$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: tAUW9zoOhy4KIIbaxrqUaxDwOeh6dz8MESDtreSFHVc= Subject key identifier: E7:0B:CD:1F:52:B1:90:A1:E8:ED:67:5A:8E:19:B4:5F:B6:56:FA:A4 Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 0520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 0513 Signing time: Thu 12 Jun 2025 23:14:30 +0000 Manifest this update: Thu 12 Jun 2025 23:14:30 +0000 Manifest next update: Thu 19 Jun 2025 23:14:30 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: +bw4rdczwYcy/JYsEQy5QVT8VVD2b7/AY2utYSwlZCA=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: Qi+WEKvtCWtvGFWFUb38yBqHoAd83mtV7+scTOUOMc4=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: aLricGiGlyJJZTbRrMECo3zkg40wJti6wIrN+dUyP7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 23:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Jun 12 23:14:30 2025 GMT Not After : Jun 19 23:14:30 2025 GMT Subject: CN=684b5f56-0857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7b:18:ec:93:3c:af:79:ae:95:07:d2:6d:51: 91:41:0d:ed:c4:15:9a:ef:9b:70:a2:c7:1c:28:8a: 21:11:c0:7f:d6:a4:dd:bc:f1:56:1e:0a:88:bc:fb: 21:36:c7:41:cc:05:23:b2:a5:33:be:e3:bc:6a:6c: b1:cb:92:9d:e9:24:8a:90:4d:09:2d:5e:19:cd:11: 5b:5c:fa:eb:15:6f:36:1d:93:45:06:a7:69:1e:7f: 97:af:67:7e:62:d9:08:7b:a4:dc:2c:84:8a:46:ef: c6:bd:b3:40:6f:11:a1:e4:2a:10:71:33:53:bc:70: 2f:b5:b0:11:a7:8f:a7:db:75:c5:54:b8:aa:d2:5b: 4c:a2:1d:31:a6:a1:01:7e:00:40:c4:dd:b4:7a:a7: b7:56:fc:8d:60:ed:17:6e:89:bb:44:4e:3d:a1:c5: 1c:a1:90:35:c8:f4:49:c0:2c:8d:97:9b:bf:ce:5b: 20:0d:1a:fe:7e:9a:73:69:96:14:0a:20:f3:8d:07: cc:b7:b0:8f:ea:49:f9:28:47:c9:b3:1b:dc:83:4e: 5d:72:b9:7e:e9:25:23:d1:a5:36:af:2f:34:8e:2c: 61:8b:44:2f:b1:90:af:a0:cf:8e:6d:7b:20:ac:f5: 93:09:f3:48:73:01:58:d0:ea:5b:ae:e6:91:48:86: f6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0B:CD:1F:52:B1:90:A1:E8:ED:67:5A:8E:19:B4:5F:B6:56:FA:A4 X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b5:50:f2:d9:5a:23:bf:8d:c5:d1:37:0d:f5:22:4c:f9:72: 8a:79:75:c6:cf:71:19:af:a5:90:74:82:2c:eb:28:60:f0:24: f6:1c:58:5b:85:df:eb:67:ea:6b:64:5a:8f:b7:13:55:7b:a1: bf:3f:0e:bc:e0:b2:2b:47:a7:c4:53:73:b1:bf:45:62:f5:94: 42:d9:a1:85:57:2d:5c:dd:94:32:7a:87:71:0a:dd:a7:ef:7e: 89:7a:6f:2e:05:55:e9:f5:9e:0b:b8:60:41:79:75:83:6f:40: 50:83:b4:c2:84:e2:26:e1:ee:03:db:b1:a1:34:85:dd:b7:1a: ff:91:66:b8:35:5d:ef:aa:91:14:8c:dd:d2:b8:76:5e:49:8c: f8:cd:19:79:0b:9c:1b:74:f1:a3:be:0b:4a:47:ef:f4:a6:47: 0c:17:db:73:cb:81:69:16:e1:64:a7:cd:5d:d9:d6:f7:86:1a: 9a:c4:9a:ca:cf:d5:0e:d0:85:14:df:43:ac:e8:d8:c0:90:c1: b4:24:c2:0a:9b:97:47:28:d6:a2:9c:d2:cf:e7:56:55:e8:a5: 09:9b:76:c4:fa:6c:47:88:b7:c7:d4:d9:91:9b:87:94:6f:60: c9:a1:78:94:dc:39:e5:e5:48:bc:ad:04:de:1a:db:72:96:de: 60:1c:68:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUwNjEyMjMxNDMwWhcNMjUwNjE5MjMxNDMwWjAYMRYwFAYD VQQDEw02ODRiNWY1Ni0wODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHsY7JM8r3mulQfSbVGRQQ3txBWa75twosccKIohEcB/1qTdvPFWHgqIvPsh NsdBzAUjsqUzvuO8amyxy5Kd6SSKkE0JLV4ZzRFbXPrrFW82HZNFBqdpHn+Xr2d+ YtkIe6TcLISKRu/GvbNAbxGh5CoQcTNTvHAvtbARp4+n23XFVLiq0ltMoh0xpqEB fgBAxN20eqe3VvyNYO0Xbom7RE49ocUcoZA1yPRJwCyNl5u/zlsgDRr+fppzaZYU CiDzjQfMt7CP6kn5KEfJsxvcg05dcrl+6SUj0aU2ry80jixhi0QvsZCvoM+ObXsg rPWTCfNIcwFY0OpbruaRSIb2vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcLzR9S sZCh6O1nWo4ZtF+2VvqkMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3tVDy2Vojv43F0TcN9SJM+XKKeXXGz3EZr6WQdIIs6yhg8CT2HFhb hd/rZ+prZFqPtxNVe6G/Pw684LIrR6fEU3Oxv0Vi9ZRC2aGFVy1c3ZQyeodxCt2n 736Jem8uBVXp9Z4LuGBBeXWDb0BQg7TChOIm4e4D27GhNIXdtxr/kWa4NV3vqpEU jN3SuHZeSYz4zRl5C5wbdPGjvgtKR+/0pkcMF9tzy4FpFuFkp81d2db3hhqaxJrK z9UO0IUU30Os6NjAkMG0JMIKm5dHKNainNLP51ZV6KUJm3bE+mxHiLfH1NmRm4eU b2DJoXiU3Dnl5Ui8rQTeGttylt5gHGh4 -----END CERTIFICATE-----Generated at Sat Jun 14 19:26:24 2025 by rpki-client