$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft File: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft (raw, json) Hash identifier: hz9L9F5THNtye3GCJdHMgmf2pD0qhKD70A6T2IKi0eM= Subject key identifier: 45:16:EE:6F:BE:67:75:0B:45:94:07:3F:92:95:2D:6B:3F:00:F2:92 Authority key identifier: AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A Certificate issuer: /CN=A91B5BD4/serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft Manifest number: 01C6 Signing time: Fri 25 Apr 2025 02:08:40 +0000 Manifest this update: Fri 25 Apr 2025 02:08:39 +0000 Manifest next update: Fri 02 May 2025 02:08:39 +0000 Files and hashes: 1: rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl (hash: cOmyOQ2W/9uJ4tJBjESAkg4cqwNK2cOpS4QwMV3l9zs=) 2: C248DFA26DBB11EDB3635D28C4F9AE02.roa (hash: gQzK7hVZPrZ6aKsXhdiMNjPzCoQYQhoW/DlG0FlsTCE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5BD4, serialNumber=AD41FB827F93104B89FA6FA785F21150BE6F979A Validity Not Before: Apr 25 02:08:39 2025 GMT Not After : May 2 02:08:39 2025 GMT Subject: CN=680aeea8-2b4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c9:11:c1:3a:37:07:62:78:22:cd:6e:3c:62: b6:7e:a5:d0:17:e9:40:4a:07:8f:c5:a7:99:8e:de: 48:1f:77:2d:68:2a:90:d3:60:e2:17:81:83:26:af: 1c:e3:56:f2:10:f7:04:9f:68:4a:4f:4b:a0:9e:a8: 75:69:54:d4:1f:67:ea:82:cd:3f:8c:1e:2f:34:3c: e1:d6:94:a3:44:83:7f:da:ba:de:0a:99:97:16:72: 1e:d2:8b:2a:07:3d:dc:d7:a4:b6:f4:f1:0e:95:81: 0f:7d:5f:67:0d:4b:11:d3:7f:ff:d2:3f:1a:d2:12: 5d:08:8d:d9:5e:b2:0a:62:35:d6:ab:10:f0:98:fc: e6:ad:a9:09:6e:19:a4:a3:37:a0:09:9e:8e:27:7a: 54:77:6f:bf:00:7c:74:86:8c:10:7a:9c:20:d1:2a: 0a:1f:e0:06:c0:2f:3a:7c:85:e2:98:40:66:1d:af: 6a:59:d5:df:13:2a:24:b8:af:c5:de:76:f3:c7:62: 0a:10:e3:89:b2:c5:82:1f:0e:c5:7a:c0:a4:2e:c2: 9d:5d:da:44:10:e6:43:eb:ce:bf:b9:c0:d3:21:c9: 0b:e2:18:12:a6:fc:c4:fd:19:88:2b:02:8b:d2:b8: e8:c7:41:4b:a0:be:e7:1e:50:ed:b4:1b:c5:cd:78: 38:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:16:EE:6F:BE:67:75:0B:45:94:07:3F:92:95:2D:6B:3F:00:F2:92 X509v3 Authority Key Identifier: keyid:AD:41:FB:82:7F:93:10:4B:89:FA:6F:A7:85:F2:11:50:BE:6F:97:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5BD4/08AD6D226DB811ED8833FA0DC4F9AE02/rUH7gn-TEEuJ-m-nhfIRUL5vl5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:bd:ce:f5:ca:99:f5:4e:e6:43:f6:1b:dd:57:7a:d9:de:f6: bd:01:48:16:e2:34:13:0b:92:21:bc:a7:08:8e:c4:15:70:c0: fb:7a:f2:bc:3c:39:c8:88:c4:2c:9f:b9:a2:37:2f:88:0a:f0: 86:da:2b:dc:24:c6:64:f9:14:4f:ae:b2:84:1b:39:00:65:1c: f7:05:be:78:a9:5a:15:5a:28:13:bf:7b:75:16:c1:2a:9a:78: 14:ce:23:d8:42:5e:05:20:18:f2:f9:a9:68:f9:1d:e6:e4:0a: 0c:77:cb:f2:5d:ac:61:a0:56:5a:4d:71:8d:ad:6b:8a:d4:52: ca:8c:56:86:54:67:71:6e:ac:c8:0a:1b:25:40:ed:4a:f9:e1: fc:7c:54:46:5e:1f:18:59:53:de:6d:2a:9b:5b:23:ce:1b:1a: 79:bc:36:7e:65:74:8a:42:9f:ec:fd:60:fd:72:90:c2:04:b3: a7:4f:4c:2b:61:88:9a:15:b1:87:65:a0:28:a2:3f:c6:cd:2e: 99:8b:ad:8c:ff:7d:ad:24:3d:b6:65:92:39:a6:cd:3c:8f:41: e5:fb:7b:72:03:21:af:e4:b4:51:f7:80:85:da:2a:d4:b9:9b: 8f:be:98:03:82:a2:7e:7c:85:06:ef:37:b3:1a:86:eb:e8:1f: 93:47:1f:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVCRDQxMTAvBgNVBAUTKEFENDFGQjgyN0Y5MzEwNEI4OUZBNkZBNzg1RjIxMTUw QkU2Rjk3OUEwHhcNMjUwNDI1MDIwODM5WhcNMjUwNTAyMDIwODM5WjAYMRYwFAYD VQQDEw02ODBhZWVhOC0yYjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwckRwTo3B2J4Is1uPGK2fqXQF+lASgePxaeZjt5IH3ctaCqQ02DiF4GDJq8c 41byEPcEn2hKT0ugnqh1aVTUH2fqgs0/jB4vNDzh1pSjRIN/2rreCpmXFnIe0osq Bz3c16S29PEOlYEPfV9nDUsR03//0j8a0hJdCI3ZXrIKYjXWqxDwmPzmrakJbhmk ozegCZ6OJ3pUd2+/AHx0howQepwg0SoKH+AGwC86fIXimEBmHa9qWdXfEyokuK/F 3nbzx2IKEOOJssWCHw7FesCkLsKdXdpEEOZD686/ucDTIckL4hgSpvzE/RmIKwKL 0rjox0FLoL7nHlDttBvFzXg4xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUW7m++ Z3ULRZQHP5KVLWs/APKSMB8GA1UdIwQYMBaAFK1B+4J/kxBLifpvp4XyEVC+b5ea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUJENC8wOEFENkQyMjZE QjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVFdUotbS1uaGZJUlVMNXZs NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JVSDdnbi1URUV1Si1tLW5oZklSVUw1dmw1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUJENC8wOEFENkQyMjZEQjgxMUVEODgzM0ZBMERDNEY5QUUwMi9yVUg3Z24tVEVF dUotbS1uaGZJUlVMNXZsNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6vc71ypn1TuZD9hvdV3rZ3va9AUgW4jQTC5IhvKcIjsQVcMD7evK8 PDnIiMQsn7miNy+ICvCG2ivcJMZk+RRPrrKEGzkAZRz3Bb54qVoVWigTv3t1FsEq mngUziPYQl4FIBjy+alo+R3m5AoMd8vyXaxhoFZaTXGNrWuK1FLKjFaGVGdxbqzI ChslQO1K+eH8fFRGXh8YWVPebSqbWyPOGxp5vDZ+ZXSKQp/s/WD9cpDCBLOnT0wr YYiaFbGHZaAooj/GzS6Zi62M/32tJD22ZZI5ps08j0Hl+3tyAyGv5LRR94CF2irU uZuPvpgDgqJ+fIUG7zezGobr6B+TRx+T -----END CERTIFICATE-----Generated at Sat Apr 26 04:51:35 2025 by rpki-client