$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: MobR2d27eCQZTw+WPIW9STGeMcP5jVXOb6KMsNekw5Q= Subject key identifier: 69:DD:0C:0D:BD:13:66:7E:E4:D1:7C:E9:B5:E9:D1:25:C6:76:A8:4C Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 03FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 03F9 Signing time: Fri 25 Apr 2025 00:14:54 +0000 Manifest this update: Fri 25 Apr 2025 00:14:53 +0000 Manifest next update: Fri 02 May 2025 00:14:53 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: 0JAoz/GmuOFpDlpGS+zcVuMlqjylKgPvdfMYwG5z1js=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1021 (0x3fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Apr 25 00:14:53 2025 GMT Not After : May 2 00:14:53 2025 GMT Subject: CN=680ad3fd-9e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:03:ca:28:b4:b2:70:ad:42:4e:bf:65:d2:d0: af:2c:0f:03:0d:52:54:c1:55:4b:3f:08:28:87:96: 1e:47:47:05:c7:ed:f1:0d:72:e2:6c:c6:33:74:54: 52:9f:07:bd:e6:57:c9:ba:36:64:b9:56:85:ca:cc: 3a:6b:bd:da:a2:80:88:9c:df:3c:31:90:0d:49:b6: 06:b2:ab:34:a7:d6:13:ec:f7:8d:20:87:ac:da:9c: d9:b0:a8:71:38:12:96:38:50:cd:72:d5:6e:1c:cb: a2:69:8c:10:13:13:f5:a3:cb:d9:7f:ee:13:4c:b8: 72:42:74:11:17:92:ac:15:e7:93:b2:53:42:de:97: 66:da:71:02:36:17:db:01:c2:72:a0:b7:bc:8c:0e: 28:f3:96:57:61:58:ed:9a:b0:f8:18:a3:75:bf:67: e3:6f:c1:b6:5c:06:c3:03:7a:15:ec:50:97:c9:e1: a8:ab:44:ba:ad:d4:bd:3a:ca:f5:d5:cf:b4:ed:cd: 83:52:40:fe:53:15:20:44:a2:82:69:29:a5:71:e0: 88:e2:8d:a3:79:39:7b:d8:2b:2c:5e:88:3b:c4:92: ff:92:36:b6:9e:ed:cd:bc:0d:14:a8:c6:0b:90:3a: 8d:60:05:71:89:b3:85:f9:3d:40:72:3e:04:0b:35: cf:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DD:0C:0D:BD:13:66:7E:E4:D1:7C:E9:B5:E9:D1:25:C6:76:A8:4C X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:5a:76:db:4e:d1:90:44:7c:d8:5d:71:e3:7a:6b:cc:ff:5d: 60:87:45:73:6d:a5:32:a3:ec:af:df:22:37:49:a1:14:86:58: b6:aa:f5:98:f0:0d:38:57:86:f1:48:d8:80:8d:43:2e:5b:54: ac:25:d9:86:e6:97:a3:a2:dc:ee:5c:0e:34:70:e8:54:e8:32: ab:9f:e8:c9:c8:b6:bd:70:06:5e:68:9d:6a:df:71:b9:df:d6: 90:ed:f6:50:86:19:cf:fa:e7:f4:e3:3d:63:68:ca:9a:4d:86: cc:3f:20:fd:c5:4f:4c:da:8b:c6:24:60:7c:6b:57:53:f9:34: 2a:86:5f:36:8a:a6:b6:f1:ba:21:0f:78:59:09:b1:9f:ba:70: 6c:6b:f3:d1:d7:f7:b6:7b:5e:40:b0:17:ae:36:b0:4e:5e:ff: 42:63:b0:b6:b0:43:9d:f0:9d:9c:2d:13:84:24:8a:4e:c0:18: 0b:e7:52:cd:8d:66:d3:f1:f1:32:11:a2:68:9e:38:93:31:14: 38:21:e7:63:28:42:4d:66:fb:48:be:68:39:61:b9:c4:5a:6a: cf:03:ae:24:82:28:be:27:b5:b7:d3:f8:b8:43:97:e4:87:34: 6b:be:57:49:8d:0e:b8:48:2a:6f:f9:3f:47:5a:f0:1f:a6:88: 44:7c:20:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwNDI1MDAxNDUzWhcNMjUwNTAyMDAxNDUzWjAYMRYwFAYD VQQDEw02ODBhZDNmZC05ZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9QPKKLSycK1CTr9l0tCvLA8DDVJUwVVLPwgoh5YeR0cFx+3xDXLibMYzdFRS nwe95lfJujZkuVaFysw6a73aooCInN88MZANSbYGsqs0p9YT7PeNIIes2pzZsKhx OBKWOFDNctVuHMuiaYwQExP1o8vZf+4TTLhyQnQRF5KsFeeTslNC3pdm2nECNhfb AcJyoLe8jA4o85ZXYVjtmrD4GKN1v2fjb8G2XAbDA3oV7FCXyeGoq0S6rdS9Osr1 1c+07c2DUkD+UxUgRKKCaSmlceCI4o2jeTl72CssXog7xJL/kja2nu3NvA0UqMYL kDqNYAVxibOF+T1Acj4ECzXPkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGndDA29 E2Z+5NF86bXp0SXGdqhMMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLWnbbTtGQRHzYXXHjemvM/11gh0VzbaUyo+yv3yI3SaEUhli2qvWY 8A04V4bxSNiAjUMuW1SsJdmG5pejotzuXA40cOhU6DKrn+jJyLa9cAZeaJ1q33G5 39aQ7fZQhhnP+uf04z1jaMqaTYbMPyD9xU9M2ovGJGB8a1dT+TQqhl82iqa28boh D3hZCbGfunBsa/PR1/e2e15AsBeuNrBOXv9CY7C2sEOd8J2cLROEJIpOwBgL51LN jWbT8fEyEaJonjiTMRQ4IedjKEJNZvtIvmg5YbnEWmrPA64kgii+J7W30/i4Q5fk hzRrvldJjQ64SCpv+T9HWvAfpohEfCCm -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:55 2025 by rpki-client