$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft File: U2v43c6AJmc3j0e9SVSpC3xwCcE.mft (raw, json) Hash identifier: GZys7qn9woLszy0iTQCrdnydEX11INx5UdECsb7ANoA= Subject key identifier: 36:0D:52:3C:BB:D3:81:1C:17:D2:95:EB:F0:98:66:D6:50:89:97:AF Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft Manifest number: CC Signing time: Sun 11 May 2025 04:32:11 +0000 Manifest this update: Sun 11 May 2025 04:32:10 +0000 Manifest next update: Sun 18 May 2025 04:32:10 +0000 Files and hashes: 1: U2v43c6AJmc3j0e9SVSpC3xwCcE.crl (hash: Ew8cld0ik4qQgiB/sJD2we34v02zk5cx2VE2HzK0QhM=) 2: D8346320F7A011EE8BE8843BC4F9AE02.roa (hash: w5ofhzUzRvCot65WQ4cidA6AcgZbPr0ZDlGiXy64td8=) 3: FA3B5DCAF7A011EEBAC1E03BC4F9AE02.roa (hash: G4iwG5XMEp5g2eV1gP3t6eKMuKxcRTnnbvUBF3nUwk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849, serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Validity Not Before: May 11 04:32:10 2025 GMT Not After : May 18 04:32:10 2025 GMT Subject: CN=6820284a-2417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a3:30:d7:35:dd:9c:06:14:2e:9b:05:f5:90: 36:e4:7a:64:c5:e2:3b:44:1f:c4:22:3a:5c:2e:ab: a6:5d:83:c2:84:2c:3f:82:ec:90:24:91:c7:86:fc: ea:d9:3e:93:4e:7a:d5:68:fe:63:35:de:52:eb:40: 61:b3:95:ce:a4:d0:58:23:a9:9b:27:b4:ab:c9:40: 5d:e5:17:a5:88:43:76:c7:60:33:74:f7:42:e2:b3: a4:b6:82:f6:d1:eb:76:b0:c8:68:01:07:55:1f:d4: 36:e3:7a:8e:ae:60:8a:34:dc:c1:49:d5:bb:3b:8a: 2c:2d:4d:c9:5f:15:b5:0a:89:df:15:69:30:c3:46: cb:dc:dc:ae:d5:6c:c6:48:c6:a3:4b:29:fe:6f:e5: 4f:71:ff:35:2a:29:f7:72:f1:1f:3c:03:86:02:8d: 28:57:7c:54:66:31:fe:47:6c:f0:83:cf:27:2d:d6: 90:80:dd:90:80:68:f0:01:50:a2:bf:8a:47:16:21: d5:ec:53:28:d5:e0:44:cd:cb:7e:8c:d5:41:b2:a5: a8:2e:d8:14:e3:43:3f:74:95:22:be:38:ec:31:42: 5f:cf:38:fd:31:d4:b9:15:e6:7f:68:11:4a:60:f9: e4:c1:56:64:7c:9d:16:39:a5:e2:0a:a7:9f:1a:19: 5c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:0D:52:3C:BB:D3:81:1C:17:D2:95:EB:F0:98:66:D6:50:89:97:AF X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d8:b6:92:c5:dd:7c:4a:b9:a5:25:91:95:2f:07:19:85:59: 90:87:af:f2:b6:6c:de:9a:99:fa:a0:e8:7b:dd:cc:ee:7b:78: c5:ac:b4:0b:8a:e7:cd:b0:5f:af:c7:fa:74:44:1f:c1:dd:47: 48:c0:d9:37:b9:36:67:9b:50:31:57:16:7d:14:ce:d1:c9:66: ec:4a:b9:40:fc:cd:1a:d1:20:2d:d4:58:90:ce:ee:3b:17:94: f2:a3:9b:96:d7:b9:6e:7a:37:6d:b6:f2:cf:00:e4:db:ed:16: e4:5f:fa:97:9f:88:07:67:32:f7:3c:31:2f:03:d0:6e:d9:1c: 11:2d:37:e0:7a:2a:6b:cb:69:86:86:17:05:d3:a8:16:a9:50: f7:aa:9c:18:4c:3c:18:69:56:6b:fc:1d:95:a2:6d:c2:f0:fa: 88:79:65:f3:c3:a3:b5:f0:33:82:f7:05:01:0c:63:64:61:ba: 0e:94:8e:d8:4f:b0:a2:c2:c6:68:7f:f8:9e:d3:a7:e4:c8:1c: 59:91:a9:26:77:56:56:42:7a:94:f8:77:39:54:0e:29:e0:a6: 4e:a9:f5:cc:57:44:95:a2:49:e3:e7:55:04:1e:35:dc:f3:c1: ba:51:5d:17:10:f0:96:9c:27:70:83:52:a7:50:6f:13:bd:8f: 2b:f4:8f:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4NDkxMTAvBgNVBAUTKDUzNkJGOEREQ0U4MDI2NjczNzhGNDdCRDQ5NTRBOTBC N0M3MDA5QzEwHhcNMjUwNTExMDQzMjEwWhcNMjUwNTE4MDQzMjEwWjAYMRYwFAYD VQQDEw02ODIwMjg0YS0yNDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6Mw1zXdnAYULpsF9ZA25HpkxeI7RB/EIjpcLqumXYPChCw/guyQJJHHhvzq 2T6TTnrVaP5jNd5S60Bhs5XOpNBYI6mbJ7SryUBd5ReliEN2x2AzdPdC4rOktoL2 0et2sMhoAQdVH9Q243qOrmCKNNzBSdW7O4osLU3JXxW1ConfFWkww0bL3Nyu1WzG SMajSyn+b+VPcf81Kin3cvEfPAOGAo0oV3xUZjH+R2zwg88nLdaQgN2QgGjwAVCi v4pHFiHV7FMo1eBEzct+jNVBsqWoLtgU40M/dJUivjjsMUJfzzj9MdS5FeZ/aBFK YPnkwVZkfJ0WOaXiCqefGhlcYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYNUjy7 04EcF9KV6/CYZtZQiZevMB8GA1UdIwQYMBaAFFNr+N3OgCZnN49HvUlUqQt8cAnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTg0OS9EQkFEMzg0RUY3 OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUptYzNqMGU5U1ZTcEMzeHdD Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0NjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTg0OS9EQkFEMzg0RUY3OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUpt YzNqMGU5U1ZTcEMzeHdDY0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa2LaSxd18SrmlJZGVLwcZhVmQh6/ytmzempn6oOh73czue3jFrLQL iufNsF+vx/p0RB/B3UdIwNk3uTZnm1AxVxZ9FM7RyWbsSrlA/M0a0SAt1FiQzu47 F5Tyo5uW17luejdttvLPAOTb7RbkX/qXn4gHZzL3PDEvA9Bu2RwRLTfgeipry2mG hhcF06gWqVD3qpwYTDwYaVZr/B2Vom3C8PqIeWXzw6O18DOC9wUBDGNkYboOlI7Y T7CiwsZof/ie06fkyBxZkakmd1ZWQnqU+Hc5VA4p4KZOqfXMV0SVoknj51UEHjXc 88G6UV0XEPCWnCdwg1KnUG8TvY8r9I9M -----END CERTIFICATE-----Generated at Sun May 11 14:44:00 2025 by rpki-client