$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: HEAhu1IknWGvQCV3TUWk4e2l+pfTTZ4lQX1yzjfsuMs= Subject key identifier: A9:B0:75:91:A0:49:1E:C6:43:63:5F:2A:4C:6B:A1:A5:E1:5E:18:DE Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 01DA Signing time: Mon 09 Jun 2025 01:53:40 +0000 Manifest this update: Mon 09 Jun 2025 01:53:39 +0000 Manifest next update: Mon 16 Jun 2025 01:53:39 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: 4z/KFTs3Lh2pqUgXukVHome5jzxlF8uTVpw0+e2aYag=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: aHr48jg9C6XT7m5IpFV6+gOg/wu3/75OLv4ksFQsrBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 01:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD, serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: Jun 9 01:53:39 2025 GMT Not After : Jun 16 01:53:39 2025 GMT Subject: CN=68463ea3-c976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b8:14:90:a2:f8:d5:97:a6:54:37:b8:dd:fe: 2d:c1:4c:3b:1a:74:52:50:93:76:1f:97:d0:a0:25: 7a:c4:d5:85:04:bb:43:82:15:a6:5e:95:04:6d:72: 65:7b:79:9a:70:2f:71:57:4c:8d:48:a4:fa:0b:63: 23:9d:d0:ad:13:d6:3f:96:a1:d1:1e:45:c8:55:12: 53:63:86:49:b2:84:24:8f:d1:08:51:10:58:87:37: 41:7c:f5:c3:a6:23:fe:0f:12:db:d6:23:69:b0:8b: f0:24:ea:a5:33:39:bb:01:7e:1f:8f:ac:82:39:fb: 1b:a1:36:54:86:f3:0e:e9:5d:42:c6:43:4a:63:50: b6:bb:92:91:c1:dd:9c:ba:be:c3:a4:d0:87:30:78: 49:27:d6:cc:3a:5e:d4:26:46:59:72:2a:bc:a8:07: 05:e3:61:ba:b9:54:9d:eb:81:08:50:ac:d9:2a:1f: 55:46:23:97:8e:d1:cb:97:da:1e:c2:77:93:3a:ba: ea:cc:c8:7e:6a:3d:81:76:5a:39:1b:93:5e:c8:78: a6:7b:a9:53:37:5e:f9:1b:1f:4a:70:bd:a9:18:92: d4:09:12:4e:39:f6:85:3d:ad:ad:be:b2:90:84:7d: f0:64:cd:f1:f0:ab:85:52:47:ce:0e:80:d6:db:4d: 1d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B0:75:91:A0:49:1E:C6:43:63:5F:2A:4C:6B:A1:A5:E1:5E:18:DE X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:07:26:14:21:a1:eb:2f:39:b8:1a:70:c2:e1:d1:9c:36:e1: 9d:eb:d3:e8:f6:7d:38:3e:bf:d4:28:f7:a1:60:0c:16:ab:dc: 7b:84:0b:5d:64:c6:c0:70:f0:bf:af:c4:67:47:90:f5:11:2d: 6b:cc:c9:fc:bb:44:4f:09:05:be:9c:15:66:80:ac:21:4c:2e: 2b:56:fb:2b:b8:c6:ba:21:18:40:f2:b9:16:20:a2:fe:ee:0c: 8b:a3:49:96:e3:0a:df:c3:b7:8a:72:f3:11:50:ce:ff:ea:d1: e4:32:27:73:54:a6:76:c7:3e:db:19:9f:b6:f1:ea:e3:7f:34: f7:27:51:28:00:b9:c6:93:ee:7e:6f:ce:cd:22:ba:64:84:74: e1:fa:46:ad:5b:bd:99:7e:23:c1:eb:05:30:74:89:c8:b4:82: 94:e6:f7:0c:8b:e8:0f:84:d4:27:be:fa:94:a8:90:9b:58:ca: 4b:3b:bd:f6:78:b3:83:8e:ed:4e:c6:ae:05:9f:d5:04:74:d0: 51:b7:d4:f0:9a:fa:55:5c:44:4b:91:a1:02:5f:8d:ba:b3:93: 96:30:94:4c:70:16:fa:80:a4:4b:65:9c:29:67:03:2f:8a:47: b9:bb:18:ea:e8:78:35:95:36:9e:02:fe:0b:f2:25:c0:79:86: ee:6b:c6:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjUwNjA5MDE1MzM5WhcNMjUwNjE2MDE1MzM5WjAYMRYwFAYD VQQDEw02ODQ2M2VhMy1jOTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bgUkKL41ZemVDe43f4twUw7GnRSUJN2H5fQoCV6xNWFBLtDghWmXpUEbXJl e3macC9xV0yNSKT6C2MjndCtE9Y/lqHRHkXIVRJTY4ZJsoQkj9EIURBYhzdBfPXD piP+DxLb1iNpsIvwJOqlMzm7AX4fj6yCOfsboTZUhvMO6V1CxkNKY1C2u5KRwd2c ur7DpNCHMHhJJ9bMOl7UJkZZciq8qAcF42G6uVSd64EIUKzZKh9VRiOXjtHLl9oe wneTOrrqzMh+aj2Bdlo5G5NeyHime6lTN175Gx9KcL2pGJLUCRJOOfaFPa2tvrKQ hH3wZM3x8KuFUkfODoDW200dWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmwdZGg SR7GQ2NfKkxroaXhXhjeMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOByYUIaHrLzm4GnDC4dGcNuGd69Po9n04Pr/UKPehYAwWq9x7hAtd ZMbAcPC/r8RnR5D1ES1rzMn8u0RPCQW+nBVmgKwhTC4rVvsruMa6IRhA8rkWIKL+ 7gyLo0mW4wrfw7eKcvMRUM7/6tHkMidzVKZ2xz7bGZ+28erjfzT3J1EoALnGk+5+ b87NIrpkhHTh+katW72ZfiPB6wUwdInItIKU5vcMi+gPhNQnvvqUqJCbWMpLO732 eLODju1Oxq4Fn9UEdNBRt9TwmvpVXERLkaECX426s5OWMJRMcBb6gKRLZZwpZwMv ike5uxjq6Hg1lTaeAv4L8iXAeYbua8Z6 -----END CERTIFICATE-----Generated at Tue Jun 10 06:05:19 2025 by rpki-client