$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: HV2c5d3TxNq7o+kZNjuBR+fYCTA6KS8UfVVCQ+s9BCo= Subject key identifier: 9E:4C:50:05:6F:8C:E8:10:5A:2C:78:CB:C6:6C:EF:F5:79:68:2F:71 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: 99 Signing time: Fri 13 Jun 2025 05:17:44 +0000 Manifest this update: Fri 13 Jun 2025 05:17:44 +0000 Manifest next update: Fri 20 Jun 2025 05:17:44 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: 1Hh7utP29XeZLu+RrgryHQ7PceEoyNt6HcvlZO9M6RQ=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: IIflfQCAxW1X5tnyPUSdNiUWUvRyGX/zn4vbskdXfXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Jun 13 05:17:44 2025 GMT Not After : Jun 20 05:17:44 2025 GMT Subject: CN=684bb478-96a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7c:31:87:44:5e:03:4f:51:4a:80:f3:05:38: dc:15:4b:ac:4f:ad:79:1e:35:e2:55:ae:c0:e8:35: 48:c2:95:b4:ee:4c:e4:b7:e1:53:23:f3:af:58:8f: 7f:33:bd:e6:20:40:66:e5:cc:34:b6:1f:c3:57:cd: c9:d3:4a:34:21:f9:72:c2:8d:f7:bc:f8:84:a5:54: 16:15:1f:94:47:74:42:f9:7b:90:32:11:9f:7f:dc: 5b:5e:af:40:e2:40:a6:1a:c4:66:47:4e:c9:58:c7: 9d:94:e7:ac:b5:79:0d:f1:46:bd:90:b2:7e:a0:c0: 29:af:c2:3c:c8:ae:77:c6:d8:d1:6e:be:10:89:be: 97:4c:5a:1d:b1:75:f3:82:d1:9d:c5:21:7c:df:68: 39:89:0e:f1:8b:08:19:b4:f6:de:6b:b7:a8:27:05: cd:d9:09:05:e4:a4:c0:5f:35:83:8b:ac:27:50:78: f2:de:c2:59:cb:31:a4:8d:6d:61:a1:7f:87:0c:75: e6:71:8e:91:fa:a7:e4:77:ec:13:ae:ce:30:38:27: b8:6d:58:fb:aa:11:7b:58:94:e0:f2:77:4b:f8:b9: b8:17:59:c3:b4:34:a3:fa:69:7d:2f:1d:cd:c2:94: 5b:54:26:d2:f1:00:0c:dd:42:d8:6a:16:da:1d:0f: d4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:4C:50:05:6F:8C:E8:10:5A:2C:78:CB:C6:6C:EF:F5:79:68:2F:71 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:bb:4c:22:42:75:53:85:ef:d9:8b:f2:ec:68:3d:6b:e5:5f: 96:70:08:a1:86:78:07:04:b1:ff:9f:b7:07:e5:ff:cb:23:8d: 01:7b:c0:11:be:5a:10:78:6d:74:bf:a9:34:da:09:4a:41:cf: b2:b9:f3:f4:64:bb:bd:67:5d:54:77:dd:8f:e7:f0:ae:15:bf: eb:bf:56:26:95:81:ad:2f:e1:c4:09:2d:df:77:1a:89:01:9c: db:ef:8d:4c:12:b5:19:df:08:84:5e:db:23:d8:d8:a4:ff:31: 0c:1e:79:68:9f:75:f2:ec:ff:d1:30:b8:75:68:be:33:c5:be: 33:6f:48:9b:e9:8c:df:08:c8:24:9e:aa:ca:03:86:45:59:19: 89:06:44:01:eb:a8:1b:39:b8:ee:8b:ef:82:88:46:19:5f:b7: 38:45:93:5d:79:7d:dc:2e:59:68:d6:71:26:05:4e:3d:b3:74: 6a:99:51:fb:b5:e9:49:39:cc:f7:aa:3f:bc:e6:b5:72:ef:19: eb:eb:c7:b6:a2:23:ea:b8:c3:81:f0:2d:d3:82:7c:7f:13:8a: 2c:7e:d5:15:1f:58:9c:3c:fa:bc:22:ed:91:d7:29:84:81:0c: 96:6c:bf:97:43:4d:cc:40:72:bc:01:f8:41:7c:c8:de:b6:39: 2f:d6:6e:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUwNjEzMDUxNzQ0WhcNMjUwNjIwMDUxNzQ0WjAYMRYwFAYD VQQDEw02ODRiYjQ3OC05NmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnwxh0ReA09RSoDzBTjcFUusT615HjXiVa7A6DVIwpW07kzkt+FTI/OvWI9/ M73mIEBm5cw0th/DV83J00o0Iflywo33vPiEpVQWFR+UR3RC+XuQMhGff9xbXq9A 4kCmGsRmR07JWMedlOestXkN8Ua9kLJ+oMApr8I8yK53xtjRbr4Qib6XTFodsXXz gtGdxSF832g5iQ7xiwgZtPbea7eoJwXN2QkF5KTAXzWDi6wnUHjy3sJZyzGkjW1h oX+HDHXmcY6R+qfkd+wTrs4wOCe4bVj7qhF7WJTg8ndL+Lm4F1nDtDSj+ml9Lx3N wpRbVCbS8QAM3ULYahbaHQ/UoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5MUAVv jOgQWix4y8Zs7/V5aC9xMB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTczNS9EMEU5QjFFRTYzOUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNH TkhPS29SV2E0cmxWa04zWkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvu0wiQnVThe/Zi/LsaD1r5V+WcAihhngHBLH/n7cH5f/LI40Be8AR vloQeG10v6k02glKQc+yufP0ZLu9Z11Ud92P5/CuFb/rv1YmlYGtL+HECS3fdxqJ AZzb741MErUZ3wiEXtsj2Nik/zEMHnlon3Xy7P/RMLh1aL4zxb4zb0ib6YzfCMgk nqrKA4ZFWRmJBkQB66gbObjui++CiEYZX7c4RZNdeX3cLllo1nEmBU49s3RqmVH7 telJOcz3qj+85rVy7xnr68e2oiPquMOB8C3Tgnx/E4osftUVH1icPPq8Iu2R1ymE gQyWbL+XQ03MQHK8AfhBfMjetjkv1m5E -----END CERTIFICATE-----Generated at Sat Jun 14 19:38:33 2025 by rpki-client