$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: Lhb2O+C++bSI3s9DQp+gB3GYf5+oWbQTC9t7xkfUidY= Subject key identifier: 41:61:DC:4C:3F:A5:F9:7E:C7:2F:7A:96:45:74:A7:91:22:64:3C:2D Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 0540 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 0538 Signing time: Fri 30 May 2025 23:40:52 +0000 Manifest this update: Fri 30 May 2025 23:40:51 +0000 Manifest next update: Fri 06 Jun 2025 23:40:51 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: f1eT7uYFnFxGQIJeI5iGyHm4euhHaNRULnjuKSKJNg4=) 2: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: IJTuUd/n8OCJ5dJ8YqUV7DdTVdb9JOIyqBQaxiAGn2k=) 3: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: ZpRAboF0Zy0eld2L5SbNx4a1RdCdtnze/MEYgH64xko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251, serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: May 30 23:40:51 2025 GMT Not After : Jun 6 23:40:51 2025 GMT Subject: CN=683a4203-fa10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ed:62:76:be:56:02:50:de:5a:15:19:2b:53: b8:f0:c0:b5:58:2b:99:81:e3:20:eb:cc:66:71:14: e5:11:25:3e:cf:9b:c1:59:eb:42:69:3c:0f:74:7f: 56:67:97:55:7f:b8:8a:52:41:fa:0a:cc:15:da:e0: 7c:18:03:8f:96:1b:3d:60:e3:8e:7b:72:32:3d:d1: 7a:12:5a:05:b4:9d:fb:8d:bb:8a:fa:71:63:3c:07: 68:b1:a6:12:99:e6:20:a8:df:32:eb:7f:13:9d:34: 1a:f4:ee:eb:48:ef:8e:b6:4e:20:98:50:8b:d0:84: 2c:51:99:c3:e7:78:42:db:98:c0:71:30:97:d6:44: 56:aa:c4:0e:fe:4e:9a:a9:b3:1a:eb:45:c8:3c:3c: bf:f1:fe:2a:cb:2c:3f:28:4d:30:fc:2d:43:b8:9d: c5:72:fa:71:c8:21:bb:fd:23:d4:c7:54:01:c2:55: 6e:62:61:49:08:a8:93:4f:66:d9:d2:48:75:cc:20: 3a:45:a1:6e:aa:b9:26:12:c6:a6:2b:69:b5:04:b9: 4d:1c:7b:b7:26:49:3f:36:46:0f:c3:b0:5d:75:ed: e7:37:17:10:fa:b5:12:3b:78:bc:b9:ef:c6:e0:fb: 0c:f1:96:d7:6b:da:e3:0f:e4:55:01:a4:09:5e:e0: 26:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:61:DC:4C:3F:A5:F9:7E:C7:2F:7A:96:45:74:A7:91:22:64:3C:2D X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:28:5b:6a:b6:51:e6:3a:ee:8d:36:1a:60:97:58:8e:2c:9c: f0:9a:d4:bf:b4:32:d3:70:d2:18:a1:6b:74:66:f5:16:24:15: 1c:8f:e6:7c:1f:bc:8e:26:bf:38:c9:ac:9d:28:c5:64:ef:2b: 2e:a8:dd:41:83:60:d6:f4:6d:64:c4:6b:ab:d0:32:86:b6:b3: 95:5c:c5:1e:d4:e0:30:a0:bd:a1:0d:7b:c3:d2:2b:8b:2b:0e: 80:6b:86:47:af:54:18:df:f6:9b:96:97:2d:6a:c0:3a:fd:18: 3d:41:99:8b:35:46:d1:aa:05:aa:97:9d:78:3c:9a:03:08:56: 65:f3:26:d9:11:57:24:20:35:40:7b:cf:0d:e7:56:c2:b8:0e: b7:a7:4a:ed:2d:49:ed:42:f8:e1:bd:50:52:52:df:db:86:23: e9:44:fd:46:83:df:9e:d7:4f:a4:96:79:96:73:5e:5b:75:91: 23:fc:27:27:a6:ef:cf:cc:90:df:dc:21:1e:77:7d:23:8c:6b: e5:df:5f:4e:10:a3:95:f2:2a:d3:00:12:40:ff:38:af:e9:a4: 9e:b2:fc:5f:1b:92:19:12:c1:a2:0b:5e:03:47:1a:04:fe:fb: b9:79:ff:87:52:e8:a8:8b:2c:a1:1a:4c:7e:40:36:7b:d2:db: c7:93:4e:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjUwNTMwMjM0MDUxWhcNMjUwNjA2MjM0MDUxWjAYMRYwFAYD VQQDEw02ODNhNDIwMy1mYTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+1idr5WAlDeWhUZK1O48MC1WCuZgeMg68xmcRTlESU+z5vBWetCaTwPdH9W Z5dVf7iKUkH6CswV2uB8GAOPlhs9YOOOe3IyPdF6EloFtJ37jbuK+nFjPAdosaYS meYgqN8y638TnTQa9O7rSO+Otk4gmFCL0IQsUZnD53hC25jAcTCX1kRWqsQO/k6a qbMa60XIPDy/8f4qyyw/KE0w/C1DuJ3FcvpxyCG7/SPUx1QBwlVuYmFJCKiTT2bZ 0kh1zCA6RaFuqrkmEsamK2m1BLlNHHu3Jkk/NkYPw7Bdde3nNxcQ+rUSO3i8ue/G 4PsM8ZbXa9rjD+RVAaQJXuAmNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFh3Ew/ pfl+xy96lkV0p5EiZDwtMB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3KFtqtlHmOu6NNhpgl1iOLJzwmtS/tDLTcNIYoWt0ZvUWJBUcj+Z8 H7yOJr84yaydKMVk7ysuqN1Bg2DW9G1kxGur0DKGtrOVXMUe1OAwoL2hDXvD0iuL Kw6Aa4ZHr1QY3/ablpctasA6/Rg9QZmLNUbRqgWql514PJoDCFZl8ybZEVckIDVA e88N51bCuA63p0rtLUntQvjhvVBSUt/bhiPpRP1Gg9+e10+klnmWc15bdZEj/Ccn pu/PzJDf3CEed30jjGvl319OEKOV8irTABJA/ziv6aSesvxfG5IZEsGiC14DRxoE /vu5ef+HUuioiyyhGkx+QDZ70tvHk04l -----END CERTIFICATE-----Generated at Sat May 31 17:17:31 2025 by rpki-client