$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft File: U5TlfShXd_11FCjRXLD7L8WSx6Y.mft (raw, json) Hash identifier: imAGSSU3uO6rV8Xy5SYdrtiquI6nCi0aG/0+O0CIj8o= Subject key identifier: 4A:3A:27:9A:E4:F1:3B:F3:99:89:C4:69:4D:52:0A:74:4C:72:B5:EE Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 0537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft Manifest number: 0524 Signing time: Thu 24 Apr 2025 23:20:48 +0000 Manifest this update: Thu 24 Apr 2025 23:20:48 +0000 Manifest next update: Thu 01 May 2025 23:20:48 +0000 Files and hashes: 1: U5TlfShXd_11FCjRXLD7L8WSx6Y.crl (hash: cm3fKNPsQZnoWJz9ChEXKZ7Fk6Nzw1AdMztXLNByPZk=) 2: E19B6AD6D5BE11ECA8BE4666C4F9AE02.roa (hash: Tcq182MtoqsdyOozDsgfHLvUMXaT5QP5utPDgkahfpk=) 3: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (hash: 3aOOVCELLHnIfGs7sXEbEZF8NuxhRTtgWUNx37B19jo=) 4: C25659465C9D11EC99F7D10BC4F9AE02.roa (hash: V7oi3Gg2bJeyB31QQcYvbv2j/BrInSgpAZM4b3T1xkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1335 (0x537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9, serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Apr 24 23:20:48 2025 GMT Not After : May 1 23:20:48 2025 GMT Subject: CN=680ac750-5c8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:bd:7c:75:2e:61:43:70:08:b5:09:55:3e:f7: 73:92:7d:4a:3c:09:70:58:49:91:d7:43:39:d5:65: f1:db:bb:87:a7:82:5e:43:82:08:7d:3d:07:d5:c0: cc:c0:c2:dd:d7:e5:9a:92:7b:35:6a:79:05:1a:51: 3a:ce:2f:a6:c2:51:51:08:cf:55:19:ec:c6:03:1a: bb:bb:e8:a9:1e:ba:67:c0:a1:e0:6c:20:d2:64:44: d8:0f:6d:f3:49:24:c3:0a:73:11:e0:5e:3d:05:db: d4:c0:69:17:5d:9d:f4:ff:77:d4:79:a7:51:84:97: 1d:16:7b:e5:79:b3:13:70:48:87:e6:b7:be:48:95: 0a:61:07:db:aa:0b:36:bd:c0:fc:aa:9d:7e:ee:12: ad:16:0e:ec:56:50:72:23:b9:d9:ad:fb:8b:14:cf: e5:3d:11:fb:a9:c3:e8:64:93:97:a8:ae:ec:9d:1b: 03:a9:bc:be:98:a9:8e:b3:23:5f:f2:5e:ac:16:9f: 26:01:3b:4a:17:97:c2:19:4c:6e:9e:28:60:17:58: 7f:63:19:94:cf:db:d6:3c:01:06:d6:ed:de:28:56: b5:f7:ce:6b:cf:bc:f3:5d:ef:55:b1:91:30:19:8b: 00:15:26:dd:2c:97:96:f3:59:5c:be:e1:72:2a:bd: 0a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3A:27:9A:E4:F1:3B:F3:99:89:C4:69:4D:52:0A:74:4C:72:B5:EE X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:1a:2e:5f:cd:08:86:b8:d6:57:0e:c7:98:cc:1a:6c:4a:9e: 1b:f9:97:68:54:67:c7:3a:f1:dc:6e:f6:d9:2b:e6:07:82:4b: c9:c5:fc:44:ed:7c:37:5d:9a:4f:1d:3f:b4:f1:32:34:9b:a4: 98:98:01:c7:42:f6:fb:49:c9:f1:a5:60:56:5c:82:1a:d6:a0: e2:33:d3:fe:96:8d:e6:f5:29:b0:58:2d:ad:88:5b:78:d7:b9: 6d:ae:c2:de:0c:ac:8d:d3:8e:d6:27:d5:1c:98:27:fb:1c:1a: 32:40:bb:5b:14:72:e3:3f:ac:20:ab:05:99:cb:bd:93:32:5f: 1b:bc:fa:31:7b:07:d8:f8:72:36:51:55:9c:6a:8d:3a:5b:13: 85:e3:a6:b5:ee:57:6e:9c:9f:d4:01:41:44:9f:99:99:67:57: 04:5e:80:44:b6:9e:2c:8c:dd:9f:0c:9f:a1:9a:1d:1b:d6:bf: 86:29:ba:bc:d6:1d:ed:eb:84:08:5a:49:e8:64:1d:c4:4f:b3: 15:a5:c6:74:fc:15:bc:b0:dd:44:67:21:08:86:2d:05:d8:64: 16:8e:fb:e4:22:bb:d3:c2:38:dc:b5:10:9d:74:e2:c7:3b:c0: 6c:1f:ef:7e:21:69:7a:e8:c0:91:95:9e:95:7d:67:2f:dc:68: 2a:20:38:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjUwNDI0MjMyMDQ4WhcNMjUwNTAxMjMyMDQ4WjAYMRYwFAYD VQQDEw02ODBhYzc1MC01YzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6r18dS5hQ3AItQlVPvdzkn1KPAlwWEmR10M51WXx27uHp4JeQ4IIfT0H1cDM wMLd1+Wakns1ankFGlE6zi+mwlFRCM9VGezGAxq7u+ipHrpnwKHgbCDSZETYD23z SSTDCnMR4F49BdvUwGkXXZ30/3fUeadRhJcdFnvlebMTcEiH5re+SJUKYQfbqgs2 vcD8qp1+7hKtFg7sVlByI7nZrfuLFM/lPRH7qcPoZJOXqK7snRsDqby+mKmOsyNf 8l6sFp8mATtKF5fCGUxunihgF1h/YxmUz9vWPAEG1u3eKFa1985rz7zzXe9VsZEw GYsAFSbdLJeW81lcvuFyKr0K7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEo6J5rk 8TvzmYnEaU1SCnRMcrXuMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTdBOS81Rjg5RjZFQ0ZCMzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRf MTFGQ2pSWExEN0w4V1N4NlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlGi5fzQiGuNZXDseYzBpsSp4b+ZdoVGfHOvHcbvbZK+YHgkvJxfxE 7Xw3XZpPHT+08TI0m6SYmAHHQvb7ScnxpWBWXIIa1qDiM9P+lo3m9SmwWC2tiFt4 17ltrsLeDKyN047WJ9UcmCf7HBoyQLtbFHLjP6wgqwWZy72TMl8bvPoxewfY+HI2 UVWcao06WxOF46a17ldunJ/UAUFEn5mZZ1cEXoBEtp4sjN2fDJ+hmh0b1r+GKbq8 1h3t64QIWknoZB3ET7MVpcZ0/BW8sN1EZyEIhi0F2GQWjvvkIrvTwjjctRCddOLH O8BsH+9+IWl66MCRlZ6VfWcv3GgqIDgf -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:30 2025 by rpki-client