$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: rKkNc9vSi7ut0EACsNWMBbZNN9kaF/MRCLSm/X3Lfv4= Subject key identifier: 78:2C:85:AF:17:47:02:59:DE:5F:E6:CC:8D:BE:A2:BE:4A:B6:21:E1 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 014A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 0148 Signing time: Fri 25 Apr 2025 03:20:35 +0000 Manifest this update: Fri 25 Apr 2025 03:20:35 +0000 Manifest next update: Fri 02 May 2025 03:20:35 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: QQuqWZtsFw+14ZK9JiIXitmvW/ycUA7R8w5IymVeSg0=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: jQ/0lCjJIMkOJNGjS+k508Q8Du2UjlHI8yBfLB/rzdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:20:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD, serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: Apr 25 03:20:35 2025 GMT Not After : May 2 03:20:35 2025 GMT Subject: CN=680aff83-ee65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1c:f2:e2:e1:31:14:c7:0c:10:82:e4:b4:c4: d9:8b:01:44:a3:49:b5:10:74:f3:8e:0c:93:61:55: cc:d5:0d:ed:d7:36:a2:4d:7a:a7:56:ab:45:ad:d0: 21:2e:da:6c:3f:02:fd:97:e5:0d:a1:46:c2:1d:91: 95:94:53:43:f2:ea:66:b1:06:c6:7c:4c:c8:67:e4: 54:07:f4:18:07:24:11:3c:b0:c7:78:45:e0:c1:c0: ec:8a:4b:95:57:c0:33:c9:26:85:ae:77:f8:86:98: ba:79:31:1d:46:d2:a2:05:cd:2f:9e:c0:c7:65:05: 55:7c:9f:47:7a:8b:f7:a0:ad:4d:f4:1a:32:fa:ac: 2b:3e:fb:10:c8:2d:6a:a8:76:47:c4:b4:b6:7c:ad: bf:38:60:31:c7:ac:0e:ff:d4:39:96:c2:d9:73:b3: 21:b9:b3:62:0d:b3:75:32:0d:dd:59:a4:ab:5f:7a: eb:d6:44:85:4e:93:77:f7:c0:7e:f5:81:d0:1a:45: 5e:dc:ff:0d:a8:45:20:46:58:7b:6e:4b:b5:c7:f6: 6f:18:da:a1:d5:f0:8c:2b:72:6b:e4:7e:29:91:95: b5:b2:ff:9f:11:ee:81:a1:cf:62:c9:f0:72:a3:b1: 55:a8:64:af:c2:16:12:11:6c:3a:d1:00:52:37:2e: 3c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:2C:85:AF:17:47:02:59:DE:5F:E6:CC:8D:BE:A2:BE:4A:B6:21:E1 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:9f:4b:2a:98:12:0d:99:76:34:f7:d9:f7:19:d5:9e:3d:85: 3f:cd:a3:c2:93:0e:c2:c2:c5:a6:32:eb:13:0d:fe:bc:59:2e: 28:cf:5d:88:ea:e0:e1:da:ce:ab:cb:b4:d5:89:8d:f1:09:24: 46:e3:57:27:41:82:41:8a:c3:e0:63:be:07:04:54:18:13:4f: 91:de:7b:64:56:5a:99:d0:b9:ae:3c:4d:07:4c:26:38:f4:5d: 70:f0:c8:61:db:bf:5c:41:ee:67:3d:07:d2:83:d7:0e:d4:e2: f0:de:f9:cb:d0:f0:79:3a:d8:76:a7:3e:42:d4:81:5b:16:6d: 8f:2b:35:0c:cd:09:82:b3:d7:70:a6:4d:70:b7:c9:ae:79:1b: 24:37:17:79:8d:b9:e1:8a:74:71:0b:0e:6f:19:d0:d3:40:ac: e7:df:03:5e:f6:20:8f:0f:8a:57:9b:ab:7f:61:ba:f4:03:df: ee:5b:9c:c0:25:87:9d:cd:66:d3:54:9c:38:b1:77:c5:d7:65: 69:d4:19:fa:cd:e9:1e:0e:54:a4:5d:79:40:5b:45:e8:24:40: c4:0d:54:b4:4b:0a:f6:f2:61:07:78:dc:f6:e6:9f:e1:db:4d: 42:83:8c:67:9e:db:62:99:5b:27:e2:80:d1:6c:40:93:16:f3: fa:31:74:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjUwNDI1MDMyMDM1WhcNMjUwNTAyMDMyMDM1WjAYMRYwFAYD VQQDEw02ODBhZmY4My1lZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Bzy4uExFMcMEILktMTZiwFEo0m1EHTzjgyTYVXM1Q3t1zaiTXqnVqtFrdAh LtpsPwL9l+UNoUbCHZGVlFND8upmsQbGfEzIZ+RUB/QYByQRPLDHeEXgwcDsikuV V8AzySaFrnf4hpi6eTEdRtKiBc0vnsDHZQVVfJ9Heov3oK1N9Boy+qwrPvsQyC1q qHZHxLS2fK2/OGAxx6wO/9Q5lsLZc7MhubNiDbN1Mg3dWaSrX3rr1kSFTpN398B+ 9YHQGkVe3P8NqEUgRlh7bku1x/ZvGNqh1fCMK3Jr5H4pkZW1sv+fEe6Boc9iyfBy o7FVqGSvwhYSEWw60QBSNy480wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgsha8X RwJZ3l/mzI2+or5KtiHhMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkn0sqmBINmXY099n3GdWePYU/zaPCkw7CwsWmMusTDf68WS4oz12I 6uDh2s6ry7TViY3xCSRG41cnQYJBisPgY74HBFQYE0+R3ntkVlqZ0LmuPE0HTCY4 9F1w8Mhh279cQe5nPQfSg9cO1OLw3vnL0PB5Oth2pz5C1IFbFm2PKzUMzQmCs9dw pk1wt8mueRskNxd5jbnhinRxCw5vGdDTQKzn3wNe9iCPD4pXm6t/Ybr0A9/uW5zA JYedzWbTVJw4sXfF12Vp1Bn6zekeDlSkXXlAW0XoJEDEDVS0Swr28mEHeNz25p/h 201Cg4xnnttimVsn4oDRbECTFvP6MXTO -----END CERTIFICATE-----Generated at Sat Apr 26 04:19:58 2025 by rpki-client