$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft File: UCfzGS691UlQo5w9EwlKcfHTMmY.mft (raw, json) Hash identifier: AsZiHN6sOc//B4SHCBNryO5IjMwITvJ+Oq02ATxLic4= Subject key identifier: D2:73:63:FE:7B:85:16:CD:99:FD:CD:FD:24:5D:1A:71:50:B0:F5:62 Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0AF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft Manifest number: 0AD7 Signing time: Thu 24 Apr 2025 19:21:24 +0000 Manifest this update: Thu 24 Apr 2025 19:21:24 +0000 Manifest next update: Thu 01 May 2025 19:21:24 +0000 Files and hashes: 1: UCfzGS691UlQo5w9EwlKcfHTMmY.crl (hash: /a0dr7wS3E1hDO5qefXlY4GjPOzVXxjcoafeKKzKBOU=) 2: F3F7D2B0CE9711ECA2477C19C4F9AE02.roa (hash: YSanlXPMFGlUc59onSU43QiRooXV0uHeNRhQl6sQvzs=) 3: CDD62642854E11EBA2CFDC87C4F9AE02.roa (hash: EMIkCzah8q7OcQkgGcb8CJSovHyJ1MV1+D6g6V84DdU=) 4: CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa (hash: neskcJ2ryIraX5yGhHnDKoHimVr5nfZfeUgF/8p7xpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2806 (0xaf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078, serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Validity Not Before: Apr 24 19:21:24 2025 GMT Not After : May 1 19:21:24 2025 GMT Subject: CN=680a8f34-7924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:98:53:98:12:d1:22:e1:52:f6:28:7d:fb:62: 45:bc:70:ef:f2:8e:df:5f:ab:04:6f:02:19:ca:d3: 5d:83:49:e1:10:a5:bd:97:41:be:a7:0b:00:ad:cc: 9f:bd:30:38:9a:39:c9:ef:07:4c:4a:27:b9:e7:2e: fe:e6:67:85:7b:d7:91:54:0f:4f:35:af:98:75:1f: 5c:d0:24:d1:81:a9:5e:d9:dd:87:88:55:26:2a:df: ba:04:99:82:c3:1a:0d:f7:4c:57:fa:46:ee:89:42: af:f9:a2:ce:a6:47:44:c5:13:a0:12:ff:50:33:13: 2b:39:76:5b:f5:6c:2a:98:37:c0:22:c4:7d:0a:e1: 61:a9:ed:bc:04:66:2e:63:50:49:08:8c:59:b2:54: c9:77:89:33:ab:95:9e:01:34:8d:e5:9c:e9:cd:17: e5:2b:a9:2d:02:56:bd:d9:f0:21:0f:95:10:2d:ad: 91:60:c3:d6:a2:e8:41:60:0f:ae:b1:9c:fa:06:43: a1:fc:3a:e8:ab:1d:2a:e6:5f:a4:7f:6c:13:dc:22: b0:1a:3e:eb:f5:a6:04:95:e7:a4:ff:c3:d0:70:08: 3e:b5:cb:ae:bf:8d:f8:2d:82:f0:10:64:08:79:84: ef:1c:32:40:7c:77:97:10:9f:c7:e8:9c:4d:c0:e6: 6f:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:73:63:FE:7B:85:16:CD:99:FD:CD:FD:24:5D:1A:71:50:B0:F5:62 X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:38:6c:2a:dc:56:4f:a7:0c:07:20:e9:ff:b3:05:e1:65:c4: b9:0f:cd:93:ba:71:f0:1c:cf:8d:81:e9:32:82:1e:e2:0c:5d: 9d:1a:3c:ac:8f:29:99:39:d8:bc:b3:24:d6:4b:2e:d2:0e:82: cf:56:7d:81:a9:a7:74:3c:4e:ca:7b:ad:39:92:5a:17:8e:f1: 06:98:0a:06:d1:da:57:ff:c0:5b:a5:35:29:d5:82:48:a9:61: 5b:b3:bd:55:58:92:c3:71:c2:7f:27:f8:f8:a6:31:e8:9d:a5: 05:de:ee:6b:ee:25:61:1a:f6:7a:86:a0:ea:d5:dd:b4:9b:49: 88:15:48:50:e8:12:f3:83:d4:05:cb:1f:3f:19:38:cf:8c:b0: 6d:3e:70:70:d2:62:0c:26:e6:72:7b:67:a7:f0:9a:e1:4e:84: be:da:0e:61:67:a4:0e:e1:1e:42:d2:ac:ba:20:ce:21:fe:50: b9:99:c5:95:96:42:6e:57:27:16:83:91:88:12:34:5d:7b:c8: 11:c7:f6:fe:10:bb:0d:8e:77:28:4f:27:ba:a3:aa:9c:31:14: 66:dd:4e:82:aa:ab:ec:a6:25:5a:df:f0:a1:a4:01:a4:14:a6: 4a:02:a3:d1:95:8c:34:4b:9a:39:b8:a9:5a:40:5b:d3:6d:45: dc:ba:6b:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjUwNDI0MTkyMTI0WhcNMjUwNTAxMTkyMTI0WjAYMRYwFAYD VQQDEw02ODBhOGYzNC03OTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsphTmBLRIuFS9ih9+2JFvHDv8o7fX6sEbwIZytNdg0nhEKW9l0G+pwsArcyf vTA4mjnJ7wdMSie55y7+5meFe9eRVA9PNa+YdR9c0CTRgale2d2HiFUmKt+6BJmC wxoN90xX+kbuiUKv+aLOpkdExROgEv9QMxMrOXZb9WwqmDfAIsR9CuFhqe28BGYu Y1BJCIxZslTJd4kzq5WeATSN5ZzpzRflK6ktAla92fAhD5UQLa2RYMPWouhBYA+u sZz6BkOh/Droqx0q5l+kf2wT3CKwGj7r9aYEleek/8PQcAg+tcuuv434LYLwEGQI eYTvHDJAfHeXEJ/H6JxNwOZvgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJzY/57 hRbNmf3N/SRdGnFQsPViMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA3OC84NjMwQjFDODRDOEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFV bFFvNXc5RXdsS2NmSFRNbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcOGwq3FZPpwwHIOn/swXhZcS5D82TunHwHM+Ngekygh7iDF2dGjys jymZOdi8syTWSy7SDoLPVn2Bqad0PE7Ke605kloXjvEGmAoG0dpX/8BbpTUp1YJI qWFbs71VWJLDccJ/J/j4pjHonaUF3u5r7iVhGvZ6hqDq1d20m0mIFUhQ6BLzg9QF yx8/GTjPjLBtPnBw0mIMJuZye2en8JrhToS+2g5hZ6QO4R5C0qy6IM4h/lC5mcWV lkJuVycWg5GIEjRde8gRx/b+ELsNjncoTye6o6qcMRRm3U6CqqvspiVa3/ChpAGk FKZKAqPRlYw0S5o5uKlaQFvTbUXcumur -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:20 2025 by rpki-client