$ rpki-client -vvf rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft File: 5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft (raw, json) Hash identifier: L6UQJ6x2tFNNOp8YInyAlVBMbQj9rPopaoKMOFKmlq0= Subject key identifier: A2:42:49:52:5A:5C:77:5B:E9:32:E8:D5:96:6D:33:FA:A9:89:44:FD Authority key identifier: E5:06:93:CA:18:5B:B6:5D:92:CA:FB:30:E3:76:F5:1B:95:9A:D2:D8 Certificate issuer: /CN=A9115122/serialNumber=E50693CA185BB65D92CAFB30E376F51B959AD2D8 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft Manifest number: 0189 Signing time: Fri 13 Jun 2025 02:33:38 +0000 Manifest this update: Fri 13 Jun 2025 02:33:37 +0000 Manifest next update: Fri 20 Jun 2025 02:33:37 +0000 Files and hashes: 1: 5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl (hash: JO7zaiN9mzUgIs3CauOKLWTBQJ58adMUC6Ul4rVarT4=) 2: D4B97082EF2211EDB7EFE882C4F9AE02.roa (hash: hB47ivnW+fJgf8IJJ0l6aDuxJFT7bxRrB7EorTuGqJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115122, serialNumber=E50693CA185BB65D92CAFB30E376F51B959AD2D8 Validity Not Before: Jun 13 02:33:37 2025 GMT Not After : Jun 20 02:33:37 2025 GMT Subject: CN=684b8e01-d7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:07:77:b2:8d:e5:55:0b:6f:2a:b5:cb:42:e1: 4a:e6:4e:a4:30:0d:d8:d8:49:2f:e7:57:50:1e:aa: 22:90:d3:74:4b:f9:09:45:01:e6:86:3a:e9:7c:73: af:15:3d:ed:74:6f:d7:46:ff:26:b9:4a:43:c1:57: 7e:9c:c8:85:15:47:26:3b:1b:8b:1b:8e:0d:86:55: 3f:4d:b9:40:6c:8f:2e:99:8d:c3:29:64:85:9c:1c: a7:5f:c4:22:dc:5c:95:bd:f1:29:24:2d:bb:8c:64: 22:28:30:c5:53:73:db:d2:70:9f:4c:13:71:90:be: f1:00:40:df:44:d3:13:a9:ae:87:a5:16:cb:06:7d: 3a:7f:36:df:ea:91:dd:d0:cb:67:b7:5b:57:0e:9c: d1:08:a4:f5:fd:6a:16:6c:bc:3e:d6:78:33:d0:24: 5b:01:75:db:29:b0:cb:0a:dc:fb:7b:c5:81:3e:6e: 76:00:bd:70:2b:83:17:90:7b:17:7e:5e:a4:e6:bb: ec:b6:d6:8d:a9:8b:cf:b3:d2:c9:43:e7:80:bf:0c: e6:8f:ec:9a:6d:79:17:e1:d0:8e:b5:0f:5f:56:05: f7:e6:1a:a9:43:86:9f:9d:0e:b4:78:51:c1:f7:83: aa:90:71:c8:f2:11:5f:57:3e:7d:b9:3b:4a:b3:30: 0c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:42:49:52:5A:5C:77:5B:E9:32:E8:D5:96:6D:33:FA:A9:89:44:FD X509v3 Authority Key Identifier: keyid:E5:06:93:CA:18:5B:B6:5D:92:CA:FB:30:E3:76:F5:1B:95:9A:D2:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:a4:e9:31:b9:fd:17:8d:e8:79:bc:6e:32:07:50:c1:33:da: c6:9e:62:1e:01:ec:fe:40:1f:bc:2c:0e:96:2f:dd:69:2b:cc: 02:ec:a8:3e:61:18:81:45:dc:de:80:62:91:89:90:bc:32:93: ba:77:50:39:86:2d:f1:e6:69:aa:bf:3a:55:b8:7f:a1:bf:b6: 96:24:2a:1b:2b:42:a1:ae:a7:3f:6c:36:ea:a8:81:79:20:51: ba:b5:5b:e1:43:57:a1:99:dc:c7:7e:03:ba:93:76:55:36:06: 01:e2:02:ea:c7:9e:44:f7:18:29:14:8f:38:fc:d4:de:a3:7e: 11:98:51:6a:74:08:54:0d:2f:de:0a:6a:9b:52:3d:df:b0:8a: 05:f1:49:39:c6:a8:70:0f:9c:0e:91:ad:4b:03:72:69:bd:80: a2:3e:17:d8:03:8c:54:0c:a2:bf:09:f4:d1:bf:eb:7d:f7:fe: 46:68:92:34:f9:b3:64:23:02:af:5c:2f:2e:9b:ea:53:43:8e: 14:17:54:fe:68:f5:34:0d:c6:7b:84:79:55:52:55:16:d9:7d: c3:13:c5:72:66:bc:f8:c7:2a:7f:fb:8d:7d:7b:e5:45:73:e8: 7f:4a:6b:8f:97:02:c3:c5:eb:f7:ee:60:92:5f:21:65:86:8b: e1:ae:d3:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxMjIxMTAvBgNVBAUTKEU1MDY5M0NBMTg1QkI2NUQ5MkNBRkIzMEUzNzZGNTFC OTU5QUQyRDgwHhcNMjUwNjEzMDIzMzM3WhcNMjUwNjIwMDIzMzM3WjAYMRYwFAYD VQQDEw02ODRiOGUwMS1kN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgd3so3lVQtvKrXLQuFK5k6kMA3Y2Ekv51dQHqoikNN0S/kJRQHmhjrpfHOv FT3tdG/XRv8muUpDwVd+nMiFFUcmOxuLG44NhlU/TblAbI8umY3DKWSFnBynX8Qi 3FyVvfEpJC27jGQiKDDFU3Pb0nCfTBNxkL7xAEDfRNMTqa6HpRbLBn06fzbf6pHd 0Mtnt1tXDpzRCKT1/WoWbLw+1ngz0CRbAXXbKbDLCtz7e8WBPm52AL1wK4MXkHsX fl6k5rvsttaNqYvPs9LJQ+eAvwzmj+yabXkX4dCOtQ9fVgX35hqpQ4afnQ60eFHB 94OqkHHI8hFfVz59uTtKszAM0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJCSVJa XHdb6TLo1ZZtM/qpiUT9MB8GA1UdIwQYMBaAFOUGk8oYW7Zdksr7MON29RuVmtLY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTEyMi8zMEM3QTM4RUVG MUYxMUVEQkY3MUNDODBDNEY5QUUwMi81UWFUeWhoYnRsMlN5dnN3NDNiMUc1V2Ew dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRYVR5aGhidGwyU3l2c3c0M2IxRzVXYTB0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTEyMi8zMEM3QTM4RUVGMUYxMUVEQkY3MUNDODBDNEY5QUUwMi81UWFUeWhoYnRs MlN5dnN3NDNiMUc1V2EwdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2pOkxuf0Xjeh5vG4yB1DBM9rGnmIeAez+QB+8LA6WL91pK8wC7Kg+ YRiBRdzegGKRiZC8MpO6d1A5hi3x5mmqvzpVuH+hv7aWJCobK0Khrqc/bDbqqIF5 IFG6tVvhQ1ehmdzHfgO6k3ZVNgYB4gLqx55E9xgpFI84/NTeo34RmFFqdAhUDS/e CmqbUj3fsIoF8Uk5xqhwD5wOka1LA3JpvYCiPhfYA4xUDKK/CfTRv+t99/5GaJI0 +bNkIwKvXC8um+pTQ44UF1T+aPU0DcZ7hHlVUlUW2X3DE8VyZrz4xyp/+419e+VF c+h/SmuPlwLDxev37mCSXyFlhovhrtN9 -----END CERTIFICATE-----Generated at Sat Jun 14 09:17:07 2025 by rpki-client