$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: hr/2ZshkKH/9VQRisTfbtrXsg6QgYUuNo/eX22iXc68= Subject key identifier: 96:41:70:5E:EA:8C:29:7A:36:AE:F6:93:4F:01:5D:3F:29:4A:FC:2C Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 0530 Signing time: Sat 09 Aug 2025 00:01:07 +0000 Manifest this update: Sat 09 Aug 2025 00:01:06 +0000 Manifest next update: Sat 16 Aug 2025 00:01:06 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: 7qkfDtPAKLLz82Qy9AL2juViGfz6B3KVOlxUqA0UFCs=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: Qi+WEKvtCWtvGFWFUb38yBqHoAd83mtV7+scTOUOMc4=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: aLricGiGlyJJZTbRrMECo3zkg40wJti6wIrN+dUyP7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Aug 9 00:01:06 2025 GMT Not After : Aug 16 00:01:06 2025 GMT Subject: CN=68968fc3-406f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:b4:9c:6a:15:81:e1:5e:c6:34:ad:a2:54:b1: 4b:d9:a7:60:27:17:ed:34:a2:23:d0:f9:3c:d0:8d: f5:0c:76:db:b3:4e:35:1b:be:ca:5d:7f:c4:ea:61: 5c:48:53:95:cb:57:51:43:32:1e:ac:db:ac:5a:f1: dd:6d:18:11:26:c5:07:52:b0:bb:0a:4d:45:ff:51: 5c:28:9b:38:5e:98:66:c8:44:95:59:ec:e9:eb:c7: 0a:e0:0c:87:8b:19:56:03:c7:ac:f5:56:01:b8:45: bf:5d:98:e6:30:db:a1:85:fc:0e:93:b4:40:7c:39: de:fb:6d:8e:29:c6:56:1f:0c:e2:25:0e:a6:7b:ce: fb:80:c8:74:d6:66:2f:a6:7d:d8:51:84:b7:54:40: 41:31:63:4a:12:6c:f1:99:9c:48:2b:c2:fa:12:6c: 17:fa:77:32:be:6d:66:76:13:28:28:af:ef:83:aa: d7:d8:40:ef:91:0e:f1:dc:3a:11:11:ac:c0:7c:bb: f3:d2:35:16:20:66:47:f8:65:40:b7:31:85:0a:bc: 90:27:54:94:dc:52:22:78:c6:01:65:d1:b0:7f:3b: e4:eb:2d:37:dd:35:0a:56:4a:1b:46:ff:d6:79:ed: f0:00:d1:10:3a:0f:7b:f2:6c:e4:f4:41:47:c9:f2: a7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:41:70:5E:EA:8C:29:7A:36:AE:F6:93:4F:01:5D:3F:29:4A:FC:2C X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:05:86:b0:61:e9:d3:11:c7:11:a8:d5:54:b2:3b:54:94:a4: 5a:6a:53:49:3c:6d:49:e2:5d:28:1f:0d:7a:f5:27:53:0c:d9: 58:92:bd:19:f1:45:d5:c7:c4:99:cf:20:f2:fc:19:cb:ad:d1: b7:52:e6:66:8d:6a:a3:1d:ff:e1:60:58:47:9a:73:d7:b2:66: d8:35:1b:ca:dd:d1:e2:70:5f:87:5d:16:9a:0c:e7:5d:81:6d: 97:2c:3c:cb:ff:54:51:e4:9b:09:b8:de:c8:5f:e4:f4:18:79: a7:b7:a4:a6:8a:61:8a:34:42:c8:78:ed:f9:e9:44:0b:4a:ba: 7d:2a:5b:d1:03:b1:2b:02:44:7e:9c:4d:a1:1b:e8:56:a2:41: 4b:17:69:5c:99:09:c4:17:e3:64:18:53:43:0f:15:98:91:d7: b6:76:00:1f:d2:db:04:72:25:50:f2:b6:68:da:5d:ef:3e:38: 2a:c7:48:d0:d5:6f:17:14:ca:37:20:b1:82:3f:23:1c:8b:f9: a2:91:8e:62:5d:ff:c7:c8:9a:36:6f:0f:e8:d9:e8:2b:73:0f: 06:62:61:8b:1a:6e:7d:a8:1a:42:64:48:9d:0a:3c:7d:c3:eb: b1:24:89:56:eb:03:d1:cc:2d:9c:ea:df:81:b6:08:f6:f2:67: 91:77:0f:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUwODA5MDAwMTA2WhcNMjUwODE2MDAwMTA2WjAYMRYwFAYD VQQDEw02ODk2OGZjMy00MDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7bScahWB4V7GNK2iVLFL2adgJxftNKIj0Pk80I31DHbbs041G77KXX/E6mFc SFOVy1dRQzIerNusWvHdbRgRJsUHUrC7Ck1F/1FcKJs4XphmyESVWezp68cK4AyH ixlWA8es9VYBuEW/XZjmMNuhhfwOk7RAfDne+22OKcZWHwziJQ6me877gMh01mYv pn3YUYS3VEBBMWNKEmzxmZxIK8L6EmwX+ncyvm1mdhMoKK/vg6rX2EDvkQ7x3DoR EazAfLvz0jUWIGZH+GVAtzGFCryQJ1SU3FIieMYBZdGwfzvk6y033TUKVkobRv/W ee3wANEQOg978mzk9EFHyfKnfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJZBcF7q jCl6Nq72k08BXT8pSvwsMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATBYawYenTEccRqNVUsjtUlKRaalNJPG1J4l0oHw169SdTDNlYkr0Z 8UXVx8SZzyDy/BnLrdG3UuZmjWqjHf/hYFhHmnPXsmbYNRvK3dHicF+HXRaaDOdd gW2XLDzL/1RR5JsJuN7IX+T0GHmnt6SmimGKNELIeO356UQLSrp9KlvRA7ErAkR+ nE2hG+hWokFLF2lcmQnEF+NkGFNDDxWYkde2dgAf0tsEciVQ8rZo2l3vPjgqx0jQ 1W8XFMo3ILGCPyMci/mikY5iXf/HyJo2bw/o2egrcw8GYmGLGm59qBpCZEidCjx9 w+uxJIlW6wPRzC2c6t+Btgj28meRdw+q -----END CERTIFICATE-----Generated at Sun Aug 10 21:08:07 2025 by rpki-client