$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: NJFmaLUq/QJcKrZwUNVmTCpKZS0J4z/QlfgKmfb3xAY= Subject key identifier: 51:1B:37:77:79:43:CB:E3:6C:9E:DA:67:E9:B0:23:04:45:C1:48:C0 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 0100 Signing time: Sat 31 May 2025 04:47:25 +0000 Manifest this update: Sat 31 May 2025 04:47:25 +0000 Manifest next update: Sat 07 Jun 2025 04:47:25 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: zj9vAPbTulGJXicDEllxKNC6PNy/w1NoVGD341cBR9w=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: PzMfqv/JTphrRExc8y93sSocbbq7cPC2A1xhsVGan2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: May 31 04:47:25 2025 GMT Not After : Jun 7 04:47:25 2025 GMT Subject: CN=683a89dd-f01e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e8:dc:32:ad:a4:48:88:f3:58:0d:f0:64:1b: 6d:c5:a5:de:48:2d:3c:72:ef:34:98:b5:a8:fc:b6: 59:8e:60:fa:fd:3b:59:5d:88:6c:3f:85:92:1d:89: 45:d3:2d:48:13:d6:f3:f3:9e:67:d4:34:35:61:1a: 72:31:47:61:ed:26:cf:9d:f4:0c:01:dd:42:08:4b: c6:3c:95:45:5c:e0:20:67:3f:08:95:27:22:2a:4f: 08:24:db:c0:30:f6:69:09:25:0b:79:73:3a:d9:4c: 6a:e6:66:f7:33:80:d5:64:c3:c7:be:fe:60:9d:3d: b9:87:52:9b:3a:8c:25:74:1f:60:ee:5f:e8:26:96: 43:eb:de:06:c3:9b:73:46:74:9c:8a:76:38:be:0a: 13:88:0e:2c:5f:71:ca:25:74:3c:df:21:02:e5:50: 06:76:92:79:40:2e:e9:aa:78:f7:9b:2e:48:e9:f6: 9e:23:5e:13:77:8a:72:27:c7:3b:68:ce:7e:38:cb: 89:5f:05:26:fa:06:19:9d:44:03:b7:60:27:0f:4a: a9:ae:d7:8d:92:9c:9d:69:8f:be:8d:85:10:bd:80: 07:e6:ca:f0:73:d5:03:d4:47:a5:3e:5e:7a:ea:91: a7:51:c2:bc:7b:9f:e5:b6:e2:64:6c:fe:9d:c6:8d: 35:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:1B:37:77:79:43:CB:E3:6C:9E:DA:67:E9:B0:23:04:45:C1:48:C0 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:50:e2:23:f0:0d:87:15:18:f7:63:ba:0f:95:4e:26:f2:6e: 18:76:ae:78:dc:37:db:9a:e7:6b:7f:a1:c8:d1:da:bc:c4:a9: 42:74:47:55:28:a0:9c:fd:1a:bb:2b:29:e1:a7:8b:85:17:99: ff:06:ac:21:d8:3b:27:e0:90:b4:b7:08:3e:7c:47:de:0e:dd: 56:58:c7:c1:81:96:f5:4d:c2:04:67:5b:9d:99:eb:e0:f0:e9: 4f:4e:7d:fd:02:fa:31:a6:f2:c6:a1:6e:d5:d3:dd:6f:34:8c: 79:7c:93:ca:6d:bb:c0:96:54:c4:aa:dd:e4:27:8f:65:0e:96: 5b:99:d4:97:da:60:bc:b0:a5:f4:24:d7:a6:10:14:0d:03:f4: 3e:30:2c:f7:f0:d7:5b:e7:05:24:ae:e5:df:fe:be:7e:12:4d: 80:e1:fb:f9:f0:18:ea:bf:0b:0d:1f:a7:42:f5:42:16:e9:3b: 28:2a:70:c0:8b:2c:83:94:07:7b:2d:bf:bd:55:8c:a7:2f:d8: 91:36:19:52:fc:8e:49:d9:5c:f7:8a:b0:25:72:15:8e:3a:42: cb:60:9b:39:ae:41:60:53:8c:15:61:46:e3:ae:b7:6e:62:9e: 8b:d6:36:38:de:c4:df:4b:a7:c9:af:2c:ea:ba:27:12:3a:ee: 6c:3b:3f:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjUwNTMxMDQ0NzI1WhcNMjUwNjA3MDQ0NzI1WjAYMRYwFAYD VQQDEw02ODNhODlkZC1mMDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOjcMq2kSIjzWA3wZBttxaXeSC08cu80mLWo/LZZjmD6/TtZXYhsP4WSHYlF 0y1IE9bz855n1DQ1YRpyMUdh7SbPnfQMAd1CCEvGPJVFXOAgZz8IlSciKk8IJNvA MPZpCSULeXM62Uxq5mb3M4DVZMPHvv5gnT25h1KbOowldB9g7l/oJpZD694Gw5tz RnScinY4vgoTiA4sX3HKJXQ83yEC5VAGdpJ5QC7pqnj3my5I6faeI14Td4pyJ8c7 aM5+OMuJXwUm+gYZnUQDt2AnD0qprteNkpydaY++jYUQvYAH5srwc9UD1EelPl56 6pGnUcK8e5/ltuJkbP6dxo01GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEbN3d5 Q8vjbJ7aZ+mwIwRFwUjAMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTUOIj8A2HFRj3Y7oPlU4m8m4Ydq543Dfbmudrf6HI0dq8xKlCdEdV KKCc/Rq7Kynhp4uFF5n/Bqwh2Dsn4JC0twg+fEfeDt1WWMfBgZb1TcIEZ1udmevg 8OlPTn39AvoxpvLGoW7V091vNIx5fJPKbbvAllTEqt3kJ49lDpZbmdSX2mC8sKX0 JNemEBQNA/Q+MCz38Ndb5wUkruXf/r5+Ek2A4fv58BjqvwsNH6dC9UIW6TsoKnDA iyyDlAd7Lb+9VYynL9iRNhlS/I5J2Vz3irAlchWOOkLLYJs5rkFgU4wVYUbjrrdu Yp6L1jY43sTfS6fJryzquicSOu5sOz84 -----END CERTIFICATE-----Generated at Sat May 31 17:49:35 2025 by rpki-client