$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: CKypjdpkdWEGhG32eaC/LQbhU8b53RXWEn/uCyzq6RQ= Subject key identifier: 1C:A9:3D:0D:81:10:50:85:03:7C:69:3C:78:DE:0E:6B:A6:98:96:AD Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 01CE Signing time: Thu 15 May 2025 02:21:25 +0000 Manifest this update: Thu 15 May 2025 02:21:25 +0000 Manifest next update: Thu 22 May 2025 02:21:25 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: 5gRU2U9x2sjok708UE+M3zWcGQqRgA1uUGNXaHrUOpE=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: May 15 02:21:25 2025 GMT Not After : May 22 02:21:25 2025 GMT Subject: CN=68254fa5-cc4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9c:34:6e:93:fb:6b:8c:cd:7d:8b:fc:1b:27: 9f:22:21:f6:a4:20:da:03:f6:36:d5:cf:0b:7a:c6: 8c:bf:cb:4e:f0:8a:11:11:3c:87:c4:0e:35:01:fc: 6f:17:32:19:3c:7e:0a:6d:5a:c7:86:e1:1b:3f:4e: 94:86:1a:8f:3f:8b:4f:c2:f4:cb:63:60:3a:93:21: aa:11:e1:65:b9:de:a5:80:94:58:40:76:fb:52:2b: 64:f2:3b:60:17:1b:86:ca:10:42:f3:47:68:a7:02: d6:a0:3c:8e:8a:f4:ad:79:58:01:08:03:75:6d:66: f5:51:3d:f6:28:39:65:91:ab:29:fd:ff:9e:56:d0: 1f:65:da:5d:36:34:53:42:9b:07:3f:ca:05:31:ed: 90:1d:bb:ac:fa:42:75:c4:04:2c:c5:df:3e:7d:a3: a9:d8:3e:be:ba:5d:65:93:93:09:b7:1d:60:67:e2: 27:de:ec:e9:89:96:22:e0:61:d7:a2:cf:9f:91:8a: 17:51:c7:2e:c2:0b:6d:d2:1d:01:27:54:47:8e:e7: 4d:1c:52:a1:8a:38:c0:a5:6a:59:09:6b:37:be:d6: 70:84:4c:1f:32:6a:db:ae:64:26:b1:3b:be:e8:51: ef:0e:05:9e:d0:bf:2f:37:aa:25:9d:d9:82:e0:91: 06:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A9:3D:0D:81:10:50:85:03:7C:69:3C:78:DE:0E:6B:A6:98:96:AD X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:9f:a9:75:13:ab:da:5f:a0:52:db:0e:65:1f:b7:34:63:dc: 97:e5:c2:84:d7:08:13:f5:0c:3a:f1:86:78:20:af:99:1d:74: f6:b4:8e:33:fb:1b:fb:f5:6a:52:72:89:e6:ba:e2:64:2e:79: 6d:79:9f:66:ed:3d:50:4a:6e:d7:6e:5e:ce:50:b1:8d:4e:4c: 92:38:07:d3:ee:87:48:42:ff:19:1e:00:0e:48:29:ab:b4:2a: f5:f2:17:35:91:03:05:22:f6:36:35:7e:20:45:3b:17:c0:bd: 5a:33:a8:fe:57:4a:99:71:0c:88:91:75:4a:16:fa:3b:aa:e3: d1:b6:5e:94:c6:b8:34:c7:2a:b0:cb:b5:8d:b2:86:d2:ae:ef: 9a:1e:bc:77:b4:54:6b:8d:d9:45:ec:2a:0e:35:b3:9c:91:75: c2:64:a9:6d:ea:2c:2f:ac:c1:6d:52:57:06:be:4c:98:3c:22: 4c:b8:fc:7f:49:cc:09:dd:1f:9f:81:a7:a4:fe:f7:03:0d:fe: 7d:51:de:4d:3e:27:1e:9b:de:39:83:09:92:f8:d7:8d:93:fd: 07:34:e0:b5:ce:89:cc:76:61:7d:e8:b2:14:ff:aa:a3:45:35: c8:17:8d:c8:7e:26:e0:c5:fc:11:c1:51:66:7e:9f:9f:db:01: 28:df:57:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUwNTE1MDIyMTI1WhcNMjUwNTIyMDIyMTI1WjAYMRYwFAYD VQQDEw02ODI1NGZhNS1jYzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJw0bpP7a4zNfYv8GyefIiH2pCDaA/Y21c8LesaMv8tO8IoRETyHxA41Afxv FzIZPH4KbVrHhuEbP06UhhqPP4tPwvTLY2A6kyGqEeFlud6lgJRYQHb7Uitk8jtg FxuGyhBC80dopwLWoDyOivSteVgBCAN1bWb1UT32KDllkasp/f+eVtAfZdpdNjRT QpsHP8oFMe2QHbus+kJ1xAQsxd8+faOp2D6+ul1lk5MJtx1gZ+In3uzpiZYi4GHX os+fkYoXUccuwgtt0h0BJ1RHjudNHFKhijjApWpZCWs3vtZwhEwfMmrbrmQmsTu+ 6FHvDgWe0L8vN6olndmC4JEG3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBypPQ2B EFCFA3xpPHjeDmummJatMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsn6l1E6vaX6BS2w5lH7c0Y9yX5cKE1wgT9Qw68YZ4IK+ZHXT2tI4z +xv79WpSconmuuJkLnlteZ9m7T1QSm7Xbl7OULGNTkySOAfT7odIQv8ZHgAOSCmr tCr18hc1kQMFIvY2NX4gRTsXwL1aM6j+V0qZcQyIkXVKFvo7quPRtl6Uxrg0xyqw y7WNsobSru+aHrx3tFRrjdlF7CoONbOckXXCZKlt6iwvrMFtUlcGvkyYPCJMuPx/ ScwJ3R+fgaek/vcDDf59Ud5NPicem945gwmS+NeNk/0HNOC1zonMdmF96LIU/6qj RTXIF43IfibgxfwRwVFmfp+f2wEo31cD -----END CERTIFICATE-----Generated at Fri May 16 09:56:07 2025 by rpki-client