$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: dwU/whOEO4MzR7SuL4TmQa/5iHymR8d4zFCzY1Z1GFE= Subject key identifier: 40:ED:3C:C1:A6:A3:C8:17:24:76:A0:75:54:86:C7:DD:64:73:5A:E7 Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1DEE Signing time: Sun 04 May 2025 16:01:58 +0000 Manifest this update: Sun 04 May 2025 16:01:58 +0000 Manifest next update: Sun 11 May 2025 16:01:58 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: O3Z15LYwEXVVJfe2Nfio+fRxbhxnUapdEIj77R1a9Lg=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: rt/eyNRwh3HSmHt+oMSmnpP/31deXcLSwt8yukP8jbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 16:01:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7683 (0x1e03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: May 4 16:01:58 2025 GMT Not After : May 11 16:01:58 2025 GMT Subject: CN=68178f76-186c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:86:0e:2f:dd:51:05:53:85:21:a4:81:fa:58: b6:a6:50:6d:39:2d:cb:e3:ff:50:6a:52:c4:8e:3f: 92:81:89:57:2f:07:00:40:a7:20:4b:a4:82:d1:9c: d5:73:dd:a2:2f:b9:92:f2:76:e7:46:fd:69:a6:aa: 7c:c0:ce:8c:59:1a:be:0f:a5:7a:ee:f3:89:41:c7: 9e:9a:ca:07:c2:65:47:67:42:ae:5b:57:85:f6:b1: dd:f3:1f:81:d4:de:50:7f:e6:5b:04:9d:1e:b9:68: 01:46:d7:fc:be:2f:49:ca:d2:34:e2:72:41:cc:3b: 57:ef:8b:64:3e:15:6b:5d:a8:54:9f:b8:cc:3c:cc: 25:7f:e3:ab:fd:9a:bb:ba:03:59:ff:d7:9f:50:8c: fa:42:5d:79:34:6c:d2:58:ba:4a:d6:f2:75:aa:48: 3c:d6:62:81:6b:56:73:93:bb:3d:63:9e:bd:5b:cf: 75:30:86:1a:d1:c3:d6:8f:e8:5c:57:5e:59:36:59: 79:45:29:80:75:89:2a:6b:c7:16:8a:78:4b:30:b6: a8:fe:51:91:0e:e1:ff:2f:e3:ec:a7:aa:02:68:7a: 52:c4:35:0e:41:3e:30:2e:92:3c:c3:ef:3d:e8:02: 90:e7:4e:ac:14:55:f5:ff:23:76:14:13:3d:40:4d: d4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:ED:3C:C1:A6:A3:C8:17:24:76:A0:75:54:86:C7:DD:64:73:5A:E7 X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:ec:3a:2f:1c:b1:78:3e:7c:5d:25:a8:89:b8:d0:6e:f0:8d: 03:ff:58:3e:a2:ee:d4:68:a4:b0:19:e7:f8:60:ed:7c:b3:24: 58:dc:49:7d:19:90:b3:e0:78:7a:a7:11:9b:87:f3:ab:7c:60: 7c:82:a2:7d:37:62:38:20:85:c7:af:fa:4a:eb:27:e8:04:fa: 89:50:31:f6:90:41:19:23:62:7e:79:10:ef:f5:21:31:99:57: 0e:c7:31:e5:6e:d2:e8:e5:39:bb:9a:63:14:f7:9e:eb:d1:81: 59:66:39:17:69:50:78:9e:9c:aa:a2:5b:d1:80:8b:33:c1:ec: c8:e6:2c:fc:48:4d:a5:02:a8:2c:dd:a1:72:c3:96:7e:75:3f: b1:78:00:d9:eb:10:aa:77:81:da:bc:48:5e:f5:56:2a:bc:b8: 54:9c:1e:f5:51:45:8f:2f:c1:b9:fa:67:3f:47:e7:d9:06:01: 8b:b2:2c:e4:4d:fe:d0:94:14:9b:11:55:a3:ed:b1:4b:3a:76: 4a:85:70:11:f4:c6:d7:44:ea:61:05:9b:a1:2d:44:0e:9a:23: 4d:dd:9a:7a:61:a4:d8:a7:99:8c:e7:bc:07:08:b0:1c:2b:2f: 7c:f8:b8:54:e7:4c:2f:ab:58:c7:20:8b:a6:b4:02:4e:a6:7a: 11:b2:7b:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUwNTA0MTYwMTU4WhcNMjUwNTExMTYwMTU4WjAYMRYwFAYD VQQDEw02ODE3OGY3Ni0xODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4YOL91RBVOFIaSB+li2plBtOS3L4/9QalLEjj+SgYlXLwcAQKcgS6SC0ZzV c92iL7mS8nbnRv1ppqp8wM6MWRq+D6V67vOJQceemsoHwmVHZ0KuW1eF9rHd8x+B 1N5Qf+ZbBJ0euWgBRtf8vi9JytI04nJBzDtX74tkPhVrXahUn7jMPMwlf+Or/Zq7 ugNZ/9efUIz6Ql15NGzSWLpK1vJ1qkg81mKBa1Zzk7s9Y569W891MIYa0cPWj+hc V15ZNll5RSmAdYkqa8cWinhLMLao/lGRDuH/L+Psp6oCaHpSxDUOQT4wLpI8w+89 6AKQ506sFFX1/yN2FBM9QE3UtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDtPMGm o8gXJHagdVSGx91kc1rnMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl7DovHLF4PnxdJaiJuNBu8I0D/1g+ou7UaKSwGef4YO18syRY3El9 GZCz4Hh6pxGbh/OrfGB8gqJ9N2I4IIXHr/pK6yfoBPqJUDH2kEEZI2J+eRDv9SEx mVcOxzHlbtLo5Tm7mmMU957r0YFZZjkXaVB4npyqolvRgIszwezI5iz8SE2lAqgs 3aFyw5Z+dT+xeADZ6xCqd4HavEhe9VYqvLhUnB71UUWPL8G5+mc/R+fZBgGLsizk Tf7QlBSbEVWj7bFLOnZKhXAR9MbXROphBZuhLUQOmiNN3Zp6YaTYp5mM57wHCLAc Ky98+LhU50wvq1jHIIumtAJOpnoRsnt0 -----END CERTIFICATE-----Generated at Mon May 5 05:34:23 2025 by rpki-client