$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft File: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft (raw, json) Hash identifier: 421E1r3+3xB5vDDS3ZYwnpHXrUdBcc7K+84drsSPsjE= Subject key identifier: C2:88:73:EA:A7:A4:10:29:87:7B:11:FA:BA:3F:F2:64:E0:08:50:75 Authority key identifier: 50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3 Certificate issuer: /CN=A91E5191/serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3 Certificate serial: 0766 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft Manifest number: 075E Signing time: Thu 24 Apr 2025 21:24:15 +0000 Manifest this update: Thu 24 Apr 2025 21:24:14 +0000 Manifest next update: Thu 01 May 2025 21:24:14 +0000 Files and hashes: 1: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl (hash: alW7fbfrIEOddNpQ8Q4yCkP+6fvosGSu05UgcwJamEY=) 2: 3E78F3541E2D11EB95754317C4F9AE02.roa (hash: zj2/IQcxrFfQP3sb/0xMN/kSgo/BiJLwAfEBd9gJdG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5191, serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3 Validity Not Before: Apr 24 21:24:14 2025 GMT Not After : May 1 21:24:14 2025 GMT Subject: CN=680aabff-30a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:c1:f5:6e:74:a6:8c:17:40:97:36:b8:2a: 7f:9d:79:65:14:66:29:c7:26:fc:0d:b8:43:5b:78: 54:8b:3d:2f:a0:32:fe:52:63:fe:55:cc:0f:14:93: 2d:61:64:9e:6c:d1:85:ac:58:07:3a:0d:32:25:1a: 8a:7c:9c:2a:ef:31:76:ed:df:58:a4:e0:19:ca:19: b8:72:5f:3f:c3:a8:6f:54:cb:05:5a:bd:09:d3:44: ad:cf:86:33:5e:57:c4:8e:91:73:79:00:0b:f7:f5: ab:a3:42:92:1d:c4:3f:c1:20:fc:84:f6:19:c4:52: 11:a8:5d:df:6f:1a:18:60:53:30:5a:ea:7b:76:82: 6e:1a:5f:1e:00:a5:d9:e0:c1:4f:53:4b:76:6d:26: c0:74:69:09:6c:74:aa:44:7d:de:d9:27:36:36:97: e9:c2:d0:c2:da:1f:c3:cd:21:85:e6:5b:97:67:f7: 11:d5:d0:d9:cd:53:64:6f:50:7b:7c:32:ab:53:df: 23:ea:bd:28:92:72:88:bb:66:57:ed:c9:e7:f3:2c: 74:d3:ef:64:56:9f:82:76:dc:cf:e2:62:2b:16:6e: 09:be:5c:7a:df:a3:ba:d5:89:a2:77:88:6c:50:af: 4f:a4:9f:b2:80:83:23:d9:00:9e:8c:4a:f5:28:97: a4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:88:73:EA:A7:A4:10:29:87:7B:11:FA:BA:3F:F2:64:E0:08:50:75 X509v3 Authority Key Identifier: keyid:50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:a9:a9:f2:20:13:7f:5b:d3:7b:0f:22:ce:07:1c:5f:38:6f: 8b:2e:b7:8e:a9:4f:74:4a:93:96:05:bc:2c:f0:79:c2:08:c4: 52:df:bd:f3:9a:32:d8:bc:32:fe:0b:6a:61:d6:29:e8:57:27: 1a:7f:e2:c5:24:3b:66:92:30:31:91:3e:23:6d:52:13:b1:5b: 97:c2:f0:22:68:04:38:a6:2f:82:fb:02:d6:ca:20:fe:bf:14: e0:b1:ec:06:9f:d9:20:0f:74:e2:1a:bb:17:ae:1e:f4:ba:2a: 23:c8:b0:85:b3:c7:b6:55:03:ac:7d:7d:cd:7d:da:d0:d7:ec: 68:94:4e:ed:2a:ee:c3:c2:9b:28:b1:f4:fe:fe:79:1b:69:8a: 59:67:6c:6e:5e:34:13:f0:b7:0e:80:96:97:c1:fe:52:34:18: ca:79:32:6f:d5:64:c6:b9:44:22:56:4e:46:22:ca:e0:62:78: 35:fd:84:ea:ac:90:3f:d7:ae:f9:c9:2a:ee:a9:6c:17:44:d7: 85:15:b8:b3:5e:52:cf:9f:d8:56:f2:4f:f2:c1:fb:7f:cd:2b: 22:c7:73:ed:28:89:ad:56:4c:8b:40:85:60:11:47:a5:e8:b8: f3:81:e3:e1:91:21:fe:d2:f6:69:ac:7c:c5:5a:35:8f:06:6b: ab:4c:a8:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUxOTExMTAvBgNVBAUTKDUwQTcxMTZCQjlGMzY5N0JDNUUzRTIyMkVGMDM1Rjcw MzQyQ0REQTMwHhcNMjUwNDI0MjEyNDE0WhcNMjUwNTAxMjEyNDE0WjAYMRYwFAYD VQQDEw02ODBhYWJmZi0zMGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3DB9W50powXQJc2uCp/nXllFGYpxyb8DbhDW3hUiz0voDL+UmP+VcwPFJMt YWSebNGFrFgHOg0yJRqKfJwq7zF27d9YpOAZyhm4cl8/w6hvVMsFWr0J00Stz4Yz XlfEjpFzeQAL9/Wro0KSHcQ/wSD8hPYZxFIRqF3fbxoYYFMwWup7doJuGl8eAKXZ 4MFPU0t2bSbAdGkJbHSqRH3e2Sc2NpfpwtDC2h/DzSGF5luXZ/cR1dDZzVNkb1B7 fDKrU98j6r0oknKIu2ZX7cnn8yx00+9kVp+CdtzP4mIrFm4Jvlx636O61Ymid4hs UK9PpJ+ygIMj2QCejEr1KJekcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKIc+qn pBAph3sR+ro/8mTgCFB1MB8GA1UdIwQYMBaAFFCnEWu582l7xePiIu8DX3A0LN2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTE5MS80OEFBMDcwNjE5 NzIxMUVCODA1RTZCN0ZDNEY5QUUwMi9VS2NSYTduemFYdkY0LUlpN3dOZmNEUXMz YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLY1JhN256YVh2RjQtSWk3d05mY0RRczNhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTE5MS80OEFBMDcwNjE5NzIxMUVCODA1RTZCN0ZDNEY5QUUwMi9VS2NSYTduemFY dkY0LUlpN3dOZmNEUXMzYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuqanyIBN/W9N7DyLOBxxfOG+LLreOqU90SpOWBbws8HnCCMRS373z mjLYvDL+C2ph1inoVycaf+LFJDtmkjAxkT4jbVITsVuXwvAiaAQ4pi+C+wLWyiD+ vxTgsewGn9kgD3TiGrsXrh70uiojyLCFs8e2VQOsfX3NfdrQ1+xolE7tKu7Dwpso sfT+/nkbaYpZZ2xuXjQT8LcOgJaXwf5SNBjKeTJv1WTGuUQiVk5GIsrgYng1/YTq rJA/1675ySruqWwXRNeFFbizXlLPn9hW8k/ywft/zSsix3PtKImtVkyLQIVgEUel 6LjzgePhkSH+0vZprHzFWjWPBmurTKgk -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:44 2025 by rpki-client