$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft File: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft (raw, json) Hash identifier: bfLs0qB1FKMSnHBqh+YWhZyMLO5sLOBr/uYhZ1aiKYM= Subject key identifier: A8:D2:19:54:0F:2B:E3:C4:91:42:55:A1:68:B5:66:F1:C4:FD:EE:70 Authority key identifier: 51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 Certificate issuer: /CN=A91A7761/serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Certificate serial: 05E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft Manifest number: 05CB Signing time: Thu 24 Apr 2025 22:53:49 +0000 Manifest this update: Thu 24 Apr 2025 22:53:48 +0000 Manifest next update: Thu 01 May 2025 22:53:48 +0000 Files and hashes: 1: UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl (hash: 3gsn1z8OYeFWvteDXNV3UHQtauCez9EmmRBYFMhjpI8=) 2: F44E1EECCD8411EF88CD1464C4F9AE02.roa (hash: Uj/tJ2o/egSIWJbBUqkfA8auaTm16HYRNl+nWPDfAoI=) 3: F4C73FCACD8411EF88CD1464C4F9AE02.roa (hash: PxDO4VTqkJE0qh5LgB+HtLTymtGod5Csv1yR3jaUe74=) 4: 2DA0EDF6D08211EE80549C7AC4F9AE02.roa (hash: 73co3C0iTnetW8JGAPxK20O1CS3CEBA8PjgSk19an5E=) 5: F559B7E2CD8411EF88CD1464C4F9AE02.roa (hash: jc65tVH8VKeTvFl9hbBbitAygl32MCK4pl0R8W9pDPs=) 6: 044C4ED6A26711ED8095F74DC4F9AE02.roa (hash: AWVqUvaQKvhhdFl5DbWgiaCZR2uWcOJNrG+aDzp0leA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1506 (0x5e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7761, serialNumber=51D5CC2D5E428FC955149F576211904F05BAF211 Validity Not Before: Apr 24 22:53:48 2025 GMT Not After : May 1 22:53:48 2025 GMT Subject: CN=680ac0fc-c281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b1:61:29:14:d9:5e:0c:be:fb:71:8a:10:6f: 0c:63:3c:1b:f7:3f:ab:b1:3d:ae:86:d6:bc:b2:78: 55:c1:14:6a:2f:d9:4c:44:54:d2:59:4c:b6:36:fe: 58:d8:f6:e2:08:4d:a7:64:fa:2f:8c:64:58:63:2e: da:ef:d2:5a:80:ea:f2:43:8c:22:58:39:b2:5d:d9: 0f:f3:f6:e1:26:27:03:84:b7:f5:c3:48:b6:4a:34: 2a:46:20:13:e9:b2:90:0d:ac:35:cb:8b:51:ea:26: d4:7c:9b:57:1f:92:cf:65:7c:02:cd:18:e9:0d:8c: 7b:2e:b8:7f:75:b9:81:c1:24:eb:c0:81:a4:e3:80: 7b:13:c6:17:50:e8:bd:cb:21:16:fc:37:5d:85:0c: 18:6c:f0:ab:4b:2d:72:8e:ee:18:03:18:71:2c:99: af:d5:cc:95:4c:cf:25:4c:8d:a5:6b:67:1b:55:e6: 56:20:93:ef:e3:70:db:39:dd:95:d9:6f:00:61:f0: 24:88:82:f5:92:2f:bf:e0:c6:db:0a:4a:6c:c4:55: 98:82:a8:37:63:e2:8b:ff:f4:bd:32:c6:5a:6c:54: a8:52:8b:f0:5a:d9:b9:f9:aa:ca:b9:d6:b5:3b:5e: e1:32:c2:46:ff:90:2d:54:8b:b8:ce:10:21:52:bc: 7d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:D2:19:54:0F:2B:E3:C4:91:42:55:A1:68:B5:66:F1:C4:FD:EE:70 X509v3 Authority Key Identifier: keyid:51:D5:CC:2D:5E:42:8F:C9:55:14:9F:57:62:11:90:4F:05:BA:F2:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7761/0E4B9168BD3411EB90E55428C4F9AE02/UdXMLV5Cj8lVFJ9XYhGQTwW68hE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:45:30:e0:df:a5:a2:1a:d5:61:20:f5:84:85:93:30:ab:e2: 5f:d1:8f:53:80:29:ee:08:0a:26:ca:58:c1:72:74:27:ba:65: 7d:7d:68:72:2b:26:3e:9f:81:36:94:ca:f4:6c:a2:50:19:17: 88:59:ef:82:48:f3:47:df:40:9b:02:f5:7b:d6:a5:4b:35:ce: d3:69:5c:51:44:bc:e8:22:fc:49:e7:69:f4:98:95:f1:8d:fb: 2a:56:d2:99:33:22:f6:a2:9a:1a:e2:53:8a:06:9d:37:db:f3: fe:2e:c6:34:4f:42:d4:45:9f:b0:84:15:14:13:66:58:8b:68: bc:84:ba:b1:85:63:ac:a3:d7:1a:a9:64:75:00:16:77:9a:f1: fc:7c:ec:72:7e:1b:e1:7d:34:50:57:1a:03:fd:40:9a:98:40: dc:4c:48:c8:3c:ef:4a:28:e7:88:f2:c1:be:86:67:a3:73:41: c5:b7:42:95:63:c2:e6:df:03:a8:68:55:72:cf:e1:15:95:94: 96:19:90:55:54:4a:de:32:74:bb:9e:c8:3e:27:90:50:69:d1: c2:f2:40:49:46:cf:c6:ce:b1:5e:17:ae:7e:96:3f:8a:fa:72: 9a:44:91:8c:96:40:d2:f4:24:d6:81:7b:d2:be:1d:0e:85:85: 58:7f:6c:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc3NjExMTAvBgNVBAUTKDUxRDVDQzJENUU0MjhGQzk1NTE0OUY1NzYyMTE5MDRG MDVCQUYyMTEwHhcNMjUwNDI0MjI1MzQ4WhcNMjUwNTAxMjI1MzQ4WjAYMRYwFAYD VQQDEw02ODBhYzBmYy1jMjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubFhKRTZXgy++3GKEG8MYzwb9z+rsT2uhta8snhVwRRqL9lMRFTSWUy2Nv5Y 2PbiCE2nZPovjGRYYy7a79JagOryQ4wiWDmyXdkP8/bhJicDhLf1w0i2SjQqRiAT 6bKQDaw1y4tR6ibUfJtXH5LPZXwCzRjpDYx7Lrh/dbmBwSTrwIGk44B7E8YXUOi9 yyEW/DddhQwYbPCrSy1yju4YAxhxLJmv1cyVTM8lTI2la2cbVeZWIJPv43DbOd2V 2W8AYfAkiIL1ki+/4MbbCkpsxFWYgqg3Y+KL//S9MsZabFSoUovwWtm5+arKuda1 O17hMsJG/5AtVIu4zhAhUrx9uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjSGVQP K+PEkUJVoWi1ZvHE/e5wMB8GA1UdIwQYMBaAFFHVzC1eQo/JVRSfV2IRkE8FuvIR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzc2MS8wRTRCOTE2OEJE MzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4bFZGSjlYWWhHUVR3VzY4 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VkWE1MVjVDajhsVkZKOVhZaEdRVHdXNjhoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzc2MS8wRTRCOTE2OEJEMzQxMUVCOTBFNTU0MjhDNEY5QUUwMi9VZFhNTFY1Q2o4 bFZGSjlYWWhHUVR3VzY4aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIRTDg36WiGtVhIPWEhZMwq+Jf0Y9TgCnuCAomyljBcnQnumV9fWhy KyY+n4E2lMr0bKJQGReIWe+CSPNH30CbAvV71qVLNc7TaVxRRLzoIvxJ52n0mJXx jfsqVtKZMyL2opoa4lOKBp032/P+LsY0T0LURZ+whBUUE2ZYi2i8hLqxhWOso9ca qWR1ABZ3mvH8fOxyfhvhfTRQVxoD/UCamEDcTEjIPO9KKOeI8sG+hmejc0HFt0KV Y8Lm3wOoaFVyz+EVlZSWGZBVVEreMnS7nsg+J5BQadHC8kBJRs/GzrFeF65+lj+K +nKaRJGMlkDS9CTWgXvSvh0OhYVYf2x9 -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:51 2025 by rpki-client