$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: xvpq0Dct/S0hJ2rDjfdFYEA6q8OG9kf2cSuBvpxbvsQ= Subject key identifier: 55:5B:37:E6:06:42:AD:F8:FB:E2:0B:43:A7:60:AA:E7:EA:E4:F0:75 Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 0379 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 0373 Signing time: Fri 25 Apr 2025 00:42:06 +0000 Manifest this update: Fri 25 Apr 2025 00:42:06 +0000 Manifest next update: Fri 02 May 2025 00:42:06 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: ljtPBfj54z1IJWFsajYygWz5cjDCmj7yCuFAEZDxyJ4=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Apr 25 00:42:06 2025 GMT Not After : May 2 00:42:06 2025 GMT Subject: CN=680ada5e-36ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ef:ed:a8:f0:e9:d6:68:57:f1:c6:95:cc:d0: 67:10:ee:47:b8:92:44:6b:ec:b4:80:24:59:7e:15: 24:26:ca:91:8a:3f:72:6b:a4:69:ba:97:b1:c7:38: 2c:1e:86:b6:04:96:32:9b:65:cb:b8:4d:93:75:79: 34:0c:2e:bf:df:62:da:65:f5:d3:2e:67:44:41:79: 12:81:e5:ba:e9:cd:b2:13:d3:ab:e4:f9:24:17:ac: 8e:fb:19:e5:d7:83:2b:ff:f7:8f:27:ad:8c:f3:71: ba:31:21:5f:b0:3a:b1:78:2c:d9:23:d0:db:7a:29: 34:e7:ad:79:fd:08:ed:9e:77:e2:63:40:2e:16:8f: 95:0c:6f:da:3d:69:c9:ca:fc:45:f9:5c:43:3d:10: 7c:c1:92:86:4a:8b:f0:21:ac:27:78:ff:87:ca:65: 3c:ac:74:ef:78:c3:ba:52:1e:bc:75:62:17:b9:d8: e3:5f:78:b5:69:4c:34:4f:8b:81:8a:33:ba:be:f6: 87:17:44:dd:e6:9c:97:42:ce:32:4c:c5:f8:3d:fc: f7:9d:fa:03:8f:2a:e0:c1:3c:68:f7:b8:73:e1:bb: f7:c6:77:82:bd:23:32:6a:b8:d1:29:0a:69:90:79: bd:7d:9d:02:c4:c5:f1:d8:a9:b4:5a:8a:5a:ed:51: 30:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:5B:37:E6:06:42:AD:F8:FB:E2:0B:43:A7:60:AA:E7:EA:E4:F0:75 X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:af:b3:cb:11:af:88:3d:98:49:71:1e:d6:b1:b0:f5:0a:a7: 48:bd:58:8b:9b:b4:e6:e9:64:26:79:5b:f5:d7:3b:29:0c:56: cc:84:ba:db:c7:a2:db:1b:7e:44:2d:0e:62:5e:e9:16:a8:50: da:c3:ae:e7:53:eb:66:5d:16:3b:70:06:44:45:e3:d2:e0:d3: b4:fb:0a:86:22:23:b3:41:17:07:71:6a:87:44:4f:37:cb:69: 2b:c9:7a:13:f8:10:fe:2a:7e:07:a8:11:c1:2e:92:de:de:43: 8d:34:93:af:a6:6f:6e:09:03:51:90:c6:b5:5a:79:8c:fe:84: 17:3f:84:ed:1d:b4:32:5d:82:dd:e9:83:ee:70:8a:b3:99:20: 4f:9d:52:da:5e:33:4a:d4:e4:99:8e:d2:4f:f3:8d:35:ba:d8: 91:97:df:ad:2a:28:a9:c6:e6:52:4d:d8:bc:dc:06:4a:5c:b1: ef:12:17:39:f4:cf:3f:10:23:87:40:f3:fc:67:47:15:aa:80: 72:b8:29:c6:1b:32:e6:bc:b5:88:70:03:5b:a6:35:6e:71:a9: d3:cf:f9:03:80:d6:42:0f:c9:e0:bf:72:1c:56:fe:d6:44:1f: ae:bc:33:d2:69:02:c3:e7:9a:9a:8d:84:58:3f:1f:a4:3a:27: 40:9a:9f:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUwNDI1MDA0MjA2WhcNMjUwNTAyMDA0MjA2WjAYMRYwFAYD VQQDEw02ODBhZGE1ZS0zNmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAye/tqPDp1mhX8caVzNBnEO5HuJJEa+y0gCRZfhUkJsqRij9ya6Rpupexxzgs Hoa2BJYym2XLuE2TdXk0DC6/32LaZfXTLmdEQXkSgeW66c2yE9Or5PkkF6yO+xnl 14Mr//ePJ62M83G6MSFfsDqxeCzZI9Dbeik05615/QjtnnfiY0AuFo+VDG/aPWnJ yvxF+VxDPRB8wZKGSovwIawneP+HymU8rHTveMO6Uh68dWIXudjjX3i1aUw0T4uB ijO6vvaHF0Td5pyXQs4yTMX4Pfz3nfoDjyrgwTxo97hz4bv3xneCvSMyarjRKQpp kHm9fZ0CxMXx2Km0Wopa7VEwAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVbN+YG Qq34++ILQ6dgqufq5PB1MB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxr7PLEa+IPZhJcR7WsbD1CqdIvViLm7Tm6WQmeVv11zspDFbMhLrb x6LbG35ELQ5iXukWqFDaw67nU+tmXRY7cAZERePS4NO0+wqGIiOzQRcHcWqHRE83 y2kryXoT+BD+Kn4HqBHBLpLe3kONNJOvpm9uCQNRkMa1WnmM/oQXP4TtHbQyXYLd 6YPucIqzmSBPnVLaXjNK1OSZjtJP8401utiRl9+tKiipxuZSTdi83AZKXLHvEhc5 9M8/ECOHQPP8Z0cVqoByuCnGGzLmvLWIcANbpjVucanTz/kDgNZCD8ngv3IcVv7W RB+uvDPSaQLD55qajYRYPx+kOidAmp8L -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:31 2025 by rpki-client