$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft File: U05nXomsmsMC9TCid1KM-Bo8UwY.mft (raw, json) Hash identifier: Ahu4cZsgj78wyg7zhKhz0ucezzVu3qAvwUPuhfBFEuI= Subject key identifier: 10:9C:0E:61:73:56:37:02:06:4D:3E:30:FC:CB:76:4E:EC:11:96:EB Authority key identifier: 53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 Certificate issuer: /CN=A91CC1EB/serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Certificate serial: 05D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft Manifest number: 05C0 Signing time: Fri 22 Aug 2025 23:21:47 +0000 Manifest this update: Fri 22 Aug 2025 23:21:47 +0000 Manifest next update: Fri 29 Aug 2025 23:21:47 +0000 Files and hashes: 1: U05nXomsmsMC9TCid1KM-Bo8UwY.crl (hash: Yk/kDxuzKU2Qc3pj2LsoqfPD/fA3QtW03jbig0JjnSk=) 2: 5C0006B4E1B711EEA6D7F740C4F9AE02.roa (hash: 4jfL7SNWxDFOPvyEexB/Au04m937KqyBQLuHPsEG/BI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1491 (0x5d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1EB, serialNumber=534E675E89AC9AC302F530A277528CF81A3C5306 Validity Not Before: Aug 22 23:21:47 2025 GMT Not After : Aug 29 23:21:47 2025 GMT Subject: CN=68a8fb8b-f1ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3b:04:38:fa:c6:76:07:46:4d:d2:95:3c:0d: 8b:2c:ad:41:54:ca:79:db:5d:9c:76:89:3d:b3:ad: 03:5a:94:fc:57:98:74:81:a1:15:bb:6a:be:a4:80: 6c:4b:b1:86:06:89:c2:16:9a:43:a8:6a:96:e1:90: 2e:0f:03:3a:8e:b6:41:88:f7:e2:72:06:c7:ad:ea: b2:28:97:68:cf:ac:dd:91:87:3d:58:6f:4c:86:d6: 70:df:f7:b8:43:e9:5c:6b:b2:03:1d:3a:32:3c:fe: f0:01:9d:30:ee:a5:79:51:3a:a1:90:a1:2c:9d:e5: 7e:54:9c:12:1f:17:e9:3a:cd:f4:ad:c6:f0:4b:ee: 23:10:89:f7:3e:93:e1:08:ea:d3:06:de:d8:d0:1e: 5f:68:98:64:cf:0c:5c:52:54:a3:00:ca:27:4f:6b: fe:70:be:01:78:03:d8:1e:35:af:39:60:f8:ea:e8: 84:70:88:b0:c0:59:f9:f1:af:54:a0:d0:23:7c:d1: ec:c5:ec:ec:16:e2:73:d2:95:f4:cc:53:03:9d:30: ca:7d:69:4b:a3:79:ec:37:ba:e5:c4:2c:f8:a1:84: cb:a6:f8:7e:6c:e4:92:63:87:9f:d5:21:41:82:e3: 2b:de:8e:b8:90:2b:be:91:da:9a:b9:c2:ad:38:e4: 03:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:9C:0E:61:73:56:37:02:06:4D:3E:30:FC:CB:76:4E:EC:11:96:EB X509v3 Authority Key Identifier: keyid:53:4E:67:5E:89:AC:9A:C3:02:F5:30:A2:77:52:8C:F8:1A:3C:53:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U05nXomsmsMC9TCid1KM-Bo8UwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1EB/AC384AA6DD8211EB958D1C30C4F9AE02/U05nXomsmsMC9TCid1KM-Bo8UwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:92:20:1a:c3:49:4e:f3:18:37:5b:44:b7:79:cd:05:a3:0c: fe:40:b2:c9:f7:f7:09:11:35:62:33:ce:06:02:22:99:02:58: b8:e2:8d:db:93:08:8f:88:fb:10:f9:6e:44:95:b4:0d:a5:2b: 65:1d:59:8a:d0:9a:ab:34:0d:21:a6:44:39:a6:8e:2f:63:45: d8:5f:3f:5d:00:49:13:74:0d:0e:25:65:34:51:18:d1:8e:aa: 8f:7d:ae:ca:f4:20:15:fe:0c:d0:53:e8:a6:27:71:99:da:2b: ce:06:03:04:7b:8a:8b:6d:cd:df:3d:f7:d9:1d:a9:e6:f3:fc: 2b:73:99:ff:20:d8:8b:d1:ae:f2:c9:11:38:d2:8a:1c:f7:ad: 16:0d:b2:18:9c:6d:04:a6:1c:a9:34:42:84:10:5a:19:0c:f3: 4f:f7:e3:67:e7:bd:e4:fa:ee:57:9f:0a:89:b2:1e:6e:ab:66: ae:b0:0b:33:69:f2:7f:b2:66:6b:0a:0f:6e:9d:da:2f:21:fa: 2a:00:3d:80:b7:8f:4f:33:ad:95:8b:97:51:23:04:73:52:3d: 79:1d:a6:39:51:84:4d:0a:31:ef:3f:c0:79:06:5f:38:46:02: 20:19:dd:59:c5:2f:0a:d9:14:01:ed:30:72:d6:94:e7:6e:6b: 00:80:3a:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRUIxMTAvBgNVBAUTKDUzNEU2NzVFODlBQzlBQzMwMkY1MzBBMjc3NTI4Q0Y4 MUEzQzUzMDYwHhcNMjUwODIyMjMyMTQ3WhcNMjUwODI5MjMyMTQ3WjAYMRYwFAYD VQQDEw02OGE4ZmI4Yi1mMWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TsEOPrGdgdGTdKVPA2LLK1BVMp5212cdok9s60DWpT8V5h0gaEVu2q+pIBs S7GGBonCFppDqGqW4ZAuDwM6jrZBiPficgbHreqyKJdoz6zdkYc9WG9MhtZw3/e4 Q+lca7IDHToyPP7wAZ0w7qV5UTqhkKEsneV+VJwSHxfpOs30rcbwS+4jEIn3PpPh COrTBt7Y0B5faJhkzwxcUlSjAMonT2v+cL4BeAPYHjWvOWD46uiEcIiwwFn58a9U oNAjfNHsxezsFuJz0pX0zFMDnTDKfWlLo3nsN7rlxCz4oYTLpvh+bOSSY4ef1SFB guMr3o64kCu+kdqaucKtOOQD6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCcDmFz VjcCBk0+MPzLdk7sEZbrMB8GA1UdIwQYMBaAFFNOZ16JrJrDAvUwondSjPgaPFMG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFQi9BQzM4NEFBNkRE ODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21zTUM5VENpZDFLTS1CbzhV d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UwNW5Yb21zbXNNQzlUQ2lkMUtNLUJvOFV3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFQi9BQzM4NEFBNkREODIxMUVCOTU4RDFDMzBDNEY5QUUwMi9VMDVuWG9tc21z TUM5VENpZDFLTS1CbzhVd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFkiAaw0lO8xg3W0S3ec0Fowz+QLLJ9/cJETViM84GAiKZAli44o3b kwiPiPsQ+W5ElbQNpStlHVmK0JqrNA0hpkQ5po4vY0XYXz9dAEkTdA0OJWU0URjR jqqPfa7K9CAV/gzQU+imJ3GZ2ivOBgMEe4qLbc3fPffZHanm8/wrc5n/INiL0a7y yRE40ooc960WDbIYnG0EphypNEKEEFoZDPNP9+Nn573k+u5XnwqJsh5uq2ausAsz afJ/smZrCg9undovIfoqAD2At49PM62Vi5dRIwRzUj15HaY5UYRNCjHvP8B5Bl84 RgIgGd1ZxS8K2RQB7TBy1pTnbmsAgDqB -----END CERTIFICATE-----Generated at Sun Aug 24 07:20:42 2025 by rpki-client