$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: GRadYdOZczV7sVb84evhO7zh8iXu6VWmg0tdu5fgbNM= Subject key identifier: 7D:ED:0F:AB:68:9F:00:51:6E:3A:B8:99:18:39:FC:D5:5A:87:F9:2C Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: EF Signing time: Fri 25 Apr 2025 04:25:53 +0000 Manifest this update: Fri 25 Apr 2025 04:25:53 +0000 Manifest next update: Fri 02 May 2025 04:25:53 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: THNAfp/5bQt2Y0uUmfxzul7ycjNf1TSvP3VKamgkPRk=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: PzMfqv/JTphrRExc8y93sSocbbq7cPC2A1xhsVGan2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070, serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: Apr 25 04:25:53 2025 GMT Not After : May 2 04:25:53 2025 GMT Subject: CN=680b0ed1-faec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:da:c9:38:5a:b7:d7:ee:fd:da:95:4c:3c:01: 20:6c:9f:9f:8d:ca:90:cb:37:18:9e:13:1c:7c:a4: 7c:ec:18:b4:ec:d3:2c:f7:52:bd:00:8f:8b:58:04: 7e:e1:ec:c7:8b:ef:3f:0f:bf:f2:aa:1e:81:ad:7e: 8b:32:94:c9:f6:ab:11:7d:0a:d6:63:b3:29:4d:21: de:0c:a1:7e:31:96:5c:a4:05:5d:23:43:f6:f8:0e: c5:d5:69:31:20:8e:da:12:c9:3b:dc:27:2b:0f:07: 04:bb:38:bc:5b:e4:03:c0:6c:ba:20:b0:73:8f:f2: 70:06:89:35:74:f0:9d:9b:b6:26:c5:c6:44:e2:56: b6:73:c7:83:12:c2:06:e6:31:b9:9f:f2:6d:45:92: 42:c8:a7:ab:1f:c2:f1:17:19:4a:66:e5:3b:c6:6c: f2:2c:03:5f:b5:37:96:29:60:2b:bb:7c:94:1d:40: 09:d7:51:cd:0b:69:20:6e:58:4d:53:bb:43:b2:91: c3:89:b9:8d:d0:f9:e8:17:46:1d:7f:d3:b3:a2:97: c5:bb:76:84:1a:44:88:66:15:84:4d:c0:ae:36:c8: 09:6f:90:87:2d:6f:81:7a:95:6d:b9:0e:74:3c:25: d7:5d:94:a7:bc:c5:2b:ab:e4:c5:d9:72:a9:99:fe: 51:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:ED:0F:AB:68:9F:00:51:6E:3A:B8:99:18:39:FC:D5:5A:87:F9:2C X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:b2:7b:7b:89:f3:8c:e9:dd:0f:70:a4:39:1e:ce:e7:ee:ff: dd:d4:ea:ff:77:e1:23:70:f0:05:5e:75:c8:17:27:2a:aa:87: 94:8f:f3:7c:02:8e:e7:e4:2d:ea:1f:9d:e7:80:49:ae:5b:4e: 9d:55:75:68:06:62:71:d5:ff:7d:fa:82:37:b7:87:ce:8a:b4: 17:16:ec:a4:56:02:73:9f:c2:75:d1:42:e6:dc:15:00:f7:cc: 72:dd:54:ae:bc:0d:47:57:49:b4:0f:ab:bc:d7:98:e9:86:15: 2a:43:e8:1b:7e:1c:94:e0:db:c8:dd:69:c0:67:41:86:8c:b4: 70:6d:74:bb:17:77:f0:e3:6c:55:77:11:fd:95:28:bf:98:8d: cb:d5:8d:37:b8:67:35:ab:ba:5e:80:1f:1d:61:bf:cf:c7:82: bf:25:fd:bc:77:42:4a:e4:1f:e2:10:39:48:23:f6:bb:92:7e: 9e:08:7b:05:04:7e:f8:71:02:8e:c7:3e:46:e1:b5:6d:b9:3c: ff:86:dd:39:ea:99:e7:35:62:21:99:7f:62:95:4e:ca:08:df: 53:2c:d8:b2:68:c2:d1:00:bb:5c:13:67:4a:54:f4:19:f9:9b: 67:09:2e:fc:08:cf:63:f5:08:eb:2c:9e:38:b8:e0:4a:cc:8f: 7f:ef:1e:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwNzAxMTAvBgNVBAUTKDUzOUJCNzZDOEE0Mzc5QTRERTM5OUMwNTJEMzhDMUI0 NTNBNjZGMUIwHhcNMjUwNDI1MDQyNTUzWhcNMjUwNTAyMDQyNTUzWjAYMRYwFAYD VQQDEw02ODBiMGVkMS1mYWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9rJOFq31+792pVMPAEgbJ+fjcqQyzcYnhMcfKR87Bi07NMs91K9AI+LWAR+ 4ezHi+8/D7/yqh6BrX6LMpTJ9qsRfQrWY7MpTSHeDKF+MZZcpAVdI0P2+A7F1Wkx II7aEsk73CcrDwcEuzi8W+QDwGy6ILBzj/JwBok1dPCdm7YmxcZE4la2c8eDEsIG 5jG5n/JtRZJCyKerH8LxFxlKZuU7xmzyLANftTeWKWAru3yUHUAJ11HNC2kgblhN U7tDspHDibmN0PnoF0Ydf9OzopfFu3aEGkSIZhWETcCuNsgJb5CHLW+BepVtuQ50 PCXXXZSnvMUrq+TF2XKpmf5RLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3tD6to nwBRbjq4mRg5/NVah/ksMB8GA1UdIwQYMBaAFFObt2yKQ3mk3jmcBS04wbRTpm8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTA3MC84OUM1NTk3Q0JD MTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVhVGVPWndGTFRqQnRGT21i eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTA3MC84OUM1NTk3Q0JDMTAxMUVFOEJFQjEzN0FDNEY5QUUwMi9VNXUzYklwRGVh VGVPWndGTFRqQnRGT21ieHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWsnt7ifOM6d0PcKQ5Hs7n7v/d1Or/d+EjcPAFXnXIFycqqoeUj/N8 Ao7n5C3qH53ngEmuW06dVXVoBmJx1f99+oI3t4fOirQXFuykVgJzn8J10ULm3BUA 98xy3VSuvA1HV0m0D6u815jphhUqQ+gbfhyU4NvI3WnAZ0GGjLRwbXS7F3fw42xV dxH9lSi/mI3L1Y03uGc1q7pegB8dYb/Px4K/Jf28d0JK5B/iEDlII/a7kn6eCHsF BH74cQKOxz5G4bVtuTz/ht056pnnNWIhmX9ilU7KCN9TLNiyaMLRALtcE2dKVPQZ +ZtnCS78CM9j9QjrLJ44uOBKzI9/7x7f -----END CERTIFICATE-----Generated at Sat Apr 26 05:30:10 2025 by rpki-client