$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: gyZpZ8nINIKAYJRMikczgieSJu9yLjmUJTsDHG3cIlQ= Subject key identifier: FB:01:25:B1:4A:E4:AF:BC:7D:86:88:8D:3E:CF:88:94:43:18:78:C7 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: 92 Signing time: Sat 31 May 2025 06:01:39 +0000 Manifest this update: Sat 31 May 2025 06:01:38 +0000 Manifest next update: Sat 07 Jun 2025 06:01:38 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: rt9VZN/L3cKm7BpTxNcoTmm4P3Y1uhaA77kL/PBwr44=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: IIflfQCAxW1X5tnyPUSdNiUWUvRyGX/zn4vbskdXfXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: May 31 06:01:38 2025 GMT Not After : Jun 7 06:01:38 2025 GMT Subject: CN=683a9b42-9e6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:9b:a2:39:bf:f4:48:4f:b9:14:b3:9d:28: 65:d3:93:05:72:a8:35:14:9f:82:84:7f:eb:3b:4d: 28:27:e6:bd:49:e3:62:c3:9d:d9:ab:94:a1:69:d3: 59:d6:cc:95:ea:aa:c6:a1:fb:28:8a:09:34:c3:7b: e1:97:7a:c8:f3:66:81:c9:34:77:cd:86:8f:79:cf: b9:d3:6a:d0:7c:a1:ee:e0:69:be:72:19:b0:b7:32: 69:b1:26:fe:f3:2a:8a:8c:09:00:55:27:c9:24:ab: 5e:e3:42:0e:ce:6e:da:84:37:ad:12:cb:49:d7:4f: 5d:ca:46:9b:eb:6d:32:57:c7:f2:e7:23:53:ea:6a: b2:d2:b2:14:05:62:d9:9c:e0:25:8b:8e:4a:44:57: 36:eb:d8:56:a3:b8:f2:d3:a4:a1:da:a6:ab:c7:43: 2d:65:80:c8:26:75:10:5f:51:a6:05:16:73:ac:a3: e1:10:fb:14:0f:c5:9e:70:38:11:59:56:56:ae:7c: 5a:50:52:60:76:c4:ff:74:dd:8e:f8:2f:93:2f:26: 31:1f:bc:bf:f0:07:a6:bb:ae:f6:f1:3b:85:a4:10: 0e:7a:53:f1:7f:3f:59:ee:34:30:12:0b:47:a4:06: e7:f9:2c:c3:fe:6e:a3:db:49:f1:16:20:fe:55:d9: 15:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:01:25:B1:4A:E4:AF:BC:7D:86:88:8D:3E:CF:88:94:43:18:78:C7 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:7f:05:07:91:b8:df:35:f1:64:d3:57:99:26:c3:0a:b7:2a: 1d:f2:e4:56:c5:4f:8b:71:e5:8f:e6:57:c0:ae:98:c2:03:f5: bd:cd:73:c1:79:99:de:6f:08:7b:44:dc:db:e1:35:3c:6f:e1: 51:09:16:51:fd:4d:7b:88:5b:a3:64:15:4b:38:88:d6:dc:6b: b5:86:7e:cf:c2:9a:01:18:4a:f0:e6:18:1d:d4:f3:ba:b4:0d: 8c:27:0e:23:50:75:6f:73:7b:b6:e3:d8:f1:45:12:cd:92:8a: 4c:55:39:f5:19:6f:11:5b:17:ea:62:cd:ce:5e:95:a0:f1:54: 7a:08:2b:7d:06:c0:66:ff:10:8a:f4:66:5a:61:11:ce:aa:f4: fa:76:90:16:74:b2:0e:8f:93:53:04:c3:aa:b4:26:3d:67:31: bf:e2:2c:d1:bd:1c:21:ad:9e:b0:cb:5c:69:70:1b:55:50:36: 31:71:ac:a3:22:b0:2b:9b:0c:78:4e:b9:6a:cb:e5:b4:fa:19: f6:b1:6c:f9:40:8c:24:3e:c7:99:24:de:56:97:03:38:f1:60: 91:e4:ea:72:c8:68:e6:09:1a:79:02:c7:4c:f2:a9:cc:93:fe: 7e:8d:ed:1b:06:dd:7c:71:59:80:96:f3:8f:0b:c1:f3:14:50: 9c:91:54:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUwNTMxMDYwMTM4WhcNMjUwNjA3MDYwMTM4WjAYMRYwFAYD VQQDEw02ODNhOWI0Mi05ZTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnmbojm/9EhPuRSznShl05MFcqg1FJ+ChH/rO00oJ+a9SeNiw53Zq5ShadNZ 1syV6qrGofsoigk0w3vhl3rI82aByTR3zYaPec+502rQfKHu4Gm+chmwtzJpsSb+ 8yqKjAkAVSfJJKte40IOzm7ahDetEstJ109dykab620yV8fy5yNT6mqy0rIUBWLZ nOAli45KRFc269hWo7jy06Sh2qarx0MtZYDIJnUQX1GmBRZzrKPhEPsUD8WecDgR WVZWrnxaUFJgdsT/dN2O+C+TLyYxH7y/8Aemu6728TuFpBAOelPxfz9Z7jQwEgtH pAbn+SzD/m6j20nxFiD+VdkVsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsBJbFK 5K+8fYaIjT7PiJRDGHjHMB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsfwUHkbjfNfFk01eZJsMKtyod8uRWxU+LceWP5lfArpjCA/W9zXPB eZnebwh7RNzb4TU8b+FRCRZR/U17iFujZBVLOIjW3Gu1hn7PwpoBGErw5hgd1PO6 tA2MJw4jUHVvc3u249jxRRLNkopMVTn1GW8RWxfqYs3OXpWg8VR6CCt9BsBm/xCK 9GZaYRHOqvT6dpAWdLIOj5NTBMOqtCY9ZzG/4izRvRwhrZ6wy1xpcBtVUDYxcayj IrArmwx4Trlqy+W0+hn2sWz5QIwkPseZJN5WlwM48WCR5OpyyGjmCRp5AsdM8qnM k/5+je0bBt18cVmAlvOPC8HzFFCckVT8 -----END CERTIFICATE-----Generated at Sat May 31 17:54:47 2025 by rpki-client