$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: c4RPXczgbq5sS8TaF/+VnkvmJwpqXQK3lSLHYJynnNU= Subject key identifier: D7:1F:22:93:62:28:43:5D:0B:4F:54:53:DB:49:3D:20:F7:22:F0:D4 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 011E Signing time: Sat 31 May 2025 04:26:38 +0000 Manifest this update: Sat 31 May 2025 04:26:37 +0000 Manifest next update: Sat 07 Jun 2025 04:26:37 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: 6CnhPRcEokbYKZ17+8XLgN78AA9f5EzfdTkRwfT9czE=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3, serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: May 31 04:26:37 2025 GMT Not After : Jun 7 04:26:37 2025 GMT Subject: CN=683a84fe-1108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:2d:95:12:06:67:c5:84:aa:8e:ce:cc:b3:de: 25:1b:93:55:17:01:04:d3:86:01:11:40:17:c5:42: c8:12:a6:36:da:b8:80:4f:d0:47:c6:79:30:6d:3f: 28:62:97:c2:19:f6:3d:b5:ae:69:8d:34:c3:8e:d5: e0:cb:fa:2f:af:db:6a:99:da:38:24:2a:c2:98:de: 5c:1a:60:90:14:22:28:7f:63:a0:e8:8d:4e:42:f0: ea:c4:68:ea:fe:16:bb:f4:89:87:f2:72:61:a2:bc: 0e:c9:45:ad:60:ef:74:ae:1d:5d:ea:a4:4d:5c:c5: 5b:ac:ae:89:bc:76:6f:09:17:fc:aa:58:c9:03:36: cc:d4:ed:21:5c:ab:81:72:fa:9d:63:fc:74:61:3c: dd:d1:e9:bf:5b:58:24:2c:2e:d7:dc:85:d2:13:eb: 3e:37:88:57:cc:5c:66:af:b1:1f:be:87:41:b0:0c: 87:99:b3:6f:06:1f:a0:51:b6:7a:fb:88:fe:50:84: 82:bf:a4:31:6b:77:54:84:f4:a5:d3:20:1f:c0:35: 46:ae:76:aa:a0:e5:03:f4:8a:fe:be:ed:08:a1:48: 80:67:78:fc:5b:0a:41:af:ab:d7:55:5e:e5:22:06: ef:be:ad:4d:b8:da:4c:7f:93:1b:a4:51:67:0b:a2: 5b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:1F:22:93:62:28:43:5D:0B:4F:54:53:DB:49:3D:20:F7:22:F0:D4 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ea:e1:11:04:e1:44:55:4a:a5:e6:2a:45:a3:44:0a:fe:1a: f6:cf:62:ae:a0:e2:2e:f4:32:47:28:05:6a:1f:ac:57:59:2e: 45:65:47:c2:9c:84:b2:fa:43:d3:da:be:83:93:3a:ed:25:e3: ca:b6:bf:37:ba:b7:2a:26:86:9e:83:42:40:d3:eb:8b:bd:14: 46:d4:6d:f3:be:6c:d5:7f:67:14:77:b0:80:67:75:f4:12:a3: 16:9a:01:f1:89:c5:01:fa:94:84:2e:9e:c4:9e:72:30:08:01: 89:96:8f:7e:ab:f7:3e:20:88:5b:16:9f:1c:19:e6:dd:a7:6f: 05:8b:45:9a:5c:eb:9a:80:a3:f2:fd:83:3b:b0:21:16:e9:6a: 68:5b:64:1a:de:73:e3:44:7f:63:71:b0:0d:50:82:e9:1d:b6: 37:cc:d0:4a:8a:4a:77:78:d1:3f:28:99:12:04:40:65:8d:89: f4:0e:59:26:b9:16:5f:45:26:94:11:60:7a:1e:7c:0c:de:18: 7e:77:00:bf:09:6e:e2:e4:35:4d:77:da:36:30:6c:0d:d1:e3: 7b:95:94:a9:79:45:bd:bd:fd:0b:a8:2b:99:a1:58:27:db:0f: 11:44:90:b1:37:4d:2f:af:ec:c8:87:d9:b2:d0:54:65:ed:9b: bf:03:84:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwNTMxMDQyNjM3WhcNMjUwNjA3MDQyNjM3WjAYMRYwFAYD VQQDEw02ODNhODRmZS0xMTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7S2VEgZnxYSqjs7Ms94lG5NVFwEE04YBEUAXxULIEqY22riAT9BHxnkwbT8o YpfCGfY9ta5pjTTDjtXgy/ovr9tqmdo4JCrCmN5cGmCQFCIof2Og6I1OQvDqxGjq /ha79ImH8nJhorwOyUWtYO90rh1d6qRNXMVbrK6JvHZvCRf8qljJAzbM1O0hXKuB cvqdY/x0YTzd0em/W1gkLC7X3IXSE+s+N4hXzFxmr7EfvodBsAyHmbNvBh+gUbZ6 +4j+UISCv6Qxa3dUhPSl0yAfwDVGrnaqoOUD9Ir+vu0IoUiAZ3j8WwpBr6vXVV7l Igbvvq1NuNpMf5MbpFFnC6JbBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcfIpNi KENdC09UU9tJPSD3IvDUMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDlBMy80M0ZCNjJGQThGRTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2 QURvTDdpcGRVdHZJbmMzN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK6uERBOFEVUql5ipFo0QK/hr2z2KuoOIu9DJHKAVqH6xXWS5FZUfC nISy+kPT2r6DkzrtJePKtr83urcqJoaeg0JA0+uLvRRG1G3zvmzVf2cUd7CAZ3X0 EqMWmgHxicUB+pSELp7EnnIwCAGJlo9+q/c+IIhbFp8cGebdp28Fi0WaXOuagKPy /YM7sCEW6WpoW2Qa3nPjRH9jcbANUILpHbY3zNBKikp3eNE/KJkSBEBljYn0Dlkm uRZfRSaUEWB6HnwM3hh+dwC/CW7i5DVNd9o2MGwN0eN7lZSpeUW9vf0LqCuZoVgn 2w8RRJCxN00vr+zIh9my0FRl7Zu/A4R7 -----END CERTIFICATE-----Generated at Sat May 31 17:20:35 2025 by rpki-client