$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: oCBW92sp2nN9yFJtjnN4qAaEhQNXWr+7qBIEhTE4Z2Q= Subject key identifier: 4E:7E:58:38:D9:41:5C:07:50:73:58:5D:43:18:65:8E:26:9E:49:AA Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0529 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 0516 Signing time: Fri 28 Mar 2025 23:52:14 +0000 Manifest this update: Fri 28 Mar 2025 23:52:13 +0000 Manifest next update: Fri 04 Apr 2025 23:52:13 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: ZJmAbCiHngljMAdWDgcJ9hLv0590DzU52XATI3pGxQ4=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: Tcq182MtoqsdyOozDsgfHLvUMXaT5QP5utPDgkahfpk=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 3aOOVCELLHnIfGs7sXEbEZF8NuxhRTtgWUNx37B19jo=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: V7oi3Gg2bJeyB31QQcYvbv2j/BrInSgpAZM4b3T1xkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1321 (0x529) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9 Validity Not Before: Mar 28 23:52:13 2025 GMT Not After : Apr 4 23:52:13 2025 GMT Subject: CN=67e7362e-6c4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:57:34:f0:38:78:33:54:a0:d6:97:c9:73:41: 4d:de:be:7f:b8:e1:2e:5d:15:a2:34:16:78:08:43: dd:33:81:a7:46:d7:51:8a:8d:02:d5:8f:9b:cc:6e: f9:95:a2:2c:4a:85:9a:1b:07:77:50:84:80:63:b8: 51:0f:33:4b:5b:46:0b:16:ce:f1:92:a4:36:20:61: fa:0a:f9:b8:74:4f:dc:6b:4b:9e:8d:92:3b:5a:02: 33:5a:2e:6a:48:bd:24:90:1f:cf:8d:a5:c1:8f:a5: 92:b7:97:36:c1:2f:be:dc:40:e4:84:a3:4e:cc:60: 4b:e7:5f:df:b8:29:18:16:6e:cc:20:95:83:cb:71: a3:62:dd:99:8f:60:68:f6:f7:b3:de:4a:62:1d:3c: 00:1b:eb:3a:26:e0:4e:b4:28:eb:0f:eb:86:a9:69: 59:b2:66:c9:1c:4f:8b:b4:2f:19:35:43:06:32:9e: 2a:0e:91:9f:b0:f2:0b:2d:5b:c6:26:33:23:4c:f3: ce:db:ab:27:fc:0d:a0:4a:43:7b:b4:af:cb:69:a9: 8b:7f:70:68:e6:51:ca:c4:d2:c5:6c:6e:5d:40:b5: 71:b7:1f:ac:09:20:e9:3c:b3:2a:db:ad:2c:12:09: 20:3f:b6:f5:af:ac:b9:cb:03:49:1e:10:b0:5e:d1: 88:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:7E:58:38:D9:41:5C:07:50:73:58:5D:43:18:65:8E:26:9E:49:AA X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ac:9b:03:fa:08:e4:f0:df:b9:4d:fd:62:c5:cb:ff:54:22: e5:22:58:38:c1:87:a4:46:8f:25:49:59:6e:31:b3:36:52:15: 88:2d:d1:6b:db:c9:65:88:dd:7c:69:0c:92:fd:56:f2:b6:3d: 7a:49:dd:8f:4e:8b:c3:a9:0b:87:24:97:26:7d:fb:fb:2e:d8: cf:0e:73:1b:97:72:db:3a:e5:6d:4b:22:44:e8:20:4f:d4:48: c9:a9:42:47:a1:93:40:77:1a:fd:90:8b:87:23:eb:f2:d9:87: 0b:cf:8a:7b:98:b6:41:9c:c5:c2:2e:26:04:99:f9:60:5a:01: cb:b2:4c:0f:06:39:2a:ec:f5:dd:65:a8:c6:56:13:d5:9d:45: 88:25:61:a6:00:be:85:cd:d9:af:fa:2f:b9:7a:ba:17:77:0f: 83:ec:9b:b8:9e:78:bb:20:a6:f8:31:81:d4:e7:93:7d:10:81: 37:64:36:2d:28:e2:bc:80:c0:41:1d:b7:f0:5c:c6:e0:06:ac: 04:60:a2:f1:9e:33:cc:1c:85:89:6b:e3:fd:35:4d:69:e3:03: 0b:de:4c:05:0b:5d:4c:82:3b:9d:3b:ca:3b:8d:52:9f:87:4c: f2:94:7d:11:cf:5a:0f:59:98:52:21:a5:82:ac:fe:15:39:da: ae:68:6d:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwMzI4MjM1MjEzWhcNMjUwNDA0MjM1MjEzWjAYMRYwFAYD VQQDEw02N2U3MzYyZS02YzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1c08Dh4M1Sg1pfJc0FN3r5/uOEuXRWiNBZ4CEPdM4GnRtdRio0C1Y+bzG75 laIsSoWaGwd3UISAY7hRDzNLW0YLFs7xkqQ2IGH6Cvm4dE/ca0uejZI7WgIzWi5q SL0kkB/PjaXBj6WSt5c2wS++3EDkhKNOzGBL51/fuCkYFm7MIJWDy3GjYt2Zj2Bo 9vez3kpiHTwAG+s6JuBOtCjrD+uGqWlZsmbJHE+LtC8ZNUMGMp4qDpGfsPILLVvG JjMjTPPO26sn/A2gSkN7tK/LaamLf3Bo5lHKxNLFbG5dQLVxtx+sCSDpPLMq260s EgkgP7b1r6y5ywNJHhCwXtGI2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5+WDjZ QVwHUHNYXUMYZY4mnkmqMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrrJsD+gjk8N+5Tf1ixcv/VCLlIlg4wYekRo8lSVluMbM2UhWILdFr 28lliN18aQyS/Vbytj16Sd2PTovDqQuHJJcmffv7LtjPDnMbl3LbOuVtSyJE6CBP 1EjJqUJHoZNAdxr9kIuHI+vy2YcLz4p7mLZBnMXCLiYEmflgWgHLskwPBjkq7PXd ZajGVhPVnUWIJWGmAL6Fzdmv+i+5eroXdw+D7Ju4nni7IKb4MYHU55N9EIE3ZDYt KOK8gMBBHbfwXMbgBqwEYKLxnjPMHIWJa+P9NU1p4wML3kwFC11MgjudO8o7jVKf h0zylH0Rz1oPWZhSIaWCrP4VOdquaG0h -----END CERTIFICATE-----Generated at Fri Apr 4 22:24:45 2025 by rpki-client