$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft File: UtXW_72oj1ReUbr5n32s4ZPAblc.mft (raw, json) Hash identifier: xN0b8BggS3J9K9uCZUuZzrvwTALyQyRiLTHPi3cV+Ww= Subject key identifier: 3D:F6:BE:82:21:A4:06:74:AF:EA:7A:9D:21:E2:6C:03:96:F5:CD:BB Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 07C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft Manifest number: 07BF Signing time: Sat 26 Apr 2025 20:50:01 +0000 Manifest this update: Sat 26 Apr 2025 20:50:01 +0000 Manifest next update: Sat 03 May 2025 20:50:01 +0000 Files and hashes: 1: UtXW_72oj1ReUbr5n32s4ZPAblc.crl (hash: nMZPmoi+3gBpg64eOLIm+31A4eo09rbCKvh0Qqj8K+k=) 2: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (hash: MKiDsu5ueGdBa9te8oknBkNBnhRi0o532gSyxE3s1JA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 20:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6, serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: Apr 26 20:50:01 2025 GMT Not After : May 3 20:50:01 2025 GMT Subject: CN=680d46f9-5ec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f5:b4:e6:92:88:bb:af:5b:00:6f:06:cc:69: a7:d3:9b:8d:bd:c9:b3:b9:51:66:11:57:12:ed:9e: 23:b9:51:09:3e:18:4d:ae:e7:c2:62:25:7a:4e:4d: f3:7f:81:39:c1:ae:80:c5:6a:6c:52:78:fc:9d:23: 3f:83:e3:03:32:9d:33:fa:12:de:15:27:1b:66:78: 76:d7:07:21:86:f8:07:dd:04:42:b2:18:8f:cb:2d: fa:d3:c8:23:4e:d3:9a:2b:e1:ba:4e:00:08:55:05: 4a:7b:bc:6e:29:4f:9f:52:59:16:62:7b:3f:1d:e7: 08:83:eb:6e:4e:9f:92:57:1e:64:96:a1:74:14:5c: 98:cd:4a:26:87:92:06:53:be:33:2a:42:a2:9b:df: 0b:4f:ea:c8:7e:0c:1f:8e:97:1f:ed:f0:45:02:e8: 6e:55:50:07:fd:fb:11:11:45:5a:4a:cf:4f:0a:39: fc:5b:90:a5:49:89:1b:b4:f0:8c:2f:be:64:d4:6c: e5:bf:b8:b7:0c:a3:66:4d:aa:aa:45:dd:f6:93:70: 17:63:e3:dd:f8:0d:b6:b4:06:4d:87:ca:9f:06:17: c8:4f:e8:7d:8c:0d:ed:8c:c6:3d:8a:60:16:72:b3: 2b:a6:da:5d:41:89:d5:17:44:76:1d:2f:b1:51:20: 3e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:F6:BE:82:21:A4:06:74:AF:EA:7A:9D:21:E2:6C:03:96:F5:CD:BB X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:88:80:3f:91:98:03:85:18:9b:1f:9a:55:f7:08:1d:1e:bc: 88:81:f8:15:8a:e8:69:d5:da:d9:f3:90:07:d8:59:50:2d:a3: 03:bb:cf:8d:e6:87:b0:30:1c:36:a2:ad:ce:e9:e0:cb:32:c3: 61:ed:61:6e:5c:e2:f6:49:e9:19:85:e8:4f:14:90:30:63:82: fb:30:78:79:89:2d:95:20:db:f4:02:b9:df:32:be:38:7f:31: 4b:1a:90:53:77:1b:67:f8:22:1a:75:14:dd:0b:14:31:9c:48: 86:14:e1:1b:07:49:fe:da:a1:a3:5e:0e:af:ba:be:40:94:32: 3c:6b:83:23:3b:43:e3:5d:57:f3:5e:2f:4c:77:e9:38:ad:bb: c0:c7:68:1d:5a:83:69:bf:1d:5e:83:4e:e2:64:83:f7:19:52: 57:64:3a:42:a5:f8:bd:9d:b0:bb:e8:7e:bc:92:82:8a:0a:31: 23:66:2d:1f:2b:b3:ac:a8:9f:95:3c:48:e6:40:1d:68:3b:68: ac:c4:08:4a:57:47:5f:ec:85:db:bf:c9:f1:94:59:84:38:8d: de:f8:83:6f:cf:bf:9d:6c:19:9a:19:73:81:44:ef:ec:83:fc: 79:55:da:c0:bf:3a:b2:7d:2f:c2:a2:b1:4c:12:80:8e:16:2c: 04:75:3b:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjUwNDI2MjA1MDAxWhcNMjUwNTAzMjA1MDAxWjAYMRYwFAYD VQQDEw02ODBkNDZmOS01ZWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfW05pKIu69bAG8GzGmn05uNvcmzuVFmEVcS7Z4juVEJPhhNrufCYiV6Tk3z f4E5wa6AxWpsUnj8nSM/g+MDMp0z+hLeFScbZnh21wchhvgH3QRCshiPyy3608gj TtOaK+G6TgAIVQVKe7xuKU+fUlkWYns/HecIg+tuTp+SVx5klqF0FFyYzUomh5IG U74zKkKim98LT+rIfgwfjpcf7fBFAuhuVVAH/fsREUVaSs9PCjn8W5ClSYkbtPCM L75k1Gzlv7i3DKNmTaqqRd32k3AXY+Pd+A22tAZNh8qfBhfIT+h9jA3tjMY9imAW crMrptpdQYnVF0R2HS+xUSA+1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD32voIh pAZ0r+p6nSHibAOW9c27MB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdGNi9FRDkzQ0VFOEYyQjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2ox UmVVYnI1bjMyczRaUEFibGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2iIA/kZgDhRibH5pV9wgdHryIgfgViuhp1drZ85AH2FlQLaMDu8+N 5oewMBw2oq3O6eDLMsNh7WFuXOL2SekZhehPFJAwY4L7MHh5iS2VINv0ArnfMr44 fzFLGpBTdxtn+CIadRTdCxQxnEiGFOEbB0n+2qGjXg6vur5AlDI8a4MjO0PjXVfz Xi9Md+k4rbvAx2gdWoNpvx1eg07iZIP3GVJXZDpCpfi9nbC76H68koKKCjEjZi0f K7OsqJ+VPEjmQB1oO2isxAhKV0df7IXbv8nxlFmEOI3e+INvz7+dbBmaGXOBRO/s g/x5VdrAvzqyfS/CorFMEoCOFiwEdTua -----END CERTIFICATE-----Generated at Mon Apr 28 04:29:22 2025 by rpki-client