$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: qj7zaNVpVVdasPw/0SVGNTgFHn3m1YuOl5AT58divF8= Subject key identifier: 85:98:C9:3F:58:46:44:FA:8C:32:F4:79:27:69:69:97:3A:C1:A9:A6 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 052E Signing time: Wed 14 May 2025 23:34:42 +0000 Manifest this update: Wed 14 May 2025 23:34:42 +0000 Manifest next update: Wed 21 May 2025 23:34:42 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: klHXLjPltQqFEF0PTDRdeB2IPShdyiR/zWPFuHtU6B0=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: Tcq182MtoqsdyOozDsgfHLvUMXaT5QP5utPDgkahfpk=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 3aOOVCELLHnIfGs7sXEbEZF8NuxhRTtgWUNx37B19jo=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: V7oi3Gg2bJeyB31QQcYvbv2j/BrInSgpAZM4b3T1xkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1345 (0x541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: May 14 23:34:42 2025 GMT Not After : May 21 23:34:42 2025 GMT Subject: CN=68252892-a2ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:19:bf:36:71:93:b5:e9:69:b0:ce:81:44:a3: 47:00:fb:0b:eb:88:af:55:f5:e9:9c:44:de:3f:50: f5:a5:1f:18:4f:24:45:9e:e5:a9:97:4e:59:5a:fe: 02:fd:b5:07:0f:0c:81:78:b1:3d:1f:8d:47:cd:89: 05:b8:c0:6c:5d:a2:1b:0a:d0:27:14:9c:53:f6:b5: fc:6e:9e:17:f0:a3:a2:ec:88:b8:5c:f8:fa:fd:52: df:24:43:e8:68:b3:28:96:5b:8c:a2:67:22:6d:b6: b2:db:dd:41:26:6c:a0:fa:29:b7:4e:56:48:7c:a2: 39:5e:f3:0a:25:6e:d8:9a:60:b9:f2:f3:e4:d3:33: bc:82:9b:3d:b7:5e:24:86:be:fa:4f:bc:45:b0:d5: d2:12:37:46:92:2a:95:d8:b3:e7:7e:6d:5c:0b:2d: 2a:d2:71:49:ab:ea:6e:98:2b:f4:e0:5f:c8:c3:a0: 7e:68:4a:35:7e:2b:33:cd:f7:d4:b6:1f:f0:d9:52: 61:09:6a:8c:19:85:f8:ad:f4:5d:92:87:e8:f3:c1: df:49:1f:23:0d:41:80:95:a4:94:11:23:63:bf:e9: 0a:02:40:92:f7:64:b1:e3:2e:08:09:5f:53:7a:c0: e6:d9:ff:ff:28:0f:a8:76:01:d1:a2:8a:76:11:df: fe:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:98:C9:3F:58:46:44:FA:8C:32:F4:79:27:69:69:97:3A:C1:A9:A6 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:bb:66:bb:1f:a9:50:7c:0c:15:8b:99:7f:e9:1a:9f:57:ec: 1f:a6:46:59:62:13:f7:95:b2:1a:a0:85:10:01:32:18:29:ca: 56:0e:e7:d6:02:58:eb:41:96:ac:34:97:71:d3:c8:ae:32:42: 64:d9:b3:af:7b:16:b1:1b:da:70:36:64:24:e2:4d:33:f9:a1: e9:00:12:5f:ba:da:02:81:31:46:41:d5:80:83:8e:ba:d8:d0: 28:58:c8:4c:99:6f:d1:5e:51:2b:b2:0a:8a:ed:2a:93:d9:fe: 05:3e:c9:0d:0a:d5:81:c2:27:66:bc:62:44:06:13:05:87:0a: ce:33:6f:a8:2f:03:2f:64:8b:e3:8a:e1:e9:17:dd:73:77:a9: 3e:1c:57:bb:a3:28:2d:ae:e7:79:bb:81:20:51:34:0c:9a:cf: 0d:21:72:9c:b9:db:14:56:9d:92:38:82:37:d2:a1:46:8d:52: b9:65:6f:0e:cc:60:44:68:ac:d1:53:a1:d1:52:55:05:f2:e1: c2:c6:a8:62:fe:89:ce:fc:f7:03:f6:98:b7:28:3c:74:17:b0: dc:fc:4c:72:a5:a4:ea:30:91:8a:84:b2:d4:bf:ff:a6:80:af: da:ca:0b:03:2f:a8:31:84:26:75:c6:32:22:97:41:9a:b5:b5: a6:b6:f4:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwNTE0MjMzNDQyWhcNMjUwNTIxMjMzNDQyWjAYMRYwFAYD VQQDEw02ODI1Mjg5Mi1hMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhm/NnGTtelpsM6BRKNHAPsL64ivVfXpnETeP1D1pR8YTyRFnuWpl05ZWv4C /bUHDwyBeLE9H41HzYkFuMBsXaIbCtAnFJxT9rX8bp4X8KOi7Ii4XPj6/VLfJEPo aLMolluMomcibbay291BJmyg+im3TlZIfKI5XvMKJW7YmmC58vPk0zO8gps9t14k hr76T7xFsNXSEjdGkiqV2LPnfm1cCy0q0nFJq+pumCv04F/Iw6B+aEo1fiszzffU th/w2VJhCWqMGYX4rfRdkofo88HfSR8jDUGAlaSUESNjv+kKAkCS92Sx4y4ICV9T esDm2f//KA+odgHRoop2Ed/+XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWYyT9Y RkT6jDL0eSdpaZc6wammMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAu2a7H6lQfAwVi5l/6RqfV+wfpkZZYhP3lbIaoIUQATIYKcpWDufW AljrQZasNJdx08iuMkJk2bOvexaxG9pwNmQk4k0z+aHpABJfutoCgTFGQdWAg466 2NAoWMhMmW/RXlErsgqK7SqT2f4FPskNCtWBwidmvGJEBhMFhwrOM2+oLwMvZIvj iuHpF91zd6k+HFe7oygtrud5u4EgUTQMms8NIXKcudsUVp2SOII30qFGjVK5ZW8O zGBEaKzRU6HRUlUF8uHCxqhi/onO/PcD9pi3KDx0F7Dc/ExypaTqMJGKhLLUv/+m gK/aygsDL6gxhCZ1xjIil0GatbWmtvT4 -----END CERTIFICATE-----Generated at Fri May 16 07:20:14 2025 by rpki-client