$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft File: u-KUkERtaHB2W05h1-ubIsYARjg.mft (raw, json) Hash identifier: O1P8SzQM83Wcq5E3RXy00LKWgXaVooqHj1VbLjZnYHQ= Subject key identifier: D9:14:CA:B6:36:B4:92:91:C4:A3:36:57:96:FE:22:57:FC:36:AA:72 Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0C5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft Manifest number: 0C47 Signing time: Thu 24 Apr 2025 18:26:15 +0000 Manifest this update: Thu 24 Apr 2025 18:26:14 +0000 Manifest next update: Thu 01 May 2025 18:26:14 +0000 Files and hashes: 1: u-KUkERtaHB2W05h1-ubIsYARjg.crl (hash: 1nfEPEccYMW2i+23vgOUDc2XZRncs81vS2KEUHQEZFk=) 2: 8BA504FCB27911EB978CE10AC4F9AE02.roa (hash: I8Ss/Oj3Q9umSrFxZnObaXQe/cu017hGcC027pv/vs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83, serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Validity Not Before: Apr 24 18:26:14 2025 GMT Not After : May 1 18:26:14 2025 GMT Subject: CN=680a8246-dd05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:02:3a:31:84:ea:e4:39:5a:dd:11:c6:fd:90: bf:70:29:a7:30:72:22:7e:52:78:c3:b7:e6:5b:30: 37:35:b9:a1:8d:ac:2f:ae:86:e0:2e:7c:d7:64:7f: a3:e9:34:9d:4f:8c:ef:88:50:9b:62:50:e7:d3:9a: c2:7c:23:6f:a1:b4:a0:7c:16:41:ac:01:cf:53:6b: ba:93:ee:fa:8a:e3:fb:ff:60:ca:04:1f:d6:99:7e: 5a:c8:3d:6e:85:d8:f8:8a:e8:e3:10:0c:02:0f:34: 7d:50:04:9c:b6:37:db:07:4d:33:95:de:22:15:e5: 4f:87:0c:34:b1:a4:c5:7b:dc:11:de:60:39:53:d0: 14:4d:5a:ff:8c:49:ab:b0:07:1d:aa:b8:45:66:16: ad:8d:5b:51:2a:ce:ae:a4:9f:bd:c0:7e:89:a6:70: 55:af:97:e1:44:a2:38:29:00:e8:eb:d3:5e:09:2a: 31:61:27:a3:a8:1e:32:27:40:e1:68:7c:ae:a6:5e: af:5a:ef:2c:2d:a6:26:ac:db:bf:c5:30:b5:f3:0f: 3f:3d:65:d2:34:5d:3a:46:35:f0:ca:c3:cb:ea:90: 1c:44:e1:71:e1:07:ff:d6:1f:1e:14:06:15:7e:74: 3f:ea:b3:53:c2:f0:90:08:d2:4d:e1:46:2f:13:a2: 2e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:14:CA:B6:36:B4:92:91:C4:A3:36:57:96:FE:22:57:FC:36:AA:72 X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:de:00:d6:da:51:b2:c7:d5:37:f5:8f:70:59:b8:9f:a0:84: 02:e2:b3:c5:74:11:63:52:ab:da:21:d4:d7:0c:6b:07:b4:88: 69:7c:eb:b9:28:e6:79:a5:c4:8c:0b:b6:14:5a:7f:f2:fc:84: 11:94:0d:44:1b:7d:06:67:cf:2d:49:2c:9a:87:47:50:52:cf: a9:b9:b6:51:71:6f:6d:3c:dd:b5:4d:a9:4d:7c:7f:f5:3d:d2: b4:71:53:f6:e6:f8:88:d3:e9:bc:bb:6f:2a:13:bf:7c:b5:da: 84:fc:6f:e7:4e:5f:b3:a7:88:00:c9:d3:28:6f:81:07:83:84: 8e:21:98:50:3c:e5:c4:12:c9:af:66:96:6f:77:3a:0f:b4:1a: bf:5c:86:78:2c:f3:1a:c1:02:92:a2:d7:ae:a4:c1:dd:80:3e: 7f:59:32:80:72:f0:b3:f8:23:fa:4f:bf:cc:79:6e:d1:28:50: 0f:e7:d2:9e:e1:32:19:6c:8d:5d:8b:e7:09:71:a5:61:26:6d: 5a:e2:93:70:90:cb:a1:2b:aa:d1:73:0b:35:be:58:4c:c3:44: 24:a5:89:db:e8:3d:62:e0:3f:bd:6f:4b:a5:a7:ed:34:fc:a1: ab:e9:ec:b1:a0:1d:7c:84:66:5c:57:b3:cd:cb:51:71:70:52: 5b:16:ca:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjUwNDI0MTgyNjE0WhcNMjUwNTAxMTgyNjE0WjAYMRYwFAYD VQQDEw02ODBhODI0Ni1kZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQI6MYTq5Dla3RHG/ZC/cCmnMHIiflJ4w7fmWzA3NbmhjawvrobgLnzXZH+j 6TSdT4zviFCbYlDn05rCfCNvobSgfBZBrAHPU2u6k+76iuP7/2DKBB/WmX5ayD1u hdj4iujjEAwCDzR9UASctjfbB00zld4iFeVPhww0saTFe9wR3mA5U9AUTVr/jEmr sAcdqrhFZhatjVtRKs6upJ+9wH6JpnBVr5fhRKI4KQDo69NeCSoxYSejqB4yJ0Dh aHyupl6vWu8sLaYmrNu/xTC18w8/PWXSNF06RjXwysPL6pAcROFx4Qf/1h8eFAYV fnQ/6rNTwvCQCNJN4UYvE6IuJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkUyrY2 tJKRxKM2V5b+Ilf8NqpyMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ4My8xNDk3NDdCRTA2MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFI QjJXMDVoMS11YklzWUFSamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC3gDW2lGyx9U39Y9wWbifoIQC4rPFdBFjUqvaIdTXDGsHtIhpfOu5 KOZ5pcSMC7YUWn/y/IQRlA1EG30GZ88tSSyah0dQUs+pubZRcW9tPN21TalNfH/1 PdK0cVP25viI0+m8u28qE798tdqE/G/nTl+zp4gAydMob4EHg4SOIZhQPOXEEsmv ZpZvdzoPtBq/XIZ4LPMawQKSoteupMHdgD5/WTKAcvCz+CP6T7/MeW7RKFAP59Ke 4TIZbI1di+cJcaVhJm1a4pNwkMuhK6rRcws1vlhMw0QkpYnb6D1i4D+9b0ulp+00 /KGr6eyxoB18hGZcV7PNy1FxcFJbFsqQ -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:44 2025 by rpki-client