$ rpki-client -vvf rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft File: uRm6CzrV4m_DHTlL4TK7yof8yFI.mft (raw, json) Hash identifier: SrS3UMmPX2Y7R5/YsGd+d05FmIdjZ8dIZBhtJN0qeUs= Subject key identifier: 8A:13:36:DE:55:8B:53:63:5A:92:DE:96:54:DC:A6:6E:E2:17:E0:43 Authority key identifier: B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 Certificate issuer: /CN=A919E4C6/serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft Manifest number: 023D Signing time: Fri 25 Apr 2025 01:40:15 +0000 Manifest this update: Fri 25 Apr 2025 01:40:15 +0000 Manifest next update: Fri 02 May 2025 01:40:15 +0000 Files and hashes: 1: uRm6CzrV4m_DHTlL4TK7yof8yFI.crl (hash: qSqBpuzU4nI1xW7dCIplBSe1dAYzw60QS9DHnDRKnCM=) 2: 4C0F405E1E1C11EDA19CF560C4F9AE02.roa (hash: Mjvz0g/6VHNBx1WBrf/RAQ24UJcGDEU3e3YasLXb4ZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E4C6, serialNumber=B919BA0B3AD5E26FC31D394BE132BBCA87FCC852 Validity Not Before: Apr 25 01:40:15 2025 GMT Not After : May 2 01:40:15 2025 GMT Subject: CN=680ae7ff-bf3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2b:cb:82:89:b8:29:8f:4b:aa:5a:67:07:0a: b5:03:aa:e5:3f:4d:c1:d6:ea:53:75:33:e6:44:39: 40:fd:82:fd:ce:51:9b:31:ca:5b:35:0f:7b:55:92: 83:04:e0:a7:81:41:e1:0d:e5:d3:7d:cc:d9:4c:f9: e4:98:98:c5:75:b0:e5:d5:a8:76:9f:7f:0f:8c:0d: 13:75:ba:dc:1e:e1:85:fb:1d:b1:de:5b:fb:e4:42: 2e:77:87:00:98:9b:41:cc:fa:e7:1f:4f:4b:bd:d0: 93:8b:93:5d:f7:33:bf:fd:6a:21:02:d6:b7:f5:5f: bb:ed:a1:f9:ca:27:ba:4b:ea:bd:cf:ea:88:06:45: 5c:e4:45:3d:33:4d:73:60:72:f9:c7:9b:9d:63:e0: 80:bc:aa:23:c2:0b:d7:0e:a8:24:0a:8b:9a:8d:51: a9:36:28:a3:a6:f9:bc:a8:24:9d:2b:a6:a1:5c:23: af:26:e2:70:65:ca:35:b3:b4:fb:1c:45:5a:24:55: 17:78:26:6f:55:9e:73:60:6a:40:99:13:11:3f:39: b8:e9:ab:94:3c:0e:81:a2:ac:d9:e2:ca:d1:3b:14: db:28:89:ad:69:21:d9:76:51:ca:18:1d:e4:71:15: 4d:a5:98:5e:d1:15:05:48:ec:fb:65:53:b6:e2:ce: 97:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:13:36:DE:55:8B:53:63:5A:92:DE:96:54:DC:A6:6E:E2:17:E0:43 X509v3 Authority Key Identifier: keyid:B9:19:BA:0B:3A:D5:E2:6F:C3:1D:39:4B:E1:32:BB:CA:87:FC:C8:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uRm6CzrV4m_DHTlL4TK7yof8yFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E4C6/EAB947A81E1811ED9479365DC4F9AE02/uRm6CzrV4m_DHTlL4TK7yof8yFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1e:4f:46:07:e3:c9:f6:c7:55:5d:67:97:c6:b9:ad:e6:f3: 64:c2:5c:41:02:43:8a:c2:15:3f:66:c5:a2:20:72:c9:da:18: 5a:fe:e0:0f:9e:13:13:64:64:b9:e0:54:b9:e3:e2:4e:4b:5c: 33:b7:98:a1:21:b7:78:ed:41:4e:61:84:e8:65:a2:18:c8:44: 84:c4:e1:93:90:98:cf:cc:81:be:76:b1:06:f4:d4:cc:f6:cd: 88:15:f4:48:c3:8a:02:6b:a2:2b:52:ba:ae:fd:95:70:f1:e2: 58:b4:08:e5:71:e4:f1:be:3a:94:60:f7:ab:6d:0a:7b:92:bc: 70:0d:d6:61:4d:c4:b9:b4:53:de:84:d6:b7:fc:54:45:86:fe: ff:f3:b4:49:52:b2:d8:5b:e3:17:e6:4d:95:69:f8:7f:7e:dc: f0:65:3a:a4:e5:d0:0a:08:9a:ad:e6:14:a4:57:2f:c8:23:ee: 1d:5a:ac:ec:dc:f0:05:29:96:bc:49:b2:60:d8:09:ab:9e:50: b4:76:24:d3:69:ca:d8:9f:76:65:32:26:4f:3f:65:69:dd:fd: 79:72:c1:f6:cc:c8:aa:ce:ae:fd:15:00:b9:87:a9:e5:0e:de: 79:7f:bb:fd:b2:b6:7d:dc:2c:02:7c:91:32:90:de:33:d4:f7: ae:80:ba:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU0QzYxMTAvBgNVBAUTKEI5MTlCQTBCM0FENUUyNkZDMzFEMzk0QkUxMzJCQkNB ODdGQ0M4NTIwHhcNMjUwNDI1MDE0MDE1WhcNMjUwNTAyMDE0MDE1WjAYMRYwFAYD VQQDEw02ODBhZTdmZi1iZjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSvLgom4KY9LqlpnBwq1A6rlP03B1upTdTPmRDlA/YL9zlGbMcpbNQ97VZKD BOCngUHhDeXTfczZTPnkmJjFdbDl1ah2n38PjA0TdbrcHuGF+x2x3lv75EIud4cA mJtBzPrnH09LvdCTi5Nd9zO//WohAta39V+77aH5yie6S+q9z+qIBkVc5EU9M01z YHL5x5udY+CAvKojwgvXDqgkCouajVGpNiijpvm8qCSdK6ahXCOvJuJwZco1s7T7 HEVaJFUXeCZvVZ5zYGpAmRMRPzm46auUPA6BoqzZ4srROxTbKImtaSHZdlHKGB3k cRVNpZhe0RUFSOz7ZVO24s6XDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoTNt5V i1NjWpLellTcpm7iF+BDMB8GA1UdIwQYMBaAFLkZugs61eJvwx05S+Eyu8qH/MhS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTRDNi9FQUI5NDdBODFF MTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRtX0RIVGxMNFRLN3lvZjh5 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VSbTZDenJWNG1fREhUbEw0VEs3eW9mOHlGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTRDNi9FQUI5NDdBODFFMTgxMUVEOTQ3OTM2NURDNEY5QUUwMi91Um02Q3pyVjRt X0RIVGxMNFRLN3lvZjh5RkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiHk9GB+PJ9sdVXWeXxrmt5vNkwlxBAkOKwhU/ZsWiIHLJ2hha/uAP nhMTZGS54FS54+JOS1wzt5ihIbd47UFOYYToZaIYyESExOGTkJjPzIG+drEG9NTM 9s2IFfRIw4oCa6IrUrqu/ZVw8eJYtAjlceTxvjqUYPerbQp7krxwDdZhTcS5tFPe hNa3/FRFhv7/87RJUrLYW+MX5k2Vafh/ftzwZTqk5dAKCJqt5hSkVy/II+4dWqzs 3PAFKZa8SbJg2AmrnlC0diTTacrYn3ZlMiZPP2Vp3f15csH2zMiqzq79FQC5h6nl Dt55f7v9srZ93CwCfJEykN4z1PeugLoK -----END CERTIFICATE-----Generated at Sat Apr 26 05:04:22 2025 by rpki-client