$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: KvWG3LlO+mDT74y9br0foUeYPuK/na67W6VbcYiFRuA= Subject key identifier: B0:F7:E9:5E:56:67:01:62:91:92:97:05:51:3F:EB:EF:8A:F2:11:7E Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 01C7 Signing time: Sat 03 May 2025 02:28:39 +0000 Manifest this update: Sat 03 May 2025 02:28:39 +0000 Manifest next update: Sat 10 May 2025 02:28:39 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: HgE6a71/BAhkTyCuxXWkA7yr+/r16HDpiCCXdQsYR3U=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: rsMkljZYE/Nxpn7AsH7vTnSee91hZSon99Otp+S0urI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 02:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A, serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: May 3 02:28:39 2025 GMT Not After : May 10 02:28:39 2025 GMT Subject: CN=68157f57-2990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cb:e2:96:9b:30:f3:46:f4:2d:9c:d3:c6:16: aa:83:df:01:f1:37:15:a4:2d:5c:02:f1:cc:2b:0d: d4:c3:11:74:09:de:19:45:11:2f:e2:81:34:0a:81: b2:1a:85:a5:d3:d5:61:00:1a:0d:cc:ad:06:9c:f4: 6f:ca:b4:23:40:30:ec:5e:be:5d:e0:36:27:7b:83: e2:f1:dc:b3:df:48:f8:87:82:73:c1:6e:0f:9f:5d: 3e:31:12:38:97:b6:8a:39:b1:a1:ab:3b:b8:b6:e8: d8:f7:f0:e7:d3:29:c8:b4:8e:e6:c8:97:0a:79:9a: 11:20:62:44:f9:92:b1:a3:f9:f3:9d:2e:e5:d4:d8: f6:5c:66:12:91:84:2e:6a:93:7d:90:7d:31:89:80: 30:3f:ed:33:7a:56:60:0b:e3:61:59:46:7e:c1:85: c2:0c:c2:86:b3:4b:a1:86:8c:33:e2:ca:a5:44:fd: 1c:99:19:4e:03:23:47:29:39:41:43:9c:2a:ad:46: f7:fa:c0:76:ce:b8:42:9d:35:37:71:1c:df:22:2f: ee:1a:33:cb:ea:d0:17:e8:f6:db:dd:89:06:b4:bc: be:07:64:89:61:84:b1:7a:b8:a9:ad:e4:d4:ba:1d: 1f:dd:a1:2f:95:c8:a0:8b:ab:78:09:14:c4:76:bf: 9b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:F7:E9:5E:56:67:01:62:91:92:97:05:51:3F:EB:EF:8A:F2:11:7E X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:d2:84:36:b9:0d:ed:85:71:5c:58:22:fd:d9:52:f7:26:19: 35:b7:94:45:63:ee:6e:d1:39:9e:18:2f:00:be:be:75:00:db: 64:22:68:d7:b2:d3:fb:51:f9:56:81:e2:08:f1:f2:54:60:e9: 24:3f:c5:cc:b8:a0:43:a8:80:a3:cf:ea:3e:df:92:07:ae:c6: ae:da:35:f0:e7:1a:a6:bf:78:5c:54:82:91:75:8f:66:cd:75: 5a:b7:43:96:b4:93:8b:35:cb:ba:be:6d:e4:3c:0e:d2:75:ca: ac:17:bd:64:ba:74:f6:de:f5:e3:66:bb:51:3d:93:5c:7b:44: cf:cd:dd:df:2e:07:50:94:aa:9f:a1:0e:1b:36:be:2b:6d:fe: e2:00:72:76:a6:bb:97:56:c2:18:ec:68:bc:5a:7d:67:e6:8c: d8:85:4d:91:d1:30:d7:8c:34:9f:c0:b5:24:47:6f:38:ed:4c: f5:e9:7a:b0:f8:a8:de:12:a9:b1:5b:58:4f:9c:b9:0a:7b:c5: 80:11:1a:fb:e0:cb:d5:b4:ac:28:17:f3:c6:a2:a4:d5:07:d9: 11:f2:e7:a1:90:7f:73:96:99:91:2e:3d:71:c8:4c:48:28:16: 2c:8a:7a:5a:f8:0b:8c:f2:0b:0a:38:f1:8b:c5:a7:c7:0f:15: 1e:a9:80:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjUwNTAzMDIyODM5WhcNMjUwNTEwMDIyODM5WjAYMRYwFAYD VQQDEw02ODE1N2Y1Ny0yOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8vilpsw80b0LZzTxhaqg98B8TcVpC1cAvHMKw3UwxF0Cd4ZRREv4oE0CoGy GoWl09VhABoNzK0GnPRvyrQjQDDsXr5d4DYne4Pi8dyz30j4h4JzwW4Pn10+MRI4 l7aKObGhqzu4tujY9/Dn0ynItI7myJcKeZoRIGJE+ZKxo/nznS7l1Nj2XGYSkYQu apN9kH0xiYAwP+0zelZgC+NhWUZ+wYXCDMKGs0uhhowz4sqlRP0cmRlOAyNHKTlB Q5wqrUb3+sB2zrhCnTU3cRzfIi/uGjPL6tAX6Pbb3YkGtLy+B2SJYYSxeripreTU uh0f3aEvlcigi6t4CRTEdr+bWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLD36V5W ZwFikZKXBVE/6++K8hF+MB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA0oQ2uQ3thXFcWCL92VL3Jhk1t5RFY+5u0TmeGC8Avr51ANtkImjX stP7UflWgeII8fJUYOkkP8XMuKBDqICjz+o+35IHrsau2jXw5xqmv3hcVIKRdY9m zXVat0OWtJOLNcu6vm3kPA7SdcqsF71kunT23vXjZrtRPZNce0TPzd3fLgdQlKqf oQ4bNr4rbf7iAHJ2pruXVsIY7Gi8Wn1n5ozYhU2R0TDXjDSfwLUkR2847Uz16Xqw +KjeEqmxW1hPnLkKe8WAERr74MvVtKwoF/PGoqTVB9kR8uehkH9zlpmRLj1xyExI KBYsinpa+AuM8gsKOPGLxafHDxUeqYB9 -----END CERTIFICATE-----Generated at Sun May 4 02:12:59 2025 by rpki-client