$ rpki-client -vvf rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft File: _UnAZPyj6S3swYqPUElLIfwB8lY.mft (raw, json) Hash identifier: zU1nuRgsDtjZRb8QLVjKVc4EqOHohSav3U+LUChWRLc= Subject key identifier: 27:5F:94:C0:16:85:41:F0:61:F8:CD:5F:36:C1:B2:E7:91:E8:B3:30 Authority key identifier: FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 Certificate issuer: /CN=A91934DE/serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft Manifest number: 0189 Signing time: Fri 25 Apr 2025 02:49:36 +0000 Manifest this update: Fri 25 Apr 2025 02:49:36 +0000 Manifest next update: Fri 02 May 2025 02:49:36 +0000 Files and hashes: 1: _UnAZPyj6S3swYqPUElLIfwB8lY.crl (hash: tjejQYoblN+aE68sUSyJ5fshG6I/fHDQhCwCFDvgmog=) 2: 358556D2D98F11EDA9A38028C4F9AE02.roa (hash: w60npFN7Kaoau14A8nUumKIk6Z7FI9jzoRmBuAraQgw=) 3: 05F11BACDF4A11EDA4190947C4F9AE02.roa (hash: xNw6lqRZVzml6zGHz7sRyZFWQnA5LMwPw8PJ9UjVWeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91934DE, serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Validity Not Before: Apr 25 02:49:36 2025 GMT Not After : May 2 02:49:36 2025 GMT Subject: CN=680af840-7897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:49:42:33:1d:02:f3:a6:7a:d6:e6:2f:dd:86: 80:3d:b3:82:a8:0c:80:38:08:8b:3c:29:06:a8:a5: eb:c0:92:3b:f7:c8:51:09:27:1f:c1:c1:ff:46:67: 12:73:bc:6a:74:37:50:22:0d:22:41:0a:2e:78:f8: 1e:db:55:38:7b:db:be:bd:83:ea:95:d4:50:ab:2b: d5:8c:30:33:90:cf:fb:a3:9e:8d:25:12:67:ff:7f: 60:55:4a:0e:40:9e:3f:57:7e:42:6d:0c:0b:13:5c: 79:c7:a7:3c:82:40:3d:78:cc:2f:71:c6:ce:5a:75: f2:df:24:87:f3:0d:8e:58:bc:12:98:cc:44:0d:cb: b1:17:e0:8f:4a:4f:23:21:d9:a7:19:04:c1:92:15: 13:17:78:db:3e:82:6d:81:26:94:3f:e5:8b:bf:8a: 7c:00:4a:a3:99:00:39:05:50:95:68:07:0f:6d:06: e9:f2:88:7f:22:c3:9b:ae:bc:29:2a:97:dc:08:cd: 56:0c:65:6b:9e:61:25:09:da:1d:61:fb:2b:dc:a8: 91:85:34:94:c8:c1:2e:a4:0b:06:08:1e:a6:8f:9f: 79:44:4a:38:a9:4b:8a:6b:11:56:2a:6d:22:02:57: 4f:22:d6:9f:22:bc:0d:8c:b3:db:ac:b4:d3:ed:ec: 7c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5F:94:C0:16:85:41:F0:61:F8:CD:5F:36:C1:B2:E7:91:E8:B3:30 X509v3 Authority Key Identifier: keyid:FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:ce:85:17:df:50:92:16:9d:9c:e9:8f:f6:6e:c6:3e:21:93: 66:7b:b1:f7:45:c2:6f:51:b9:d2:cc:f4:20:70:8a:9f:99:57: f7:2f:8a:21:4c:c0:a0:05:81:18:60:6d:a8:88:4e:64:8a:19: 5e:d2:18:7e:c0:10:b1:9e:4f:70:00:e0:85:0a:00:6e:d3:80: 69:ff:96:0c:0e:34:0f:d2:e8:7d:6e:8f:01:e3:43:61:57:80: 54:d9:09:0e:0f:d4:02:ea:86:ef:1f:02:03:d3:d2:aa:39:76: d7:72:d3:ab:a6:50:0d:98:ad:ca:26:b8:f9:3a:b6:2f:07:4c: af:eb:79:1e:f2:cb:f5:67:60:43:bd:8a:d0:31:16:1a:27:d1: 2f:0b:20:03:65:e1:5b:aa:9b:98:95:c2:e5:47:a9:49:4d:04: 57:d7:1f:81:f4:48:66:a9:29:ff:e2:22:85:44:22:72:a2:85: a5:84:12:48:0f:0f:d8:26:d3:9c:38:71:9c:fb:6a:b8:77:5a: a2:04:d1:a2:c4:0a:94:af:fc:ec:98:fe:a6:a7:dc:77:d8:14: f8:78:f6:0d:23:fe:ec:ad:8a:9d:cd:8d:2b:5f:85:b9:bc:fb: 5e:26:a7:97:c2:93:c8:4c:1e:9c:d1:ad:b3:78:76:2e:1e:6f: fa:0a:b1:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM0REUxMTAvBgNVBAUTKEZENDlDMDY0RkNBM0U5MkRFQ0MxOEE4RjUwNDk0QjIx RkMwMUYyNTYwHhcNMjUwNDI1MDI0OTM2WhcNMjUwNTAyMDI0OTM2WjAYMRYwFAYD VQQDEw02ODBhZjg0MC03ODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ElCMx0C86Z61uYv3YaAPbOCqAyAOAiLPCkGqKXrwJI798hRCScfwcH/RmcS c7xqdDdQIg0iQQouePge21U4e9u+vYPqldRQqyvVjDAzkM/7o56NJRJn/39gVUoO QJ4/V35CbQwLE1x5x6c8gkA9eMwvccbOWnXy3ySH8w2OWLwSmMxEDcuxF+CPSk8j IdmnGQTBkhUTF3jbPoJtgSaUP+WLv4p8AEqjmQA5BVCVaAcPbQbp8oh/IsObrrwp KpfcCM1WDGVrnmElCdodYfsr3KiRhTSUyMEupAsGCB6mj595REo4qUuKaxFWKm0i AldPItafIrwNjLPbrLTT7ex8iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdflMAW hUHwYfjNXzbBsueR6LMwMB8GA1UdIwQYMBaAFP1JwGT8o+kt7MGKj1BJSyH8AfJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzRERS9BOTQxRDVFMkQ4 RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZTM3N3WXFQVUVsTElmd0I4 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VbkFaUHlqNlMzc3dZcVBVRWxMSWZ3QjhsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzRERS9BOTQxRDVFMkQ4RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZT M3N3WXFQVUVsTElmd0I4bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClzoUX31CSFp2c6Y/2bsY+IZNme7H3RcJvUbnSzPQgcIqfmVf3L4oh TMCgBYEYYG2oiE5kihle0hh+wBCxnk9wAOCFCgBu04Bp/5YMDjQP0uh9bo8B40Nh V4BU2QkOD9QC6obvHwID09KqOXbXctOrplANmK3KJrj5OrYvB0yv63ke8sv1Z2BD vYrQMRYaJ9EvCyADZeFbqpuYlcLlR6lJTQRX1x+B9EhmqSn/4iKFRCJyooWlhBJI Dw/YJtOcOHGc+2q4d1qiBNGixAqUr/zsmP6mp9x32BT4ePYNI/7srYqdzY0rX4W5 vPteJqeXwpPITB6c0a2zeHYuHm/6CrHY -----END CERTIFICATE-----Generated at Sat Apr 26 04:26:31 2025 by rpki-client