$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: CwSPm0/Me2Hr/8HZ6oFUCcAco3BauT8WKizzQ+h+f0I= Subject key identifier: 8D:B8:04:A8:63:1F:4F:D9:D4:08:9A:53:5F:45:22:DA:17:0C:9E:B4 Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 04A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 048D Signing time: Sat 10 May 2025 23:41:23 +0000 Manifest this update: Sat 10 May 2025 23:41:22 +0000 Manifest next update: Sat 17 May 2025 23:41:22 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: PGqGR0zNKf9j4UDRg4LSXmQY1nOom5Q2H5pX1eCwdtc=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1190 (0x4a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: May 10 23:41:22 2025 GMT Not After : May 17 23:41:22 2025 GMT Subject: CN=681fe423-4c08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fa:47:d2:5f:fe:d6:40:a6:48:a6:88:ce:6c: b4:f7:06:c5:de:55:1b:c6:ad:12:10:63:7d:70:b8: d7:15:d4:13:ec:09:e2:ea:26:01:e3:47:76:4e:a3: c2:5d:58:c5:6a:95:25:e8:d1:bd:ef:4c:b6:a3:9e: e2:c0:17:11:aa:b7:7d:23:26:c3:16:b7:41:81:19: 5c:c6:32:01:2e:74:24:cc:81:7a:e9:d2:ae:05:05: 03:5c:ee:ff:42:4e:b4:ad:13:44:a4:af:35:13:af: 34:b7:a2:54:99:66:20:dc:68:66:a8:26:5a:74:2b: ed:77:03:36:0b:f0:24:08:0b:26:09:6a:2e:71:ac: 9e:49:b6:54:f8:56:24:4e:73:cc:15:e1:2c:37:2f: ad:e8:e0:ab:63:01:aa:ec:b1:18:74:5f:34:fe:0f: aa:73:f7:28:ac:ab:3b:84:3f:aa:a1:67:a8:e0:a8: 7f:0a:05:9b:bf:09:e8:01:31:71:69:9c:f7:bb:12: b2:6d:70:02:81:d3:ae:3a:e7:12:e6:8d:1f:b5:cd: 8b:1d:40:2f:df:61:78:72:7f:0c:3d:94:1f:62:01: 0c:41:23:cb:ed:fc:0e:8e:b7:9c:45:8b:fb:27:3f: 72:dc:d0:b7:14:72:1e:6c:5d:c2:57:a9:d7:a0:18: ac:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B8:04:A8:63:1F:4F:D9:D4:08:9A:53:5F:45:22:DA:17:0C:9E:B4 X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:28:e5:13:68:ea:7c:55:b8:a0:a7:f9:65:9f:f1:f1:55:de: 0b:ac:8b:c3:ce:3c:20:db:05:27:80:91:f3:c2:4f:3c:fe:4a: a9:d1:32:a2:8a:d2:14:4f:52:f0:9b:63:e9:a4:91:ee:49:c8: 51:2e:ba:3c:25:6a:f7:58:90:93:48:bb:ab:31:06:f3:22:c6: 50:21:f6:b6:5b:29:30:ee:bb:5c:80:de:ed:03:0c:bb:cc:bb: 7f:42:14:44:84:2e:4e:ad:39:92:76:f1:b2:9c:a4:63:b3:df: 79:88:ab:1d:16:d5:4e:97:0b:c5:0d:bd:0a:75:d1:34:ea:2a: 4c:43:bc:39:2b:6c:87:6c:aa:54:34:a9:44:d4:37:f0:c7:c3: ca:2e:4c:a2:b4:12:2c:34:8c:33:bd:22:d0:59:ec:64:4b:46: bb:be:a2:b4:19:d7:a3:f8:20:43:7d:37:b1:25:6c:de:35:02: db:77:53:75:17:a5:4d:72:22:62:c8:dd:3f:72:47:e8:3f:f2: 15:dc:8c:b9:c5:a2:86:f1:46:64:2b:82:2f:9a:1e:75:f1:33: bb:35:b8:c4:bb:f2:e7:84:b7:ac:dd:e7:0e:04:81:6a:f0:d0: dc:60:dc:f6:d8:8e:6a:a2:aa:28:8b:09:4e:81:67:9f:df:3d: 31:a4:60:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUwNTEwMjM0MTIyWhcNMjUwNTE3MjM0MTIyWjAYMRYwFAYD VQQDEw02ODFmZTQyMy00YzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPpH0l/+1kCmSKaIzmy09wbF3lUbxq0SEGN9cLjXFdQT7Ani6iYB40d2TqPC XVjFapUl6NG970y2o57iwBcRqrd9IybDFrdBgRlcxjIBLnQkzIF66dKuBQUDXO7/ Qk60rRNEpK81E680t6JUmWYg3GhmqCZadCvtdwM2C/AkCAsmCWoucayeSbZU+FYk TnPMFeEsNy+t6OCrYwGq7LEYdF80/g+qc/corKs7hD+qoWeo4Kh/CgWbvwnoATFx aZz3uxKybXACgdOuOucS5o0ftc2LHUAv32F4cn8MPZQfYgEMQSPL7fwOjrecRYv7 Jz9y3NC3FHIebF3CV6nXoBis5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI24BKhj H0/Z1AiaU19FItoXDJ60MB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeKOUTaOp8Vbigp/lln/HxVd4LrIvDzjwg2wUngJHzwk88/kqp0TKi itIUT1Lwm2PppJHuSchRLro8JWr3WJCTSLurMQbzIsZQIfa2Wykw7rtcgN7tAwy7 zLt/QhREhC5OrTmSdvGynKRjs995iKsdFtVOlwvFDb0KddE06ipMQ7w5K2yHbKpU NKlE1Dfwx8PKLkyitBIsNIwzvSLQWexkS0a7vqK0Gdej+CBDfTexJWzeNQLbd1N1 F6VNciJiyN0/ckfoP/IV3Iy5xaKG8UZkK4Ivmh518TO7NbjEu/LnhLes3ecOBIFq 8NDcYNz22I5qoqooiwlOgWef3z0xpGC6 -----END CERTIFICATE-----Generated at Sun May 11 09:05:26 2025 by rpki-client