$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: g82O4syQrdO2Gjwuf8h95B3FZa71tAveY8lXMwMYciM= Subject key identifier: 08:F4:00:74:BE:86:79:D5:A6:6E:36:26:3F:DC:15:C0:12:20:3C:E5 Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 054B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 0543 Signing time: Fri 20 Jun 2025 23:11:59 +0000 Manifest this update: Fri 20 Jun 2025 23:11:58 +0000 Manifest next update: Fri 27 Jun 2025 23:11:58 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: aB7A3gXCQ3a0oIzYLkdGifetUVGm9HPhjhpmHyGKrwY=) 2: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: IJTuUd/n8OCJ5dJ8YqUV7DdTVdb9JOIyqBQaxiAGn2k=) 3: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: ZpRAboF0Zy0eld2L5SbNx4a1RdCdtnze/MEYgH64xko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 23:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1355 (0x54b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251, serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: Jun 20 23:11:58 2025 GMT Not After : Jun 27 23:11:58 2025 GMT Subject: CN=6855eabf-3dc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:2b:ef:a6:33:ef:8f:33:28:11:03:90:8b:69: 53:58:c8:6e:a3:7b:be:16:4f:32:1e:f9:7d:63:02: f5:99:0f:fe:c5:ce:da:e4:e0:f2:62:77:fb:53:9c: 1b:03:8d:95:04:33:51:ad:eb:e8:58:54:0a:f3:c7: ec:3d:bb:e8:8f:6f:86:d3:1d:18:f0:4d:42:e6:2e: 49:52:13:3a:2f:14:67:d4:ee:7b:39:15:23:d8:be: 2c:01:9e:46:ea:e5:9e:d0:d4:64:96:64:ea:ef:7b: b5:e3:45:e6:20:50:1d:87:31:d3:13:43:53:da:39: 7e:69:f1:a1:e1:86:a5:b7:e3:bf:0b:07:fa:52:4d: f8:40:6a:0d:02:ec:a6:0f:6c:7a:25:2d:8c:56:80: 93:67:1b:60:45:f7:d1:79:3b:8b:a1:8c:8b:7b:aa: 5d:00:d8:64:3a:5c:e3:88:71:3a:7f:03:c2:91:19: b8:06:f2:62:7a:70:40:55:bb:1c:dc:e6:03:93:3d: a6:0b:2f:cf:f7:e1:0c:59:5f:a3:b6:56:4a:a0:bd: db:36:c1:fe:df:ce:8b:59:22:e1:9e:de:05:51:47: c5:34:d0:de:e1:e6:62:25:cd:58:be:9d:6f:54:26: 5b:bb:33:41:6c:92:98:b2:42:87:83:59:4f:4a:88: 28:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F4:00:74:BE:86:79:D5:A6:6E:36:26:3F:DC:15:C0:12:20:3C:E5 X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:d6:b9:ac:dd:33:b1:ad:a2:04:c1:b0:40:ca:bf:4f:1e:7e: 03:6d:a4:cf:46:c1:fc:66:83:ce:a5:1d:3c:00:52:4b:fb:5f: 47:62:ec:b0:7a:0e:99:1f:5d:62:bf:c6:7d:92:f5:80:d7:d4: 60:2a:18:6a:c1:83:e5:94:23:f6:30:a2:f9:1b:30:20:07:69: 4b:f9:02:1b:5b:1f:f8:d5:fb:e7:71:62:7c:5f:d7:87:f9:1d: 98:27:34:25:53:98:c4:57:83:c0:c1:e0:80:7c:ce:0a:00:ec: 15:0c:f8:85:fe:38:a2:11:38:84:83:ac:da:bc:ca:1d:61:8c: 0f:ea:03:97:8d:ed:1f:5f:a8:27:43:a7:8c:bd:0a:0e:86:f1: ac:2c:5b:a0:aa:f5:4a:0e:d5:1d:14:0a:ed:0f:b4:ce:da:1c: b7:81:86:0b:28:f8:32:a8:5c:e9:d1:77:91:b1:dc:0b:c1:c6: b8:d3:c2:05:1e:95:57:8e:52:c0:5c:05:41:97:24:b6:de:4a: 7b:6e:a3:3a:49:3f:8c:0c:57:ed:84:cf:a0:09:e3:85:ea:a5: 98:e4:8e:43:f7:f6:44:2f:90:cb:d5:18:02:b8:9e:e3:50:52: 8f:0f:3a:83:6f:cf:0c:66:09:30:8e:d8:a8:ff:66:8e:aa:24: 17:c1:ea:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjUwNjIwMjMxMTU4WhcNMjUwNjI3MjMxMTU4WjAYMRYwFAYD VQQDEw02ODU1ZWFiZi0zZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8CvvpjPvjzMoEQOQi2lTWMhuo3u+Fk8yHvl9YwL1mQ/+xc7a5ODyYnf7U5wb A42VBDNRrevoWFQK88fsPbvoj2+G0x0Y8E1C5i5JUhM6LxRn1O57ORUj2L4sAZ5G 6uWe0NRklmTq73u140XmIFAdhzHTE0NT2jl+afGh4Yalt+O/Cwf6Uk34QGoNAuym D2x6JS2MVoCTZxtgRffReTuLoYyLe6pdANhkOlzjiHE6fwPCkRm4BvJienBAVbsc 3OYDkz2mCy/P9+EMWV+jtlZKoL3bNsH+386LWSLhnt4FUUfFNNDe4eZiJc1Yvp1v VCZbuzNBbJKYskKHg1lPSogoSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAj0AHS+ hnnVpm42Jj/cFcASIDzlMB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD1rms3TOxraIEwbBAyr9PHn4DbaTPRsH8ZoPOpR08AFJL+19HYuyw eg6ZH11iv8Z9kvWA19RgKhhqwYPllCP2MKL5GzAgB2lL+QIbWx/41fvncWJ8X9eH +R2YJzQlU5jEV4PAweCAfM4KAOwVDPiF/jiiETiEg6zavModYYwP6gOXje0fX6gn Q6eMvQoOhvGsLFugqvVKDtUdFArtD7TO2hy3gYYLKPgyqFzp0XeRsdwLwca408IF HpVXjlLAXAVBlyS23kp7bqM6ST+MDFfthM+gCeOF6qWY5I5D9/ZEL5DL1RgCuJ7j UFKPDzqDb88MZgkwjtio/2aOqiQXwer5 -----END CERTIFICATE-----Generated at Sun Jun 22 13:08:37 2025 by rpki-client