$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: beZSscmCwn+2WXVM6DblPa+8OX5R50m1GFx1m2pizps= Subject key identifier: 51:B3:45:C0:21:8A:6A:68:42:DA:22:E7:F8:90:15:16:7A:12:8C:B6 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 0111 Signing time: Thu 03 Jul 2025 05:09:06 +0000 Manifest this update: Thu 03 Jul 2025 05:09:05 +0000 Manifest next update: Thu 10 Jul 2025 05:09:05 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: n6pZsDoIReKXdJ55tGzwyAnzErrhR9kr6NJF6CLA3KY=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: PzMfqv/JTphrRExc8y93sSocbbq7cPC2A1xhsVGan2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Jul 3 05:09:05 2025 GMT Not After : Jul 10 05:09:05 2025 GMT Subject: CN=68661072-b8c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e9:19:11:4a:ad:bf:17:69:0a:f1:57:e3:05: ff:f6:4f:49:04:4c:29:5e:d6:3c:2c:1f:d7:51:fd: 49:9e:68:72:ee:28:bc:e8:fd:39:75:61:f9:41:fb: a1:ee:98:a4:f2:98:85:b3:4b:81:88:08:a6:84:94: 66:88:70:2e:44:89:8b:ee:90:5b:fa:72:10:44:23: 27:02:86:ee:d0:dd:34:f7:81:e2:5c:23:8f:d7:df: a5:b7:b8:f4:33:d8:a8:1f:bc:6e:79:d1:50:35:c5: 17:9a:52:d4:96:5a:ac:8f:aa:d9:06:e8:9a:30:43: ab:2f:61:b4:28:76:d4:ca:33:38:56:f4:f9:83:9d: 90:98:25:f3:4e:b9:ed:66:01:2a:3b:43:26:21:9a: c9:59:81:e8:a1:e6:2d:16:48:43:c1:49:3a:42:09: f5:19:c7:66:7c:99:e1:74:7a:cc:2c:8a:f4:0e:86: b6:c0:d7:0a:93:b4:c3:2c:91:df:34:eb:08:60:00: 80:bb:48:6e:55:15:5d:97:4e:25:e3:d4:49:de:51: e7:86:0b:fc:0c:5b:97:7c:f3:99:17:35:38:22:37: 2f:33:96:4c:ba:52:f2:1b:69:5c:e6:09:fb:9c:14: 24:9f:04:8a:91:46:23:b0:e8:1b:9a:62:ee:c3:9b: 92:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B3:45:C0:21:8A:6A:68:42:DA:22:E7:F8:90:15:16:7A:12:8C:B6 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:3e:48:dd:c2:0a:35:18:15:48:af:f9:81:dd:d5:ba:1f:01: ca:eb:5b:b7:f7:a2:15:c0:70:0a:a1:41:57:6f:9f:9b:83:04: 4d:ac:b6:70:d6:dd:f5:66:f9:b5:99:6e:e2:d4:18:1b:91:7b: 5f:56:31:6d:60:c1:5c:a9:ca:5d:c1:21:74:5f:98:6d:6d:ec: f1:28:b7:b6:b4:11:a0:48:87:af:c3:b7:59:3d:10:9c:a0:51: 0e:1b:de:2d:40:61:3b:8c:92:40:e8:d5:34:23:af:bb:9c:54: 25:4e:b4:fc:05:26:41:de:05:b3:2c:89:f5:98:97:79:fb:47: 28:ca:af:17:71:a4:77:9d:13:6d:6b:ca:89:9a:94:b5:37:02: 1b:17:9f:e6:53:0f:db:1b:70:62:fb:51:cd:4e:17:fc:4c:00: f5:79:bd:2b:47:45:57:83:61:e9:cd:17:35:af:29:1e:70:8f: 90:03:aa:bd:26:54:aa:2c:78:41:ce:1b:0c:b1:02:25:ef:ab: 42:e3:28:85:6b:79:c0:c9:34:79:2c:fb:09:60:2c:fb:cd:d1: d9:f9:d6:e8:ba:b8:6f:2c:cf:f5:85:75:b2:8d:e3:be:bc:6c: 84:20:3d:95:5e:41:22:39:ff:8b:8f:21:5f:8b:ab:31:31:3a: b4:a4:e4:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjUwNzAzMDUwOTA1WhcNMjUwNzEwMDUwOTA1WjAYMRYwFAYD VQQDEw02ODY2MTA3Mi1iOGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOkZEUqtvxdpCvFX4wX/9k9JBEwpXtY8LB/XUf1Jnmhy7ii86P05dWH5Qfuh 7pik8piFs0uBiAimhJRmiHAuRImL7pBb+nIQRCMnAobu0N0094HiXCOP19+lt7j0 M9ioH7xuedFQNcUXmlLUllqsj6rZBuiaMEOrL2G0KHbUyjM4VvT5g52QmCXzTrnt ZgEqO0MmIZrJWYHooeYtFkhDwUk6Qgn1GcdmfJnhdHrMLIr0Doa2wNcKk7TDLJHf NOsIYACAu0huVRVdl04l49RJ3lHnhgv8DFuXfPOZFzU4IjcvM5ZMulLyG2lc5gn7 nBQknwSKkUYjsOgbmmLuw5uS4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGzRcAh impoQtoi5/iQFRZ6Eoy2MB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArPkjdwgo1GBVIr/mB3dW6HwHK61u396IVwHAKoUFXb5+bgwRNrLZw 1t31Zvm1mW7i1BgbkXtfVjFtYMFcqcpdwSF0X5htbezxKLe2tBGgSIevw7dZPRCc oFEOG94tQGE7jJJA6NU0I6+7nFQlTrT8BSZB3gWzLIn1mJd5+0coyq8XcaR3nRNt a8qJmpS1NwIbF5/mUw/bG3Bi+1HNThf8TAD1eb0rR0VXg2HpzRc1rykecI+QA6q9 JlSqLHhBzhsMsQIl76tC4yiFa3nAyTR5LPsJYCz7zdHZ+dbourhvLM/1hXWyjeO+ vGyEID2VXkEiOf+LjyFfi6sxMTq0pOQx -----END CERTIFICATE-----Generated at Thu Jul 3 15:22:56 2025 by rpki-client