$ rpki-client -vvf rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft File: UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft (raw, json) Hash identifier: W78oMva8EBDBWjsbl7j4jkqpUvPxIaWcESxY0AjwmUw= Subject key identifier: 36:EF:19:2E:12:B8:D8:C7:9D:0A:F5:51:47:6A:3C:73:14:D3:F0:6C Authority key identifier: 52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B Certificate issuer: /CN=A91A459D/serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Certificate serial: 09C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft Manifest number: 09C1 Signing time: Thu 24 Apr 2025 19:51:28 +0000 Manifest this update: Thu 24 Apr 2025 19:51:28 +0000 Manifest next update: Thu 01 May 2025 19:51:28 +0000 Files and hashes: 1: UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl (hash: gVf1I7PEFzL1x1/MvydNio6l27RSFp2Ry74SCEs80ZI=) 2: 21028CF67EF811EAAD47CD30C4F9AE02.roa (hash: +gB8ZHO5MMKVGP2yT3GNNhFPo53EwfTpImIrJ+ySljI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:51:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2504 (0x9c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A459D, serialNumber=52B21995429C44F8A7F4EC99E53040870D6D385B Validity Not Before: Apr 24 19:51:28 2025 GMT Not After : May 1 19:51:28 2025 GMT Subject: CN=680a9640-cde9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e4:01:d4:0d:95:b6:35:03:aa:0c:90:b4:90: 08:7c:6d:f9:62:ff:54:d2:57:2c:11:6e:3d:0f:1e: b6:f4:5e:af:2b:06:73:a3:71:fb:f0:23:da:f4:7c: ec:bb:29:db:50:8f:1e:b1:cf:93:2b:a1:c5:db:7c: af:42:f4:82:e4:d0:05:42:69:81:c0:93:c0:67:95: e2:1d:23:da:bc:bf:3d:b3:72:9d:c5:90:aa:c3:ca: 92:1d:6d:9f:3b:19:c6:e4:02:22:1f:e4:f2:03:68: 7a:f6:b4:99:90:0f:8b:d6:75:35:53:1a:7e:5e:ec: 95:0f:66:80:41:99:7b:13:c3:e3:3e:51:b4:bc:39: 06:86:f1:61:c9:65:19:f7:b3:cf:6a:fa:44:07:d4: 61:b3:54:f1:a0:4d:9c:62:fb:c6:ae:57:69:2c:67: 7b:e8:4e:47:10:28:e9:32:04:a5:a8:84:d2:90:a7: 69:9f:39:1e:1c:93:40:de:fa:53:67:2b:eb:41:9b: 49:ae:50:54:bd:af:ce:6b:79:47:35:88:89:e0:83: 65:e0:0f:2f:68:cb:f1:3e:1f:c9:b2:c3:8f:74:67: d8:33:f8:d6:a7:e7:27:7c:92:a3:2f:c9:19:1f:9a: 48:6b:38:c9:95:a4:86:26:69:8e:7b:5c:64:90:02: 01:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:EF:19:2E:12:B8:D8:C7:9D:0A:F5:51:47:6A:3C:73:14:D3:F0:6C X509v3 Authority Key Identifier: keyid:52:B2:19:95:42:9C:44:F8:A7:F4:EC:99:E5:30:40:87:0D:6D:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UrIZlUKcRPin9OyZ5TBAhw1tOFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A459D/5FAB972E7EF611EAA979A32DC4F9AE02/UrIZlUKcRPin9OyZ5TBAhw1tOFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:a4:b9:96:53:46:8b:62:1e:9e:f3:4e:1f:bb:c2:27:a7:07: 0c:fe:86:35:6b:46:a0:91:5e:34:10:0d:d9:0f:b5:19:7c:6b: 6f:a6:5e:5f:92:20:9d:63:46:b4:41:a5:4d:c0:5f:d2:40:42: fb:2c:71:9a:6d:b0:8d:17:df:2b:ca:2f:4c:fe:16:ca:1e:76: fc:b0:f2:c4:7e:5a:31:96:6a:08:68:74:41:70:ec:43:dd:51: b9:53:2b:1f:a4:77:58:b5:ac:9b:37:da:6e:95:e9:88:3a:60: b9:14:47:bc:64:59:d1:8b:76:22:9e:70:ec:83:42:e8:46:ae: d7:10:55:23:b4:c3:71:51:d8:9b:c9:44:6f:3d:93:d4:7f:06: 23:eb:2f:19:ae:47:ff:f6:92:8b:97:9b:05:d4:48:b4:32:d0: d4:6d:83:eb:17:58:6e:ca:71:f6:b9:cc:81:3d:e6:c7:53:35: 1e:6f:5e:bb:00:cf:82:f6:c1:4c:d7:e7:d2:78:cb:52:a6:62: 34:71:43:18:1a:1e:2e:93:97:b0:11:9a:1f:f8:74:bf:16:4d: 68:53:0c:24:a3:f0:36:19:c4:16:68:f6:72:eb:22:39:fa:ce: 95:b9:64:be:d7:36:26:09:9a:e5:a1:3e:b9:10:9b:44:ec:86: 69:f7:1c:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1OUQxMTAvBgNVBAUTKDUyQjIxOTk1NDI5QzQ0RjhBN0Y0RUM5OUU1MzA0MDg3 MEQ2RDM4NUIwHhcNMjUwNDI0MTk1MTI4WhcNMjUwNTAxMTk1MTI4WjAYMRYwFAYD VQQDEw02ODBhOTY0MC1jZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uQB1A2VtjUDqgyQtJAIfG35Yv9U0lcsEW49Dx629F6vKwZzo3H78CPa9Hzs uynbUI8esc+TK6HF23yvQvSC5NAFQmmBwJPAZ5XiHSPavL89s3KdxZCqw8qSHW2f OxnG5AIiH+TyA2h69rSZkA+L1nU1Uxp+XuyVD2aAQZl7E8PjPlG0vDkGhvFhyWUZ 97PPavpEB9Rhs1TxoE2cYvvGrldpLGd76E5HECjpMgSlqITSkKdpnzkeHJNA3vpT ZyvrQZtJrlBUva/Oa3lHNYiJ4INl4A8vaMvxPh/JssOPdGfYM/jWp+cnfJKjL8kZ H5pIazjJlaSGJmmOe1xkkAIBiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbvGS4S uNjHnQr1UUdqPHMU0/BsMB8GA1UdIwQYMBaAFFKyGZVCnET4p/TsmeUwQIcNbThb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDU5RC81RkFCOTcyRTdF RjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQaW45T3laNVRCQWh3MXRP RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VySVpsVUtjUlBpbjlPeVo1VEJBaHcxdE9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDU5RC81RkFCOTcyRTdFRjYxMUVBQTk3OUEzMkRDNEY5QUUwMi9VcklabFVLY1JQ aW45T3laNVRCQWh3MXRPRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzpLmWU0aLYh6e804fu8InpwcM/oY1a0agkV40EA3ZD7UZfGtvpl5f kiCdY0a0QaVNwF/SQEL7LHGabbCNF98ryi9M/hbKHnb8sPLEfloxlmoIaHRBcOxD 3VG5UysfpHdYtaybN9pulemIOmC5FEe8ZFnRi3YinnDsg0LoRq7XEFUjtMNxUdib yURvPZPUfwYj6y8Zrkf/9pKLl5sF1Ei0MtDUbYPrF1huynH2ucyBPebHUzUeb167 AM+C9sFM1+fSeMtSpmI0cUMYGh4uk5ewEZof+HS/Fk1oUwwko/A2GcQWaPZy6yI5 +s6VuWS+1zYmCZrloT65EJtE7IZp9xwR -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:57 2025 by rpki-client