$ rpki-client -vvf rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft File: u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft (raw, json) Hash identifier: nRI5BiT1kIeh7f/bWAKaUOs1BZ6EY2Bs0aofQICftg8= Subject key identifier: 54:23:00:82:5D:03:FF:43:A2:EB:FD:B1:CC:04:1F:6C:4F:6E:A8:4C Authority key identifier: BB:DB:7B:D0:B8:E9:65:6E:71:E1:99:4E:19:61:87:45:70:8F:CE:F1 Certificate issuer: /CN=A919B824/serialNumber=BBDB7BD0B8E9656E71E1994E19618745708FCEF1 Certificate serial: 08F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft Manifest number: 08F1 Signing time: Thu 24 Apr 2025 20:14:35 +0000 Manifest this update: Thu 24 Apr 2025 20:14:35 +0000 Manifest next update: Thu 01 May 2025 20:14:35 +0000 Files and hashes: 1: u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl (hash: ymzPHjx48BBYYXtwLLWppkdSFoFe1wi414pZdGueJHM=) 2: EEC7D1CAA6C911EA8079FD17C4F9AE02.roa (hash: ggnDaBNF34HQg+n5+et1BdldDeh00Zq26oas41hsO6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B824, serialNumber=BBDB7BD0B8E9656E71E1994E19618745708FCEF1 Validity Not Before: Apr 24 20:14:35 2025 GMT Not After : May 1 20:14:35 2025 GMT Subject: CN=680a9bab-8787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f8:45:5c:a9:df:ca:2b:4a:14:88:5b:07:67: 88:45:e5:f7:22:1c:db:32:88:f6:9b:97:9c:99:1e: df:5b:71:9a:4a:88:d9:e1:09:9c:04:8f:8b:c0:a6: 17:c0:7f:02:37:bb:78:d9:9c:45:42:5b:73:87:3f: 7f:4a:25:98:3b:49:55:12:8c:84:2e:80:25:be:3c: 17:95:50:7a:8b:75:28:f3:06:21:ad:6b:82:d2:b2: eb:b9:1e:bd:16:d5:ba:8a:0d:10:e7:26:a0:22:c2: 9f:b5:72:f1:0e:99:a1:8d:84:6e:2e:70:83:c0:5c: 62:f8:6e:79:67:97:1a:a1:63:fb:f8:2a:4c:95:00: 22:52:83:f9:02:b2:b5:2b:9d:e5:08:33:f3:3d:f8: a6:86:05:34:cf:38:96:9c:e7:4e:63:9e:7c:5d:ac: cc:09:39:4f:76:f9:e8:63:ad:53:00:ea:a3:25:1b: 36:6c:29:6f:67:e4:45:2e:87:4b:9a:6d:98:f9:0e: 86:9d:0f:14:32:6a:fd:65:c6:5f:f5:a7:55:5a:68: f4:6e:23:d8:b9:e7:ef:6f:9f:2c:b1:6c:5c:2e:11: fd:01:bc:cf:ed:6c:50:92:69:5f:73:ec:a4:f3:20: 6a:dc:85:a7:24:1b:70:28:9b:f8:dc:da:07:94:a7: 13:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:23:00:82:5D:03:FF:43:A2:EB:FD:B1:CC:04:1F:6C:4F:6E:A8:4C X509v3 Authority Key Identifier: keyid:BB:DB:7B:D0:B8:E9:65:6E:71:E1:99:4E:19:61:87:45:70:8F:CE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:0b:63:37:b0:fe:af:12:df:0d:4c:0b:61:c9:10:6f:6d:a2: c9:31:d5:23:32:d6:bd:0d:f5:64:63:8e:15:e5:86:4e:df:96: 1d:a6:a8:84:cd:61:3f:ef:d8:21:d1:30:bf:d3:c0:8a:36:1e: 53:05:cd:79:fe:c7:61:a7:3f:69:c3:ba:3a:e9:32:47:05:59: 14:ea:1d:65:00:24:42:4c:27:4e:10:55:72:c0:28:3e:ae:63: f3:7c:c1:ba:8e:4d:26:10:d4:0f:6d:66:04:85:17:3e:ab:39: 61:c6:a2:b6:59:8d:55:22:02:ae:5c:ed:6b:0f:f7:a9:7a:55: d9:cb:20:6d:98:9d:2a:18:44:ff:fb:63:3e:2b:11:06:b0:c7: 1f:8f:c9:f0:69:8c:c6:5f:85:26:25:12:47:c9:fd:06:db:f5: 68:53:83:88:29:18:33:ed:9c:36:1a:e7:72:36:d0:82:00:f3: 7f:87:f9:cd:53:f5:65:e1:54:89:ab:c9:67:26:33:eb:dd:42: a9:62:db:8a:a2:59:c4:e7:01:1a:30:d4:4b:0c:38:39:7f:f5: b5:c1:51:63:78:c3:e0:96:c5:95:36:dd:50:81:77:0c:2b:a4: 65:db:bc:9a:c1:ae:ec:4f:73:6f:36:e1:67:b2:65:91:da:ac: 6e:99:ab:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI4MjQxMTAvBgNVBAUTKEJCREI3QkQwQjhFOTY1NkU3MUUxOTk0RTE5NjE4NzQ1 NzA4RkNFRjEwHhcNMjUwNDI0MjAxNDM1WhcNMjUwNTAxMjAxNDM1WjAYMRYwFAYD VQQDEw02ODBhOWJhYi04Nzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPhFXKnfyitKFIhbB2eIReX3IhzbMoj2m5ecmR7fW3GaSojZ4QmcBI+LwKYX wH8CN7t42ZxFQltzhz9/SiWYO0lVEoyELoAlvjwXlVB6i3Uo8wYhrWuC0rLruR69 FtW6ig0Q5yagIsKftXLxDpmhjYRuLnCDwFxi+G55Z5caoWP7+CpMlQAiUoP5ArK1 K53lCDPzPfimhgU0zziWnOdOY558XazMCTlPdvnoY61TAOqjJRs2bClvZ+RFLodL mm2Y+Q6GnQ8UMmr9ZcZf9adVWmj0biPYuefvb58ssWxcLhH9AbzP7WxQkmlfc+yk 8yBq3IWnJBtwKJv43NoHlKcTTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQjAIJd A/9Douv9scwEH2xPbqhMMB8GA1UdIwQYMBaAFLvbe9C46WVuceGZThlhh0Vwj87x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjgyNC83MzRCQUQxNkE2 QzcxMUVBQkQzMDUwMTBDNEY5QUUwMi91OXQ3MExqcFpXNXg0WmxPR1dHSFJYQ1B6 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U5dDcwTGpwWlc1eDRabE9HV0dIUlhDUHp2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjgyNC83MzRCQUQxNkE2QzcxMUVBQkQzMDUwMTBDNEY5QUUwMi91OXQ3MExqcFpX NXg0WmxPR1dHSFJYQ1B6dkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZC2M3sP6vEt8NTAthyRBvbaLJMdUjMta9DfVkY44V5YZO35YdpqiE zWE/79gh0TC/08CKNh5TBc15/sdhpz9pw7o66TJHBVkU6h1lACRCTCdOEFVywCg+ rmPzfMG6jk0mENQPbWYEhRc+qzlhxqK2WY1VIgKuXO1rD/epelXZyyBtmJ0qGET/ +2M+KxEGsMcfj8nwaYzGX4UmJRJHyf0G2/VoU4OIKRgz7Zw2GudyNtCCAPN/h/nN U/Vl4VSJq8lnJjPr3UKpYtuKolnE5wEaMNRLDDg5f/W1wVFjeMPglsWVNt1QgXcM K6Rl27yawa7sT3NvNuFnsmWR2qxumasG -----END CERTIFICATE-----Generated at Sat Apr 26 15:10:30 2025 by rpki-client