$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: feprZpr+tlfyJBqOwKZ2IJr5EGGK2wbbinBr/vZY7yc= Subject key identifier: 9A:95:89:39:14:EE:1B:85:B5:81:2F:76:F2:95:56:89:BD:FD:01:72 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 0544 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 0537 Signing time: Fri 22 Aug 2025 23:43:46 +0000 Manifest this update: Fri 22 Aug 2025 23:43:46 +0000 Manifest next update: Fri 29 Aug 2025 23:43:46 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: 731VH3B3Pi/9YahA7q/7npcCDRYJnYaNPgMuscxSIaA=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: Qi+WEKvtCWtvGFWFUb38yBqHoAd83mtV7+scTOUOMc4=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: aLricGiGlyJJZTbRrMECo3zkg40wJti6wIrN+dUyP7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1348 (0x544) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Aug 22 23:43:46 2025 GMT Not After : Aug 29 23:43:46 2025 GMT Subject: CN=68a900b2-dc06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:89:19:80:82:87:51:d2:ad:a3:76:1c:b6:3e: d3:01:95:c6:7e:f0:44:d6:30:b2:a7:f2:b1:8f:d7: 28:b5:c7:47:46:7e:d2:a9:f0:60:4f:56:8f:5f:6e: 52:95:9a:38:eb:88:7d:97:c3:29:6a:24:fe:80:ac: b2:80:b8:6c:9b:ef:2b:9e:57:d3:cb:2a:05:02:47: 13:7e:5c:d5:59:48:8b:34:78:31:90:aa:6f:c4:d6: 91:10:d6:b3:a7:fd:f6:41:ca:3e:a6:08:c1:af:f5: 4e:f6:65:a9:6d:63:5b:9c:dc:9b:cd:f6:e8:e5:94: 3a:be:2c:bf:b3:fc:7a:b8:d6:a8:d8:cb:c3:69:f5: 0d:28:83:64:4a:db:3a:0b:ac:72:c9:4b:04:a5:66: b9:33:22:82:80:75:ae:55:b9:88:a6:8d:cc:63:9b: 18:7b:c0:07:de:cc:b7:69:14:64:fe:ec:4f:cc:ce: 79:8b:69:07:e2:cf:16:34:4c:6b:84:e6:00:ae:d1: 4c:53:8b:53:ae:a1:b4:31:a4:a3:79:ef:b6:24:82: 80:2e:28:d9:e4:0b:67:97:ba:a4:bf:58:86:9c:10: 6d:a0:57:bd:16:c4:05:9d:cf:3e:0d:a9:ea:11:07: 24:ff:91:75:5c:11:07:b5:97:2f:06:4a:fe:9c:a8: b1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:95:89:39:14:EE:1B:85:B5:81:2F:76:F2:95:56:89:BD:FD:01:72 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:07:6f:b9:85:da:d4:b9:32:aa:88:aa:8a:06:db:ab:d3:47: 75:4e:fa:60:03:e0:e3:4a:fc:88:35:ba:e9:a4:95:1b:ad:1a: d2:07:67:53:75:2e:89:2e:d8:52:62:1e:4b:2d:06:96:65:5f: 17:24:8a:2d:2b:6f:76:41:5a:52:39:4d:2b:85:65:1f:64:21: aa:dd:a0:ab:fb:bd:cb:20:8a:7a:7c:6d:67:d7:84:be:47:4c: 87:21:03:ff:c8:4e:cc:c5:35:b6:c1:ed:71:00:57:83:d0:a4: d2:33:93:bf:c7:01:a3:28:2a:10:7b:b0:d2:72:af:36:57:dd: 98:b4:c6:7f:cc:87:03:b5:71:7d:25:13:71:18:12:b5:d9:95: 7c:e7:d1:b4:25:8e:8a:f7:e6:ce:8d:b7:91:85:fb:85:b5:a0: 48:8c:26:2a:3d:29:22:57:44:de:bf:77:fb:f7:7b:f3:66:e7: 7c:b6:63:48:ee:0c:a4:fa:ef:82:2b:9b:de:9b:fb:02:b5:dd: 56:6e:85:b2:6c:d6:74:94:c7:4f:02:b2:5d:a9:86:64:0c:3a: c7:90:66:58:b6:dd:95:ed:47:1e:83:11:2d:8f:af:d0:d4:df: 61:5c:72:ce:74:f5:8c:69:6e:b7:ae:58:2f:68:36:62:5a:e8: 26:c9:4c:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUwODIyMjM0MzQ2WhcNMjUwODI5MjM0MzQ2WjAYMRYwFAYD VQQDEw02OGE5MDBiMi1kYzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYkZgIKHUdKto3Yctj7TAZXGfvBE1jCyp/Kxj9cotcdHRn7SqfBgT1aPX25S lZo464h9l8MpaiT+gKyygLhsm+8rnlfTyyoFAkcTflzVWUiLNHgxkKpvxNaRENaz p/32Qco+pgjBr/VO9mWpbWNbnNybzfbo5ZQ6viy/s/x6uNao2MvDafUNKINkSts6 C6xyyUsEpWa5MyKCgHWuVbmIpo3MY5sYe8AH3sy3aRRk/uxPzM55i2kH4s8WNExr hOYArtFMU4tTrqG0MaSjee+2JIKALijZ5Atnl7qkv1iGnBBtoFe9FsQFnc8+Danq EQck/5F1XBEHtZcvBkr+nKixsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqViTkU 7huFtYEvdvKVVom9/QFyMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApB2+5hdrUuTKqiKqKBtur00d1TvpgA+DjSvyINbrppJUbrRrSB2dT dS6JLthSYh5LLQaWZV8XJIotK292QVpSOU0rhWUfZCGq3aCr+73LIIp6fG1n14S+ R0yHIQP/yE7MxTW2we1xAFeD0KTSM5O/xwGjKCoQe7DScq82V92YtMZ/zIcDtXF9 JRNxGBK12ZV859G0JY6K9+bOjbeRhfuFtaBIjCYqPSkiV0Tev3f793vzZud8tmNI 7gyk+u+CK5vem/sCtd1WboWybNZ0lMdPArJdqYZkDDrHkGZYtt2V7UcegxEtj6/Q 1N9hXHLOdPWMaW63rlgvaDZiWugmyUxG -----END CERTIFICATE-----Generated at Sun Aug 24 07:02:17 2025 by rpki-client