$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: LQEXIiWB9kyyZAYRNEt/2fMDYnuFMWR0Eeo4CPLtNSQ= Subject key identifier: 28:AE:38:7D:C2:78:CB:F8:4F:0F:A5:74:95:E8:AF:35:A3:75:9F:6D Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0550 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 053D Signing time: Sat 14 Jun 2025 23:13:15 +0000 Manifest this update: Sat 14 Jun 2025 23:13:15 +0000 Manifest next update: Sat 21 Jun 2025 23:13:15 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: mEm+y1ZZ/tjxwWIW4TWhbGcXwb3pijAGgANrBrXtEzg=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: Tcq182MtoqsdyOozDsgfHLvUMXaT5QP5utPDgkahfpk=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 3aOOVCELLHnIfGs7sXEbEZF8NuxhRTtgWUNx37B19jo=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: V7oi3Gg2bJeyB31QQcYvbv2j/BrInSgpAZM4b3T1xkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1360 (0x550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Jun 14 23:13:15 2025 GMT Not After : Jun 21 23:13:15 2025 GMT Subject: CN=684e020b-13b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:29:7b:ae:d6:58:e6:10:0f:e7:23:dc:05:dc: ac:30:bb:dc:fe:f8:78:6c:2e:45:66:78:9b:28:39: 7d:f1:76:34:96:b9:f0:e3:4f:18:90:cf:72:b9:f0: 32:8a:47:dd:ba:0b:9c:33:0d:4e:ec:d1:90:9f:a1: 15:93:6e:c2:76:89:ac:33:76:27:a0:43:51:ad:94: 3d:00:0e:17:df:15:ce:c0:df:01:03:85:fb:a3:55: 6e:7d:47:fc:ad:58:72:34:cf:ff:85:73:19:97:da: 20:f3:d0:6e:a1:ab:ad:34:04:70:bc:8f:ba:4a:16: 65:57:e2:79:b1:3d:2c:9a:05:04:99:3d:37:84:a4: e8:f3:3c:29:72:41:3e:82:6f:86:36:2b:50:5f:0c: 42:12:f2:4d:c7:16:52:89:65:93:13:ba:f3:b1:e4: 59:ad:95:e5:ac:1b:43:6c:90:33:75:66:35:a3:4d: be:1a:c3:bd:79:e7:0e:60:12:62:0a:2b:20:d1:1e: 90:f9:03:94:22:bb:e1:e4:b1:7a:92:4f:48:3b:2f: ee:c6:98:0d:41:de:ce:2b:e2:09:b1:ce:b1:0e:c5: 6d:cb:5f:fe:90:45:f0:bb:bc:b4:ca:6b:62:76:68: 7e:3f:6d:02:0d:86:5a:6e:db:36:12:1c:aa:8b:c0: cd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:AE:38:7D:C2:78:CB:F8:4F:0F:A5:74:95:E8:AF:35:A3:75:9F:6D X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:87:c8:ba:80:e2:cf:c4:c2:d2:4d:39:b3:f6:ba:9f:88:ba: 7f:07:22:cd:2d:38:a2:72:c5:9f:fa:7f:b9:37:4b:64:72:c9: 94:8d:1a:dd:bf:1c:5b:51:a5:54:46:52:58:d3:0d:12:bd:43: 52:64:d5:b3:15:ee:47:d1:bf:1a:e1:39:17:7c:62:7b:5b:ad: 70:fe:8b:43:90:2f:10:37:b1:8c:c8:39:ba:bd:be:0b:84:8a: 39:66:c3:01:52:d1:f3:8e:af:ed:2c:34:06:da:22:3b:b8:ad: e1:82:58:b9:d4:c5:0d:1b:73:b2:8b:97:92:c9:13:a2:d5:7f: bd:14:5a:68:a1:30:3a:be:aa:bb:b1:d5:79:b3:31:c3:8c:85: dd:06:d4:1a:de:49:71:83:a0:4f:0a:32:65:02:4b:84:7c:44: ac:10:d4:a6:f4:92:0f:17:ee:2a:f7:d0:80:8a:3a:d4:95:0b: ca:50:76:df:cf:a3:6d:4c:6e:0f:55:bb:68:6a:1c:18:cf:36: 2a:0f:fa:eb:76:fb:99:c5:e1:6e:3d:6b:00:7b:32:58:ee:27: e4:df:26:4c:c9:fc:00:83:60:ed:7a:28:39:4b:06:7c:f4:ec: 8a:9c:c9:0d:7b:0d:83:7b:c4:a9:f1:0f:1d:f9:57:85:89:af: ba:51:2c:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwNjE0MjMxMzE1WhcNMjUwNjIxMjMxMzE1WjAYMRYwFAYD VQQDEw02ODRlMDIwYi0xM2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyl7rtZY5hAP5yPcBdysMLvc/vh4bC5FZnibKDl98XY0lrnw408YkM9yufAy ikfdugucMw1O7NGQn6EVk27CdomsM3YnoENRrZQ9AA4X3xXOwN8BA4X7o1VufUf8 rVhyNM//hXMZl9og89BuoautNARwvI+6ShZlV+J5sT0smgUEmT03hKTo8zwpckE+ gm+GNitQXwxCEvJNxxZSiWWTE7rzseRZrZXlrBtDbJAzdWY1o02+GsO9eecOYBJi Cisg0R6Q+QOUIrvh5LF6kk9IOy/uxpgNQd7OK+IJsc6xDsVty1/+kEXwu7y0ymti dmh+P20CDYZabts2Ehyqi8DNrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiuOH3C eMv4Tw+ldJXorzWjdZ9tMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqh8i6gOLPxMLSTTmz9rqfiLp/ByLNLTiicsWf+n+5N0tkcsmUjRrd vxxbUaVURlJY0w0SvUNSZNWzFe5H0b8a4TkXfGJ7W61w/otDkC8QN7GMyDm6vb4L hIo5ZsMBUtHzjq/tLDQG2iI7uK3hgli51MUNG3Oyi5eSyROi1X+9FFpooTA6vqq7 sdV5szHDjIXdBtQa3klxg6BPCjJlAkuEfESsENSm9JIPF+4q99CAijrUlQvKUHbf z6NtTG4PVbtoahwYzzYqD/rrdvuZxeFuPWsAezJY7ifk3yZMyfwAg2Dteig5SwZ8 9OyKnMkNew2De8Sp8Q8d+VeFia+6USxs -----END CERTIFICATE-----Generated at Sun Jun 15 10:24:44 2025 by rpki-client