$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft File: UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft (raw, json) Hash identifier: aI4Zbb0WGEcjHKnRiycfbGA4lz5tC98sRiK/gVNfLao= Subject key identifier: 31:95:B5:79:8E:75:9A:21:B2:F5:2A:31:26:F5:11:9B:50:F9:41:CB Authority key identifier: 50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74 Certificate issuer: /CN=A91AF2D9/serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft Manifest number: 7F Signing time: Fri 25 Apr 2025 05:41:58 +0000 Manifest this update: Fri 25 Apr 2025 05:41:58 +0000 Manifest next update: Fri 02 May 2025 05:41:58 +0000 Files and hashes: 1: UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl (hash: irhqE+Xhwe/6/iUqi4iMsMwH/jK5ZrQcqPRUkHVCAqg=) 2: D48472829E9011EF84D96F7DC4F9AE02.roa (hash: DWOCYh9U3Wi0CtHFM/de9pIBC9zRoaOkBAZXQGO2U2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2D9, serialNumber=50D24042A4A65EEE67A7EA4D3FC489443A39AA74 Validity Not Before: Apr 25 05:41:58 2025 GMT Not After : May 2 05:41:58 2025 GMT Subject: CN=680b20a6-79a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1a:16:21:1a:06:b5:54:f5:f6:19:58:d9:a3: 46:55:a7:1e:6f:22:98:a6:ec:71:37:a2:63:92:0e: cd:1a:c5:c3:60:c7:2f:4d:da:74:18:09:97:9c:17: f4:b0:9d:19:4f:43:9d:c7:4d:83:c7:14:75:15:b3: db:f1:70:61:01:dc:b4:3f:5c:9f:b3:06:24:83:0d: 59:8c:e3:e4:e9:28:d6:49:1c:1f:c4:bb:99:38:48: 04:c5:2a:03:76:da:7f:6a:ab:47:e7:7e:2e:59:46: 40:ce:d1:eb:62:36:c0:37:a6:06:74:c8:bc:96:94: e9:8b:13:b5:79:8d:13:10:85:2f:76:a4:9c:86:77: 0d:a8:58:f9:f0:a1:d4:37:f4:5a:02:1d:40:f0:38: b1:72:af:ae:ae:21:f6:86:4c:64:53:5b:e1:a5:68: 58:b5:25:95:88:d7:20:17:80:bb:ed:fa:7a:af:f4: 46:c0:5d:c1:73:0e:ec:98:ec:f3:94:9f:e7:4d:2d: 70:b9:fb:c7:80:09:f7:94:9c:09:a7:45:0f:0e:af: c5:17:99:5f:f6:fc:40:86:8c:7b:a6:91:31:1b:f9: d0:f2:22:a5:eb:d5:5d:89:14:e0:19:a7:ec:ee:fc: b9:34:68:50:fd:bd:c2:2d:a4:b8:99:a7:01:66:1b: 69:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:95:B5:79:8E:75:9A:21:B2:F5:2A:31:26:F5:11:9B:50:F9:41:CB X509v3 Authority Key Identifier: keyid:50:D2:40:42:A4:A6:5E:EE:67:A7:EA:4D:3F:C4:89:44:3A:39:AA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UNJAQqSmXu5np-pNP8SJRDo5qnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2D9/A99C162867AA11EF8F498A27C4F9AE02/UNJAQqSmXu5np-pNP8SJRDo5qnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:91:6d:73:23:50:23:6c:b3:fb:05:20:7f:33:53:3b:f3:8b: 39:0d:13:b8:89:0f:2f:fa:c5:06:65:03:41:25:03:75:c1:96: 47:9f:ba:89:7a:1d:7a:63:7f:02:7e:f7:0a:0a:38:dc:cc:09: 9a:dc:2c:15:40:a1:86:66:72:14:43:6c:ae:17:17:c7:c8:8c: 4a:93:95:17:d8:92:5e:82:cf:5c:53:f4:c4:fa:88:f2:d6:e8: a0:ae:3f:9e:ed:1c:48:5c:1c:b6:cf:21:0a:e2:14:16:fb:b6: 65:7d:2d:0f:ab:93:f2:a0:d6:2d:6e:95:34:58:1d:60:75:0a: ae:c9:85:cf:1c:8c:83:5c:5f:19:ec:86:86:e7:35:20:d5:33: 8a:9e:bc:52:2f:06:34:2c:1b:ef:a4:a3:92:ad:ee:2e:3c:08: d2:61:d3:86:a0:61:b3:5d:e5:ee:7d:29:f2:c1:3d:fd:17:d5: 60:49:5b:e4:21:25:2a:0f:ab:aa:74:85:a4:32:5b:4a:fb:52: 99:c3:29:80:f9:96:a2:76:6a:2f:82:4a:c8:7e:d2:f5:cb:6f: 04:b4:02:63:4f:78:80:b5:93:19:d0:93:60:7f:a1:91:82:f7: 58:e1:fc:dd:6a:ea:1d:99:24:44:32:2e:bc:ab:15:cb:f6:68: 61:9d:09:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyRDkxMTAvBgNVBAUTKDUwRDI0MDQyQTRBNjVFRUU2N0E3RUE0RDNGQzQ4OTQ0 M0EzOUFBNzQwHhcNMjUwNDI1MDU0MTU4WhcNMjUwNTAyMDU0MTU4WjAYMRYwFAYD VQQDEw02ODBiMjBhNi03OWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxoWIRoGtVT19hlY2aNGVacebyKYpuxxN6Jjkg7NGsXDYMcvTdp0GAmXnBf0 sJ0ZT0Odx02DxxR1FbPb8XBhAdy0P1yfswYkgw1ZjOPk6SjWSRwfxLuZOEgExSoD dtp/aqtH534uWUZAztHrYjbAN6YGdMi8lpTpixO1eY0TEIUvdqSchncNqFj58KHU N/RaAh1A8Dixcq+uriH2hkxkU1vhpWhYtSWViNcgF4C77fp6r/RGwF3Bcw7smOzz lJ/nTS1wufvHgAn3lJwJp0UPDq/FF5lf9vxAhox7ppExG/nQ8iKl69VdiRTgGafs 7vy5NGhQ/b3CLaS4macBZhtpTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGVtXmO dZohsvUqMSb1EZtQ+UHLMB8GA1UdIwQYMBaAFFDSQEKkpl7uZ6fqTT/EiUQ6Oap0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJEOS9BOTlDMTYyODY3 QUExMUVGOEY0OThBMjdDNEY5QUUwMi9VTkpBUXFTbVh1NW5wLXBOUDhTSlJEbzVx blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VOSkFRcVNtWHU1bnAtcE5QOFNKUkRvNXFuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjJEOS9BOTlDMTYyODY3QUExMUVGOEY0OThBMjdDNEY5QUUwMi9VTkpBUXFTbVh1 NW5wLXBOUDhTSlJEbzVxblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAkW1zI1AjbLP7BSB/M1M784s5DRO4iQ8v+sUGZQNBJQN1wZZHn7qJ eh16Y38CfvcKCjjczAma3CwVQKGGZnIUQ2yuFxfHyIxKk5UX2JJegs9cU/TE+ojy 1uigrj+e7RxIXBy2zyEK4hQW+7ZlfS0Pq5PyoNYtbpU0WB1gdQquyYXPHIyDXF8Z 7IaG5zUg1TOKnrxSLwY0LBvvpKOSre4uPAjSYdOGoGGzXeXufSnywT39F9VgSVvk ISUqD6uqdIWkMltK+1KZwymA+ZaidmovgkrIftL1y28EtAJjT3iAtZMZ0JNgf6GR gvdY4fzdauodmSREMi68qxXL9mhhnQkk -----END CERTIFICATE-----Generated at Sat Apr 26 12:21:43 2025 by rpki-client