$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: n5xkrcReVkVUFRyEbBCa99j7KtUFXAUsNFyA/8dL9/A= Subject key identifier: 3C:77:2A:20:69:3B:BC:05:76:52:34:EB:C0:B5:C6:C4:F5:43:41:8D Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 0376 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 0373 Signing time: Fri 25 Apr 2025 00:40:43 +0000 Manifest this update: Fri 25 Apr 2025 00:40:43 +0000 Manifest next update: Fri 02 May 2025 00:40:43 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: MkdMjUePtj3CiHQGf8YW/wIWR6p9NpUwG1+bwFSZpcM=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: SzmhUiOKFGJoKuBX56C52miBzPamnKu8Ji/qVMaBki8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 886 (0x376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5, serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Apr 25 00:40:43 2025 GMT Not After : May 2 00:40:43 2025 GMT Subject: CN=680ada0b-2ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:96:c7:56:e7:8f:89:81:d3:f9:de:28:8e:a2: ba:b9:fa:b7:1e:ae:9d:ad:7f:bf:af:6f:f1:57:2f: 88:27:b6:3f:3d:94:43:19:9d:c5:2a:43:f1:47:77: 98:ae:1f:8f:14:06:58:e5:40:dd:b6:dc:65:89:e4: 36:d2:4a:34:25:bf:02:9c:d1:d4:40:52:1f:ba:de: 17:42:db:a4:47:b5:67:be:dd:68:98:47:70:b0:e9: 59:e9:54:d5:bc:8a:32:f2:5f:76:73:84:64:35:52: 40:32:53:52:d6:1f:64:7e:05:fa:20:1a:aa:a6:66: 22:d5:42:c1:b1:70:d4:d4:cb:3e:e9:53:0b:3e:0b: 04:1f:b9:d1:db:69:bc:7e:af:69:a7:f4:60:1a:65: 6e:69:21:79:1b:7f:9e:d5:a7:05:c8:eb:92:90:1f: 9d:52:0e:b5:43:30:31:d6:72:d5:89:3c:66:19:b4: 4f:16:23:a0:24:af:96:fb:a7:da:7f:14:47:58:13: 6a:64:e7:bc:4d:56:8f:1a:2b:42:4e:cd:e5:37:27: 60:64:e9:1a:f6:d9:48:b5:de:fd:75:11:0e:c7:bf: a2:70:65:75:b1:a7:5c:0e:ef:92:af:cb:56:cf:06: a9:84:41:82:83:63:fa:1e:03:e3:99:5d:50:d3:a6: 6d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:77:2A:20:69:3B:BC:05:76:52:34:EB:C0:B5:C6:C4:F5:43:41:8D X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:61:94:e9:37:f4:64:9d:ea:25:f7:20:c4:c5:02:41:2d:d8: a9:56:c9:6d:17:5f:ca:91:ad:7e:a4:a0:e4:cc:1c:aa:13:ff: 5d:d8:99:6c:b7:0b:2f:ba:6b:1f:f0:50:0c:84:93:af:91:28: a9:3e:40:7e:d7:7d:d7:58:27:ee:cb:c3:95:78:52:d1:7b:93: 1c:fb:96:d5:b8:5e:9c:9b:9a:20:29:4f:2a:64:00:0f:26:9d: 22:21:0c:f9:2b:ab:b3:a8:81:d0:9e:2a:bb:ce:df:c8:35:e4: a3:fc:0d:f8:ff:af:ec:0e:10:5b:c4:1c:68:b1:e6:97:24:79: 9a:53:a0:6c:96:b5:3a:f7:75:60:bf:be:0d:ce:2a:5a:4d:fa: 8f:15:84:88:ea:74:9a:64:fa:d7:16:27:db:b3:6c:ba:d1:12: d8:03:ae:95:44:23:38:8b:1e:6b:85:4d:f0:2e:2b:8a:16:82: 69:20:63:d5:5f:51:e2:65:dc:ba:7d:ee:e8:ff:d9:a9:a0:67: 36:9d:6e:2f:a1:d1:17:62:e9:62:14:a2:67:a4:fa:ea:40:ec: e4:02:94:f8:c8:60:a2:e3:6b:71:a1:1f:03:e8:15:5f:84:10: f6:bf:64:51:05:f6:13:42:80:2b:d0:76:7b:e2:46:89:da:82: f8:ff:2b:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjUwNDI1MDA0MDQzWhcNMjUwNTAyMDA0MDQzWjAYMRYwFAYD VQQDEw02ODBhZGEwYi0yZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpbHVuePiYHT+d4ojqK6ufq3Hq6drX+/r2/xVy+IJ7Y/PZRDGZ3FKkPxR3eY rh+PFAZY5UDdttxlieQ20ko0Jb8CnNHUQFIfut4XQtukR7Vnvt1omEdwsOlZ6VTV vIoy8l92c4RkNVJAMlNS1h9kfgX6IBqqpmYi1ULBsXDU1Ms+6VMLPgsEH7nR22m8 fq9pp/RgGmVuaSF5G3+e1acFyOuSkB+dUg61QzAx1nLViTxmGbRPFiOgJK+W+6fa fxRHWBNqZOe8TVaPGitCTs3lNydgZOka9tlItd79dREOx7+icGV1sadcDu+Sr8tW zwaphEGCg2P6HgPjmV1Q06ZtLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDx3KiBp O7wFdlI068C1xsT1Q0GNMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABYZTpN/Rkneol9yDExQJBLdipVsltF1/Kka1+pKDkzByqE/9d2Jls twsvumsf8FAMhJOvkSipPkB+133XWCfuy8OVeFLRe5Mc+5bVuF6cm5ogKU8qZAAP Jp0iIQz5K6uzqIHQniq7zt/INeSj/A34/6/sDhBbxBxoseaXJHmaU6BslrU693Vg v74NzipaTfqPFYSI6nSaZPrXFifbs2y60RLYA66VRCM4ix5rhU3wLiuKFoJpIGPV X1HiZdy6fe7o/9mpoGc2nW4vodEXYuliFKJnpPrqQOzkApT4yGCi42txoR8D6BVf hBD2v2RRBfYTQoAr0HZ74kaJ2oL4/yu8 -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:49 2025 by rpki-client