$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: 5IZNwWu6B91ocbXt2en/G+mVwRHt+sSHtI+ALFBhYac= Subject key identifier: 03:EE:D7:76:82:ED:DE:6B:8F:63:86:1F:01:F9:E7:F7:E9:30:66:83 Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 05A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 058D Signing time: Mon 12 May 2025 23:07:13 +0000 Manifest this update: Mon 12 May 2025 23:07:13 +0000 Manifest next update: Mon 19 May 2025 23:07:13 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: zeGLLgTtM8VymXpJeyTw07nS6knu769raxKrM9hspoU=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1440 (0x5a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: May 12 23:07:13 2025 GMT Not After : May 19 23:07:13 2025 GMT Subject: CN=68227f21-4066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:43:8c:97:31:7e:07:eb:95:e7:bb:08:d0: e8:5e:24:c2:97:63:7e:95:2a:9a:eb:31:0a:d6:46: 79:b9:9a:57:fb:bb:c1:28:d9:f4:f4:48:c0:ad:6a: 1b:15:ce:11:ae:5a:5e:64:7c:2c:e7:43:e4:26:d7: 8e:25:58:3d:91:26:71:d4:6a:8a:ec:4b:69:ed:d7: c3:5d:a7:f0:2c:2d:63:cb:b5:15:d0:12:f1:7f:a1: a0:bc:e0:b4:bf:b0:64:49:bb:99:9e:a0:ff:ad:09: b4:de:6a:88:a2:b3:a0:e4:b1:91:d0:84:3b:d8:53: 39:96:6f:aa:b6:cb:d7:12:6d:e3:35:ea:bb:4c:e0: 11:a5:66:23:b6:3a:2e:cd:22:d6:e7:06:da:bc:3c: f3:cc:20:76:07:49:5d:05:77:6e:58:a7:0a:32:4e: b4:04:ac:3b:c3:3c:c2:6b:ba:fa:d9:4f:d7:38:db: 02:39:fc:30:1c:5a:df:17:71:b5:df:8c:a5:0a:bc: 1e:af:62:0e:2a:77:c6:f9:0d:f7:fe:a6:2f:53:3d: a8:be:81:53:cf:6a:ce:a7:c8:0e:9d:f1:62:e5:c8: 95:73:10:15:63:3e:41:fa:8a:8c:59:01:87:d5:94: 6c:26:c0:70:36:7f:03:21:af:ff:a3:0e:0e:99:cd: 89:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:EE:D7:76:82:ED:DE:6B:8F:63:86:1F:01:F9:E7:F7:E9:30:66:83 X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:5d:62:5a:7c:87:d9:a1:5a:16:bb:56:ce:a3:59:54:12:95: 9a:9a:26:c8:5c:ff:cb:a5:f0:c5:cb:c4:52:94:7e:03:ca:7c: 8d:cd:41:11:22:58:46:c7:84:cd:29:91:ee:12:0a:24:5d:00: 53:2e:f9:6b:0c:d3:fb:2c:6f:eb:a3:a5:35:14:57:f6:b2:25: 7f:f9:10:17:30:d6:d6:79:f5:8e:36:5c:5a:0f:1c:69:7c:16: 67:a5:74:88:fc:8f:a6:b9:b3:8b:19:47:b2:07:0d:9b:21:fc: a3:de:cc:dc:a7:ed:fd:ae:d7:e5:89:04:84:7e:dc:aa:7c:1f: be:9d:1e:98:4c:08:e0:40:3b:fa:04:02:2d:ec:83:60:16:30: 00:66:d4:a5:09:fe:2d:0d:cd:78:b6:c0:b8:a5:f3:54:98:c0: 36:69:d7:df:ae:4f:d9:91:8b:67:64:25:a7:e8:77:3b:12:42: f0:8b:1d:6e:65:a5:69:07:86:64:6b:36:3a:ff:4a:f1:f3:4c: 53:8a:41:19:24:3b:f5:7b:8c:a1:9d:17:de:01:84:33:d9:cf: e1:81:33:3e:5c:31:6b:af:2c:17:bc:c1:64:7e:a8:e6:6e:33: ec:c9:93:f4:6c:be:47:f7:3c:8b:2a:46:42:1e:65:2d:d8:3e: dc:c0:5e:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUwNTEyMjMwNzEzWhcNMjUwNTE5MjMwNzEzWjAYMRYwFAYD VQQDEw02ODIyN2YyMS00MDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMdDjJcxfgfrlee7CNDoXiTCl2N+lSqa6zEK1kZ5uZpX+7vBKNn09EjArWob Fc4RrlpeZHws50PkJteOJVg9kSZx1GqK7Etp7dfDXafwLC1jy7UV0BLxf6GgvOC0 v7BkSbuZnqD/rQm03mqIorOg5LGR0IQ72FM5lm+qtsvXEm3jNeq7TOARpWYjtjou zSLW5wbavDzzzCB2B0ldBXduWKcKMk60BKw7wzzCa7r62U/XONsCOfwwHFrfF3G1 34ylCrwer2IOKnfG+Q33/qYvUz2ovoFTz2rOp8gOnfFi5ciVcxAVYz5B+oqMWQGH 1ZRsJsBwNn8DIa//ow4Omc2JOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPu13aC 7d5rj2OGHwH55/fpMGaDMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUXWJafIfZoVoWu1bOo1lUEpWamibIXP/LpfDFy8RSlH4DynyNzUER IlhGx4TNKZHuEgokXQBTLvlrDNP7LG/ro6U1FFf2siV/+RAXMNbWefWONlxaDxxp fBZnpXSI/I+mubOLGUeyBw2bIfyj3szcp+39rtfliQSEftyqfB++nR6YTAjgQDv6 BAIt7INgFjAAZtSlCf4tDc14tsC4pfNUmMA2adffrk/ZkYtnZCWn6Hc7EkLwix1u ZaVpB4ZkazY6/0rx80xTikEZJDv1e4yhnRfeAYQz2c/hgTM+XDFrrywXvMFkfqjm bjPsyZP0bL5H9zyLKkZCHmUt2D7cwF5D -----END CERTIFICATE-----Generated at Wed May 14 09:24:01 2025 by rpki-client