$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: 0WUf80R7SwOeCHczaVzVvN8QVbWu5RHx9kuqB+ZW8iE= Subject key identifier: EB:E0:56:BF:B2:30:8E:55:38:BA:AB:7A:6F:3F:B3:17:1F:6B:AD:A4 Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 0FCF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 0FC8 Signing time: Thu 24 Apr 2025 15:45:13 +0000 Manifest this update: Thu 24 Apr 2025 15:45:12 +0000 Manifest next update: Thu 01 May 2025 15:45:12 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: cXi9Yyyx/8Ddl11oyplcenSIYDCjckjy71Mc9OFgwHk=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: OwotHwrsvHfL9c2xwdii3HVlS9hQiSq8fqoBsWtp67U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4047 (0xfcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: Apr 24 15:45:12 2025 GMT Not After : May 1 15:45:12 2025 GMT Subject: CN=680a5c88-dc34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c8:11:0e:67:08:56:a7:62:1e:d6:01:ab:90: 2b:3f:7f:dc:ae:d0:49:23:9d:eb:49:de:01:99:0c: 36:10:bf:89:81:19:f2:c3:39:cb:99:37:2c:38:a5: 2f:bc:ce:59:c6:75:5b:91:c2:7a:cb:99:bc:d3:e3: 15:e5:d3:95:63:03:f5:ee:73:5e:d9:b3:dd:52:dd: 60:db:51:a0:9f:90:ab:f9:e3:5b:35:66:f9:38:25: 76:77:25:d8:b9:98:f3:15:a3:5c:43:cd:38:0d:2c: 9f:b0:98:a9:f8:85:3c:b3:ca:d7:45:77:b5:7a:c5: c9:c6:64:e1:e1:c2:09:8e:0a:86:a8:3c:e1:7c:bd: 5e:95:28:4a:9e:6c:27:72:97:b3:fd:91:85:3a:35: ca:cf:10:09:7d:34:80:b8:c6:ed:e7:0b:58:86:a2: 01:fb:c3:f0:30:31:c4:2f:62:21:e4:ff:1a:c0:f8: f6:0b:f2:2b:16:07:03:7d:2d:91:4e:5a:8f:db:70: 20:3f:3c:d3:33:a6:a3:ab:04:36:56:ae:48:49:23: 09:7a:b9:ed:08:0a:96:88:9b:5d:5e:87:25:56:c4: 83:73:a8:b7:bc:f9:7d:b4:45:e5:e4:81:f9:45:fe: 9a:d6:cc:0c:9e:21:0e:9f:a4:75:14:a8:69:f0:ee: 0d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E0:56:BF:B2:30:8E:55:38:BA:AB:7A:6F:3F:B3:17:1F:6B:AD:A4 X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c0:55:b7:f2:5f:08:a6:9b:33:4b:b6:68:fa:f1:b7:cd:ef: 98:96:3a:76:c1:b3:71:47:34:07:61:9d:49:5c:93:74:fb:ab: ef:71:7d:e2:5e:38:2f:2b:d5:59:c6:57:d4:79:d1:69:51:54: 34:36:52:8e:a4:22:40:c1:c5:32:93:46:22:9c:00:5f:ff:67: 82:2c:36:7c:c9:70:36:44:5a:ab:2c:84:2c:34:af:ba:89:aa: 4d:ba:c9:e3:fd:d6:7c:f7:0e:5b:9b:45:29:ca:1f:10:fc:b8: 8c:62:1d:03:c5:95:07:a3:97:55:1a:a6:5a:f7:0a:58:6c:24: 3c:c5:5a:00:1d:79:55:92:2d:2a:e0:df:bf:17:05:a8:ff:ca: fb:eb:8f:d1:16:9b:85:bf:0b:e1:da:18:dc:1a:63:de:4a:0a: 6f:87:bb:8e:8f:5c:89:84:ba:9b:dd:24:29:9d:9e:78:d1:7b: 5b:5e:54:be:44:6c:08:e4:0f:4d:ff:df:ea:2c:93:cd:0a:1a: 55:6b:d1:41:1c:2d:a2:b8:3c:8f:f4:be:7d:a9:9e:6e:5a:b7: 36:ca:29:21:3c:a5:82:5d:c4:3e:4e:6b:41:0c:5a:a2:28:9d: 89:6b:be:b0:bd:d5:a8:d2:a7:28:e8:11:f3:f1:c2:58:c5:80: 56:fd:42:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjUwNDI0MTU0NTEyWhcNMjUwNTAxMTU0NTEyWjAYMRYwFAYD VQQDEw02ODBhNWM4OC1kYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMgRDmcIVqdiHtYBq5ArP3/crtBJI53rSd4BmQw2EL+JgRnywznLmTcsOKUv vM5ZxnVbkcJ6y5m80+MV5dOVYwP17nNe2bPdUt1g21Ggn5Cr+eNbNWb5OCV2dyXY uZjzFaNcQ804DSyfsJip+IU8s8rXRXe1esXJxmTh4cIJjgqGqDzhfL1elShKnmwn cpez/ZGFOjXKzxAJfTSAuMbt5wtYhqIB+8PwMDHEL2Ih5P8awPj2C/IrFgcDfS2R TlqP23AgPzzTM6ajqwQ2Vq5ISSMJerntCAqWiJtdXoclVsSDc6i3vPl9tEXl5IH5 Rf6a1swMniEOn6R1FKhp8O4NZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvgVr+y MI5VOLqrem8/sxcfa62kMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrwFW38l8IppszS7Zo+vG3ze+Yljp2wbNxRzQHYZ1JXJN0+6vvcX3i XjgvK9VZxlfUedFpUVQ0NlKOpCJAwcUyk0YinABf/2eCLDZ8yXA2RFqrLIQsNK+6 iapNusnj/dZ89w5bm0Upyh8Q/LiMYh0DxZUHo5dVGqZa9wpYbCQ8xVoAHXlVki0q 4N+/FwWo/8r764/RFpuFvwvh2hjcGmPeSgpvh7uOj1yJhLqb3SQpnZ540XtbXlS+ RGwI5A9N/9/qLJPNChpVa9FBHC2iuDyP9L59qZ5uWrc2yikhPKWCXcQ+TmtBDFqi KJ2Ja76wvdWo0qco6BHz8cJYxYBW/UKf -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:36 2025 by rpki-client