$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: S+FQ8T5BjI8+ZASLDpK8cbuRrcWaFAcyGMgmCu1VzeI= Subject key identifier: 0F:3C:9A:D7:25:C8:BE:C8:67:B2:DF:50:29:C1:55:81:CF:E6:58:68 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: F9 Signing time: Thu 15 May 2025 04:36:10 +0000 Manifest this update: Thu 15 May 2025 04:36:09 +0000 Manifest next update: Thu 22 May 2025 04:36:09 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: FyNx2sHDC8gouoiU/rRszU7Bn2HKlFcnXLrkdNcr0iI=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: PzMfqv/JTphrRExc8y93sSocbbq7cPC2A1xhsVGan2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: May 15 04:36:09 2025 GMT Not After : May 22 04:36:09 2025 GMT Subject: CN=68256f39-ecc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fe:84:9b:4c:db:47:e9:97:01:44:0a:61:9c: 00:49:61:d6:d4:91:07:e3:2d:8e:57:b8:18:19:40: 20:e9:c3:9e:69:7c:45:04:6c:d4:3b:78:34:b2:ae: e4:67:b2:87:99:20:61:af:fb:33:20:8c:25:06:10: 3a:49:ad:d5:e8:fe:63:87:e9:96:b1:4b:bc:b9:dc: 0a:29:d1:7a:82:2a:93:b5:b0:cd:12:1d:ba:7d:35: 1b:7a:86:76:e0:58:aa:f8:b2:aa:cb:7a:f6:83:98: ea:5c:5f:2d:60:44:98:82:d6:d6:dc:85:d9:a3:32: 3c:93:88:29:f2:56:ed:ea:95:d0:28:ef:02:d0:35: 5c:9f:70:2c:df:e7:33:8d:e3:14:d3:1f:7c:0f:11: d9:71:43:be:0a:85:22:dc:0a:b2:84:f0:3f:af:5e: 83:90:9c:d1:ab:f4:69:e6:11:95:4d:70:bf:80:47: f7:f1:e1:e1:4a:fd:ac:2f:a9:9b:0e:de:3c:25:bb: de:9c:40:5c:c7:d4:d2:7c:80:5d:f0:31:ac:d3:9a: e8:02:cc:56:de:9a:fb:9c:be:93:2d:5b:29:d9:54: b6:ad:d5:aa:7b:c2:c0:18:f4:f9:76:b0:c8:20:f1: 03:b7:f6:be:f4:ed:0f:98:6c:76:7d:e8:6b:34:bf: f6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:3C:9A:D7:25:C8:BE:C8:67:B2:DF:50:29:C1:55:81:CF:E6:58:68 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:43:82:c8:5c:6c:1c:2c:3b:d1:b3:e5:b7:eb:07:3a:71:cd: df:68:bf:ca:d8:a7:c3:15:a0:cf:a9:b9:6b:61:c8:78:5c:7a: 94:41:f7:cc:f9:4f:7b:93:e0:6e:a3:ad:90:28:6e:5a:67:26: eb:5f:1d:2b:7b:bc:6a:77:6a:1e:70:7a:33:2a:a4:21:10:88: f6:9d:45:13:21:3c:76:ba:9f:cc:9e:77:a9:22:ba:e4:a5:3e: 6f:62:ae:bc:ad:ca:58:40:b2:9d:f8:71:a7:22:1e:62:d9:b6: b3:43:e4:dc:c0:ad:d0:0c:63:0c:61:96:0e:f8:5b:3f:a3:ad: 94:b0:44:91:5b:5b:2f:83:0f:03:6a:d8:d6:18:60:a1:5a:ac: 6c:1d:ce:ad:9c:c5:ac:32:7b:1b:ca:c4:ce:36:34:53:30:22: 85:dd:f7:46:7d:09:80:1a:cc:45:48:93:f3:90:65:c4:96:c6: 5c:78:b9:47:c0:3b:1b:47:51:50:d1:e4:9a:d9:c3:b4:f5:25: 4f:3a:98:a0:91:ac:b4:a5:5f:60:19:1d:cb:a6:69:b4:0e:fe: e4:b5:9e:b1:c1:c3:7d:62:b1:c7:36:05:12:87:41:0f:9c:5c: 8f:af:85:6e:b5:68:e0:18:c7:8b:db:48:8f:8f:84:a2:7a:3b: 1c:c5:96:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjUwNTE1MDQzNjA5WhcNMjUwNTIyMDQzNjA5WjAYMRYwFAYD VQQDEw02ODI1NmYzOS1lY2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmv6Em0zbR+mXAUQKYZwASWHW1JEH4y2OV7gYGUAg6cOeaXxFBGzUO3g0sq7k Z7KHmSBhr/szIIwlBhA6Sa3V6P5jh+mWsUu8udwKKdF6giqTtbDNEh26fTUbeoZ2 4Fiq+LKqy3r2g5jqXF8tYESYgtbW3IXZozI8k4gp8lbt6pXQKO8C0DVcn3As3+cz jeMU0x98DxHZcUO+CoUi3AqyhPA/r16DkJzRq/Rp5hGVTXC/gEf38eHhSv2sL6mb Dt48JbvenEBcx9TSfIBd8DGs05roAsxW3pr7nL6TLVsp2VS2rdWqe8LAGPT5drDI IPEDt/a+9O0PmGx2fehrNL/2oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA88mtcl yL7IZ7LfUCnBVYHP5lhoMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVQ4LIXGwcLDvRs+W36wc6cc3faL/K2KfDFaDPqblrYch4XHqUQffM +U97k+Buo62QKG5aZybrXx0re7xqd2oecHozKqQhEIj2nUUTITx2up/MnnepIrrk pT5vYq68rcpYQLKd+HGnIh5i2bazQ+TcwK3QDGMMYZYO+Fs/o62UsESRW1svgw8D atjWGGChWqxsHc6tnMWsMnsbysTONjRTMCKF3fdGfQmAGsxFSJPzkGXElsZceLlH wDsbR1FQ0eSa2cO09SVPOpigkay0pV9gGR3Lpmm0Dv7ktZ6xwcN9YrHHNgUSh0EP nFyPr4VutWjgGMeL20iPj4SiejscxZaX -----END CERTIFICATE-----Generated at Fri May 16 18:01:34 2025 by rpki-client