$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: N16e1UAVh8emQWIRIwb/Qo6R1+3HhL+OMJuG5jLrlyg= Subject key identifier: 5A:94:D5:FB:B3:5F:09:A0:EC:7F:2E:29:83:0A:9E:BD:63:E2:9A:5A Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 05B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 05A6 Signing time: Wed 02 Jul 2025 23:34:01 +0000 Manifest this update: Wed 02 Jul 2025 23:34:01 +0000 Manifest next update: Wed 09 Jul 2025 23:34:01 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: fit++6gxh+wZfqqbSQQWCpzdFJ8UqfceiDiQCq6kEyg=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: Jul 2 23:34:01 2025 GMT Not After : Jul 9 23:34:01 2025 GMT Subject: CN=6865c1e9-5ec3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7d:fa:84:80:09:99:7a:97:b7:80:25:ee:d0: d5:45:1a:ec:f4:d8:ad:ed:1e:23:d0:2c:96:3e:94: 2c:05:08:ee:7d:91:7e:24:83:94:82:de:49:7d:c3: 57:4c:b4:41:ad:80:c3:4c:18:39:4c:0e:49:d9:6f: 33:e5:00:40:1f:e0:e0:32:df:77:28:47:94:99:1a: fb:06:33:e0:da:79:f2:c6:af:d4:13:08:dc:49:6d: 78:7c:0c:bd:cb:64:3f:04:fc:d8:58:5c:b6:87:39: 03:b0:45:95:38:9d:98:80:69:5e:4f:9d:f3:4f:8b: 2c:ef:4e:bf:97:7f:a8:61:0a:b2:63:c9:88:f3:90: 00:7b:c5:cf:e6:be:cc:c9:3a:56:0b:48:0d:3d:58: 69:b0:e0:fc:f9:f6:6a:99:db:72:ff:43:d4:42:14: 17:ad:68:ab:56:9c:31:ac:dd:ed:88:c0:95:6b:6d: 3b:32:30:bc:ae:67:2b:61:a6:9a:2f:ad:6d:be:f1: 8f:38:9c:63:fa:39:81:68:e1:95:81:84:63:8e:47: c4:1b:45:8e:f2:f5:e3:99:40:fa:24:bc:f6:e3:a0: 56:da:41:38:1b:67:ef:f7:11:c9:2d:85:94:88:b8: 3c:b9:92:e9:0a:ce:8b:10:6d:ea:1e:cd:04:69:77: 49:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:94:D5:FB:B3:5F:09:A0:EC:7F:2E:29:83:0A:9E:BD:63:E2:9A:5A X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:7f:59:4e:26:a7:d9:a2:20:66:07:a8:2d:eb:69:a6:de:0a: 39:bc:b8:30:db:48:7a:1e:62:64:b6:f7:ad:0f:ee:70:fd:2f: e9:d1:69:c6:c1:30:7e:b8:09:a0:14:ea:87:46:bf:20:fe:ea: 93:22:b2:04:c7:51:9a:3d:e4:2a:3d:4b:4e:7c:0b:34:24:00: 0f:39:69:8b:cf:bc:27:f9:34:9b:60:7d:40:93:5b:d5:57:86: 79:eb:c2:c7:6a:f4:63:c4:aa:15:4f:f9:d1:60:f4:f7:6f:b0: a6:5f:57:6d:8a:06:db:de:3f:62:8b:96:6b:78:07:3f:21:e5: cb:be:ea:2c:47:b4:c5:18:24:9f:c3:9f:ac:9d:f1:38:29:43: 5b:3f:38:0f:a0:19:da:6c:cf:d0:7e:f0:f9:94:c6:1f:9b:08: 0b:87:9a:a4:dd:d3:bf:94:eb:94:cc:f7:07:70:90:cf:02:ec: e6:dc:b4:bb:df:7f:3b:e0:55:14:e1:1a:51:ab:b4:90:d1:14: 9c:ff:b2:f7:66:42:be:91:3c:ab:88:c5:21:02:36:26:eb:b8: ec:4e:47:eb:b9:15:61:05:67:15:c8:6c:af:c3:bf:70:a3:2d: 93:5d:fe:69:b2:33:cf:ca:33:64:a5:29:42:3a:4e:ad:94:e2: a6:df:79:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUwNzAyMjMzNDAxWhcNMjUwNzA5MjMzNDAxWjAYMRYwFAYD VQQDEw02ODY1YzFlOS01ZWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2336hIAJmXqXt4Al7tDVRRrs9Nit7R4j0CyWPpQsBQjufZF+JIOUgt5JfcNX TLRBrYDDTBg5TA5J2W8z5QBAH+DgMt93KEeUmRr7BjPg2nnyxq/UEwjcSW14fAy9 y2Q/BPzYWFy2hzkDsEWVOJ2YgGleT53zT4ss706/l3+oYQqyY8mI85AAe8XP5r7M yTpWC0gNPVhpsOD8+fZqmdty/0PUQhQXrWirVpwxrN3tiMCVa207MjC8rmcrYaaa L61tvvGPOJxj+jmBaOGVgYRjjkfEG0WO8vXjmUD6JLz246BW2kE4G2fv9xHJLYWU iLg8uZLpCs6LEG3qHs0EaXdJMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqU1fuz Xwmg7H8uKYMKnr1j4ppaMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWf1lOJqfZoiBmB6gt62mm3go5vLgw20h6HmJktvetD+5w/S/p0WnG wTB+uAmgFOqHRr8g/uqTIrIEx1GaPeQqPUtOfAs0JAAPOWmLz7wn+TSbYH1Ak1vV V4Z568LHavRjxKoVT/nRYPT3b7CmX1dtigbb3j9ii5ZreAc/IeXLvuosR7TFGCSf w5+snfE4KUNbPzgPoBnabM/QfvD5lMYfmwgLh5qk3dO/lOuUzPcHcJDPAuzm3LS7 33874FUU4RpRq7SQ0RSc/7L3ZkK+kTyriMUhAjYm67jsTkfruRVhBWcVyGyvw79w oy2TXf5psjPPyjNkpSlCOk6tlOKm33mA -----END CERTIFICATE-----Generated at Thu Jul 3 03:58:18 2025 by rpki-client