$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: YdGY8sdY95q8e7zeqBma//QtU11NyeVJUPMrvH/Opno= Subject key identifier: CE:12:BB:DA:D9:2B:39:CA:54:1A:FC:13:39:47:65:12:00:C9:21:1B Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 052A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 051D Signing time: Wed 02 Jul 2025 23:56:44 +0000 Manifest this update: Wed 02 Jul 2025 23:56:43 +0000 Manifest next update: Wed 09 Jul 2025 23:56:43 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: 7AV7ail/mYxLqT8onO14adbDw6SDNeIbXdVGVwf+bBw=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: Qi+WEKvtCWtvGFWFUb38yBqHoAd83mtV7+scTOUOMc4=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: aLricGiGlyJJZTbRrMECo3zkg40wJti6wIrN+dUyP7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1322 (0x52a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Jul 2 23:56:43 2025 GMT Not After : Jul 9 23:56:43 2025 GMT Subject: CN=6865c73c-0aba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5d:9f:77:78:f6:fc:a5:ee:c6:ce:20:05:e9: 29:f5:8f:29:b7:37:7e:b1:e8:7f:89:39:4e:07:0c: 0a:08:52:8b:8d:f1:95:4f:61:d9:55:02:d0:b5:cc: 33:cd:ad:79:7c:80:e5:13:31:be:df:64:9c:78:23: b6:49:6b:76:01:a5:2c:93:f1:fb:ef:77:c2:d3:3c: e7:bb:7e:9c:be:ab:fa:a7:d1:4c:c0:f8:8c:43:0b: 02:ae:02:76:bd:4c:5e:fe:21:b5:18:26:de:3d:93: 5f:fb:41:3a:37:22:c3:6b:74:e7:a1:54:6d:7e:75: de:0b:56:2c:50:b8:07:99:f3:cf:58:61:f7:71:e8: a4:ea:c0:01:47:9f:73:98:38:c2:ec:d7:9f:2e:b8: 73:35:8e:5d:fa:d1:8b:e6:8e:6e:4e:4c:5b:62:60: 5b:0a:9f:02:2d:52:7c:d9:71:30:fb:db:bc:51:f1: 06:fd:90:ab:ad:30:f7:82:88:2c:8e:4d:15:94:9f: 8c:04:2d:3d:4d:7a:07:f9:c9:1a:4b:5c:92:55:6a: e0:3f:eb:33:2c:ce:24:10:2e:f0:ec:12:2a:76:e6: c4:dc:c7:94:ab:6f:c2:83:97:1c:46:12:0a:62:22: f9:aa:bb:c8:a2:0b:ce:ec:57:ab:c1:02:f2:00:e8: 13:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:12:BB:DA:D9:2B:39:CA:54:1A:FC:13:39:47:65:12:00:C9:21:1B X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:b6:eb:e8:3d:20:38:c6:1b:38:fd:04:1a:48:c8:bc:45:34: 2f:5c:7d:09:56:a1:af:07:30:2b:38:3d:21:4c:55:05:05:f2: 3d:ce:95:3d:fe:75:58:d7:7c:6e:bf:e1:54:68:1d:ba:dc:45: 90:c1:b4:7b:2a:06:bb:c0:f5:54:58:bf:c2:8d:f9:66:d0:5c: 8e:dc:51:68:9e:ac:f6:40:7d:4a:0a:9a:29:b2:fb:41:d2:35: b4:28:28:a8:72:02:eb:c7:bc:ef:a3:09:90:46:5e:4f:36:13: b4:19:4a:77:2d:86:c9:a6:4a:fc:b8:ac:20:ba:8e:b2:f5:a8: 6c:33:99:44:7f:22:f1:61:d4:0d:57:5a:dd:10:4e:0a:35:80: 0d:e7:df:aa:bd:9b:26:46:b9:ad:02:21:b5:05:61:9a:7e:32: 08:b2:47:b0:bd:84:46:e6:43:c3:b1:89:c5:e6:e9:54:9a:7f: 90:0b:b4:b4:ab:76:49:bb:1b:f3:74:05:51:8c:06:3f:21:5d: 49:0d:96:5c:91:c7:41:a7:dc:d8:7e:9e:e3:05:27:6a:66:4d: 1f:8b:6e:91:34:45:52:c1:f8:bf:8b:ba:60:46:e6:ea:a1:f8: 4d:a5:a4:e9:59:a3:75:47:81:86:73:0b:03:95:fb:32:21:be: 08:52:75:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUwNzAyMjM1NjQzWhcNMjUwNzA5MjM1NjQzWjAYMRYwFAYD VQQDEw02ODY1YzczYy0wYWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzl2fd3j2/KXuxs4gBekp9Y8ptzd+seh/iTlOBwwKCFKLjfGVT2HZVQLQtcwz za15fIDlEzG+32SceCO2SWt2AaUsk/H773fC0zznu36cvqv6p9FMwPiMQwsCrgJ2 vUxe/iG1GCbePZNf+0E6NyLDa3TnoVRtfnXeC1YsULgHmfPPWGH3ceik6sABR59z mDjC7NefLrhzNY5d+tGL5o5uTkxbYmBbCp8CLVJ82XEw+9u8UfEG/ZCrrTD3gogs jk0VlJ+MBC09TXoH+ckaS1ySVWrgP+szLM4kEC7w7BIqdubE3MeUq2/Cg5ccRhIK YiL5qrvIogvO7FerwQLyAOgTaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4Su9rZ KznKVBr8EzlHZRIAySEbMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATtuvoPSA4xhs4/QQaSMi8RTQvXH0JVqGvBzArOD0hTFUFBfI9zpU9 /nVY13xuv+FUaB263EWQwbR7Kga7wPVUWL/Cjflm0FyO3FFonqz2QH1KCpopsvtB 0jW0KCiocgLrx7zvowmQRl5PNhO0GUp3LYbJpkr8uKwguo6y9ahsM5lEfyLxYdQN V1rdEE4KNYAN59+qvZsmRrmtAiG1BWGafjIIskewvYRG5kPDsYnF5ulUmn+QC7S0 q3ZJuxvzdAVRjAY/IV1JDZZckcdBp9zYfp7jBSdqZk0fi26RNEVSwfi/i7pgRubq ofhNpaTpWaN1R4GGcwsDlfsyIb4IUnXJ -----END CERTIFICATE-----Generated at Thu Jul 3 14:26:27 2025 by rpki-client