$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: LAriRaHaAim1y29+BWVKcROiUOPSgqUwp+n812xxapQ= Subject key identifier: A0:E2:DF:6F:BC:E1:E8:A1:47:37:57:FD:A0:3F:A9:2B:38:DB:52:10 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 0116 Signing time: Tue 13 May 2025 04:06:21 +0000 Manifest this update: Tue 13 May 2025 04:06:21 +0000 Manifest next update: Tue 20 May 2025 04:06:21 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: 3t7I23Dcvh0mo1rwl3+sl9oz2og0bq72OdDVJQHiMRw=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: May 13 04:06:21 2025 GMT Not After : May 20 04:06:21 2025 GMT Subject: CN=6822c53d-cc1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:f8:5f:f5:79:83:bf:8e:e6:d4:e1:e7:37: 86:4f:b1:9d:42:e8:2a:44:4d:4e:3d:06:39:96:35: ed:9f:04:fc:d6:61:33:68:94:46:bf:17:2c:7e:b0: 38:86:92:44:59:55:e0:b1:bf:2a:38:4c:aa:c6:32: 09:51:e4:d0:12:9d:9d:2d:c9:f2:0c:6e:02:9d:5d: 2d:db:90:76:8e:ae:c2:86:fa:ce:17:1a:b8:10:49: 88:fa:00:8a:1e:3a:74:a1:28:b2:d5:98:69:e3:1a: 21:39:ce:66:11:94:e4:3e:a6:19:7e:6b:55:4c:d8: f2:14:4e:81:db:8f:3e:b2:70:2e:d3:53:b6:4a:0b: 4c:2e:2b:50:46:d6:fb:4a:78:64:54:45:ad:38:6a: 43:ce:fa:2e:7c:0f:82:c6:01:8b:d2:e6:3d:71:99: 17:5c:e5:84:60:cb:ea:a3:a0:0b:05:da:61:c7:b3: 9a:04:65:2a:6d:ee:ba:a8:9b:66:19:82:41:4d:58: b4:fb:df:08:b2:c2:9c:d6:06:d3:46:ba:80:92:33: 22:01:fd:19:e1:09:0f:1d:17:62:f7:b1:64:1b:aa: af:ee:ea:e1:6d:44:60:81:f4:59:f0:e1:6a:06:ed: f3:ee:e2:e8:08:eb:87:5b:af:64:49:f2:4b:9e:11: 3e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E2:DF:6F:BC:E1:E8:A1:47:37:57:FD:A0:3F:A9:2B:38:DB:52:10 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:a0:1e:6c:d7:96:f1:14:c8:30:58:5b:8a:4a:ac:00:6d:7b: f6:89:b8:20:8e:e7:58:a5:ba:68:3e:6d:fc:3a:59:19:2c:fd: 8e:77:fb:f6:65:1f:f9:4c:40:75:9f:88:78:9d:7d:12:78:3e: 67:5b:f2:3e:06:c5:62:97:32:d2:bb:8c:ed:a2:44:cd:39:d5: a0:22:2a:ca:db:a4:17:80:bc:e7:24:96:7a:8e:c7:b0:d8:61: 69:2a:4b:8d:36:c6:3d:c0:fe:11:bd:0d:81:36:79:2c:d4:ec: 17:63:5a:b2:0a:cc:08:61:43:a3:1e:b8:f5:df:75:fc:1d:72: 8e:8e:e3:a0:12:02:a5:32:4d:29:63:3f:61:34:ea:39:bf:e8: b4:68:6c:ab:b7:bf:57:15:8b:38:41:14:fd:01:32:8a:a4:3b: 6f:bc:c9:b2:9d:3e:c2:53:84:4f:7f:cb:11:d1:73:65:48:0d: 2e:8b:7b:e1:dc:df:2d:86:81:a2:7c:06:37:e3:ee:8c:9c:7a: 1b:63:89:44:f6:f0:06:b9:4f:b4:71:03:9d:4a:2c:ff:1f:ad: 10:0b:d5:2f:5a:bb:83:c4:84:c0:33:7a:05:bc:b2:96:18:e3: be:97:8a:a5:36:22:43:3b:84:27:f7:c1:3c:5b:9e:67:db:7b: 09:8f:fb:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwNTEzMDQwNjIxWhcNMjUwNTIwMDQwNjIxWjAYMRYwFAYD VQQDEw02ODIyYzUzZC1jYzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBD4X/V5g7+O5tTh5zeGT7GdQugqRE1OPQY5ljXtnwT81mEzaJRGvxcsfrA4 hpJEWVXgsb8qOEyqxjIJUeTQEp2dLcnyDG4CnV0t25B2jq7ChvrOFxq4EEmI+gCK Hjp0oSiy1Zhp4xohOc5mEZTkPqYZfmtVTNjyFE6B248+snAu01O2SgtMLitQRtb7 SnhkVEWtOGpDzvoufA+CxgGL0uY9cZkXXOWEYMvqo6ALBdphx7OaBGUqbe66qJtm GYJBTVi0+98IssKc1gbTRrqAkjMiAf0Z4QkPHRdi97FkG6qv7urhbURggfRZ8OFq Bu3z7uLoCOuHW69kSfJLnhE+AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDi32+8 4eihRzdX/aA/qSs421IQMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIoB5s15bxFMgwWFuKSqwAbXv2ibggjudYpbpoPm38OlkZLP2Od/v2 ZR/5TEB1n4h4nX0SeD5nW/I+BsVilzLSu4ztokTNOdWgIirK26QXgLznJJZ6jsew 2GFpKkuNNsY9wP4RvQ2BNnks1OwXY1qyCswIYUOjHrj133X8HXKOjuOgEgKlMk0p Yz9hNOo5v+i0aGyrt79XFYs4QRT9ATKKpDtvvMmynT7CU4RPf8sR0XNlSA0ui3vh 3N8thoGifAY34+6MnHobY4lE9vAGuU+0cQOdSiz/H60QC9UvWruDxITAM3oFvLKW GOO+l4qlNiJDO4Qn98E8W55n23sJj/t1 -----END CERTIFICATE-----Generated at Wed May 14 22:50:39 2025 by rpki-client