$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft File: U2v43c6AJmc3j0e9SVSpC3xwCcE.mft (raw, json) Hash identifier: 7Rvkpv0kvEvgnFGn25xciFmpN5YRhnvk/Gc8tej05w0= Subject key identifier: 88:3C:23:2D:35:BA:1C:90:8D:57:3D:9C:89:F0:1D:69:A1:C6:1A:7A Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft Manifest number: E5 Signing time: Tue 01 Jul 2025 05:57:54 +0000 Manifest this update: Tue 01 Jul 2025 05:57:53 +0000 Manifest next update: Tue 08 Jul 2025 05:57:53 +0000 Files and hashes: 1: U2v43c6AJmc3j0e9SVSpC3xwCcE.crl (hash: DLZIwBNkOiZJDGvWpy8tQv/dhkS7ZMsZsHd/MODPUKk=) 2: D8346320F7A011EE8BE8843BC4F9AE02.roa (hash: w5ofhzUzRvCot65WQ4cidA6AcgZbPr0ZDlGiXy64td8=) 3: FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa (hash: G4iwG5XMEp5g2eV1gP3t6eKMuKxcRTnnbvUBF3nUwk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849, serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Validity Not Before: Jul 1 05:57:53 2025 GMT Not After : Jul 8 05:57:53 2025 GMT Subject: CN=686378e1-f427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2e:77:8a:78:d6:b8:6a:85:28:08:9e:90:98: d0:77:42:a4:86:b4:26:50:26:4f:42:1a:9e:91:a4: 9a:39:5a:71:9f:07:92:76:dc:48:a0:1a:20:4f:40: 56:aa:dd:e6:a1:7d:0e:5b:0e:27:00:6a:32:38:76: 9f:4f:71:c1:76:ee:12:f3:59:cf:fb:f2:91:3f:f4: 7c:f9:53:7e:06:a3:60:c1:a8:51:68:2e:a5:69:49: 28:79:20:1d:f2:88:95:53:73:75:ca:cc:cb:1f:a0: 3b:09:dc:80:99:8d:84:c2:ec:4a:06:88:59:80:da: a4:e2:26:42:57:67:d3:e9:1f:d3:59:93:15:7b:ae: f2:c9:4d:11:94:09:31:ce:2e:c6:fc:02:49:9e:f5: 46:4b:ca:65:dc:3d:f8:0e:b8:96:df:45:20:00:10: 0c:0e:d2:3b:4f:9a:43:c8:d3:76:b0:3e:11:39:f7: 42:d7:45:55:b1:f7:44:dc:67:94:4f:f2:24:06:1b: 7a:8e:73:78:a7:96:54:4f:93:63:f9:5e:47:e4:6c: 52:f0:00:5a:2e:44:5a:3a:8c:9e:81:85:42:cd:cb: fc:31:85:4c:89:1c:21:85:54:33:2a:41:e8:d3:b4: 30:59:9b:e9:d6:a9:b7:ac:7d:95:91:16:f9:b4:3a: 45:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3C:23:2D:35:BA:1C:90:8D:57:3D:9C:89:F0:1D:69:A1:C6:1A:7A X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:14:ac:88:6c:9c:a4:33:fe:0e:bd:75:b5:12:71:ac:0e:90: 9d:62:7f:e1:89:a4:2a:b7:22:5c:a4:f1:06:99:3c:0e:8c:6e: cd:24:dc:bf:cb:ba:90:7d:d8:8d:5e:7b:30:85:c7:39:e7:b4: 47:c9:63:5c:6b:21:84:45:8e:07:96:72:1c:3b:ef:24:11:41: 50:18:8c:85:2a:12:53:b9:c5:28:bb:6e:2a:ce:c6:9d:1f:8a: ca:59:6f:74:cf:16:0a:2e:b4:09:54:b2:40:15:f4:2e:6d:03: cf:0a:0c:67:90:ac:65:47:82:36:09:7b:db:5f:0c:1d:3d:5b: 7a:03:42:16:9e:ed:7b:eb:45:aa:76:6a:48:7a:de:dd:28:28: 6e:90:57:e4:5e:e5:8f:e8:01:94:c6:24:55:cb:fb:56:71:fb: 02:4b:98:1d:cf:08:64:21:2b:d1:26:88:b0:47:a7:9f:20:fb: 12:4c:6a:c2:43:7d:d4:02:b8:0e:ba:17:f7:ac:4d:4a:8a:29: c2:7d:92:85:3d:86:10:ab:92:87:10:c3:31:44:31:97:3f:31: 89:16:d0:fb:e5:76:a2:82:16:71:e5:a2:1d:81:40:46:c4:a4: ec:1d:d8:63:e8:a4:28:33:ba:26:19:a5:cb:b5:49:fa:d6:63: 2c:08:a0:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4NDkxMTAvBgNVBAUTKDUzNkJGOEREQ0U4MDI2NjczNzhGNDdCRDQ5NTRBOTBC N0M3MDA5QzEwHhcNMjUwNzAxMDU1NzUzWhcNMjUwNzA4MDU1NzUzWjAYMRYwFAYD VQQDEw02ODYzNzhlMS1mNDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1i53injWuGqFKAiekJjQd0KkhrQmUCZPQhqekaSaOVpxnweSdtxIoBogT0BW qt3moX0OWw4nAGoyOHafT3HBdu4S81nP+/KRP/R8+VN+BqNgwahRaC6laUkoeSAd 8oiVU3N1yszLH6A7CdyAmY2EwuxKBohZgNqk4iZCV2fT6R/TWZMVe67yyU0RlAkx zi7G/AJJnvVGS8pl3D34DriW30UgABAMDtI7T5pDyNN2sD4ROfdC10VVsfdE3GeU T/IkBht6jnN4p5ZUT5Nj+V5H5GxS8ABaLkRaOoyegYVCzcv8MYVMiRwhhVQzKkHo 07QwWZvp1qm3rH2VkRb5tDpFZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg8Iy01 uhyQjVc9nInwHWmhxhp6MB8GA1UdIwQYMBaAFFNr+N3OgCZnN49HvUlUqQt8cAnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTg0OS9EQkFEMzg0RUY3 OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUptYzNqMGU5U1ZTcEMzeHdD Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0NjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTg0OS9EQkFEMzg0RUY3OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUpt YzNqMGU5U1ZTcEMzeHdDY0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdFKyIbJykM/4OvXW1EnGsDpCdYn/hiaQqtyJcpPEGmTwOjG7NJNy/ y7qQfdiNXnswhcc557RHyWNcayGERY4HlnIcO+8kEUFQGIyFKhJTucUou24qzsad H4rKWW90zxYKLrQJVLJAFfQubQPPCgxnkKxlR4I2CXvbXwwdPVt6A0IWnu1760Wq dmpIet7dKChukFfkXuWP6AGUxiRVy/tWcfsCS5gdzwhkISvRJoiwR6efIPsSTGrC Q33UArgOuhf3rE1KiinCfZKFPYYQq5KHEMMxRDGXPzGJFtD75XaighZx5aIdgUBG xKTsHdhj6KQoM7omGaXLtUn61mMsCKCF -----END CERTIFICATE-----Generated at Wed Jul 2 11:34:24 2025 by rpki-client