$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft File: UyaKJzal_1VLlAcD83T8NXkijDA.mft (raw, json) Hash identifier: 3HAOawFf7zuoHf/Aa0jaVrHd3WwvlykpWezXUiajmfo= Subject key identifier: 66:A4:0B:74:B6:ED:F1:94:86:FE:E2:06:16:69:90:FE:66:DE:BF:0F Authority key identifier: 53:26:8A:27:36:A5:FF:55:4B:94:07:03:F3:74:FC:35:79:22:8C:30 Certificate issuer: /CN=A91DCBAD/serialNumber=53268A2736A5FF554B940703F374FC3579228C30 Certificate serial: 0A1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft Manifest number: 0A14 Signing time: Thu 24 Apr 2025 19:43:43 +0000 Manifest this update: Thu 24 Apr 2025 19:43:42 +0000 Manifest next update: Thu 01 May 2025 19:43:42 +0000 Files and hashes: 1: UyaKJzal_1VLlAcD83T8NXkijDA.crl (hash: 0PtFloa7cODow2mtp48+v4mAqIlqLTgTWITWQsGiC5U=) 2: CF072592709211EAB1D2FA0FC4F9AE02.roa (hash: ZFArAKV3zxqhsKeUT1pzygcRoAdRSBE7vBttPv/BKqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.crl rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2588 (0xa1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCBAD, serialNumber=53268A2736A5FF554B940703F374FC3579228C30 Validity Not Before: Apr 24 19:43:42 2025 GMT Not After : May 1 19:43:42 2025 GMT Subject: CN=680a946e-6d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:01:f5:eb:fb:fd:a2:65:b5:84:be:83:54:0e: 40:08:50:4a:e1:7f:51:6c:74:94:c8:41:57:fa:95: 1f:d6:a4:b2:af:47:c2:b6:91:5e:6b:e1:ca:cb:e7: 6e:ba:ae:e2:49:3b:4a:69:1e:84:87:b1:6f:f7:df: 32:16:f8:49:d1:80:f4:ba:ed:ce:91:c3:5a:20:7a: a2:1b:db:d5:ab:66:f6:49:a3:2f:8f:31:3c:d7:6c: e9:22:db:57:c6:3a:83:14:85:1f:67:99:28:72:8b: 00:66:49:cf:3d:6c:d9:9f:9d:20:c7:76:63:e9:d4: f8:5e:55:3f:b7:26:26:11:90:2b:d0:17:8d:7b:40: 74:a1:b6:79:8c:77:6b:e4:1c:1a:dc:8b:06:28:af: ef:5e:e3:3f:aa:5f:5c:0b:af:df:64:ec:c0:09:0f: 4c:2a:03:f4:1f:40:5b:61:34:1a:bf:7c:bc:51:18: 70:25:77:34:bd:64:4e:3a:0c:87:ef:3a:13:c0:3d: bb:05:41:93:81:c7:0f:52:fb:88:b7:bb:b0:99:11: fc:86:60:d8:fd:f8:d0:e5:cb:63:4c:d6:1e:c0:96: e1:3e:db:8d:89:8d:1d:f9:2d:25:1a:1a:e2:52:d7: f8:69:c6:ca:a8:83:cb:64:97:d8:97:43:2f:65:61: c7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A4:0B:74:B6:ED:F1:94:86:FE:E2:06:16:69:90:FE:66:DE:BF:0F X509v3 Authority Key Identifier: keyid:53:26:8A:27:36:A5:FF:55:4B:94:07:03:F3:74:FC:35:79:22:8C:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyaKJzal_1VLlAcD83T8NXkijDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCBAD/3659E7AE709111EA8A9B4E0DC4F9AE02/UyaKJzal_1VLlAcD83T8NXkijDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:fd:c1:c9:c8:df:cc:26:3b:8a:64:1c:d2:ec:aa:9b:11:06: 51:7c:47:37:bd:bb:36:81:f3:39:d7:bf:dd:22:0a:61:a0:68: 68:7b:68:38:4b:38:02:e0:c6:77:26:2f:0e:41:7e:ca:59:c6: 9d:da:c6:c0:85:53:b2:67:e0:13:0a:2e:ec:3e:27:98:14:eb: 15:a5:a2:d4:88:cf:fa:94:f6:3f:03:8b:97:af:e4:26:f3:38: 77:ef:77:7a:53:8a:77:f4:c4:b9:90:bf:32:f9:ae:7b:4c:d0: 9b:97:f0:a8:28:0a:44:39:2d:85:2b:8f:8d:3f:17:09:03:6e: 0e:41:e5:fe:a0:91:e9:4b:f8:93:f5:3d:f3:33:34:94:0d:db: d8:dd:12:1c:ce:41:fc:d2:b2:65:26:9e:69:f6:1b:1b:8a:ce: f0:06:5a:2e:b9:bf:46:50:0c:6d:1a:7b:50:9a:62:ea:86:bf: c1:c7:2d:99:f2:de:51:2b:6b:dd:5e:77:0d:b9:83:8a:8e:f0: e6:73:6c:97:79:19:fb:a9:58:5d:9e:12:e2:3b:e4:95:2a:75: 3f:ea:d5:f2:61:ae:31:0a:72:e0:fd:ba:ca:b4:a1:b0:31:d0: 7f:8e:b5:be:ba:ba:42:7b:61:1c:90:66:33:64:6c:ae:a7:5e: 19:ca:2c:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCQUQxMTAvBgNVBAUTKDUzMjY4QTI3MzZBNUZGNTU0Qjk0MDcwM0YzNzRGQzM1 NzkyMjhDMzAwHhcNMjUwNDI0MTk0MzQyWhcNMjUwNTAxMTk0MzQyWjAYMRYwFAYD VQQDEw02ODBhOTQ2ZS02ZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgH16/v9omW1hL6DVA5ACFBK4X9RbHSUyEFX+pUf1qSyr0fCtpFea+HKy+du uq7iSTtKaR6Eh7Fv998yFvhJ0YD0uu3OkcNaIHqiG9vVq2b2SaMvjzE812zpIttX xjqDFIUfZ5kocosAZknPPWzZn50gx3Zj6dT4XlU/tyYmEZAr0BeNe0B0obZ5jHdr 5Bwa3IsGKK/vXuM/ql9cC6/fZOzACQ9MKgP0H0BbYTQav3y8URhwJXc0vWROOgyH 7zoTwD27BUGTgccPUvuIt7uwmRH8hmDY/fjQ5ctjTNYewJbhPtuNiY0d+S0lGhri Utf4acbKqIPLZJfYl0MvZWHH2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGakC3S2 7fGUhv7iBhZpkP5m3r8PMB8GA1UdIwQYMBaAFFMmiic2pf9VS5QHA/N0/DV5Ioww MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0JBRC8zNjU5RTdBRTcw OTExMUVBOEE5QjRFMERDNEY5QUUwMi9VeWFLSnphbF8xVkxsQWNEODNUOE5Ya2lq REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5YUtKemFsXzFWTGxBY0Q4M1Q4TlhraWpEQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0JBRC8zNjU5RTdBRTcwOTExMUVBOEE5QjRFMERDNEY5QUUwMi9VeWFLSnphbF8x VkxsQWNEODNUOE5Ya2lqREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU/cHJyN/MJjuKZBzS7KqbEQZRfEc3vbs2gfM517/dIgphoGhoe2g4 SzgC4MZ3Ji8OQX7KWcad2sbAhVOyZ+ATCi7sPieYFOsVpaLUiM/6lPY/A4uXr+Qm 8zh373d6U4p39MS5kL8y+a57TNCbl/CoKApEOS2FK4+NPxcJA24OQeX+oJHpS/iT 9T3zMzSUDdvY3RIczkH80rJlJp5p9hsbis7wBlouub9GUAxtGntQmmLqhr/Bxy2Z 8t5RK2vdXncNuYOKjvDmc2yXeRn7qVhdnhLiO+SVKnU/6tXyYa4xCnLg/brKtKGw MdB/jrW+urpCe2EckGYzZGyup14Zyixo -----END CERTIFICATE-----Generated at Sat Apr 26 05:07:57 2025 by rpki-client