$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: ux3f878SfVYhMOU6BeST4jw4iirUY5fniSLV8/qgy+g= Subject key identifier: 52:77:12:A3:D7:D0:5A:E5:2B:7F:01:47:C1:64:E0:93:CB:0B:D3:13 Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 0625 Signing time: Thu 24 Apr 2025 22:30:56 +0000 Manifest this update: Thu 24 Apr 2025 22:30:56 +0000 Manifest next update: Thu 01 May 2025 22:30:56 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: nv5ShFclBVeWONT4Hcc5Vwy8M6ycdgbfVFjdKqs5qdE=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: JGxMB26ttBekYTYeINbF/ZGgUOz7c1MGNzdVG0LlGY0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Apr 24 22:30:56 2025 GMT Not After : May 1 22:30:56 2025 GMT Subject: CN=680abba0-a74f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:05:84:c6:67:e2:83:81:5c:0a:18:54:08:f5: b2:7d:0d:5f:a4:71:93:61:80:fa:e6:5d:d8:50:8f: 8e:61:63:9c:d0:43:ff:e3:77:ed:58:4b:9c:57:31: 7e:5f:02:d3:2c:8e:26:1e:5c:61:6c:a2:09:a1:49: d4:15:d4:e8:64:42:b2:f2:30:08:ad:61:3d:8f:7c: 2a:95:dc:54:fa:cc:94:62:80:49:d5:56:fe:c6:ad: 04:f6:09:37:37:a8:79:97:4b:2e:fd:3c:f3:13:f0: 9a:74:87:99:3f:4c:82:42:84:1b:1c:09:49:06:07: dc:0d:14:74:ae:73:a6:6e:b7:74:84:62:49:e1:9e: 95:85:97:e7:7d:e3:cd:d9:d3:88:8e:cc:5c:5a:3f: a8:b0:14:95:f4:09:ce:65:77:62:90:7e:92:47:eb: 3c:4b:19:16:f1:39:d4:4f:46:be:6b:83:95:65:78: d4:ee:3b:9f:97:69:cd:b3:5a:37:a1:a9:0b:6c:c5: 28:7b:bb:9e:bb:da:b1:6f:d7:ba:fb:98:6c:23:6c: bc:6f:76:e9:3b:2f:65:de:65:4b:67:35:c3:35:79: c3:8d:87:88:3f:33:aa:88:3c:d9:c9:cb:82:21:a1: e2:4d:2b:39:56:c8:47:2f:bc:9b:ab:ea:ec:77:32: 24:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:77:12:A3:D7:D0:5A:E5:2B:7F:01:47:C1:64:E0:93:CB:0B:D3:13 X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:e5:70:14:d2:f7:c2:17:b5:93:b7:18:b3:f4:f9:2d:1b:c5: 74:d9:5e:6a:6c:1b:74:c5:82:0f:f0:b8:17:b9:a3:ae:85:73: 12:fb:12:84:5c:fd:9c:99:88:70:7a:5c:56:24:a3:71:19:a2: f6:76:cf:3f:a0:b8:d1:57:8f:da:ff:ec:54:f4:8e:a2:c9:5b: 34:85:c8:30:13:31:9a:ac:05:33:c3:6e:d6:3c:a0:fa:13:99: 20:a5:4f:97:9f:15:c5:ba:78:de:37:29:28:5c:5f:fc:78:52: 4d:7f:a9:f5:14:74:b1:f5:03:d2:af:d5:2a:61:ec:33:29:49: 9c:da:ed:99:78:0e:c7:9f:bc:03:bb:5c:e3:1b:04:ae:34:27: 80:2c:52:31:82:55:b4:47:3f:c7:80:22:db:05:fd:0d:8a:c0: ef:d7:db:9a:b7:89:53:12:72:17:4b:53:8a:40:d0:be:8e:04: 86:a2:e3:52:5d:57:75:4c:d6:2e:6b:aa:34:44:35:8a:7d:23: ea:69:40:d8:66:ec:ef:6b:6d:de:aa:56:74:4d:55:44:35:fc: 4c:9a:72:7e:1f:03:28:45:86:bb:a9:8c:50:01:f0:07:9b:a6: 4e:ca:25:df:d3:96:77:d8:13:15:f2:84:3e:0e:9d:b8:70:86: d9:74:ee:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUwNDI0MjIzMDU2WhcNMjUwNTAxMjIzMDU2WjAYMRYwFAYD VQQDEw02ODBhYmJhMC1hNzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAWExmfig4FcChhUCPWyfQ1fpHGTYYD65l3YUI+OYWOc0EP/43ftWEucVzF+ XwLTLI4mHlxhbKIJoUnUFdToZEKy8jAIrWE9j3wqldxU+syUYoBJ1Vb+xq0E9gk3 N6h5l0su/TzzE/CadIeZP0yCQoQbHAlJBgfcDRR0rnOmbrd0hGJJ4Z6VhZfnfePN 2dOIjsxcWj+osBSV9AnOZXdikH6SR+s8SxkW8TnUT0a+a4OVZXjU7jufl2nNs1o3 oakLbMUoe7ueu9qxb9e6+5hsI2y8b3bpOy9l3mVLZzXDNXnDjYeIPzOqiDzZycuC IaHiTSs5VshHL7ybq+rsdzIk5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJ3EqPX 0FrlK38BR8Fk4JPLC9MTMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS5XAU0vfCF7WTtxiz9PktG8V02V5qbBt0xYIP8LgXuaOuhXMS+xKE XP2cmYhwelxWJKNxGaL2ds8/oLjRV4/a/+xU9I6iyVs0hcgwEzGarAUzw27WPKD6 E5kgpU+XnxXFunjeNykoXF/8eFJNf6n1FHSx9QPSr9UqYewzKUmc2u2ZeA7Hn7wD u1zjGwSuNCeALFIxglW0Rz/HgCLbBf0NisDv19uat4lTEnIXS1OKQNC+jgSGouNS XVd1TNYua6o0RDWKfSPqaUDYZuzva23eqlZ0TVVENfxMmnJ+HwMoRYa7qYxQAfAH m6ZOyiXf05Z32BMV8oQ+Dp24cIbZdO4w -----END CERTIFICATE-----Generated at Sat Apr 26 13:57:21 2025 by rpki-client