$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft File: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft (raw, json) Hash identifier: 9bsDfVloOIEAc8+VBGDR1Lb5ANiN4mQBo9FyzNJvcUc= Subject key identifier: 03:E3:A3:F5:AF:11:D7:35:9F:50:35:FC:BD:33:FB:F3:3D:7F:C0:03 Authority key identifier: 50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C Certificate issuer: /CN=A91A3D65/serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft Manifest number: 01BF Signing time: Fri 25 Apr 2025 02:15:46 +0000 Manifest this update: Fri 25 Apr 2025 02:15:45 +0000 Manifest next update: Fri 02 May 2025 02:15:45 +0000 Files and hashes: 1: UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl (hash: qI67h3nGu0COFQ82kklEk4s68jTv+Hvves/o4cT/djs=) 2: 57DD65D0D1FB11EDA0A31C2FC4F9AE02.roa (hash: FNFbf5sb9V0I6f51NgIRl7bd8+WZE2kCB/02TRMhw6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:15:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3D65, serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Validity Not Before: Apr 25 02:15:45 2025 GMT Not After : May 2 02:15:45 2025 GMT Subject: CN=680af051-7551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b4:1d:8d:3f:50:e4:83:e5:60:8b:5d:73:26: bd:88:d0:a3:b1:59:f3:3d:50:f6:79:88:0b:7d:91: 85:b9:b8:da:aa:9f:46:55:28:37:e0:24:73:53:2b: 28:d3:48:c4:46:19:c3:81:be:86:6d:79:6c:86:e1: 1a:b1:2c:e9:74:af:ec:cc:d5:67:b3:16:b7:fa:18: 83:6b:4b:c1:96:b3:04:6b:b9:16:81:7b:09:76:73: 7c:e6:71:cf:de:2a:16:e8:16:87:98:a1:c2:e3:4e: d0:65:50:96:ca:e3:af:0e:a5:8e:7e:00:f8:41:5d: 37:a0:2c:6a:51:6b:ca:fd:e8:98:ac:e1:e3:a4:41: c1:c8:3d:70:dc:9f:7b:1a:d9:2e:0f:32:12:dd:3e: f4:c3:e3:75:12:39:6b:a7:cb:4d:f8:ec:a7:f9:14: 34:71:15:d5:f6:2c:58:08:79:d2:d2:e1:65:fa:b8: 4a:bc:0e:be:de:f4:42:f6:6b:3f:43:41:01:70:8c: 28:e5:76:91:7c:f8:16:57:eb:ba:4d:74:4c:87:97: 08:4b:6f:83:49:c2:b9:3a:ab:8f:5a:32:19:a0:75: c7:72:c1:05:36:7c:73:28:4c:d5:c3:6e:40:bb:b1: d6:4a:c1:eb:b3:dc:3a:87:f1:25:e9:fa:d5:4a:f8: f1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E3:A3:F5:AF:11:D7:35:9F:50:35:FC:BD:33:FB:F3:3D:7F:C0:03 X509v3 Authority Key Identifier: keyid:50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:8c:07:9d:e5:7f:e2:cd:52:1d:91:ce:01:8b:5a:3c:cc:53: 77:aa:7e:4d:a1:3e:de:bd:0a:3f:e3:a5:15:47:95:aa:ae:a6: 55:77:d7:90:bb:4d:86:cd:4d:5b:66:d3:d9:16:5e:ee:30:ed: fa:60:d6:12:85:6e:2f:b7:a4:c4:e8:74:7c:2c:c8:69:8b:1c: e5:1c:96:1f:cc:17:71:59:6a:6a:79:b8:38:db:1c:01:62:77: 29:3f:9e:08:66:cd:a5:93:4e:29:02:2b:1f:9f:64:bb:ef:63: 85:cd:6d:57:59:38:b8:55:2a:62:df:1e:51:90:ef:4d:33:33: b0:21:ef:0a:a8:e7:60:fe:99:4c:d4:f3:e6:f8:c7:56:60:e7: 72:53:5a:c9:33:85:16:11:82:f9:ea:4e:bb:98:0c:72:85:d1: 8d:ac:77:62:d1:b6:ab:f6:2a:1d:50:eb:fd:7e:f7:3d:4b:c2: 50:44:03:7a:41:0c:da:64:c1:e6:fe:ff:20:7c:8e:75:cc:0c: 0a:0b:96:0d:4a:d0:e5:38:b3:c1:96:4b:c3:e5:26:c3:5b:19: 3c:94:6b:c4:40:9b:da:c3:83:64:81:86:1e:5d:25:ea:dc:f8: 6c:ad:75:bd:c0:25:d7:a1:9d:c2:89:66:54:43:2a:83:ac:83: 6f:9a:e0:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNENjUxMTAvBgNVBAUTKDUwMDhCRTA0MUY5OTk3QjI1OUQyNTg0NDgzQTUzQTBE RkYwQjE3OEMwHhcNMjUwNDI1MDIxNTQ1WhcNMjUwNTAyMDIxNTQ1WjAYMRYwFAYD VQQDEw02ODBhZjA1MS03NTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrQdjT9Q5IPlYItdcya9iNCjsVnzPVD2eYgLfZGFubjaqp9GVSg34CRzUyso 00jERhnDgb6GbXlshuEasSzpdK/szNVnsxa3+hiDa0vBlrMEa7kWgXsJdnN85nHP 3ioW6BaHmKHC407QZVCWyuOvDqWOfgD4QV03oCxqUWvK/eiYrOHjpEHByD1w3J97 GtkuDzIS3T70w+N1Ejlrp8tN+Oyn+RQ0cRXV9ixYCHnS0uFl+rhKvA6+3vRC9ms/ Q0EBcIwo5XaRfPgWV+u6TXRMh5cIS2+DScK5OquPWjIZoHXHcsEFNnxzKEzVw25A u7HWSsHrs9w6h/El6frVSvjxtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPjo/Wv Edc1n1A1/L0z+/M9f8ADMB8GA1UdIwQYMBaAFFAIvgQfmZeyWdJYRIOlOg3/CxeM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Q2NS9FQTFFNjJENjdD NzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3SlowbGhFZzZVNkRmOExG NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBaS1CQi1abDdKWjBsaEVnNlU2RGY4TEY0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Q2NS9FQTFFNjJENjdDNzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3 SlowbGhFZzZVNkRmOExGNHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmjAed5X/izVIdkc4Bi1o8zFN3qn5NoT7evQo/46UVR5WqrqZVd9eQ u02GzU1bZtPZFl7uMO36YNYShW4vt6TE6HR8LMhpixzlHJYfzBdxWWpqebg42xwB YncpP54IZs2lk04pAisfn2S772OFzW1XWTi4VSpi3x5RkO9NMzOwIe8KqOdg/plM 1PPm+MdWYOdyU1rJM4UWEYL56k67mAxyhdGNrHdi0bar9iodUOv9fvc9S8JQRAN6 QQzaZMHm/v8gfI51zAwKC5YNStDlOLPBlkvD5SbDWxk8lGvEQJvaw4NkgYYeXSXq 3PhsrXW9wCXXoZ3CiWZUQyqDrINvmuCJ -----END CERTIFICATE-----Generated at Sat Apr 26 13:12:37 2025 by rpki-client