiZ7gRkmaug/j9bwN8XVwu/04TRsByYUW8d NnNVHRg9E0rapPPkSm8B+AZUzN4K6z73 -----END CERTIFICATE-----Generated at Sat Apr 26 05:14:29 2025 by rpki-client