$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft File: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft (raw, json) Hash identifier: XmLmi7tI7dJmuz8nmamBcxw2tGU5W0224OaxwnLPOyQ= Subject key identifier: 9C:D0:22:44:BB:4E:6A:CB:1C:7B:5F:FD:E6:1F:7F:AC:9F:26:08:17 Authority key identifier: B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 Certificate issuer: /CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Certificate serial: 0E44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft Manifest number: 0E3B Signing time: Thu 24 Apr 2025 17:44:46 +0000 Manifest this update: Thu 24 Apr 2025 17:44:45 +0000 Manifest next update: Thu 01 May 2025 17:44:45 +0000 Files and hashes: 1: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl (hash: lai+IfDcF9udPhN0wzeGXbmT/rXP6vV5iyWM99WqKAg=) 2: BD22841E9E4911E9A136D25AC4F9AE02.roa (hash: CD3KMyXKPVQJ5ERiU0fhGp4XONa4jeSt2SNuNzmurV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:44:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3652 (0xe44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1149, serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Validity Not Before: Apr 24 17:44:45 2025 GMT Not After : May 1 17:44:45 2025 GMT Subject: CN=680a788e-3a05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:de:79:86:93:90:41:8c:f8:e9:cc:eb:53:4a: ae:94:53:26:a9:a9:68:1d:f9:26:c7:b5:a3:66:17: f4:d0:f7:9f:7c:be:4d:d7:8c:bd:15:a2:ed:a4:73: 3b:b8:0e:d4:e5:0b:c2:5f:7c:5a:b9:e0:1a:7f:cc: 12:e9:0b:46:c3:22:c6:f9:54:95:47:67:1d:10:af: 58:85:3d:54:f1:71:f4:fd:f1:ed:cf:16:75:35:b7: b6:24:83:9a:0a:f5:76:b9:b6:54:ba:a8:56:ad:37: 27:8e:b0:27:81:8f:1b:eb:15:10:4d:cf:e3:0a:9d: b6:7f:d7:06:17:7d:a0:7a:33:bf:39:37:8c:63:24: 95:47:b3:f6:99:3b:70:3c:ca:20:a4:b2:f7:00:56: 84:d4:69:a3:0b:a8:39:76:81:08:2e:d5:83:39:44: cc:b2:38:30:bd:8a:61:ab:7c:0c:6e:a0:41:95:86: ca:c3:80:f2:4e:88:c3:e0:94:f4:38:70:7b:b1:48: 6d:64:69:fc:8b:b4:79:ce:ca:d0:c7:9c:3a:5b:68: be:5c:c7:89:8f:2e:50:68:f6:a1:94:99:b7:20:b7: dd:f7:4b:e3:ec:38:32:50:d0:9c:26:65:95:e2:ae: 76:ea:f4:90:aa:14:3b:00:97:08:49:cc:b1:9a:ca: 14:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:D0:22:44:BB:4E:6A:CB:1C:7B:5F:FD:E6:1F:7F:AC:9F:26:08:17 X509v3 Authority Key Identifier: keyid:B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:e6:b6:cb:02:0f:8e:51:66:4a:8e:d4:47:95:b9:9a:ab:12: 6c:cc:56:79:f9:a4:b9:47:73:b8:b8:af:1f:6e:5b:96:9a:0e: 90:61:f2:4a:af:20:3e:96:e3:27:b4:23:b0:7f:bd:0d:91:97: d5:cd:a0:68:2a:78:97:5a:35:65:fe:89:e2:ee:b5:a9:57:58: ab:01:ad:0e:ec:23:6d:cd:eb:8b:e2:05:5d:c1:83:32:45:21: 1d:6f:d5:28:b5:3b:27:01:93:da:77:f5:bd:68:dd:dc:00:15: ae:e3:ed:f8:86:3c:31:61:15:fe:fa:02:47:41:a7:d6:e8:aa: 25:c3:18:88:0c:b1:01:61:4d:c4:7b:6f:db:c9:0f:76:ed:3e: f8:2e:c2:b7:d8:ac:a5:db:50:31:5f:85:a4:88:fe:5e:f4:ed: 1e:89:1d:12:7e:ed:a1:cb:fd:6e:9f:e8:82:e9:3b:aa:0c:ef: dd:43:50:9b:1a:3f:99:cd:9c:a9:65:3b:8e:3c:a6:bd:18:8b: e3:49:5c:6e:b8:05:c6:72:37:56:4c:ca:0b:82:e4:87:f2:90: 23:6f:05:f7:c6:37:32:aa:5e:74:23:12:59:1e:27:86:78:d7: 2d:49:4c:68:2a:f5:f1:56:9e:ed:8b:76:5e:e6:22:4a:e1:91: 0a:d7:75:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExNDkxMTAvBgNVBAUTKEI4MzQwMUNGQkM0MDVDRkI1MkZEQTBGRUJENEEwMkI3 QjFDRTI3NjIwHhcNMjUwNDI0MTc0NDQ1WhcNMjUwNTAxMTc0NDQ1WjAYMRYwFAYD VQQDEw02ODBhNzg4ZS0zYTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyt55hpOQQYz46czrU0qulFMmqaloHfkmx7WjZhf00PeffL5N14y9FaLtpHM7 uA7U5QvCX3xaueAaf8wS6QtGwyLG+VSVR2cdEK9YhT1U8XH0/fHtzxZ1Nbe2JIOa CvV2ubZUuqhWrTcnjrAngY8b6xUQTc/jCp22f9cGF32gejO/OTeMYySVR7P2mTtw PMogpLL3AFaE1GmjC6g5doEILtWDOUTMsjgwvYphq3wMbqBBlYbKw4DyTojD4JT0 OHB7sUhtZGn8i7R5zsrQx5w6W2i+XMeJjy5QaPahlJm3ILfd90vj7DgyUNCcJmWV 4q526vSQqhQ7AJcIScyxmsoUTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzQIkS7 TmrLHHtf/eYff6yfJggXMB8GA1UdIwQYMBaAFLg0Ac+8QFz7Uv2g/r1KArexzidi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTE0OS8yNEJCMjRDRTlF NDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQdFNfYUQtdlVvQ3Q3SE9K MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VEUUJ6N3hBWFB0U19hRC12VW9DdDdIT0oySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTE0OS8yNEJCMjRDRTlFNDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQ dFNfYUQtdlVvQ3Q3SE9KMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw5rbLAg+OUWZKjtRHlbmaqxJszFZ5+aS5R3O4uK8fbluWmg6QYfJK ryA+luMntCOwf70NkZfVzaBoKniXWjVl/oni7rWpV1irAa0O7CNtzeuL4gVdwYMy RSEdb9UotTsnAZPad/W9aN3cABWu4+34hjwxYRX++gJHQafW6KolwxiIDLEBYU3E e2/byQ927T74LsK32Kyl21AxX4WkiP5e9O0eiR0Sfu2hy/1un+iC6TuqDO/dQ1Cb Gj+ZzZypZTuOPKa9GIvjSVxuuAXGcjdWTMoLguSH8pAjbwX3xjcyql50IxJZHieG eNctSUxoKvXxVp7ti3Ze5iJK4ZEK13Xg -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:07 2025 by rpki-client