$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: vrKBBuZ8RrW5/8m0mGaZ1OY4Kf34My65KIRM5KL9vkY= Subject key identifier: 5C:D0:E5:6C:60:55:44:6D:96:F5:D9:90:DB:6C:85:DE:79:AB:ED:42 Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: 01B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: 01A8 Signing time: Fri 25 Apr 2025 02:33:44 +0000 Manifest this update: Fri 25 Apr 2025 02:33:44 +0000 Manifest next update: Fri 02 May 2025 02:33:43 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: tJ3Rsyk/KpNzJE98FDPzfYVTco/zYJXi19gnOxvP0V0=) 2: 4868355806A611F08F878981C4F9AE02.roa (hash: CY2/EJImr1t3NibBfSgu4VzBiSPC1MYnf7DadJvamq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:33:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723, serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: Apr 25 02:33:44 2025 GMT Not After : May 2 02:33:43 2025 GMT Subject: CN=680af488-32d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c1:85:13:9b:b2:90:76:ec:1d:b9:f0:36:83: b2:39:74:39:79:c7:2f:13:e6:a4:e5:f2:3b:fd:81: 7e:c9:ea:bd:d5:b1:8d:07:ae:10:30:10:64:5f:ac: df:d1:50:7c:83:2c:56:0d:a0:4b:1f:b8:c8:ce:6d: 5f:91:cf:77:16:6e:85:42:a5:16:fb:9b:dc:a3:df: 20:dd:f0:0e:ab:e1:b9:9e:1e:82:bf:97:80:24:0b: b7:bd:58:3e:23:3c:f8:63:e5:b5:8f:b6:42:1f:86: 67:fc:62:e2:9f:71:fc:02:5f:0a:9d:aa:e4:eb:c9: 2e:77:fd:36:47:ed:60:c4:ea:ad:c3:44:68:29:a0: 56:7f:6a:c0:c5:d9:5e:48:ed:fa:a6:cb:bb:bf:95: 1a:16:8f:45:da:8c:5e:74:77:d5:88:15:6c:0b:36: 27:8e:de:32:f4:44:e0:65:13:31:e8:73:ca:33:6f: 5b:52:4e:b6:07:c8:81:9c:e8:42:06:e6:f9:0b:54: 04:e1:62:74:f4:a6:75:3f:57:69:41:58:80:3e:76: 4f:66:fa:3e:29:9e:c2:b9:ed:db:25:bf:51:dd:86: ea:64:34:5f:40:c3:75:4c:65:48:a6:b6:c2:15:cc: c6:4b:24:8a:ec:d6:35:bf:6e:7c:be:16:c3:c2:93: ea:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D0:E5:6C:60:55:44:6D:96:F5:D9:90:DB:6C:85:DE:79:AB:ED:42 X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:8e:5a:15:e4:a9:8f:8e:a2:c6:66:b5:18:0d:8f:38:33:2d: 7a:3f:f6:3f:c6:f1:e2:9c:b2:0d:65:bc:87:19:f3:69:05:b2: 9c:d8:fb:45:a1:bb:dc:e3:1a:da:ce:e1:f9:4a:09:84:47:89: ab:af:f8:ce:29:3e:14:5b:0b:08:10:ae:44:68:9d:b6:e2:e1: b5:a3:18:07:e2:11:6e:f3:3c:c0:1c:e0:16:23:14:b3:4a:db: 3d:51:80:2c:c2:ba:e3:59:98:48:b8:c9:ee:2d:44:49:79:a6: 92:f4:cc:30:1a:78:1e:ec:dc:28:0a:50:6f:78:37:82:fc:2d: d8:68:46:29:0d:0d:24:da:ee:77:be:70:85:15:ba:44:d9:5e: 26:4c:75:c4:c5:f0:25:5d:62:7a:a6:db:bf:82:77:2e:41:4f: 82:d6:33:3d:68:40:18:c6:b5:46:0f:92:2d:f9:7b:36:8f:44: 75:c1:32:36:3e:4a:d2:1f:82:42:03:ca:08:f9:09:d8:30:9d: b3:17:62:1f:0a:c2:ea:23:ba:93:1c:1d:3d:52:e1:bf:88:82: a9:60:38:14:0a:cd:5a:a8:47:65:76:d2:30:b6:60:be:82:79: 52:80:50:75:f6:16:d9:4a:a2:5f:94:86:08:4b:b5:b7:e4:21: 0c:0e:c3:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjUwNDI1MDIzMzQ0WhcNMjUwNTAyMDIzMzQzWjAYMRYwFAYD VQQDEw02ODBhZjQ4OC0zMmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8GFE5uykHbsHbnwNoOyOXQ5eccvE+ak5fI7/YF+yeq91bGNB64QMBBkX6zf 0VB8gyxWDaBLH7jIzm1fkc93Fm6FQqUW+5vco98g3fAOq+G5nh6Cv5eAJAu3vVg+ Izz4Y+W1j7ZCH4Zn/GLin3H8Al8Knark68kud/02R+1gxOqtw0RoKaBWf2rAxdle SO36psu7v5UaFo9F2oxedHfViBVsCzYnjt4y9ETgZRMx6HPKM29bUk62B8iBnOhC Bub5C1QE4WJ09KZ1P1dpQViAPnZPZvo+KZ7Cue3bJb9R3YbqZDRfQMN1TGVIprbC FczGSySK7NY1v258vhbDwpPqpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzQ5Wxg VURtlvXZkNtshd55q+1CMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtjloV5KmPjqLGZrUYDY84My16P/Y/xvHinLINZbyHGfNpBbKc2PtF obvc4xrazuH5SgmER4mrr/jOKT4UWwsIEK5EaJ224uG1oxgH4hFu8zzAHOAWIxSz Sts9UYAswrrjWZhIuMnuLURJeaaS9MwwGnge7NwoClBveDeC/C3YaEYpDQ0k2u53 vnCFFbpE2V4mTHXExfAlXWJ6ptu/gncuQU+C1jM9aEAYxrVGD5It+Xs2j0R1wTI2 PkrSH4JCA8oI+QnYMJ2zF2IfCsLqI7qTHB09UuG/iIKpYDgUCs1aqEdldtIwtmC+ gnlSgFB19hbZSqJflIYIS7W35CEMDsMH -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:28 2025 by rpki-client