$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: Ha87V5QbQf19PUeFGmFgyBAl7ZcmRrF1h82lOa21noQ= Subject key identifier: 21:EC:2B:C1:65:76:A0:AA:D9:2B:7C:FB:58:15:50:F4:53:FD:B4:33 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 0512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 0505 Signing time: Wed 14 May 2025 23:43:46 +0000 Manifest this update: Wed 14 May 2025 23:43:46 +0000 Manifest next update: Wed 21 May 2025 23:43:46 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: 6O4bjNZ9zkqiDC74+ztdatIbed2LXp6Bi4XaTAxJVM4=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: Qi+WEKvtCWtvGFWFUb38yBqHoAd83mtV7+scTOUOMc4=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: aLricGiGlyJJZTbRrMECo3zkg40wJti6wIrN+dUyP7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1298 (0x512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: May 14 23:43:46 2025 GMT Not After : May 21 23:43:46 2025 GMT Subject: CN=68252ab2-88bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:03:62:a4:e8:37:60:5d:8b:5b:4f:be:51:3b: 66:3a:73:c5:1e:7a:c0:d7:d9:f1:3c:b7:d8:75:79: c3:d7:a9:04:93:91:e9:97:d4:8d:56:d0:b0:c9:3b: 65:60:40:22:53:f0:25:95:d3:2c:6d:c4:5c:15:dc: 0a:95:d3:40:00:70:dc:e2:36:6d:3e:c7:9d:ff:07: ad:8a:5d:19:9a:61:ae:c8:7e:a3:70:3c:64:50:47: a2:8c:8b:03:fd:66:b6:b5:72:b5:0d:69:96:d5:cf: b4:d1:77:82:59:d8:09:ec:1b:92:aa:28:82:38:e7: 9f:8c:0e:f1:1c:76:f2:aa:b2:c9:99:78:12:2f:0d: b6:f0:eb:3a:b4:6d:71:5b:be:77:29:71:ed:9d:9f: f3:2d:c4:e1:1e:1c:de:fe:c3:91:a4:de:1d:52:77: af:90:4f:5e:46:60:97:d2:bf:16:f6:07:5c:45:ae: 74:a8:1d:57:9c:13:49:5a:50:9d:4c:a4:00:c4:df: 30:e5:69:fd:fd:eb:8e:ae:d6:5b:89:ad:11:aa:e9: 5d:94:91:e0:9f:47:06:ac:11:4e:7b:42:a9:af:53: e2:79:69:8e:fe:91:81:9b:b9:f0:04:63:df:bd:a0: 94:d7:21:9a:c2:b6:64:9f:c0:21:ff:72:86:25:7e: 8d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:EC:2B:C1:65:76:A0:AA:D9:2B:7C:FB:58:15:50:F4:53:FD:B4:33 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:f3:2e:fe:c8:a5:b0:8d:e8:db:03:d1:a7:c2:2b:37:6a:82: 5c:46:24:25:2c:25:65:20:d1:3d:55:2f:16:b6:48:9f:de:43: 42:48:0b:ac:31:01:62:a4:1f:2c:19:39:c8:4a:3a:13:20:0d: 3a:e7:f9:8b:ae:39:bd:e5:56:42:de:05:d7:9f:52:20:0b:5e: d6:b6:05:d6:89:e4:dc:ee:ea:d1:0c:92:3a:ef:ce:12:df:38: 30:be:ae:06:82:86:60:f7:bb:9d:c2:57:0d:68:01:9d:0e:f8: c4:80:19:49:f3:37:81:71:05:3a:c2:91:eb:52:52:71:f5:52: 13:e7:73:f7:bb:5b:a2:b9:c0:cd:68:e1:3e:e7:29:e6:4c:f4: 8d:71:dc:ed:3c:db:43:6b:e8:6e:fe:d2:24:5a:a3:fb:b8:6e: 8f:cd:ce:35:6e:67:3c:8a:56:1e:df:2f:1f:68:86:8b:c7:7d: da:dd:1a:46:57:14:c7:07:c0:0b:d1:1d:fb:6c:b6:c3:f2:b5: 69:a8:10:95:9f:f3:f7:ec:d4:49:32:23:37:91:d0:09:7d:8e: ba:08:74:e1:21:54:4d:30:08:8c:fa:4a:d1:19:07:97:38:86: fe:79:e0:9f:5f:c7:3a:80:51:a7:61:39:b5:a0:48:48:20:e4: ab:44:5e:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUwNTE0MjM0MzQ2WhcNMjUwNTIxMjM0MzQ2WjAYMRYwFAYD VQQDEw02ODI1MmFiMi04OGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gNipOg3YF2LW0++UTtmOnPFHnrA19nxPLfYdXnD16kEk5Hpl9SNVtCwyTtl YEAiU/AlldMsbcRcFdwKldNAAHDc4jZtPsed/wetil0ZmmGuyH6jcDxkUEeijIsD /Wa2tXK1DWmW1c+00XeCWdgJ7BuSqiiCOOefjA7xHHbyqrLJmXgSLw228Os6tG1x W753KXHtnZ/zLcThHhze/sORpN4dUnevkE9eRmCX0r8W9gdcRa50qB1XnBNJWlCd TKQAxN8w5Wn9/euOrtZbia0RquldlJHgn0cGrBFOe0Kpr1PieWmO/pGBm7nwBGPf vaCU1yGawrZkn8Ah/3KGJX6NDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHsK8Fl dqCq2St8+1gVUPRT/bQzMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy8y7+yKWwjejbA9Gnwis3aoJcRiQlLCVlINE9VS8Wtkif3kNCSAus MQFipB8sGTnISjoTIA065/mLrjm95VZC3gXXn1IgC17WtgXWieTc7urRDJI6784S 3zgwvq4GgoZg97udwlcNaAGdDvjEgBlJ8zeBcQU6wpHrUlJx9VIT53P3u1uiucDN aOE+5ynmTPSNcdztPNtDa+hu/tIkWqP7uG6Pzc41bmc8ilYe3y8faIaLx33a3RpG VxTHB8AL0R37bLbD8rVpqBCVn/P37NRJMiM3kdAJfY66CHThIVRNMAiM+krRGQeX OIb+eeCfX8c6gFGnYTm1oEhIIOSrRF76 -----END CERTIFICATE-----Generated at Thu May 15 18:52:45 2025 by rpki-client