$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: W1tb97T1RQ1j1+YLU7/LJH9jKyKVIkZ1jMx4ov2f8XA= Subject key identifier: 05:9C:37:31:BA:BC:9C:02:B2:7B:66:BA:97:A1:F4:2E:86:76:2A:A9 Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: 012F Signing time: Fri 25 Apr 2025 03:39:07 +0000 Manifest this update: Fri 25 Apr 2025 03:39:06 +0000 Manifest next update: Fri 02 May 2025 03:39:06 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: Yxm/zjfGocljfMehjYoTrFQNudPD65ChNX7QmOFr6vw=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: 33db+G2HmqK4GM+/q2Pot6yftpHMysN5n0HwgMWkack=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:39:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C, serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Validity Not Before: Apr 25 03:39:06 2025 GMT Not After : May 2 03:39:06 2025 GMT Subject: CN=680b03da-ae94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1c:16:49:bb:7c:54:55:49:f2:9c:17:10:db: b9:22:44:7e:b9:22:97:31:cc:94:1a:28:41:41:b0: f9:3c:7b:cd:86:03:f9:0c:f6:d3:a1:e9:25:39:65: 94:f7:5b:23:95:1b:a8:2d:1a:1a:4d:80:b8:37:d0: 2c:d6:43:98:53:c0:0e:9a:24:b7:21:97:85:c0:1d: e8:dd:5c:31:5f:7a:d5:ae:76:59:23:33:24:4c:6a: 10:64:62:d8:c5:3f:e3:4c:a0:d8:ff:34:40:8a:b0: 3c:55:ab:6b:46:ee:00:ee:25:44:6d:22:16:04:a5: 44:9a:5a:d9:28:7c:0f:93:9d:52:73:e0:52:20:9e: 8c:55:17:a4:4f:c5:90:be:9d:83:42:11:92:6b:50: 09:29:a3:cf:6a:a3:8f:40:5a:a5:37:47:2f:b6:c6: df:8a:8d:1e:53:6a:37:5a:af:1e:70:bb:8d:ca:b7: 4c:4f:69:1a:1f:df:6a:87:c1:2c:49:4e:9f:d0:e8: 6a:5a:3c:ef:7c:8d:ac:c7:7d:4d:31:ea:a1:62:4c: 25:e5:cd:d3:bd:fe:41:00:6a:83:24:15:5e:e2:25: 56:b5:cf:3c:51:2b:f0:a6:3a:1c:c3:b0:cb:15:bd: 5a:be:b7:e9:7c:f3:35:12:c8:76:2c:79:33:75:27: d4:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9C:37:31:BA:BC:9C:02:B2:7B:66:BA:97:A1:F4:2E:86:76:2A:A9 X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:47:fa:a2:34:ad:8f:de:d2:3e:23:d9:99:91:3f:6a:95:9a: 55:6b:af:5d:7c:71:6f:56:d5:01:fb:7d:e7:2f:b7:cc:69:94: f4:cf:13:ae:a9:be:fe:a0:99:65:70:da:61:13:bf:42:b7:d4: e0:f5:eb:cf:60:8b:6d:6e:b2:4b:17:18:62:48:c4:89:1d:49: bc:6f:7d:e8:68:c4:5b:88:03:6a:2e:f1:db:4c:5d:44:d9:87: 7a:58:80:d4:80:fb:bd:e2:0e:f3:9f:97:44:f6:24:19:0f:40: ce:c4:ef:84:c2:b1:a9:94:ca:18:c5:a8:cc:1f:50:84:2d:f1: d4:d1:45:93:b5:85:92:c5:8d:b2:35:58:32:6b:b1:cf:a4:6f: a5:20:ee:06:ab:8f:19:14:08:db:f9:0a:7e:64:58:b3:32:ee: e3:5d:85:94:7b:25:85:2b:2d:8a:b4:af:a2:bf:d8:4b:71:5d: 5d:62:21:5e:59:cc:b8:a3:c5:b9:3b:7d:2c:62:2d:aa:90:5c: a1:9f:bc:a1:e8:f6:1c:8f:fb:51:ec:c3:f1:bf:58:d1:4a:98: e7:92:bf:b4:d5:4a:f4:16:89:f6:bf:02:5c:7a:78:cd:3f:a4: ee:45:fa:4a:c1:dd:a1:86:bc:af:59:0f:3d:19:53:d4:78:4b: 0f:d9:23:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjUwNDI1MDMzOTA2WhcNMjUwNTAyMDMzOTA2WjAYMRYwFAYD VQQDEw02ODBiMDNkYS1hZTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBwWSbt8VFVJ8pwXENu5IkR+uSKXMcyUGihBQbD5PHvNhgP5DPbToeklOWWU 91sjlRuoLRoaTYC4N9As1kOYU8AOmiS3IZeFwB3o3VwxX3rVrnZZIzMkTGoQZGLY xT/jTKDY/zRAirA8VatrRu4A7iVEbSIWBKVEmlrZKHwPk51Sc+BSIJ6MVRekT8WQ vp2DQhGSa1AJKaPPaqOPQFqlN0cvtsbfio0eU2o3Wq8ecLuNyrdMT2kaH99qh8Es SU6f0OhqWjzvfI2sx31NMeqhYkwl5c3Tvf5BAGqDJBVe4iVWtc88USvwpjocw7DL Fb1avrfpfPM1Esh2LHkzdSfUmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWcNzG6 vJwCsntmupeh9C6GdiqpMB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzR/qiNK2P3tI+I9mZkT9qlZpVa69dfHFvVtUB+33nL7fMaZT0zxOu qb7+oJllcNphE79Ct9Tg9evPYIttbrJLFxhiSMSJHUm8b33oaMRbiANqLvHbTF1E 2Yd6WIDUgPu94g7zn5dE9iQZD0DOxO+EwrGplMoYxajMH1CELfHU0UWTtYWSxY2y NVgya7HPpG+lIO4Gq48ZFAjb+Qp+ZFizMu7jXYWUeyWFKy2KtK+iv9hLcV1dYiFe Wcy4o8W5O30sYi2qkFyhn7yh6PYcj/tR7MPxv1jRSpjnkr+01Ur0Fon2vwJcenjN P6TuRfpKwd2hhryvWQ89GVPUeEsP2SNA -----END CERTIFICATE-----Generated at Sat Apr 26 13:10:48 2025 by rpki-client