$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: yhof/7L99FZJLutGTlBVDvXdv60y9F8lg8arAN2U5z4= Subject key identifier: B9:CC:C3:9B:C9:14:CE:DE:71:15:BA:D2:E0:8C:12:DD:43:11:E7:93 Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 4F Signing time: Fri 25 Apr 2025 06:16:23 +0000 Manifest this update: Fri 25 Apr 2025 06:16:22 +0000 Manifest next update: Fri 02 May 2025 06:16:22 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: TqU9sOBXBtaf0D/f8mPvE8GuossJ5/rnm6F2WKoqXso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Apr 25 06:16:22 2025 GMT Not After : May 2 06:16:22 2025 GMT Subject: CN=680b28b6-af66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fc:d1:bf:b0:85:94:7c:0b:ea:1d:b4:e6:4d: b0:e9:40:02:6e:c6:fe:7f:b4:e5:0a:03:3f:86:38: 4f:30:5e:df:58:22:b0:d7:f9:3f:0d:57:7b:07:58: c8:41:27:86:28:a3:4f:0d:ed:4c:54:7b:51:f1:bc: 48:57:bb:06:d0:6c:1f:f4:6f:fa:7a:58:05:a1:87: 3c:61:17:0d:9d:6e:01:25:04:08:8e:60:10:36:fc: 2c:e8:6f:e8:75:af:9e:df:66:0d:0c:0e:5d:e1:51: 4e:80:9c:19:08:f4:4c:5a:bc:f0:7c:12:35:a9:76: 46:d3:a4:13:d8:9b:93:25:c6:4d:35:b8:7b:a6:4e: 56:b6:46:3c:68:e6:4b:50:3b:fb:2a:20:55:6e:55: 80:20:df:1d:1e:8c:b3:b6:97:8a:ea:88:15:f6:25: 41:cb:38:0c:c2:16:6d:4e:cc:1a:a5:40:d1:d5:76: ad:a7:b1:65:fd:a8:53:3f:1e:89:dd:02:bc:42:e4: 59:b0:92:38:9b:a6:db:42:54:84:46:e1:34:4f:7e: 89:97:bd:5a:ef:a6:3e:03:aa:76:c5:a5:2b:88:e9: 8f:cd:9b:4a:dc:21:04:f4:61:53:9d:3a:ff:af:dd: 76:76:3f:c1:2f:b7:2f:fd:b2:f3:94:ba:3a:19:1b: b9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:CC:C3:9B:C9:14:CE:DE:71:15:BA:D2:E0:8C:12:DD:43:11:E7:93 X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:32:3e:43:7f:2e:ad:89:8b:24:a1:72:63:13:38:22:65:d4: 6c:7c:af:f6:8c:1c:d0:c1:79:13:c7:21:b8:95:3f:a6:90:9c: 0b:f0:40:5f:32:bc:3f:af:1e:bf:88:76:00:4a:9c:de:1a:8e: 5e:f3:3c:b1:c9:74:1f:2d:bb:84:e4:68:83:4c:ca:2e:01:e4: 67:a3:f0:c7:33:ed:03:cf:87:e8:cc:4a:7a:4c:2f:20:31:0a: d2:d0:51:2d:8f:14:a7:04:7a:1c:38:f0:29:13:bd:80:e2:e8: 07:f1:21:fb:bb:28:bc:69:65:86:ea:e8:69:31:8d:f5:20:36: cd:4d:49:66:fe:61:9b:a3:6d:ba:ff:0d:47:40:ce:58:33:91: 55:bb:ee:bb:c8:11:a5:56:ef:9e:e2:57:10:0f:40:7d:ff:4e: fd:b9:e7:17:4e:7e:12:1c:98:a4:39:11:2b:1b:3d:ba:e9:3c: 5c:cd:40:3e:9c:08:f5:af:6e:db:de:99:6f:93:d3:27:04:16: ab:77:b0:d9:04:87:1b:ef:1e:43:b5:0b:e6:01:e3:3c:47:a8: e1:fa:00:54:97:de:27:2c:00:71:bb:dc:39:56:60:ca:61:dd: ed:59:71:19:03:39:c8:6e:a7:e2:ef:e5:01:65:c6:69:21:3f: 2c:33:60:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoNTNDMDhCREEwNEJDMDUzMjIxRUIyNzNBQTIxNUNDRDk1 QzAwQzM5MjAeFw0yNTA0MjUwNjE2MjJaFw0yNTA1MDIwNjE2MjJaMBgxFjAUBgNV BAMTDTY4MGIyOGI2LWFmNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz/NG/sIWUfAvqHbTmTbDpQAJuxv5/tOUKAz+GOE8wXt9YIrDX+T8NV3sHWMhB J4Yoo08N7UxUe1HxvEhXuwbQbB/0b/p6WAWhhzxhFw2dbgElBAiOYBA2/Czob+h1 r57fZg0MDl3hUU6AnBkI9ExavPB8EjWpdkbTpBPYm5Mlxk01uHumTla2Rjxo5ktQ O/sqIFVuVYAg3x0ejLO2l4rqiBX2JUHLOAzCFm1OzBqlQNHVdq2nsWX9qFM/Hond ArxC5FmwkjibpttCVIRG4TRPfomXvVrvpj4DqnbFpSuI6Y/Nm0rcIQT0YVOdOv+v 3XZ2P8Evty/9svOUujoZG7mjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuczDm8kU zt5xFbrS4IwS3UMR55MwHwYDVR0jBBgwFoAUU8CL2gS8BTIh6yc6ohXM2VwAw5Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzgzMzhDNEQ2QUFF OTExRUZCNzIxQzI1REM0RjlBRTAyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVThDTDJnUzhCVEloNnljNm9oWE0yVndBdzVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzgzMzhDNEQ2QUFFOTExRUZCNzIxQzI1REM0RjlBRTAyL1U4Q0wyZ1M4QlRJ aDZ5YzZvaFhNMlZ3QXc1SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI4yPkN/Lq2JiyShcmMTOCJl1Gx8r/aMHNDBeRPHIbiVP6aQnAvwQF8y vD+vHr+IdgBKnN4ajl7zPLHJdB8tu4TkaINMyi4B5Gej8Mcz7QPPh+jMSnpMLyAx CtLQUS2PFKcEehw48CkTvYDi6AfxIfu7KLxpZYbq6GkxjfUgNs1NSWb+YZujbbr/ DUdAzlgzkVW77rvIEaVW757iVxAPQH3/Tv255xdOfhIcmKQ5ESsbPbrpPFzNQD6c CPWvbtvemW+T0ycEFqt3sNkEhxvvHkO1C+YB4zxHqOH6AFSX3icsAHG73DlWYMph 3e1ZcRkDOchup+Lv5QFlxmkhPywzYFE= -----END CERTIFICATE-----Generated at Sat Apr 26 03:37:18 2025 by rpki-client