$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: ClTqoB/ZEMFEgksHMPXiZIM2DmfGPp2BdDdJ6B1Gxvo= Subject key identifier: 23:6F:AA:4D:90:ED:44:59:11:3E:32:3C:E4:31:2C:7B:03:C0:F2:5A Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0580 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 056A Signing time: Sat 06 Sep 2025 23:41:43 +0000 Manifest this update: Sat 06 Sep 2025 23:41:42 +0000 Manifest next update: Sat 13 Sep 2025 23:41:42 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: IGapR3SVOjfqUN2FQgrsfH4clMsWaddSE7l9BM7xfNI=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: k5X4by3Br8W/PYfkmb4iRMPeho37AmOnY5X1wBHf0bs=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 0dj9Leao2hIOrNuzQzhTyOKvRe7wijLNctX+F2sNN6Y=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: gBnTTYjyqczZgDb3uD73c44S0Waa5svUhRxTsEIxWDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1408 (0x580) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Sep 6 23:41:42 2025 GMT Not After : Sep 13 23:41:42 2025 GMT Subject: CN=68bcc6b7-dac1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:21:04:79:7f:cf:eb:1c:7a:3b:a2:a2:d4:74: 2f:d4:35:3b:13:33:0e:a2:84:f7:a2:28:d5:8e:29: 6c:64:a2:78:61:50:79:53:73:02:ec:b8:0e:83:56: fe:bf:d2:4d:86:54:c5:bf:eb:46:3a:16:a4:66:64: cc:a8:eb:f5:ab:c6:4f:0e:08:c9:df:8e:95:0f:24: 95:a7:29:4e:fd:50:31:29:07:67:96:6c:92:bf:01: 83:2d:ed:db:b7:36:6b:ef:db:51:0b:94:ae:06:b7: 9d:f4:96:9b:49:e9:c7:3b:bb:8f:89:43:77:bd:ec: a6:8f:23:d1:99:72:5b:1b:b3:4f:df:19:a5:58:75: 89:a0:df:ec:58:a3:25:9b:a3:e9:77:dd:6a:78:02: ae:52:69:4c:77:86:34:62:b4:1d:2f:60:99:1a:9a: 91:08:74:19:55:e3:ee:f7:05:83:50:3f:49:01:6a: 83:87:4c:3d:05:14:26:6c:59:be:bf:e5:54:d5:3d: 8e:61:a5:12:49:af:89:d9:ed:ea:d1:3b:53:87:70: 10:27:f6:b5:d6:12:8f:e5:f7:f0:0f:f8:79:0b:9a: 21:38:29:40:ad:14:23:9c:bf:c4:e4:c9:c9:d9:0b: 96:38:62:b0:8d:60:f8:d1:5d:c9:3c:07:59:4f:ed: 04:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6F:AA:4D:90:ED:44:59:11:3E:32:3C:E4:31:2C:7B:03:C0:F2:5A X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:18:26:61:a1:e0:dc:0b:ca:a0:2a:d0:31:7a:78:3b:a1:61: de:01:39:13:d7:d4:71:de:39:94:52:fe:1c:3c:5e:4b:56:d0: 00:26:f5:8b:88:f3:0d:6b:90:76:e8:6c:e2:a1:d7:81:2c:91: d5:84:ab:a5:3e:08:43:c1:bc:d1:5c:1f:02:40:13:0a:f5:db: 9c:bc:1f:6a:9e:bf:ed:7a:02:9e:69:53:17:39:8d:da:d7:9e: b6:29:9a:f5:3e:77:1e:00:0c:ba:11:9e:df:80:c3:83:72:eb: 7d:02:fc:87:11:e1:1a:40:68:fe:67:95:c7:18:21:a1:fa:4f: 9d:e7:80:ef:52:71:40:3f:19:12:e1:0e:a6:e8:47:d7:fd:5a: 6b:56:f7:a2:b5:62:13:f0:57:9c:2a:51:7e:1a:2c:9e:f2:95: 1a:79:48:97:12:5e:af:5d:f3:3f:f2:88:6c:9a:58:be:69:62: e0:89:b0:e9:46:e1:25:ca:90:f8:cd:36:58:b8:e7:1c:95:f0: 1c:32:e4:7d:ad:8b:eb:74:d0:3f:c6:33:d1:8e:3c:53:83:d5: f1:e5:48:d5:58:85:d4:44:6e:99:4e:54:bd:73:9b:31:88:2e: 0a:c6:30:8f:78:25:0a:9d:f7:37:53:0a:0f:95:d0:e1:db:aa: 9c:cd:85:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwOTA2MjM0MTQyWhcNMjUwOTEzMjM0MTQyWjAYMRYwFAYD VQQDEw02OGJjYzZiNy1kYWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCEEeX/P6xx6O6Ki1HQv1DU7EzMOooT3oijVjilsZKJ4YVB5U3MC7LgOg1b+ v9JNhlTFv+tGOhakZmTMqOv1q8ZPDgjJ346VDySVpylO/VAxKQdnlmySvwGDLe3b tzZr79tRC5SuBred9JabSenHO7uPiUN3veymjyPRmXJbG7NP3xmlWHWJoN/sWKMl m6Ppd91qeAKuUmlMd4Y0YrQdL2CZGpqRCHQZVePu9wWDUD9JAWqDh0w9BRQmbFm+ v+VU1T2OYaUSSa+J2e3q0TtTh3AQJ/a11hKP5ffwD/h5C5ohOClArRQjnL/E5MnJ 2QuWOGKwjWD40V3JPAdZT+0E+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNvqk2Q 7URZET4yPOQxLHsDwPJaMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaGCZhoeDcC8qgKtAxeng7oWHeATkT19Rx3jmUUv4cPF5LVtAAJvWL iPMNa5B26GziodeBLJHVhKulPghDwbzRXB8CQBMK9ducvB9qnr/tegKeaVMXOY3a 1562KZr1PnceAAy6EZ7fgMODcut9AvyHEeEaQGj+Z5XHGCGh+k+d54DvUnFAPxkS 4Q6m6EfX/VprVveitWIT8FecKlF+Giye8pUaeUiXEl6vXfM/8ohsmli+aWLgibDp RuElypD4zTZYuOcclfAcMuR9rYvrdNA/xjPRjjxTg9Xx5UjVWIXURG6ZTlS9c5sx iC4KxjCPeCUKnfc3UwoPldDh26qczYWz -----END CERTIFICATE-----Generated at Mon Sep 8 02:24:47 2025 by rpki-client