$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: RM2eGfTFDWj9LdRmZsyZqz+Ng2EsGAdFIPdYy91AC3o= Subject key identifier: 6F:BE:73:10:95:B2:B7:74:E8:C4:87:2D:09:FB:97:86:7C:F5:ED:6B Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 035D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 0359 Signing time: Sat 03 May 2025 01:04:11 +0000 Manifest this update: Sat 03 May 2025 01:04:11 +0000 Manifest next update: Sat 10 May 2025 01:04:11 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: Df5+lCRIOEierfqOcTs48FZL0Opu2T1Ah+fCBWjcZAQ=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fCg3LsUh16wFnDfXkxVhThF2ZOUkgckgr+TaTcI9RIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 01:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 861 (0x35d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: May 3 01:04:11 2025 GMT Not After : May 10 01:04:11 2025 GMT Subject: CN=68156b8b-ebbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:af:b8:ae:c4:a6:fd:7e:0c:cf:c0:5f:db:da: de:04:06:77:76:27:05:23:bf:1c:58:23:83:81:51: d4:86:a5:f0:dc:27:7e:9c:cb:37:a4:12:5c:9b:a8: 99:2f:ed:dd:8d:1d:6e:2c:0e:f9:98:b1:7f:69:e0: 68:eb:dd:17:d7:1f:7b:06:88:0a:25:df:14:00:1e: 01:2a:00:5f:e7:39:fb:1c:9b:72:aa:95:70:64:43: ee:ed:d1:b1:e9:e6:ed:59:20:90:a9:ab:f8:84:cc: 45:4c:10:fe:8f:4d:e1:cd:4c:78:bd:d6:f3:f0:a1: a9:48:6d:2a:25:25:9e:b8:58:67:92:54:fb:7b:fd: 9b:81:f5:9e:24:10:02:a5:1d:86:43:02:b9:4b:40: a8:58:54:8a:38:8b:b7:95:1f:23:60:bd:93:26:90: f2:d9:b0:3f:36:81:63:ad:29:fe:34:d0:c0:74:1c: 08:21:bb:cf:db:cf:f0:77:02:62:ad:39:a1:7c:83: df:84:51:43:23:8f:06:ff:c1:3a:a6:16:b6:f7:36: 3b:07:5c:7d:ac:5c:45:e7:15:72:bc:fd:ab:02:59: 74:82:dc:64:20:d6:22:49:ab:ac:4a:b6:fe:11:26: 3a:79:c7:63:0f:b6:5e:d6:07:4f:22:27:f2:ef:36: 29:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:BE:73:10:95:B2:B7:74:E8:C4:87:2D:09:FB:97:86:7C:F5:ED:6B X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:31:6b:b7:d5:55:c7:76:ac:1f:24:32:24:a2:f2:ba:18:f2: 74:66:ae:01:36:68:3f:d9:f5:cd:53:40:35:79:78:94:cf:5e: d3:a1:06:a7:bc:65:b4:5e:67:99:84:31:46:7f:fa:48:f4:45: a1:01:53:27:61:72:d2:55:af:a6:bc:5d:ec:94:b3:a5:a0:c4: e1:08:6e:49:fa:08:50:41:50:02:61:7c:59:be:d6:3f:44:25: dd:dc:11:a7:e5:4f:52:a4:cf:b4:cb:53:bc:90:73:5f:19:b8: 8e:fd:2a:bd:b7:bd:91:4c:11:5f:a3:62:13:59:58:d5:db:9c: 86:19:e0:cd:03:6d:f1:02:ed:f1:59:f4:3d:0b:3c:37:d3:4a: cd:a5:4d:27:c4:9b:cb:88:a9:d8:18:e1:33:a5:94:6d:2b:7c: 9a:39:27:07:d8:12:f5:80:59:d0:20:d6:af:bb:cf:a8:25:5c: 3d:34:0f:cc:30:68:56:44:32:1e:3e:53:b1:51:8c:eb:70:56: 8e:a9:76:d7:81:c8:cd:d0:97:ed:ee:95:58:2c:26:5c:fc:1c: f6:d6:f8:b3:a6:64:5e:73:90:59:e4:d1:7f:ef:2d:30:70:00: 8f:19:63:8b:c6:1f:c9:11:9f:01:e1:58:18:a3:de:93:e9:d5: 3e:61:75:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjUwNTAzMDEwNDExWhcNMjUwNTEwMDEwNDExWjAYMRYwFAYD VQQDEw02ODE1NmI4Yi1lYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzq+4rsSm/X4Mz8Bf29reBAZ3dicFI78cWCODgVHUhqXw3Cd+nMs3pBJcm6iZ L+3djR1uLA75mLF/aeBo690X1x97BogKJd8UAB4BKgBf5zn7HJtyqpVwZEPu7dGx 6ebtWSCQqav4hMxFTBD+j03hzUx4vdbz8KGpSG0qJSWeuFhnklT7e/2bgfWeJBAC pR2GQwK5S0CoWFSKOIu3lR8jYL2TJpDy2bA/NoFjrSn+NNDAdBwIIbvP28/wdwJi rTmhfIPfhFFDI48G/8E6pha29zY7B1x9rFxF5xVyvP2rAll0gtxkINYiSausSrb+ ESY6ecdjD7Ze1gdPIify7zYpwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG++cxCV srd06MSHLQn7l4Z89e1rMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjMWu31VXHdqwfJDIkovK6GPJ0Zq4BNmg/2fXNU0A1eXiUz17ToQan vGW0XmeZhDFGf/pI9EWhAVMnYXLSVa+mvF3slLOloMThCG5J+ghQQVACYXxZvtY/ RCXd3BGn5U9SpM+0y1O8kHNfGbiO/Sq9t72RTBFfo2ITWVjV25yGGeDNA23xAu3x WfQ9Czw300rNpU0nxJvLiKnYGOEzpZRtK3yaOScH2BL1gFnQINavu8+oJVw9NA/M MGhWRDIePlOxUYzrcFaOqXbXgcjN0Jft7pVYLCZc/Bz21vizpmRec5BZ5NF/7y0w cACPGWOLxh/JEZ8B4VgYo96T6dU+YXUT -----END CERTIFICATE-----Generated at Sat May 3 17:27:33 2025 by rpki-client