$ rpki-client -vvf rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft File: rUk9yaPSQDSDYoWHBR93lRWJFnk.mft (raw, json) Hash identifier: 6NeUGy3TzxQrE4voAG1FaaEI6xIvteDw+yHn6q32AuU= Subject key identifier: CE:9B:A5:C8:9C:72:40:57:D0:57:61:FF:CD:17:80:96:75:38:99:1D Authority key identifier: AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 Certificate issuer: /CN=A918B418/serialNumber=AD493DC9A3D2403483628587051F779515891679 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft Manifest number: 023F Signing time: Fri 25 Apr 2025 01:39:28 +0000 Manifest this update: Fri 25 Apr 2025 01:39:28 +0000 Manifest next update: Fri 02 May 2025 01:39:28 +0000 Files and hashes: 1: rUk9yaPSQDSDYoWHBR93lRWJFnk.crl (hash: QgXQ5mqOJPeF9l3JCWPNvSsbSfxT/HSRKrjGqpkgstY=) 2: 8275E1721C5311EDA75CF137C4F9AE02.roa (hash: ylAjtSurS2AriNqYAWDXwI4mJ+u3ceX6ZX3mIJq8z+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B418, serialNumber=AD493DC9A3D2403483628587051F779515891679 Validity Not Before: Apr 25 01:39:28 2025 GMT Not After : May 2 01:39:28 2025 GMT Subject: CN=680ae7d0-964f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:05:b2:d1:d8:d8:e8:75:03:e4:51:d6:47:a2: 84:56:03:e8:13:df:f8:2b:17:7e:10:83:4d:6c:b4: ea:6a:46:54:78:45:ab:2c:ce:f7:57:15:dc:8d:99: c4:a0:30:67:08:c6:4c:25:bf:26:99:02:89:18:f2: 71:b4:cc:8d:9b:91:46:4b:04:91:8a:e5:0b:7c:d6: 99:77:05:13:52:2d:b1:04:7d:b3:f6:79:a4:a7:99: 7e:c4:50:86:58:53:f9:6c:05:eb:28:4b:b0:16:2c: 57:7f:a5:cb:3b:0a:33:58:ec:62:05:be:66:15:61: af:bc:64:46:c7:ff:98:d6:93:94:34:51:d5:23:20: aa:0c:17:04:ff:a4:42:af:e9:fc:7c:43:23:2e:b4: fd:41:d5:7b:ba:d3:51:92:fe:91:2f:7c:f1:60:05: 11:62:15:0c:a1:bf:c6:02:fc:f7:08:c6:9f:d6:ab: 18:3a:7b:86:58:38:c3:d1:9e:f5:8c:d0:14:e5:de: ad:31:c1:17:91:b8:f9:0c:ce:2b:75:48:ae:24:17: 07:8e:2a:fd:fb:a2:cb:30:9a:14:93:15:a9:42:4d: d9:73:1b:1e:38:be:66:09:32:b2:da:57:af:0c:d7: e9:c7:f4:e9:b8:98:66:1c:0a:dc:5f:af:6e:19:d0: 4f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9B:A5:C8:9C:72:40:57:D0:57:61:FF:CD:17:80:96:75:38:99:1D X509v3 Authority Key Identifier: keyid:AD:49:3D:C9:A3:D2:40:34:83:62:85:87:05:1F:77:95:15:89:16:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUk9yaPSQDSDYoWHBR93lRWJFnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B418/AD0DC4801C4F11EDAAD31386C4F9AE02/rUk9yaPSQDSDYoWHBR93lRWJFnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d3:2e:e7:37:dc:21:ce:22:bd:0a:37:ac:ca:10:fb:4c:05: 9b:ba:dc:cc:48:d2:45:94:bf:98:88:3e:e1:a0:1d:62:e6:9e: 9d:90:0b:aa:57:24:6d:71:dc:27:9c:13:64:34:df:d2:b8:6c: 2a:20:91:df:d0:9b:97:d0:31:43:12:f2:6b:07:4f:8a:92:d3: 9e:a6:c7:89:e4:8f:07:d0:c1:ff:6e:ae:11:15:4b:28:22:47: 60:34:9c:e1:72:82:3c:d0:d7:a3:e5:9f:10:55:3d:a5:5e:1a: 2d:ba:b6:00:28:c2:d4:3a:f8:64:3f:51:2c:56:30:fb:e4:88: f0:ef:bb:10:24:15:70:bc:d1:8d:63:48:52:5f:47:41:d8:f0: 3e:14:2d:9f:e3:0c:92:89:70:ac:57:97:bc:db:9b:4c:0c:84: 81:c9:6f:9c:a2:f6:25:25:c9:8f:8c:e6:f3:10:6c:82:7e:ba: d7:c6:35:f0:11:ba:c0:4b:3d:5c:3c:b6:cc:46:a1:5d:cd:74: b8:b4:00:f2:52:c7:14:3e:cd:12:cc:a8:1b:24:a7:08:bb:ec: 57:cb:2b:d1:23:87:08:a4:7a:f6:a2:5a:18:84:aa:3e:c3:14: a3:94:11:b1:a5:73:f3:f9:68:2a:f2:75:cc:24:2c:90:c2:e0: a2:1f:91:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI0MTgxMTAvBgNVBAUTKEFENDkzREM5QTNEMjQwMzQ4MzYyODU4NzA1MUY3Nzk1 MTU4OTE2NzkwHhcNMjUwNDI1MDEzOTI4WhcNMjUwNTAyMDEzOTI4WjAYMRYwFAYD VQQDEw02ODBhZTdkMC05NjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wWy0djY6HUD5FHWR6KEVgPoE9/4Kxd+EINNbLTqakZUeEWrLM73VxXcjZnE oDBnCMZMJb8mmQKJGPJxtMyNm5FGSwSRiuULfNaZdwUTUi2xBH2z9nmkp5l+xFCG WFP5bAXrKEuwFixXf6XLOwozWOxiBb5mFWGvvGRGx/+Y1pOUNFHVIyCqDBcE/6RC r+n8fEMjLrT9QdV7utNRkv6RL3zxYAURYhUMob/GAvz3CMaf1qsYOnuGWDjD0Z71 jNAU5d6tMcEXkbj5DM4rdUiuJBcHjir9+6LLMJoUkxWpQk3ZcxseOL5mCTKy2lev DNfpx/TpuJhmHArcX69uGdBPKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6bpcic ckBX0Fdh/80XgJZ1OJkdMB8GA1UdIwQYMBaAFK1JPcmj0kA0g2KFhwUfd5UViRZ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjQxOC9BRDBEQzQ4MDFD NEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FEU0RZb1dIQlI5M2xSV0pG bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVazl5YVBTUURTRFlvV0hCUjkzbFJXSkZuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjQxOC9BRDBEQzQ4MDFDNEYxMUVEQUFEMzEzODZDNEY5QUUwMi9yVWs5eWFQU1FE U0RZb1dIQlI5M2xSV0pGbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb0y7nN9whziK9CjesyhD7TAWbutzMSNJFlL+YiD7hoB1i5p6dkAuq VyRtcdwnnBNkNN/SuGwqIJHf0JuX0DFDEvJrB0+KktOepseJ5I8H0MH/bq4RFUso IkdgNJzhcoI80Nej5Z8QVT2lXhoturYAKMLUOvhkP1EsVjD75Ijw77sQJBVwvNGN Y0hSX0dB2PA+FC2f4wySiXCsV5e825tMDISByW+covYlJcmPjObzEGyCfrrXxjXw EbrASz1cPLbMRqFdzXS4tADyUscUPs0SzKgbJKcIu+xXyyvRI4cIpHr2oloYhKo+ wxSjlBGxpXPz+Wgq8nXMJCyQwuCiH5Fu -----END CERTIFICATE-----Generated at Sat Apr 26 05:15:13 2025 by rpki-client