$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: 81vpmhf/GqwyBi2aO74PHsB+1vbb9no8+SwNTt3JiRM= Subject key identifier: AD:A3:DA:8F:00:12:AD:33:CC:3E:63:E1:E5:FB:47:80:3D:1F:60:C0 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 0534 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 0527 Signing time: Tue 22 Jul 2025 23:56:53 +0000 Manifest this update: Tue 22 Jul 2025 23:56:53 +0000 Manifest next update: Tue 29 Jul 2025 23:56:52 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: 9BAkRSDw/N6XDSM4JpzY9eCCnxn7GTf+4P2EFCMm/3s=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: Qi+WEKvtCWtvGFWFUb38yBqHoAd83mtV7+scTOUOMc4=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: aLricGiGlyJJZTbRrMECo3zkg40wJti6wIrN+dUyP7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:56:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1332 (0x534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Jul 22 23:56:53 2025 GMT Not After : Jul 29 23:56:52 2025 GMT Subject: CN=68802545-d390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c2:68:8e:b5:cc:0f:fa:a0:7b:ea:b1:2f:d7: b9:ad:23:a7:c2:0c:ea:f1:36:4c:de:ba:c7:b5:b7: ba:af:eb:06:17:f2:b3:12:d3:48:bd:06:cf:12:c1: 63:8c:9f:f9:cf:af:08:bf:3d:c1:a6:ac:1b:74:51: b8:50:ba:e9:29:3f:64:ff:7b:f3:04:9f:04:6f:25: 08:04:67:0f:d7:9a:cb:05:1b:d8:c2:cf:94:7c:bf: c9:47:80:c7:7b:3f:00:4d:b8:b7:11:98:e6:15:0d: 46:e3:28:0e:b7:76:4c:c2:cb:d4:07:52:44:db:0a: a3:de:22:20:52:25:08:50:05:23:8d:5d:cb:fb:20: ae:ea:5b:93:10:94:4e:52:58:b0:64:77:72:b8:9b: 19:db:06:4a:6b:f2:36:dd:9d:1a:3c:2c:40:be:5c: 19:d2:45:b1:62:b6:b1:39:16:e6:0f:2d:93:1e:5b: ec:33:6c:d9:45:47:3b:9f:3c:72:e7:58:46:6d:c3: 70:5a:8b:d7:50:88:00:7f:67:a8:db:f7:c6:64:17: f4:75:aa:73:fb:a4:1e:fb:44:4c:d7:b2:17:8c:66: bc:73:82:b5:91:45:06:a1:ba:ab:bf:7d:0e:df:c6: cd:19:4b:7a:06:02:c1:2a:9e:f8:f2:8a:17:44:77: 9d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A3:DA:8F:00:12:AD:33:CC:3E:63:E1:E5:FB:47:80:3D:1F:60:C0 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:03:75:80:c7:c9:cc:35:10:b6:e2:ee:6f:8c:6c:42:ac:5d: 01:75:bc:a1:ef:96:45:99:bd:1d:8f:9e:09:e5:89:88:73:5c: b2:e5:8c:0d:b3:e8:4e:c4:b7:a4:af:fe:64:f5:10:45:d3:21: e4:b3:aa:d5:b3:bf:2c:28:66:98:7e:ed:cd:9b:3f:29:07:25: c2:a9:28:50:cc:b9:8e:dd:c5:c6:47:62:17:99:e1:0d:dd:04: ba:74:17:07:53:d0:85:e9:32:89:22:cf:3a:14:db:dd:ba:cf: 32:e2:fc:63:ab:37:0a:a0:43:9b:22:5d:0b:3b:ad:f2:65:44: 62:ca:ac:6c:10:2b:c9:c1:60:30:d0:9e:ef:e4:6e:3c:c4:93: 67:b9:fa:e9:73:e1:ed:47:53:78:06:8f:4f:57:60:8d:2a:8a: fc:6e:c6:bc:0d:91:d6:ac:cc:33:55:cc:f7:cf:f6:09:5f:7c: fd:84:f7:95:ac:6e:0c:10:bd:60:97:81:89:52:0f:62:4e:b1: bd:38:97:88:f7:53:a7:87:41:67:ab:77:9f:c6:83:ea:ff:99: d3:ab:d5:1f:48:1c:06:f7:0a:a6:ae:cc:4e:bd:4f:21:4f:95: 8e:ce:76:b8:80:1d:b8:fa:e4:f6:ff:35:3a:50:26:15:b8:7c: 54:7b:77:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUwNzIyMjM1NjUzWhcNMjUwNzI5MjM1NjUyWjAYMRYwFAYD VQQDEw02ODgwMjU0NS1kMzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMJojrXMD/qge+qxL9e5rSOnwgzq8TZM3rrHtbe6r+sGF/KzEtNIvQbPEsFj jJ/5z68Ivz3BpqwbdFG4ULrpKT9k/3vzBJ8EbyUIBGcP15rLBRvYws+UfL/JR4DH ez8ATbi3EZjmFQ1G4ygOt3ZMwsvUB1JE2wqj3iIgUiUIUAUjjV3L+yCu6luTEJRO UliwZHdyuJsZ2wZKa/I23Z0aPCxAvlwZ0kWxYraxORbmDy2THlvsM2zZRUc7nzxy 51hGbcNwWovXUIgAf2eo2/fGZBf0dapz+6Qe+0RM17IXjGa8c4K1kUUGobqrv30O 38bNGUt6BgLBKp748ooXRHedeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2j2o8A Eq0zzD5j4eX7R4A9H2DAMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLA3WAx8nMNRC24u5vjGxCrF0Bdbyh75ZFmb0dj54J5YmIc1yy5YwN s+hOxLekr/5k9RBF0yHks6rVs78sKGaYfu3Nmz8pByXCqShQzLmO3cXGR2IXmeEN 3QS6dBcHU9CF6TKJIs86FNvdus8y4vxjqzcKoEObIl0LO63yZURiyqxsECvJwWAw 0J7v5G48xJNnufrpc+HtR1N4Bo9PV2CNKor8bsa8DZHWrMwzVcz3z/YJX3z9hPeV rG4MEL1gl4GJUg9iTrG9OJeI91Onh0Fnq3efxoPq/5nTq9UfSBwG9wqmrsxOvU8h T5WOzna4gB24+uT2/zU6UCYVuHxUe3dd -----END CERTIFICATE-----Generated at Wed Jul 23 12:20:54 2025 by rpki-client