$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: abwGlzdUyEenTzrCqEUpRZS5j0wixDpAUkIkWU7Z2qM= Subject key identifier: F5:0B:E6:5E:DC:7F:E1:9D:82:65:F8:D3:E2:C2:09:FA:80:9B:94:A5 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 049E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 0485 Signing time: Thu 24 Apr 2025 23:54:18 +0000 Manifest this update: Thu 24 Apr 2025 23:54:17 +0000 Manifest next update: Thu 01 May 2025 23:54:17 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: t1CI3C7jr47rngAsAVVVqzJS6aIid+tV2PJveEkynlI=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: Apr 24 23:54:17 2025 GMT Not After : May 1 23:54:17 2025 GMT Subject: CN=680acf2a-a9c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f3:dd:e8:b4:cb:06:84:de:ff:42:5b:66:77: af:c8:24:63:59:09:0b:24:fb:88:f3:82:dd:95:b3: e8:59:0d:34:14:31:de:1d:74:1c:5b:73:5b:b7:b1: af:f0:d5:9d:ae:a0:2b:6e:a8:6b:60:ed:18:b8:d2: 13:bd:7d:99:69:02:1e:9a:a3:34:6a:98:81:2b:61: c0:cc:28:30:ef:23:35:7c:1a:98:a9:f6:58:9d:4c: 5b:60:0c:0a:31:c4:53:29:55:6c:74:18:12:98:ed: 2e:27:de:b8:1b:bc:45:04:06:88:6e:4f:fb:e1:97: 52:a5:2e:84:85:4e:d0:64:20:81:25:4b:2d:74:87: d4:5e:a9:a0:43:b3:0a:15:de:0c:0f:12:5c:d7:38: 36:f8:0a:ab:62:d2:9a:a6:49:3f:66:9e:0e:f8:11: 94:a7:f3:e4:04:b3:f6:8f:9d:25:21:a0:97:3d:94: a8:9a:79:3d:ae:ac:ce:49:37:91:a4:f9:bd:0f:c5: a2:2a:a0:b9:fd:72:90:3b:7e:ce:ca:2d:e0:ac:20: 17:81:a4:74:b3:dd:96:2c:cf:cd:d2:e9:25:27:e4: 6e:91:7e:92:86:f5:f2:90:ad:cb:5d:f5:07:3e:58: 6a:db:ba:e4:4d:03:53:fc:ff:2a:98:7f:09:74:e1: 4a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0B:E6:5E:DC:7F:E1:9D:82:65:F8:D3:E2:C2:09:FA:80:9B:94:A5 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:3a:fb:42:72:e6:39:7f:c6:4a:24:33:80:bb:44:0d:74:84: 3f:37:a0:4b:59:3d:88:de:c7:a2:d2:cb:5a:55:ce:94:06:ba: ad:2b:2d:3e:2c:25:a4:f8:8c:84:77:f5:dc:80:93:a8:0b:f7: d2:50:8a:9f:7f:b9:82:a0:a3:9c:95:5b:94:7d:bc:b2:8b:49: 9f:3c:c2:52:7c:be:5a:a5:04:71:8b:d7:d9:8b:10:84:6a:e7: 62:6f:5c:b5:99:c9:73:fc:c9:b4:a7:81:90:07:5c:26:be:5f: 46:04:16:f2:fb:dc:ef:b4:59:8e:65:e9:3f:4c:14:69:64:0b: 07:a4:8c:b4:fe:e1:b0:e3:ad:03:5b:ef:e6:19:a0:77:4f:5c: b6:f2:7b:79:8a:15:e8:8f:db:9a:7f:0c:2e:17:6e:ee:b8:12: e5:89:a7:e4:fb:20:8c:22:c5:64:1c:c8:5a:99:6c:d3:2d:2b: d8:ec:d1:55:a5:de:8a:c3:c3:e7:dc:be:01:59:f7:8d:12:35: c9:61:06:2a:a3:0c:9a:98:1e:b3:e4:b0:f9:12:89:42:e6:02: e4:6d:99:30:b1:49:30:33:99:b5:bf:7a:86:2f:69:5a:68:b6: 97:18:a2:56:c3:6a:c2:dd:b3:7c:fb:d1:a4:b4:c0:67:d2:80: 17:4b:c1:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUwNDI0MjM1NDE3WhcNMjUwNTAxMjM1NDE3WjAYMRYwFAYD VQQDEw02ODBhY2YyYS1hOWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/Pd6LTLBoTe/0JbZnevyCRjWQkLJPuI84LdlbPoWQ00FDHeHXQcW3Nbt7Gv 8NWdrqArbqhrYO0YuNITvX2ZaQIemqM0apiBK2HAzCgw7yM1fBqYqfZYnUxbYAwK McRTKVVsdBgSmO0uJ964G7xFBAaIbk/74ZdSpS6EhU7QZCCBJUstdIfUXqmgQ7MK Fd4MDxJc1zg2+AqrYtKapkk/Zp4O+BGUp/PkBLP2j50lIaCXPZSomnk9rqzOSTeR pPm9D8WiKqC5/XKQO37Oyi3grCAXgaR0s92WLM/N0uklJ+RukX6ShvXykK3LXfUH Plhq27rkTQNT/P8qmH8JdOFKWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUL5l7c f+GdgmX40+LCCfqAm5SlMB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmOvtCcuY5f8ZKJDOAu0QNdIQ/N6BLWT2I3sei0staVc6UBrqtKy0+ LCWk+IyEd/XcgJOoC/fSUIqff7mCoKOclVuUfbyyi0mfPMJSfL5apQRxi9fZixCE audib1y1mclz/Mm0p4GQB1wmvl9GBBby+9zvtFmOZek/TBRpZAsHpIy0/uGw460D W+/mGaB3T1y28nt5ihXoj9uafwwuF27uuBLliafk+yCMIsVkHMhamWzTLSvY7NFV pd6Kw8Pn3L4BWfeNEjXJYQYqowyamB6z5LD5EolC5gLkbZkwsUkwM5m1v3qGL2la aLaXGKJWw2rC3bN8+9GktMBn0oAXS8Gj -----END CERTIFICATE-----Generated at Sat Apr 26 05:01:34 2025 by rpki-client