$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft File: U8lIF-sTZfHejDwrRAIjmIHBlD0.mft (raw, json) Hash identifier: botqeUVML2Bcc/ZFL8K5AzP2qDK66RArm7O1oqDTGnk= Subject key identifier: 1F:03:12:B5:15:63:5B:8A:BF:C1:80:06:8B:9D:B6:50:85:DE:C0:BE Authority key identifier: 53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D Certificate issuer: /CN=A91D3307/serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Certificate serial: 04AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft Manifest number: 0496 Signing time: Sat 31 May 2025 00:16:52 +0000 Manifest this update: Sat 31 May 2025 00:16:52 +0000 Manifest next update: Sat 07 Jun 2025 00:16:52 +0000 Files and hashes: 1: U8lIF-sTZfHejDwrRAIjmIHBlD0.crl (hash: NT//w5/X2jYrrYnxRJb1fVEZ7jvwLM0rpJYOOZIts48=) 2: C908B72A696F11EFA4DA475FC4F9AE02.roa (hash: tXoHtibATlzSAFpYW8FXeLBuzqLRo++NJ/KLRuKUVS4=) 3: C9C70AEA696F11EFA4DA475FC4F9AE02.roa (hash: 8/T20piCaEKmwex2vfHli1eA2pf6jywQnHESOXqs7Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1199 (0x4af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3307, serialNumber=53C94817EB1365F1DE8C3C2B4402239881C1943D Validity Not Before: May 31 00:16:52 2025 GMT Not After : Jun 7 00:16:52 2025 GMT Subject: CN=683a4a74-71d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:58:99:ca:bb:ee:b4:43:00:e3:32:d1:57:b6: 69:20:01:04:75:79:ac:58:15:1f:b3:0f:b4:0a:18: db:23:b3:60:36:bb:78:7a:5a:62:0e:7a:9a:dc:97: e7:38:0e:98:c1:a1:fc:15:d6:b3:49:3f:3e:ce:90: 38:99:d4:d2:ab:73:ac:9a:bc:06:dc:3a:4c:a1:d8: 9a:d8:13:86:22:0a:7f:0c:ba:0f:4d:db:81:e8:de: 63:ac:dc:05:c7:b0:95:3a:6e:7f:f6:d3:3d:69:59: 46:dd:23:68:be:5c:c2:e5:ca:e3:9e:d2:ab:9f:b1: 11:61:b3:47:85:26:e3:bf:fb:61:10:6f:6b:f6:39: 69:22:87:31:8f:58:d3:36:0a:8b:53:28:93:53:ac: 7f:ed:4b:71:26:d5:fb:da:4d:bb:cb:4b:a5:77:71: 6f:bf:44:9d:a2:a9:6d:ae:fd:c2:74:94:c3:13:d0: b5:c7:3b:06:90:fe:84:e4:d8:4b:35:4e:09:86:ee: 10:92:64:6a:46:fa:a7:2f:2e:e6:bb:02:0b:da:1e: 77:c3:f1:2d:3d:e4:1f:cf:2a:45:89:ae:7e:37:cf: 32:88:4a:67:80:03:03:c3:8c:8d:fc:e8:ce:f5:4a: 9f:76:a0:c6:6a:6c:33:36:41:0b:45:6d:c4:e2:2c: 47:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:03:12:B5:15:63:5B:8A:BF:C1:80:06:8B:9D:B6:50:85:DE:C0:BE X509v3 Authority Key Identifier: keyid:53:C9:48:17:EB:13:65:F1:DE:8C:3C:2B:44:02:23:98:81:C1:94:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8lIF-sTZfHejDwrRAIjmIHBlD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3307/342D832842CC11EC8F13320DC4F9AE02/U8lIF-sTZfHejDwrRAIjmIHBlD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:da:30:74:dd:a2:30:88:83:d8:39:19:ef:01:a8:bb:d2:21: 31:d0:7d:89:4a:6f:a5:3f:b2:cd:54:f1:59:76:0b:62:d1:82: fe:b0:9e:c5:d5:0e:45:47:1a:3f:09:be:63:07:3c:8c:08:e2: 69:f5:70:0f:2d:b3:62:6b:12:12:67:41:75:7f:b5:81:b9:66: eb:a9:df:e7:a0:cc:47:8f:d5:51:84:86:37:bf:ab:37:3d:77: d2:ea:e2:dc:ab:e3:9c:e3:ce:7e:db:a6:c0:f1:20:6c:42:0b: 90:4d:00:bc:b0:df:76:24:59:43:31:9d:39:5f:5f:51:de:12: 94:37:55:96:a2:b1:8d:f0:a0:3f:e8:b6:00:be:cd:9e:93:ca: 61:0f:d7:18:bb:49:f5:d9:8b:6b:e2:e7:92:98:dc:c3:33:11: 29:88:1f:08:ea:9f:2f:fd:45:dd:e9:03:b6:d3:50:6f:37:73: cb:20:bb:0e:b0:b2:c0:3b:67:b5:47:54:14:6d:88:88:e4:45: 50:f2:38:5f:c5:3d:f5:b7:8a:49:79:d4:c9:b7:40:50:24:6e: fb:bc:f1:50:35:74:ad:c0:9e:e8:23:00:89:a6:a6:47:02:44: bc:70:76:7d:9d:13:81:cd:30:37:a2:7e:30:e9:76:0b:b9:bb: ca:14:67:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMzMDcxMTAvBgNVBAUTKDUzQzk0ODE3RUIxMzY1RjFERThDM0MyQjQ0MDIyMzk4 ODFDMTk0M0QwHhcNMjUwNTMxMDAxNjUyWhcNMjUwNjA3MDAxNjUyWjAYMRYwFAYD VQQDEw02ODNhNGE3NC03MWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1iZyrvutEMA4zLRV7ZpIAEEdXmsWBUfsw+0ChjbI7NgNrt4elpiDnqa3Jfn OA6YwaH8FdazST8+zpA4mdTSq3OsmrwG3DpModia2BOGIgp/DLoPTduB6N5jrNwF x7CVOm5/9tM9aVlG3SNovlzC5crjntKrn7ERYbNHhSbjv/thEG9r9jlpIocxj1jT NgqLUyiTU6x/7UtxJtX72k27y0uld3Fvv0Sdoqltrv3CdJTDE9C1xzsGkP6E5NhL NU4Jhu4QkmRqRvqnLy7muwIL2h53w/EtPeQfzypFia5+N88yiEpngAMDw4yN/OjO 9UqfdqDGamwzNkELRW3E4ixHLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8DErUV Y1uKv8GABoudtlCF3sC+MB8GA1UdIwQYMBaAFFPJSBfrE2Xx3ow8K0QCI5iBwZQ9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzMwNy8zNDJEODMyODQy Q0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpmSGVqRHdyUkFJam1JSEJs RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4bElGLXNUWmZIZWpEd3JSQUlqbUlIQmxEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzMwNy8zNDJEODMyODQyQ0MxMUVDOEYxMzMyMERDNEY5QUUwMi9VOGxJRi1zVFpm SGVqRHdyUkFJam1JSEJsRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt2jB03aIwiIPYORnvAai70iEx0H2JSm+lP7LNVPFZdgti0YL+sJ7F 1Q5FRxo/Cb5jBzyMCOJp9XAPLbNiaxISZ0F1f7WBuWbrqd/noMxHj9VRhIY3v6s3 PXfS6uLcq+Oc485+26bA8SBsQguQTQC8sN92JFlDMZ05X19R3hKUN1WWorGN8KA/ 6LYAvs2ek8phD9cYu0n12Ytr4ueSmNzDMxEpiB8I6p8v/UXd6QO201BvN3PLILsO sLLAO2e1R1QUbYiI5EVQ8jhfxT31t4pJedTJt0BQJG77vPFQNXStwJ7oIwCJpqZH AkS8cHZ9nROBzTA3on4w6XYLubvKFGf0 -----END CERTIFICATE-----Generated at Sat May 31 16:36:46 2025 by rpki-client