$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: CkdpUxVwb6qK4EtigraO0+/f6UCucEYq5u1OlA0J7o4= Subject key identifier: D2:84:D1:62:11:0B:E2:E1:49:05:D0:50:13:B0:62:C1:E5:85:1C:0A Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0BE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0BE0 Signing time: Thu 24 Apr 2025 18:43:08 +0000 Manifest this update: Thu 24 Apr 2025 18:43:08 +0000 Manifest next update: Thu 01 May 2025 18:43:08 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: ToZ9HEjaOeBFFezX2/CCMMJSmc0Q5z1RSlPeYaVHXYA=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: cmHL+jcXVZxk1ExKQVL6FlfnXQXFN7c8jdKbgylZ/70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778, serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: Apr 24 18:43:08 2025 GMT Not After : May 1 18:43:08 2025 GMT Subject: CN=680a863c-a83a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:63:05:02:30:cb:60:90:96:e2:87:d6:ce:96: 6f:f8:2b:c1:f5:d8:c0:39:7b:6d:5b:86:d9:12:aa: fe:9b:57:5e:b3:ee:ec:08:fa:6d:3b:68:16:ae:73: 88:58:9a:6b:80:2a:ed:40:a3:88:43:73:57:3a:2d: da:84:b5:1b:f0:66:54:07:3b:d7:9e:83:ec:35:c4: 9d:bc:3a:48:ec:eb:e5:f5:3b:38:2c:ad:5e:e8:94: 12:a6:aa:bb:14:2d:84:8a:14:b6:8c:18:78:bd:3c: 43:20:63:f9:2d:c0:de:0c:4b:1c:3e:d0:2f:46:e8: 3e:5d:a3:16:f7:dd:eb:0e:82:39:00:8c:ae:c0:43: d8:db:0d:79:ae:50:04:1a:a8:e9:1f:de:b3:69:21: 68:dd:00:be:d9:a6:53:25:98:95:d6:19:bf:7d:16: 45:b5:ad:c6:a6:ac:09:6c:5b:46:42:c0:d6:93:0b: 47:4d:70:f7:49:9a:9f:37:1d:1d:0a:1b:82:14:a3: 0f:9a:54:e6:7a:9d:eb:22:85:ce:16:7c:f7:fc:9a: d9:92:46:f2:a0:18:34:20:a2:ee:86:bc:d8:9d:61: be:b9:0a:84:5c:f2:56:da:ee:5b:c3:05:06:e4:a6: 5c:fb:43:3b:29:bf:48:56:ea:93:06:74:d3:33:95: 84:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:84:D1:62:11:0B:E2:E1:49:05:D0:50:13:B0:62:C1:E5:85:1C:0A X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:13:ea:20:93:9b:6b:80:6d:8a:83:73:7e:a0:d7:7c:3d:73: 4b:2b:bc:58:50:05:e4:b0:f6:e8:6e:04:f0:bd:a8:a2:a5:05: 67:29:9b:56:d4:b6:9c:6e:98:22:60:61:e1:9b:ff:c2:58:10: 16:87:de:b8:10:b6:da:e9:57:57:62:25:f3:e4:8a:5c:d0:17: 2b:93:3a:5b:73:f3:68:2e:1f:02:02:82:27:86:31:2f:5a:92: 0f:d5:74:bc:a4:36:c7:18:3f:35:1d:99:59:d1:69:73:9d:f8: d2:6e:5e:93:4a:01:7a:15:32:fc:c2:51:28:87:fb:21:ef:d9: c5:7b:80:b5:99:84:e5:29:8e:b5:a9:91:ee:33:9c:f9:64:b9: 01:7d:d2:5f:ea:46:9a:33:8b:34:a7:a6:b3:0e:af:97:08:63: 8d:78:0c:2d:62:fb:e0:a7:55:57:e2:05:33:3a:1c:62:1a:36: ab:db:cc:62:26:27:56:d5:d0:fa:2e:fb:ee:69:8e:b0:02:33: ad:d3:71:a6:7b:23:64:52:5b:4e:7b:1c:da:4d:61:5b:6d:5b: b8:84:c6:82:a9:9c:f0:a7:1d:66:8d:c3:f6:8e:0c:4a:95:9d: c0:3b:6f:79:f1:66:3c:35:bc:78:f2:fe:89:2e:c6:60:0a:ec: 69:cb:bd:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjUwNDI0MTg0MzA4WhcNMjUwNTAxMTg0MzA4WjAYMRYwFAYD VQQDEw02ODBhODYzYy1hODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWMFAjDLYJCW4ofWzpZv+CvB9djAOXttW4bZEqr+m1des+7sCPptO2gWrnOI WJprgCrtQKOIQ3NXOi3ahLUb8GZUBzvXnoPsNcSdvDpI7Ovl9Ts4LK1e6JQSpqq7 FC2EihS2jBh4vTxDIGP5LcDeDEscPtAvRug+XaMW993rDoI5AIyuwEPY2w15rlAE GqjpH96zaSFo3QC+2aZTJZiV1hm/fRZFta3GpqwJbFtGQsDWkwtHTXD3SZqfNx0d ChuCFKMPmlTmep3rIoXOFnz3/JrZkkbyoBg0IKLuhrzYnWG+uQqEXPJW2u5bwwUG 5KZc+0M7Kb9IVuqTBnTTM5WEEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKE0WIR C+LhSQXQUBOwYsHlhRwKMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlE+ogk5trgG2Kg3N+oNd8PXNLK7xYUAXksPbobgTwvaiipQVnKZtW 1LacbpgiYGHhm//CWBAWh964ELba6VdXYiXz5Ipc0Bcrkzpbc/NoLh8CAoInhjEv WpIP1XS8pDbHGD81HZlZ0WlznfjSbl6TSgF6FTL8wlEoh/sh79nFe4C1mYTlKY61 qZHuM5z5ZLkBfdJf6kaaM4s0p6azDq+XCGONeAwtYvvgp1VX4gUzOhxiGjar28xi JidW1dD6LvvuaY6wAjOt03GmeyNkUltOexzaTWFbbVu4hMaCqZzwpx1mjcP2jgxK lZ3AO2958WY8Nbx48v6JLsZgCuxpy70I -----END CERTIFICATE-----Generated at Sat Apr 26 12:29:28 2025 by rpki-client