$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft File: tU-K0c7KwTb8r0eS6_0A5o6h02g.mft (raw, json) Hash identifier: LggpU+uiVIDRe6iYY+oFEUJIL0gHyfTmNq6E8OEzr4w= Subject key identifier: 80:E2:36:DD:15:AF:63:67:63:87:2B:A6:1A:02:4F:8E:22:35:32:B4 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft Manifest number: 0E Signing time: Sun 01 Jun 2025 07:46:00 +0000 Manifest this update: Sun 01 Jun 2025 07:45:59 +0000 Manifest next update: Sun 08 Jun 2025 07:45:59 +0000 Files and hashes: 1: tU-K0c7KwTb8r0eS6_0A5o6h02g.crl (hash: OqGXHVKotkODRFTsBAKh5yViSi6Dnlkn3nSn0ID0lp4=) 2: D470A60E294511F0B1412377C4F9AE02.roa (hash: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: Jun 1 07:45:59 2025 GMT Not After : Jun 8 07:45:59 2025 GMT Subject: CN=683c0538-684d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:56:5c:f7:e1:5b:f8:52:3c:3d:15:d2:33:5b: 27:51:5b:82:61:69:e0:14:c2:4b:7c:b1:a3:db:61: 1a:45:da:11:f3:fd:d9:14:93:bc:14:b9:f0:c6:16: f2:66:24:88:85:a4:07:77:4f:5a:11:2e:9a:81:f1: 55:22:a7:ba:4a:61:8b:64:b9:5a:80:db:20:45:e5: b9:a7:b4:10:07:34:90:7b:49:12:8c:63:ce:de:32: c6:87:00:81:8e:58:33:05:77:b6:9b:74:f2:72:ec: b2:87:9c:a5:16:2c:40:36:89:3d:e3:7b:bf:db:50: 76:11:b0:e1:cf:92:b4:53:88:45:dd:f5:4e:65:04: 6f:05:ef:ba:4e:29:9c:80:6d:85:5b:fd:49:04:ce: aa:ba:9d:9e:7d:3d:da:20:c3:a9:ca:21:83:46:4d: 60:87:bb:57:cc:e2:da:d5:3b:61:bd:1a:8a:87:85: b9:eb:6c:07:78:a8:77:3d:c4:e5:b7:e6:da:45:5d: 6d:29:e6:4a:01:c2:cc:56:47:46:6a:b6:20:96:a6: 99:e1:c7:a1:6e:ed:6b:25:18:e8:32:da:16:c8:d1: e9:fa:11:6c:2b:47:7c:b5:f3:76:ca:2d:8f:49:6a: f9:85:c5:0b:5b:63:5a:e6:f4:45:11:0d:b4:5a:12: d2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E2:36:DD:15:AF:63:67:63:87:2B:A6:1A:02:4F:8E:22:35:32:B4 X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:00:0d:9c:88:ac:54:c7:d5:4e:d1:e1:d8:44:b4:d9:9d:92: 36:db:dd:d9:06:e7:84:c2:2c:87:a5:8b:76:2e:d0:37:be:25: ee:28:50:d2:e7:43:ca:87:b3:c8:6e:7f:8f:cc:54:a0:92:42: 30:5b:d0:11:a5:6a:f2:f4:10:ec:b9:f9:89:8b:00:7c:de:d2: 38:f0:18:42:e3:61:ea:22:87:04:9c:5d:21:f4:59:b1:05:ab: 21:1d:0e:a3:4f:f2:49:66:34:e6:23:60:10:7e:c2:f2:a4:64: 1d:1b:26:d3:91:36:e9:7e:18:93:8f:13:f4:6c:73:27:bc:b0: 17:2d:db:76:c5:89:39:e7:b3:f4:b3:7f:87:1c:df:15:c6:b5: 9a:4d:38:2f:0e:ee:a7:f5:97:a8:aa:c2:97:97:29:bf:34:f2: f1:6f:2b:41:8f:19:22:15:5c:2c:28:b5:fa:9c:1b:aa:8f:96: 4c:38:df:2d:95:26:6a:a2:26:cc:f0:53:8d:60:f9:71:81:e1: 4d:0d:71:5f:8e:0f:a5:fd:04:5e:88:46:8d:7a:4d:70:cd:56: 8a:38:22:8b:9c:99:59:98:5d:62:53:40:2c:b2:80:c6:4e:fa: f0:5f:ad:2c:15:95:6b:17:3d:11:30:0d:9c:60:f2:36:83:37: 4f:c9:f1:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTA2MDEwNzQ1NTlaFw0yNTA2MDgwNzQ1NTlaMBgxFjAUBgNV BAMTDTY4M2MwNTM4LTY4NGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWVlz34Vv4Ujw9FdIzWydRW4JhaeAUwkt8saPbYRpF2hHz/dkUk7wUufDGFvJm JIiFpAd3T1oRLpqB8VUip7pKYYtkuVqA2yBF5bmntBAHNJB7SRKMY87eMsaHAIGO WDMFd7abdPJy7LKHnKUWLEA2iT3je7/bUHYRsOHPkrRTiEXd9U5lBG8F77pOKZyA bYVb/UkEzqq6nZ59Pdogw6nKIYNGTWCHu1fM4trVO2G9GoqHhbnrbAd4qHc9xOW3 5tpFXW0p5koBwsxWR0ZqtiCWppnhx6Fu7WslGOgy2hbI0en6EWwrR3y183bKLY9J avmFxQtbY1rm9EURDbRaEtIxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgOI23RWv Y2djhyumGgJPjiI1MrQwHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 RENCL0Y4M0FDNDk0Mjk0NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1Ri OHIwZVM2XzBBNW82aDAyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHkADZyIrFTH1U7R4dhEtNmdkjbb3dkG54TCLIeli3Yu0De+Je4oUNLn Q8qHs8huf4/MVKCSQjBb0BGlavL0EOy5+YmLAHze0jjwGELjYeoihwScXSH0WbEF qyEdDqNP8klmNOYjYBB+wvKkZB0bJtORNul+GJOPE/Rscye8sBct23bFiTnns/Sz f4cc3xXGtZpNOC8O7qf1l6iqwpeXKb808vFvK0GPGSIVXCwotfqcG6qPlkw43y2V JmqiJszwU41g+XGB4U0NcV+OD6X9BF6IRo16TXDNVoo4IoucmVmYXWJTQCyygMZO +vBfrSwVlWsXPREwDZxg8jaDN0/J8aI= -----END CERTIFICATE-----Generated at Mon Jun 2 19:49:36 2025 by rpki-client