$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: tjOwxmFkcX78GYkQxClY4vxfvb/fcrgeCsMvBfHOqAY= Subject key identifier: 36:80:0E:5E:13:A0:76:08:1E:57:2B:64:B4:F1:DE:0B:BC:DB:AF:63 Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 02B4 Signing time: Fri 25 Apr 2025 01:13:11 +0000 Manifest this update: Fri 25 Apr 2025 01:13:11 +0000 Manifest next update: Fri 02 May 2025 01:13:11 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: 13j16IYZQ+FlGZOTN+9GsrbVnHM9HY2EsNBEoSIh8LE=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: 90iQ52pzi3F+reOCS+hcjY5A8xSUULeYkZXVo6UNIXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1, serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: Apr 25 01:13:11 2025 GMT Not After : May 2 01:13:11 2025 GMT Subject: CN=680ae1a7-2214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c3:ec:90:23:59:b3:23:bb:26:2b:97:5c:dc: ea:f8:9d:c7:34:4d:bf:72:c1:1b:56:55:d3:04:73: 4f:46:93:87:52:4c:90:c1:5e:b3:46:2b:20:8f:9f: d2:1c:15:4e:92:fa:47:03:59:5b:4b:b4:20:a4:cb: d5:4e:5b:51:d2:26:d5:c8:cc:e3:03:e9:2f:da:4e: f0:c0:1d:c0:de:68:5b:d5:95:a9:8f:8d:2e:c8:8c: cf:c4:3d:f0:34:4e:85:9c:50:82:76:bc:e9:86:97: c4:c1:b6:63:b0:5d:74:ef:61:3c:af:d1:51:60:06: 6e:0a:5b:af:ad:a3:4e:35:6c:b0:6e:14:ad:07:77: 46:b8:5d:a1:cb:a5:a1:99:ec:18:23:83:99:ab:88: d2:2a:43:62:69:28:48:37:26:aa:77:9e:49:0d:0d: aa:10:89:ae:cd:73:ea:42:2d:e7:18:7e:80:38:1e: c9:f6:ac:30:f0:af:f3:91:78:0a:28:11:15:79:aa: 04:9d:8e:e8:04:d8:2d:dd:1d:98:0a:bd:04:50:30: b7:60:8c:46:f9:a5:cc:0d:96:1e:c1:fa:38:b0:45: 86:c2:91:33:9f:46:1b:2b:51:65:8b:43:c0:7e:b5: a3:8a:f3:ab:58:ca:d0:6d:93:9c:aa:0e:c3:52:21: 69:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:80:0E:5E:13:A0:76:08:1E:57:2B:64:B4:F1:DE:0B:BC:DB:AF:63 X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:0c:26:d1:4e:ed:8c:71:4a:2a:ad:6c:80:9c:75:fb:82:dd: 86:92:14:e2:85:2f:c6:55:76:ea:01:f8:f6:9e:3f:93:e0:81: bf:fa:82:3a:50:f0:5e:ea:5f:73:36:f6:b3:e2:b0:09:a1:0f: d6:03:7b:c3:b8:bd:c3:71:63:26:44:03:38:6a:ae:30:63:ea: 87:7c:fd:4a:77:59:81:25:30:0e:ab:d5:5f:b7:f6:2b:ac:1e: 1a:71:ec:30:d0:43:94:b2:95:23:a8:13:26:4b:49:b2:2d:79: 30:c2:c7:95:1a:02:8a:e7:f6:8f:fc:64:91:99:cf:c5:f2:cd: d9:60:bf:96:df:41:ac:ca:2a:76:29:02:b1:68:e0:20:3d:ae: ca:9f:09:62:96:2f:6d:db:0d:ee:8e:f6:12:37:8c:25:ad:9f: 08:87:38:7d:43:6c:67:3b:4b:9b:14:13:8c:cf:04:d9:e4:d7: 9f:cf:e4:5e:b6:ec:1d:bd:98:33:0a:e5:91:64:3a:09:1d:58: 0a:d0:8e:62:40:9e:5f:e1:97:a6:26:e6:5c:75:68:21:b3:83: 5e:41:19:12:bd:41:a9:b8:0f:8e:53:21:20:64:bf:4f:77:14: c2:36:e8:24:ab:b3:2e:b0:3c:fd:b4:2b:cc:4c:02:d1:7b:b4: b4:29:cd:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjUwNDI1MDExMzExWhcNMjUwNTAyMDExMzExWjAYMRYwFAYD VQQDEw02ODBhZTFhNy0yMjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycPskCNZsyO7JiuXXNzq+J3HNE2/csEbVlXTBHNPRpOHUkyQwV6zRisgj5/S HBVOkvpHA1lbS7QgpMvVTltR0ibVyMzjA+kv2k7wwB3A3mhb1ZWpj40uyIzPxD3w NE6FnFCCdrzphpfEwbZjsF1072E8r9FRYAZuCluvraNONWywbhStB3dGuF2hy6Wh mewYI4OZq4jSKkNiaShINyaqd55JDQ2qEImuzXPqQi3nGH6AOB7J9qww8K/zkXgK KBEVeaoEnY7oBNgt3R2YCr0EUDC3YIxG+aXMDZYewfo4sEWGwpEzn0YbK1Fli0PA frWjivOrWMrQbZOcqg7DUiFp9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDaADl4T oHYIHlcrZLTx3gu8269jMB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQDCbRTu2McUoqrWyAnHX7gt2GkhTihS/GVXbqAfj2nj+T4IG/+oI6 UPBe6l9zNvaz4rAJoQ/WA3vDuL3DcWMmRAM4aq4wY+qHfP1Kd1mBJTAOq9Vft/Yr rB4aceww0EOUspUjqBMmS0myLXkwwseVGgKK5/aP/GSRmc/F8s3ZYL+W30Gsyip2 KQKxaOAgPa7Knwlili9t2w3ujvYSN4wlrZ8Ihzh9Q2xnO0ubFBOMzwTZ5Nefz+Re tuwdvZgzCuWRZDoJHVgK0I5iQJ5f4ZemJuZcdWghs4NeQRkSvUGpuA+OUyEgZL9P dxTCNugkq7MusDz9tCvMTALRe7S0Kc0X -----END CERTIFICATE-----Generated at Sat Apr 26 04:35:49 2025 by rpki-client