$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: VieHWbwKR/Q6OB36dZezb1X647T2hBv9AkL1fYKCvCk= Subject key identifier: 09:76:3D:BD:72:C9:D2:55:F0:08:04:DC:9E:BE:43:B4:05:44:7B:10 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 05 Signing time: Sun 11 May 2025 06:53:51 +0000 Manifest this update: Sun 11 May 2025 06:53:51 +0000 Manifest next update: Sun 18 May 2025 06:53:51 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: v0yFkflutqbUuwY/6fbossi9Jekn8jc/WrL10o2ZO7U=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: May 11 06:53:51 2025 GMT Not After : May 18 06:53:51 2025 GMT Subject: CN=6820497f-e415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a1:7f:50:5f:d6:8d:53:65:ea:bd:13:a5:42: 81:7d:06:eb:3e:b0:ed:48:73:51:11:e9:85:ec:b0: 82:0c:6e:a2:50:5b:6e:4a:ed:e7:ec:e5:ab:3a:7e: 5a:42:0e:16:a2:32:65:04:c2:f2:a0:c9:95:da:fa: bb:bb:4e:45:b8:00:b8:eb:30:59:bc:6a:5d:9c:a4: 90:5f:13:2b:88:9b:b7:a6:50:11:1c:e6:81:22:e1: 27:56:03:02:08:c5:bd:d3:81:2f:41:ad:4a:db:8e: 85:ea:17:07:17:d9:62:4f:6d:9f:d0:91:15:94:45: 04:f8:7c:da:7f:d9:13:1b:47:f3:41:ad:72:09:b9: d2:0b:43:78:f4:de:60:21:c8:d8:72:9f:ef:06:f7: 76:37:96:4c:df:e8:aa:b6:fc:7d:b6:4b:df:8d:2a: ef:6f:f7:4e:d7:a2:00:4b:22:90:c6:83:98:89:bb: 82:19:d4:c8:9f:48:a6:29:28:e6:ac:e9:9b:79:a8: 78:17:a5:69:b9:bb:5d:cc:34:c8:fb:2c:60:69:04: 0a:f6:93:84:36:b9:1c:4b:f9:f8:e1:ff:1a:62:6f: 4e:29:10:a8:63:1c:61:24:ed:f9:b5:ad:cb:b9:a4: a8:56:83:c8:a1:a2:89:d5:92:fc:4c:fc:37:2b:4b: b2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:76:3D:BD:72:C9:D2:55:F0:08:04:DC:9E:BE:43:B4:05:44:7B:10 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e0:a7:69:91:fc:77:0a:d3:65:cf:5d:41:5b:d9:ae:03:ff: bb:f0:3e:d0:4f:5a:21:c6:f4:53:0f:11:0b:95:df:44:72:42: b8:08:f7:09:8f:d9:34:33:eb:19:09:79:f6:57:a7:c9:7b:c2: d5:e7:f0:7e:27:42:11:d2:59:fd:97:ee:cf:9f:60:01:73:c9: bf:35:c8:96:64:ed:b1:22:2d:d9:7f:1c:31:77:12:96:7d:c5: 90:9d:d4:b5:b7:9c:34:14:4a:1c:5b:2f:58:0d:09:ae:dd:56: ab:85:b2:b6:43:c6:00:25:20:20:c6:86:ea:58:4d:7e:ce:12: 05:33:f8:4e:fb:06:4a:f1:62:b2:fd:3b:e5:3b:1c:39:4e:93: 26:fc:f1:09:09:b2:62:0d:b7:0c:5a:97:ba:b0:25:15:ff:86: c2:b1:e2:30:62:26:69:ee:aa:8b:21:85:1e:44:3d:68:3d:b9: 9c:61:4a:39:ad:bb:f0:c7:f5:ce:50:ba:c8:82:89:c8:62:f4: b8:60:21:df:9a:84:dd:7e:95:e0:63:71:88:e7:ae:51:6c:db: d5:cf:12:68:ca:e7:e4:bc:58:40:80:df:47:3e:89:1c:e3:3b: 09:27:5a:57:aa:a0:6e:23:20:bb:00:41:23:fb:82:f2:b4:2c: 30:af:e7:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTA1MTEwNjUzNTFaFw0yNTA1MTgwNjUzNTFaMBgxFjAUBgNV BAMTDTY4MjA0OTdmLWU0MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQoX9QX9aNU2XqvROlQoF9Bus+sO1Ic1ER6YXssIIMbqJQW25K7efs5as6flpC DhaiMmUEwvKgyZXa+ru7TkW4ALjrMFm8al2cpJBfEyuIm7emUBEc5oEi4SdWAwII xb3TgS9BrUrbjoXqFwcX2WJPbZ/QkRWURQT4fNp/2RMbR/NBrXIJudILQ3j03mAh yNhyn+8G93Y3lkzf6Kq2/H22S9+NKu9v907XogBLIpDGg5iJu4IZ1MifSKYpKOas 6Zt5qHgXpWm5u13MNMj7LGBpBAr2k4Q2uRxL+fjh/xpib04pEKhjHGEk7fm1rcu5 pKhWg8ihoonVkvxM/DcrS7KlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCXY9vXLJ 0lXwCATcnr5DtAVEexAwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD/gp2mR/HcK02XPXUFb2a4D/7vwPtBPWiHG9FMPEQuV30RyQrgI9wmP 2TQz6xkJefZXp8l7wtXn8H4nQhHSWf2X7s+fYAFzyb81yJZk7bEiLdl/HDF3EpZ9 xZCd1LW3nDQUShxbL1gNCa7dVquFsrZDxgAlICDGhupYTX7OEgUz+E77BkrxYrL9 O+U7HDlOkyb88QkJsmINtwxal7qwJRX/hsKx4jBiJmnuqoshhR5EPWg9uZxhSjmt u/DH9c5QusiCichi9LhgId+ahN1+leBjcYjnrlFs29XPEmjK5+S8WECA30c+iRzj OwknWleqoG4jILsAQSP7gvK0LDCv53g= -----END CERTIFICATE-----Generated at Mon May 12 04:26:10 2025 by rpki-client