$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: yEzazudO0zOIHcydoSAGeboUxwWJ+mJ8u5brss278IE= Subject key identifier: BA:C2:0C:C2:B8:9D:66:7D:06:4E:A9:A9:A3:23:54:91:73:2C:6C:82 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0548 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 0535 Signing time: Fri 30 May 2025 23:43:08 +0000 Manifest this update: Fri 30 May 2025 23:43:08 +0000 Manifest next update: Fri 06 Jun 2025 23:43:08 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: l0Mb8h0ZuNsvTt4t4Vqz3e24rOdSBK3U4KRmIj58+5U=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: Tcq182MtoqsdyOozDsgfHLvUMXaT5QP5utPDgkahfpk=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 3aOOVCELLHnIfGs7sXEbEZF8NuxhRTtgWUNx37B19jo=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: V7oi3Gg2bJeyB31QQcYvbv2j/BrInSgpAZM4b3T1xkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1352 (0x548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: May 30 23:43:08 2025 GMT Not After : Jun 6 23:43:08 2025 GMT Subject: CN=683a428c-538e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:63:3e:c9:06:c9:b0:6e:68:e1:f4:8b:90:e2: 55:63:5a:1f:1c:9b:0a:71:52:8f:6d:f5:6c:87:d4: e1:cf:d1:c0:37:4b:bb:69:83:c4:fd:99:45:09:29: de:56:44:cd:6b:79:69:74:33:e1:95:00:c9:6e:45: c0:78:9c:06:7c:44:01:72:49:c7:ab:88:38:66:4c: 7e:01:55:58:08:2b:0a:21:48:ed:57:a9:c1:2c:ee: 2a:db:28:70:1b:5f:45:7f:fa:8a:73:9e:c5:00:73: 83:0e:a5:51:a2:46:1f:7a:7e:b9:80:4e:3f:87:f2: b9:3a:43:c2:df:d4:b4:e5:8f:e2:f5:19:a1:14:89: 19:85:f5:2b:dc:d3:2e:c5:af:47:57:e8:7c:ed:8a: 14:f9:bd:05:83:22:58:1a:65:e7:aa:a3:3f:eb:c7: d4:db:db:f4:82:c7:ef:c8:a2:6b:3d:c0:d2:c2:c4: eb:c4:60:98:d7:2b:bd:04:7d:30:85:d8:45:92:17: 4f:32:4f:d1:e7:10:80:3a:e8:3b:91:77:74:94:62: b3:eb:f1:ab:b0:e1:5a:fb:6d:8b:b1:07:b7:f2:ad: 91:df:a2:21:0e:8a:23:4d:3f:c2:df:a9:32:e9:6e: f1:60:18:23:91:8c:43:94:b6:9e:7f:6c:ca:e0:3a: 09:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C2:0C:C2:B8:9D:66:7D:06:4E:A9:A9:A3:23:54:91:73:2C:6C:82 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:46:57:90:5a:a0:d3:95:90:99:cd:46:99:39:a0:18:2c:1f: dd:b7:0c:98:30:7b:bc:aa:b6:6e:c8:a0:c4:78:4a:a5:30:2f: d0:df:6a:6c:55:61:71:30:19:2b:1e:30:14:f1:67:bd:92:83: ff:66:d0:bf:98:eb:65:79:c6:19:28:45:b4:52:fd:67:bd:8b: 9e:db:e6:10:4b:31:6c:8e:7b:27:8a:04:cc:77:dd:87:95:f5: 04:4d:27:d3:28:f1:36:17:47:cf:25:b0:0a:ef:8b:da:99:e0: fc:96:5b:66:ab:2a:f5:16:0f:ff:ce:62:3f:53:d1:83:19:fb: 5c:ec:ba:13:e1:7e:0d:4d:c7:a8:a0:8d:62:af:05:97:06:d9: 63:3e:c7:85:65:cf:23:8e:b9:fe:9c:bc:e1:02:7b:71:40:f8: 5e:bb:3d:03:ef:9b:70:54:90:d6:e4:ca:ea:dd:fb:2c:d7:08: db:47:6f:46:5c:de:ff:9d:cc:64:b8:7a:84:18:31:05:58:98: 9f:7d:06:b0:34:fe:b2:c9:72:2d:ff:74:31:7e:23:b2:59:5d: b6:47:4c:ff:c1:16:de:4b:c9:10:f0:d3:52:7f:a0:e4:fb:64: 58:ca:13:ed:68:f8:02:da:7a:11:b7:4c:5e:9e:0e:d5:d8:45: 2f:32:8b:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwNTMwMjM0MzA4WhcNMjUwNjA2MjM0MzA4WjAYMRYwFAYD VQQDEw02ODNhNDI4Yy01MzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWM+yQbJsG5o4fSLkOJVY1ofHJsKcVKPbfVsh9Thz9HAN0u7aYPE/ZlFCSne VkTNa3lpdDPhlQDJbkXAeJwGfEQBcknHq4g4Zkx+AVVYCCsKIUjtV6nBLO4q2yhw G19Ff/qKc57FAHODDqVRokYfen65gE4/h/K5OkPC39S05Y/i9RmhFIkZhfUr3NMu xa9HV+h87YoU+b0FgyJYGmXnqqM/68fU29v0gsfvyKJrPcDSwsTrxGCY1yu9BH0w hdhFkhdPMk/R5xCAOug7kXd0lGKz6/GrsOFa+22LsQe38q2R36IhDoojTT/C36ky 6W7xYBgjkYxDlLaef2zK4DoJlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrCDMK4 nWZ9Bk6pqaMjVJFzLGyCMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASRleQWqDTlZCZzUaZOaAYLB/dtwyYMHu8qrZuyKDEeEqlMC/Q32ps VWFxMBkrHjAU8We9koP/ZtC/mOtlecYZKEW0Uv1nvYue2+YQSzFsjnsnigTMd92H lfUETSfTKPE2F0fPJbAK74vameD8lltmqyr1Fg//zmI/U9GDGftc7LoT4X4NTceo oI1irwWXBtljPseFZc8jjrn+nLzhAntxQPheuz0D75twVJDW5Mrq3fss1wjbR29G XN7/ncxkuHqEGDEFWJiffQawNP6yyXIt/3QxfiOyWV22R0z/wRbeS8kQ8NNSf6Dk +2RYyhPtaPgC2noRt0xeng7V2EUvMouy -----END CERTIFICATE-----Generated at Sat May 31 17:39:23 2025 by rpki-client