$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: CKRHPKXtrQPK4bDNMBJVUQvmawG3cfqLhCg2lhexdrs= Subject key identifier: 5B:73:72:89:D4:3E:62:34:42:EE:C2:54:59:B5:CD:66:B9:A5:58:19 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 0550 Signing time: Sat 19 Jul 2025 00:05:56 +0000 Manifest this update: Sat 19 Jul 2025 00:05:55 +0000 Manifest next update: Sat 26 Jul 2025 00:05:55 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: 87j37rL7V9H9XIYjOOjzicPGBMVdYKwtsHmbVBu4+yI=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:05:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1382 (0x566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Jul 19 00:05:55 2025 GMT Not After : Jul 26 00:05:55 2025 GMT Subject: CN=687ae164-c616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6d:22:94:64:94:a5:cc:6a:c8:fd:b6:4c:aa: 4d:ef:5e:5c:95:7a:69:54:1d:cf:75:ab:32:e9:83: 7a:31:5a:f7:88:7f:16:f5:26:cd:21:da:68:cd:5e: f5:7e:5a:0c:07:e5:0a:07:14:2a:ac:a4:46:a5:c9: 67:b5:fb:68:5f:66:68:4a:61:37:4d:b1:c5:54:4c: 0e:60:75:03:07:7d:22:35:7e:1e:23:26:a0:24:39: 2f:1d:40:72:fe:98:aa:1d:82:93:29:6a:45:20:aa: 5a:6a:ed:dc:fa:ba:d7:f5:c4:c1:86:a0:49:5d:26: f4:6c:9a:d0:bb:de:ff:0f:23:84:83:cf:b7:d4:87: 65:73:49:35:78:18:47:c7:1b:65:36:a5:3e:29:1b: 1e:d0:a6:34:42:60:83:24:05:c3:d9:24:63:12:d5: ca:64:a9:15:da:9c:0c:a0:da:e6:54:4f:3c:75:4f: f3:6a:bf:dd:ff:d0:c1:5b:8f:a1:4c:5f:1a:c6:47: b8:cd:91:0b:62:a0:d5:c3:36:d8:2d:ca:e3:e3:af: 21:1f:1d:d4:aa:41:31:14:bf:af:f9:f3:79:84:1f: 2b:13:88:dd:d0:f0:8a:02:e2:a6:3c:06:48:f2:0e: 08:36:66:9d:26:76:9f:2b:36:8a:bd:50:5b:1f:45: 83:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:73:72:89:D4:3E:62:34:42:EE:C2:54:59:B5:CD:66:B9:A5:58:19 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:55:40:d7:22:45:58:7e:24:38:0a:fa:ca:91:50:0a:ed:9c: 12:ad:36:8b:a9:1d:86:88:1c:96:3b:c1:cb:b1:13:e5:a8:b9: 3a:a0:fb:54:76:6c:37:0b:98:4e:4d:a6:47:33:91:e3:c4:e3: f4:8b:ef:03:e4:6e:90:c0:d3:85:20:da:60:5d:24:76:60:ce: 7e:c2:33:4a:b1:46:94:a6:a5:35:fb:b2:63:b9:be:75:c2:02: e2:cd:47:81:96:0e:40:e9:18:50:99:d6:6f:b8:ba:6b:d0:8a: 89:0d:46:86:35:92:f7:79:7f:fa:bd:7e:83:cf:c3:2f:6c:63: 60:f2:14:a3:57:77:6d:30:18:82:64:4c:a9:b8:04:e9:d7:b0: 8e:76:6c:4e:0c:52:09:67:cd:3b:08:bf:d0:6c:42:4b:e9:b3: 5f:46:20:d4:54:93:b7:1d:53:7a:4a:e7:ae:98:e9:0b:0c:da: 41:78:c9:ea:ad:5a:02:35:72:84:cc:3a:38:9d:76:e6:81:3f: 62:39:6d:38:f4:7d:de:e7:c8:28:29:4b:bc:46:59:63:64:80: 94:3f:cc:43:7f:09:7f:37:20:2c:63:48:28:1a:5a:9b:90:bd: 16:d5:9c:6a:81:3d:0e:96:10:b6:45:c7:8f:4c:e0:ac:d0:ce: b6:78:ca:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwNzE5MDAwNTU1WhcNMjUwNzI2MDAwNTU1WjAYMRYwFAYD VQQDEw02ODdhZTE2NC1jNjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW0ilGSUpcxqyP22TKpN715clXppVB3Pdasy6YN6MVr3iH8W9SbNIdpozV71 floMB+UKBxQqrKRGpclntftoX2ZoSmE3TbHFVEwOYHUDB30iNX4eIyagJDkvHUBy /piqHYKTKWpFIKpaau3c+rrX9cTBhqBJXSb0bJrQu97/DyOEg8+31Idlc0k1eBhH xxtlNqU+KRse0KY0QmCDJAXD2SRjEtXKZKkV2pwMoNrmVE88dU/zar/d/9DBW4+h TF8axke4zZELYqDVwzbYLcrj468hHx3UqkExFL+v+fN5hB8rE4jd0PCKAuKmPAZI 8g4INmadJnafKzaKvVBbH0WDawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtzconU PmI0Qu7CVFm1zWa5pVgZMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZVUDXIkVYfiQ4CvrKkVAK7ZwSrTaLqR2GiByWO8HLsRPlqLk6oPtU dmw3C5hOTaZHM5HjxOP0i+8D5G6QwNOFINpgXSR2YM5+wjNKsUaUpqU1+7Jjub51 wgLizUeBlg5A6RhQmdZvuLpr0IqJDUaGNZL3eX/6vX6Dz8MvbGNg8hSjV3dtMBiC ZEypuATp17COdmxODFIJZ807CL/QbEJL6bNfRiDUVJO3HVN6SueumOkLDNpBeMnq rVoCNXKEzDo4nXbmgT9iOW049H3e58goKUu8RlljZICUP8xDfwl/NyAsY0goGlqb kL0W1ZxqgT0OlhC2RcePTOCs0M62eMpu -----END CERTIFICATE-----Generated at Sun Jul 20 16:50:59 2025 by rpki-client