$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json) Hash identifier: +w5Gkhr9+WrRHsy9vY6RVnZUWbeit7u9GPXQn3Ksr14= Subject key identifier: 1B:05:D2:73:5A:16:E7:98:8C:86:5D:7A:3F:12:DF:BD:56:EE:AC:4C Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 2241 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft Manifest number: 21F9 Signing time: Sat 31 May 2025 15:51:27 +0000 Manifest this update: Sat 31 May 2025 15:51:26 +0000 Manifest next update: Sat 07 Jun 2025 15:51:26 +0000 Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: jok2sP42Z+VcEWlNYOD2LSqC6mtckTsiDARFVnILLS0=) 2: 434C7B222F6111F0AB3C5B1BC4F9AE02.roa (hash: XvWKsJa1woOF7ubARcyRH/2cUfmSiZux7kXvpLbBl4U=) 3: B937CBBA6DD411EF977CA52AC4F9AE02.roa (hash: fE0umNnJvdXLanVJxxLnguv+68JgjMwDQM/fBcaFIgY=) 4: 722285E02F6111F08D90CD1BC4F9AE02.roa (hash: Mlvm4A3sHMT8TjKLsESvcI+NpOJCscRsP28t9MfdGE4=) 5: 235019148A3911EF864D8512C4F9AE02.roa (hash: ya6jiJnMNDX1HzsS29yHChzvTETOzBsBcr2y+nIgd1Y=) 6: FD2941A0BBC311EEBE58430EC4F9AE02.roa (hash: y9g4n21UCTqNjGbPSMXx3pzlzLx/iVjZI0pRarDixiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 15:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8769 (0x2241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: May 31 15:51:26 2025 GMT Not After : Jun 7 15:51:26 2025 GMT Subject: CN=683b257e-754c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:58:10:51:78:39:63:34:b8:ee:aa:d1:99:8a: be:f4:69:0c:40:c8:d6:03:2d:23:5e:e9:04:57:8c: cd:25:ae:b6:74:5b:b1:62:05:c8:c8:66:99:67:00: c4:0b:29:14:33:7d:da:87:8a:c9:95:8f:9b:91:1c: f4:16:ae:1b:3b:db:8c:be:5b:45:b6:f4:50:da:1b: 53:44:08:c0:95:b2:fa:77:43:30:28:97:8b:ac:dc: 69:e9:3e:fc:d2:aa:7d:e0:62:92:72:72:5d:af:af: dd:d9:1f:24:61:48:ff:83:39:b4:41:20:58:ff:67: e7:2a:4c:43:50:34:0c:6e:de:ab:d3:40:c8:ab:cf: ce:24:0b:92:f1:39:00:e6:71:a6:b9:39:03:a9:68: 0a:dd:35:80:bf:96:3f:21:ce:7f:3e:a7:0a:ba:e8: 69:22:11:23:88:a0:f7:36:90:4a:b7:11:0f:b3:8a: 8d:f7:c4:a2:3c:06:ad:4d:8f:6e:5a:ab:d0:65:26: aa:59:5a:24:50:de:2f:7d:cb:de:54:75:a8:bc:01: 01:16:a9:b3:82:df:5b:12:4b:08:81:ef:a4:bb:5b: 55:fe:3b:53:c7:5b:2b:d0:8e:b1:19:bb:5c:a4:54: b0:0c:35:46:48:41:1e:5d:ba:e0:17:8e:6a:aa:d8: 91:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:05:D2:73:5A:16:E7:98:8C:86:5D:7A:3F:12:DF:BD:56:EE:AC:4C X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:76:ad:40:e4:a2:e3:11:fc:ee:68:bd:ea:1d:f7:bb:59:35: 25:31:4f:d9:4f:22:e5:c1:83:11:2f:69:e9:b3:e0:ee:a4:a7: b8:1f:71:98:fe:e3:01:d3:de:e8:2e:c8:5f:44:62:23:87:ae: 6e:51:82:7b:ad:f9:c2:9f:bc:a1:37:61:51:37:ef:d5:69:b0: c6:e1:c4:d8:96:0c:15:79:61:ce:e4:7f:9f:66:f2:32:59:5f: 2b:99:06:aa:42:03:ff:62:15:71:9b:8d:05:c8:44:cf:06:ad: 8c:2e:c5:dc:82:c0:c7:3c:35:f1:ca:e1:31:7d:fc:5c:c1:59: 1e:0c:a2:51:3b:2c:94:6e:d1:cd:08:26:2a:a8:8c:65:86:b4: fd:69:60:f2:e6:d4:20:c9:a6:7d:6b:55:ad:a1:2c:66:b7:ec: 71:08:86:e7:da:77:82:3c:dd:8d:e0:13:61:4c:32:18:25:f4: 07:f3:c5:87:c4:95:2c:59:11:bb:79:89:d1:c1:c2:61:7e:10: 6a:a8:39:61:62:53:19:4b:82:d9:ad:46:4f:02:ad:9e:84:bb: df:39:4b:59:d9:29:84:22:af:10:f9:93:14:ec:bc:13:19:b5: eb:76:aa:8e:5a:f4:5d:1f:71:41:75:be:97:72:0c:63:16:7b: d1:f5:30:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUwNTMxMTU1MTI2WhcNMjUwNjA3MTU1MTI2WjAYMRYwFAYD VQQDEw02ODNiMjU3ZS03NTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FgQUXg5YzS47qrRmYq+9GkMQMjWAy0jXukEV4zNJa62dFuxYgXIyGaZZwDE CykUM33ah4rJlY+bkRz0Fq4bO9uMvltFtvRQ2htTRAjAlbL6d0MwKJeLrNxp6T78 0qp94GKScnJdr6/d2R8kYUj/gzm0QSBY/2fnKkxDUDQMbt6r00DIq8/OJAuS8TkA 5nGmuTkDqWgK3TWAv5Y/Ic5/PqcKuuhpIhEjiKD3NpBKtxEPs4qN98SiPAatTY9u WqvQZSaqWVokUN4vfcveVHWovAEBFqmzgt9bEksIge+ku1tV/jtTx1sr0I6xGbtc pFSwDDVGSEEeXbrgF45qqtiRPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsF0nNa FueYjIZdej8S371W7qxMMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0 N09GTlFFV2JxNXhvOXBoVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwdq1A5KLjEfzuaL3qHfe7WTUlMU/ZTyLlwYMRL2nps+DupKe4H3GY /uMB097oLshfRGIjh65uUYJ7rfnCn7yhN2FRN+/VabDG4cTYlgwVeWHO5H+fZvIy WV8rmQaqQgP/YhVxm40FyETPBq2MLsXcgsDHPDXxyuExffxcwVkeDKJROyyUbtHN CCYqqIxlhrT9aWDy5tQgyaZ9a1WtoSxmt+xxCIbn2neCPN2N4BNhTDIYJfQH88WH xJUsWRG7eYnRwcJhfhBqqDlhYlMZS4LZrUZPAq2ehLvfOUtZ2SmEIq8Q+ZMU7LwT GbXrdqqOWvRdH3FBdb6XcgxjFnvR9TD0 -----END CERTIFICATE-----Generated at Sat May 31 17:45:05 2025 by rpki-client