$ rpki-client -vvf rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.mft File: UtaA4EXc6ZB4ng13cmF8YMNu0Y4.mft (raw, json) Hash identifier: 5s6M3pew17xgSPejQmp0GnwpLom6Fre6lhSNgXj+tKY= Subject key identifier: E2:C8:FC:28:C1:1E:CE:EC:43:F4:C9:C1:2F:58:33:B2:14:0F:98:B4 Authority key identifier: 52:D6:80:E0:45:DC:E9:90:78:9E:0D:77:72:61:7C:60:C3:6E:D1:8E Certificate issuer: /CN=A919EF51/serialNumber=52D680E045DCE990789E0D7772617C60C36ED18E Certificate serial: 0B15 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.mft Manifest number: 0B0D Signing time: Thu 24 Apr 2025 19:08:29 +0000 Manifest this update: Thu 24 Apr 2025 19:08:28 +0000 Manifest next update: Thu 01 May 2025 19:08:28 +0000 Files and hashes: 1: UtaA4EXc6ZB4ng13cmF8YMNu0Y4.crl (hash: d5NkqyP4fBQKaWvL8lhRIYzlSVgTDVjudkWGhQ2YCQQ=) 2: BC60BC2A63F711EA8CBEB029C4F9AE02.roa (hash: wRvd5l9La3MSVA49dLn9S92nbQQvOi4LJr/5XnlTFpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.crl rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:08:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2837 (0xb15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EF51, serialNumber=52D680E045DCE990789E0D7772617C60C36ED18E Validity Not Before: Apr 24 19:08:28 2025 GMT Not After : May 1 19:08:28 2025 GMT Subject: CN=680a8c2d-e60a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:77:2a:87:bf:ee:4a:0f:16:49:98:3d:61:93: 51:0c:ea:64:6c:16:d6:c8:af:28:71:06:fa:26:67: 77:28:7a:ed:dd:67:2d:5d:b3:f9:2a:1c:94:ea:cd: 8c:a9:46:4f:2d:03:c2:fb:32:65:27:af:5d:ce:a8: e7:41:9e:d8:7f:1c:99:72:03:a5:78:c8:52:d1:9d: eb:16:3d:d8:b4:46:fa:c9:f0:b6:07:1e:83:06:66: 81:6b:c0:ca:b6:d7:96:bf:86:3e:27:b5:d8:e6:f9: ff:53:bc:ed:d5:08:c1:f1:79:bf:af:32:40:3c:c1: f4:1e:0e:47:63:d0:af:63:b9:3c:3f:0e:72:83:0c: b5:a2:d5:5f:49:f1:0d:b5:6f:fc:07:01:99:e5:f5: 9f:a0:d7:fc:95:e1:a2:f9:ca:b5:a3:a5:94:79:b9: 8e:aa:26:83:07:9b:c4:76:fb:63:53:8a:8a:d7:39: 1f:43:e1:e3:28:88:96:5e:50:c0:f8:73:12:10:3a: 66:33:26:01:98:fa:e5:ee:d0:c0:bd:ce:d6:a1:21: 71:85:59:9f:d9:20:13:5d:89:fa:e6:a0:ea:5d:52: d0:a1:ef:72:2a:e0:16:a9:43:0f:53:02:bc:70:e2: b4:11:fb:27:1c:23:2a:3a:c0:8d:4d:64:f9:21:31: f6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:C8:FC:28:C1:1E:CE:EC:43:F4:C9:C1:2F:58:33:B2:14:0F:98:B4 X509v3 Authority Key Identifier: keyid:52:D6:80:E0:45:DC:E9:90:78:9E:0D:77:72:61:7C:60:C3:6E:D1:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EF51/BA3CD4A63D8211EA9F267370C4F9AE02/UtaA4EXc6ZB4ng13cmF8YMNu0Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:42:29:c3:16:5d:d9:aa:81:a2:15:b4:b9:1c:00:31:6d:32: 46:ae:4d:84:86:0d:f8:b4:b6:8a:f3:0f:f3:0a:0e:d3:7a:31: 16:5f:00:91:e6:1a:3c:2c:a1:c2:13:78:62:78:59:fc:7b:16: 72:a9:ac:45:e0:91:e4:c8:2d:fb:ea:2d:a9:38:ef:90:31:36: a4:04:d9:aa:b9:1b:38:12:ef:a0:a0:4b:f5:13:5b:29:6a:ef: 44:60:bb:22:b9:62:c6:b7:6f:1b:42:4e:28:1e:05:1e:13:6b: 83:bb:ff:01:5a:81:d2:b8:e7:3f:7f:75:27:0e:0e:a4:fb:d5: 2c:58:ab:05:dc:2d:fe:14:2a:75:fd:ca:ce:bd:e5:fc:66:09: 51:80:58:b5:17:a5:2f:1d:bb:5f:5a:29:e4:be:5b:11:0a:50: 94:3e:65:32:c1:62:b4:e9:4b:72:94:8d:85:58:11:8a:c0:5b: 3f:64:2c:ce:85:75:3b:2c:6c:a6:9c:46:85:65:82:17:ce:2f: 97:19:56:c8:ff:5f:be:1c:89:12:5d:37:f8:c6:7e:ce:80:e2: 2f:5c:9d:04:81:24:bf:11:5d:65:30:48:ed:bb:0c:9d:1b:9e: b6:00:8e:93:a9:b1:0e:6c:b0:f0:28:e7:9d:25:ec:5b:40:98: 7a:5d:3f:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGNTExMTAvBgNVBAUTKDUyRDY4MEUwNDVEQ0U5OTA3ODlFMEQ3NzcyNjE3QzYw QzM2RUQxOEUwHhcNMjUwNDI0MTkwODI4WhcNMjUwNTAxMTkwODI4WjAYMRYwFAYD VQQDEw02ODBhOGMyZC1lNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Xcqh7/uSg8WSZg9YZNRDOpkbBbWyK8ocQb6Jmd3KHrt3WctXbP5KhyU6s2M qUZPLQPC+zJlJ69dzqjnQZ7YfxyZcgOleMhS0Z3rFj3YtEb6yfC2Bx6DBmaBa8DK tteWv4Y+J7XY5vn/U7zt1QjB8Xm/rzJAPMH0Hg5HY9CvY7k8Pw5ygwy1otVfSfEN tW/8BwGZ5fWfoNf8leGi+cq1o6WUebmOqiaDB5vEdvtjU4qK1zkfQ+HjKIiWXlDA +HMSEDpmMyYBmPrl7tDAvc7WoSFxhVmf2SATXYn65qDqXVLQoe9yKuAWqUMPUwK8 cOK0EfsnHCMqOsCNTWT5ITH2+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLI/CjB Hs7sQ/TJwS9YM7IUD5i0MB8GA1UdIwQYMBaAFFLWgOBF3OmQeJ4Nd3JhfGDDbtGO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUY1MS9CQTNDRDRBNjNE ODIxMUVBOUYyNjczNzBDNEY5QUUwMi9VdGFBNEVYYzZaQjRuZzEzY21GOFlNTnUw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1V0YUE0RVhjNlpCNG5nMTNjbUY4WU1OdTBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUY1MS9CQTNDRDRBNjNEODIxMUVBOUYyNjczNzBDNEY5QUUwMi9VdGFBNEVYYzZa QjRuZzEzY21GOFlNTnUwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3QinDFl3ZqoGiFbS5HAAxbTJGrk2Ehg34tLaK8w/zCg7TejEWXwCR 5ho8LKHCE3hieFn8exZyqaxF4JHkyC376i2pOO+QMTakBNmquRs4Eu+goEv1E1sp au9EYLsiuWLGt28bQk4oHgUeE2uDu/8BWoHSuOc/f3UnDg6k+9UsWKsF3C3+FCp1 /crOveX8ZglRgFi1F6UvHbtfWinkvlsRClCUPmUywWK06UtylI2FWBGKwFs/ZCzO hXU7LGymnEaFZYIXzi+XGVbI/1++HIkSXTf4xn7OgOIvXJ0EgSS/EV1lMEjtuwyd G562AI6TqbEObLDwKOedJexbQJh6XT/u -----END CERTIFICATE-----Generated at Sat Apr 26 15:05:32 2025 by rpki-client