$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: p8vT74zLlYPPlTV1gbJ9aphGaWgn+wDSuDpY1fyjUEk= Subject key identifier: 94:AA:FF:D7:CC:54:8C:E0:CB:2F:AA:88:14:81:5A:24:FC:B4:A1:45 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0578 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 0562 Signing time: Fri 22 Aug 2025 23:34:15 +0000 Manifest this update: Fri 22 Aug 2025 23:34:14 +0000 Manifest next update: Fri 29 Aug 2025 23:34:14 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: q1Vd6G53lhv8f5ya9jx+l8RmMc88q1Gc/n1DYvZCjWc=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1400 (0x578) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Aug 22 23:34:14 2025 GMT Not After : Aug 29 23:34:14 2025 GMT Subject: CN=68a8fe76-e72e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:dc:7c:aa:ad:5e:db:01:09:cc:36:60:53:e5: 25:fe:d2:e3:e5:e6:dc:ca:a7:f0:aa:b0:f3:92:c0: bf:16:75:6f:fc:15:36:58:7d:e6:77:57:f5:b3:79: 5d:f1:26:59:ed:c9:37:17:42:c4:c8:04:f4:e5:70: 53:eb:64:cc:bc:16:4b:bb:31:ce:fe:80:39:76:58: ee:01:3b:9b:4c:61:f1:b5:9b:ce:7b:b1:fb:b7:b0: ad:19:68:f6:76:47:ce:d7:72:3e:ba:c8:7b:c9:f1: f3:e1:a7:dc:5b:19:29:c6:17:3e:14:b9:70:6b:24: bb:e4:0f:cb:42:19:95:8a:df:65:4c:3e:c7:8b:dc: d0:ae:7b:6c:0e:6a:31:1d:21:b3:dc:5a:a8:05:3e: 1d:85:ed:74:8f:54:0a:db:e8:1d:fe:69:e1:22:7d: 98:9a:70:91:7a:2b:39:ab:65:7b:33:ea:15:ec:85: f9:06:55:d8:e2:af:fd:c7:db:ec:32:ae:f8:0b:26: 6f:6a:c7:8e:9a:21:60:09:b5:81:0f:13:a3:f2:eb: 6d:32:e0:80:b6:50:8f:2a:46:47:41:b1:83:9d:b3: 9d:e1:b9:3a:13:c3:84:0f:d9:38:2a:7b:c1:0e:bf: 9c:e6:9f:22:c0:ef:dc:34:cb:26:f3:17:66:93:54: c5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AA:FF:D7:CC:54:8C:E0:CB:2F:AA:88:14:81:5A:24:FC:B4:A1:45 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:4d:44:9c:6b:19:eb:6d:aa:00:3f:48:c8:c5:87:b1:2b:ba: 14:aa:27:ab:2c:53:03:de:d2:51:d8:21:f3:68:70:3a:ad:9c: f8:ca:ce:d1:74:ea:19:31:ea:8f:38:07:64:aa:77:fe:8a:84: 65:b6:d6:6b:83:d6:d4:6c:c9:cf:40:7a:be:95:5c:af:32:af: 24:ba:ca:06:bd:f4:75:36:b6:9b:93:a1:46:e8:e6:63:7b:ba: b4:fd:da:0f:fa:67:33:24:49:35:ef:ad:a9:00:35:15:7e:ec: 99:d7:37:b0:27:51:99:ef:1c:f7:b8:ee:e5:a8:95:c4:0b:4d: 45:0d:74:a6:ef:1a:ad:b6:f4:47:5d:25:89:a2:5d:76:c8:9a: f7:99:12:a6:3d:0c:e0:c4:ed:52:d3:c4:a4:71:57:31:94:e7: 4e:5c:27:5f:9a:31:71:1d:c4:0c:82:ce:48:5d:d2:7d:c7:36: 8c:de:11:48:45:2c:f7:18:4d:8c:17:dd:78:52:97:a5:51:0f: a5:05:ca:ac:92:0b:4c:de:b3:2d:8e:66:cb:27:b1:24:d5:b0: be:36:09:85:59:31:43:ee:c0:ba:37:b5:a3:97:f7:cb:b9:fe: bf:5e:55:f5:24:94:9b:6a:40:0e:28:8b:bf:9d:bd:e6:39:6e: 11:7a:a9:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwODIyMjMzNDE0WhcNMjUwODI5MjMzNDE0WjAYMRYwFAYD VQQDEw02OGE4ZmU3Ni1lNzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydx8qq1e2wEJzDZgU+Ul/tLj5ebcyqfwqrDzksC/FnVv/BU2WH3md1f1s3ld 8SZZ7ck3F0LEyAT05XBT62TMvBZLuzHO/oA5dljuATubTGHxtZvOe7H7t7CtGWj2 dkfO13I+ush7yfHz4afcWxkpxhc+FLlwayS75A/LQhmVit9lTD7Hi9zQrntsDmox HSGz3FqoBT4dhe10j1QK2+gd/mnhIn2YmnCReis5q2V7M+oV7IX5BlXY4q/9x9vs Mq74CyZvaseOmiFgCbWBDxOj8uttMuCAtlCPKkZHQbGDnbOd4bk6E8OED9k4KnvB Dr+c5p8iwO/cNMsm8xdmk1TFFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSq/9fM VIzgyy+qiBSBWiT8tKFFMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeTUScaxnrbaoAP0jIxYexK7oUqierLFMD3tJR2CHzaHA6rZz4ys7R dOoZMeqPOAdkqnf+ioRlttZrg9bUbMnPQHq+lVyvMq8kusoGvfR1Nrabk6FG6OZj e7q0/doP+mczJEk1762pADUVfuyZ1zewJ1GZ7xz3uO7lqJXEC01FDXSm7xqttvRH XSWJol12yJr3mRKmPQzgxO1S08SkcVcxlOdOXCdfmjFxHcQMgs5IXdJ9xzaM3hFI RSz3GE2MF914UpelUQ+lBcqskgtM3rMtjmbLJ7Ek1bC+NgmFWTFD7sC6N7Wjl/fL uf6/XlX1JJSbakAOKIu/nb3mOW4ReqkT -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:38 2025 by rpki-client