$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft File: u3-5V71tGEoIkjFpTPg4nbaI_lM.mft (raw, json) Hash identifier: lp2D67vqmmZh/2HR1SxhNNBwcnNwDb72CnrBS+31zAo= Subject key identifier: 00:E2:E0:EE:89:37:A0:F9:5E:EA:64:D7:B7:53:07:95:BF:7A:95:68 Authority key identifier: BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 Certificate issuer: /CN=A91F39A9/serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Certificate serial: 044E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft Manifest number: 0449 Signing time: Thu 15 May 2025 00:16:55 +0000 Manifest this update: Thu 15 May 2025 00:16:54 +0000 Manifest next update: Thu 22 May 2025 00:16:54 +0000 Files and hashes: 1: u3-5V71tGEoIkjFpTPg4nbaI_lM.crl (hash: puc+2LBwLoj+EXo1BxCCV1e6eejytczIdHnvuzU04xE=) 2: 12702794577711ECB7FD0C6FC4F9AE02.roa (hash: XOYLtUkvxxhHrcsvmr5WB+I6ZV608DvzcypTgdpZOb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1102 (0x44e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39A9, serialNumber=BB7FB957BD6D184A089231694CF8389DB688FE53 Validity Not Before: May 15 00:16:54 2025 GMT Not After : May 22 00:16:54 2025 GMT Subject: CN=68253277-d97b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:28:80:88:f2:db:c5:95:58:dd:5e:a9:0d:fd: 4c:c8:93:be:71:a7:32:49:25:ee:48:71:1a:4e:25: a8:1e:90:dd:60:e7:c0:49:4a:fa:fe:0f:ed:c7:38: ce:84:76:d6:32:7f:b6:e3:a1:d4:65:08:a4:0f:fa: b6:b8:40:6c:43:99:d1:c3:26:65:be:ee:da:da:88: a7:14:5d:08:f9:a8:df:7f:76:bb:99:2b:ba:e4:ba: 27:88:a2:85:8e:70:78:b3:9f:e5:01:3f:d5:ee:f1: f8:31:34:c4:29:6c:32:64:1f:47:a8:6c:95:91:97: cc:d3:46:8e:a3:b0:92:9a:e3:c4:99:f4:44:94:ff: 67:6b:8d:f9:45:e1:ab:60:82:60:1e:7f:1d:00:e0: 1e:41:f3:a3:39:c3:ba:60:fc:67:ab:9b:47:d6:5b: d4:ab:30:50:a8:94:7b:de:71:6d:1d:fc:3e:36:6d: 27:69:4a:18:3c:33:26:c5:32:dc:7a:b2:db:8d:51: ec:f2:bf:e5:07:c4:b9:a6:69:33:90:b8:75:53:b7: d9:d1:ba:2e:b0:4b:1b:04:37:ee:f8:5f:f7:94:60: 60:98:80:4c:60:3e:ee:a1:e4:1f:cf:9c:bd:50:93: 83:71:a6:4d:70:34:84:ff:6e:24:b5:5c:17:31:da: e7:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E2:E0:EE:89:37:A0:F9:5E:EA:64:D7:B7:53:07:95:BF:7A:95:68 X509v3 Authority Key Identifier: keyid:BB:7F:B9:57:BD:6D:18:4A:08:92:31:69:4C:F8:38:9D:B6:88:FE:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3-5V71tGEoIkjFpTPg4nbaI_lM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39A9/525486B8566211ECB8EC7331C4F9AE02/u3-5V71tGEoIkjFpTPg4nbaI_lM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:01:13:81:7f:54:e0:be:97:72:c2:b9:9e:f1:af:5f:20:36: f8:de:48:01:88:7b:40:a9:b3:e6:87:41:1d:cd:1f:4e:f3:bd: 3e:09:1d:40:67:1e:ce:e3:b2:72:ea:7c:81:3b:1e:ea:b5:5e: 55:4f:ad:1e:50:81:1f:43:b7:f7:32:0b:eb:34:1f:44:92:3a: 8a:0a:a5:5d:91:85:35:52:58:9c:69:92:49:f3:44:da:24:10: 2c:f2:82:71:47:74:e2:d0:75:e1:86:a4:53:e9:3e:44:26:91: 60:6e:22:9d:23:c4:40:9f:f0:3d:36:6e:21:a9:3b:00:4d:62: 65:49:9a:03:5a:13:b2:34:5c:9c:52:1a:e9:06:1d:e2:90:c2: 37:5b:95:58:07:47:1c:bb:c2:d2:47:3a:b4:88:53:1a:c8:9a: 83:50:60:2f:ea:41:be:fb:d6:f2:20:5e:8a:25:21:b7:97:5e: 05:32:f5:5b:2a:da:16:1e:76:fe:85:e5:37:ea:9a:98:0c:0a: 43:0b:04:0a:c2:60:d5:8d:8c:67:87:c8:80:4c:73:89:d5:f6: bd:78:de:cc:09:d6:d4:1d:25:fc:0d:d3:45:66:e3:3f:ff:6c: 2b:d1:54:cf:e7:65:ad:fe:42:b4:60:eb:da:78:43:23:39:5f: f7:a1:4b:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM5QTkxMTAvBgNVBAUTKEJCN0ZCOTU3QkQ2RDE4NEEwODkyMzE2OTRDRjgzODlE QjY4OEZFNTMwHhcNMjUwNTE1MDAxNjU0WhcNMjUwNTIyMDAxNjU0WjAYMRYwFAYD VQQDEw02ODI1MzI3Ny1kOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSiAiPLbxZVY3V6pDf1MyJO+cacySSXuSHEaTiWoHpDdYOfASUr6/g/txzjO hHbWMn+246HUZQikD/q2uEBsQ5nRwyZlvu7a2oinFF0I+ajff3a7mSu65LoniKKF jnB4s5/lAT/V7vH4MTTEKWwyZB9HqGyVkZfM00aOo7CSmuPEmfRElP9na435ReGr YIJgHn8dAOAeQfOjOcO6YPxnq5tH1lvUqzBQqJR73nFtHfw+Nm0naUoYPDMmxTLc erLbjVHs8r/lB8S5pmkzkLh1U7fZ0bousEsbBDfu+F/3lGBgmIBMYD7uoeQfz5y9 UJODcaZNcDSE/24ktVwXMdrnPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADi4O6J N6D5Xupk17dTB5W/epVoMB8GA1UdIwQYMBaAFLt/uVe9bRhKCJIxaUz4OJ22iP5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzlBOS81MjU0ODZCODU2 NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdFb0lrakZwVFBnNG5iYUlf bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzLTVWNzF0R0VvSWtqRnBUUGc0bmJhSV9sTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzlBOS81MjU0ODZCODU2NjIxMUVDQjhFQzczMzFDNEY5QUUwMi91My01VjcxdEdF b0lrakZwVFBnNG5iYUlfbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmAROBf1Tgvpdywrme8a9fIDb43kgBiHtAqbPmh0EdzR9O870+CR1A Zx7O47Jy6nyBOx7qtV5VT60eUIEfQ7f3MgvrNB9EkjqKCqVdkYU1UlicaZJJ80Ta JBAs8oJxR3Ti0HXhhqRT6T5EJpFgbiKdI8RAn/A9Nm4hqTsATWJlSZoDWhOyNFyc UhrpBh3ikMI3W5VYB0ccu8LSRzq0iFMayJqDUGAv6kG++9byIF6KJSG3l14FMvVb KtoWHnb+heU36pqYDApDCwQKwmDVjYxnh8iATHOJ1fa9eN7MCdbUHSX8DdNFZuM/ /2wr0VTP52Wt/kK0YOvaeEMjOV/3oUtG -----END CERTIFICATE-----Generated at Thu May 15 23:28:01 2025 by rpki-client