$ rpki-client -vvf rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft File: 5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft (raw, json) Hash identifier: 2otykSmmH0yN95XvVwokLFqfXEQ0myUGXSG3wFyQd5A= Subject key identifier: 9A:B1:A0:DA:07:A6:14:A7:85:05:43:AB:1B:E6:23:3B:6B:84:52:D8 Authority key identifier: E5:06:93:CA:18:5B:B6:5D:92:CA:FB:30:E3:76:F5:1B:95:9A:D2:D8 Certificate issuer: /CN=A9115122/serialNumber=E50693CA185BB65D92CAFB30E376F51B959AD2D8 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft Manifest number: 0188 Signing time: Wed 11 Jun 2025 02:59:07 +0000 Manifest this update: Wed 11 Jun 2025 02:59:06 +0000 Manifest next update: Wed 18 Jun 2025 02:59:06 +0000 Files and hashes: 1: 5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl (hash: 2tYqDpnvQtSnwqLevsRUdaT4Vt9sdSqbG9vaguXKsl4=) 2: D4B97082EF2211EDB7EFE882C4F9AE02.roa (hash: hB47ivnW+fJgf8IJJ0l6aDuxJFT7bxRrB7EorTuGqJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 02:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115122, serialNumber=E50693CA185BB65D92CAFB30E376F51B959AD2D8 Validity Not Before: Jun 11 02:59:06 2025 GMT Not After : Jun 18 02:59:06 2025 GMT Subject: CN=6848f0fb-d02a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:6c:89:df:db:96:c8:f7:fe:84:b3:aa:4d: 72:09:30:7f:f9:0a:a3:3f:3c:c4:91:e2:e3:63:e8: a3:36:d4:00:67:d9:43:fd:38:d2:4d:fd:85:21:72: ac:80:29:95:fc:14:c2:0f:f6:dd:0c:3d:58:ca:df: f9:bf:29:9f:ee:f1:59:2a:c9:85:63:c6:58:65:2f: 07:39:f6:01:6f:55:17:35:f2:be:5a:b4:30:2b:28: f9:e0:45:1b:df:b1:f0:4d:a9:17:52:1b:92:8c:45: 70:57:34:cd:81:8c:16:a6:c8:62:ea:32:fa:c5:72: d6:b7:ac:0e:31:f7:4e:58:ad:06:6b:d8:38:68:ad: 55:12:19:b8:91:85:48:0c:58:5f:ba:6e:75:06:65: 88:5e:db:18:df:6f:63:36:51:a4:8e:64:db:71:5a: 35:9a:56:09:69:eb:db:66:dc:23:1a:9a:97:13:87: a1:7f:92:de:fd:9c:82:b3:bd:bb:14:d6:79:1b:8d: 05:b7:ff:48:e7:b3:7e:75:d7:a3:59:34:3a:fe:b1: d6:43:60:09:91:b6:65:c5:4c:bb:53:c8:96:c6:59: 93:3d:f1:25:cb:5b:40:82:95:5e:7e:b2:8b:78:77: 30:b0:ae:35:e8:45:15:8b:12:86:4f:78:a6:b1:c3: 53:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B1:A0:DA:07:A6:14:A7:85:05:43:AB:1B:E6:23:3B:6B:84:52:D8 X509v3 Authority Key Identifier: keyid:E5:06:93:CA:18:5B:B6:5D:92:CA:FB:30:E3:76:F5:1B:95:9A:D2:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QaTyhhbtl2Syvsw43b1G5Wa0tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115122/30C7A38EEF1F11EDBF71CC80C4F9AE02/5QaTyhhbtl2Syvsw43b1G5Wa0tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e2:08:62:ec:93:4f:db:ff:62:be:54:83:a8:97:d4:e2:13: 46:35:f4:0e:6d:ce:03:5f:65:01:71:d3:d0:90:71:6f:d9:8b: ea:ed:21:aa:b6:b3:c3:b1:60:69:36:57:02:3c:d2:b2:86:7c: ba:00:85:42:8f:9a:94:3b:c1:93:b0:b5:0b:13:c3:4c:30:31: a8:a8:24:e9:9c:9e:fb:7b:98:9e:97:da:fa:f9:84:db:8d:29: 27:ec:e9:17:be:b6:f1:89:b6:b8:a3:c7:0c:ce:4c:d4:00:1b: 93:e2:e3:02:d8:b1:6c:22:84:bb:92:67:ec:78:97:a5:78:b3: dc:72:78:91:a3:08:17:2c:3e:40:7c:07:bd:93:3b:37:36:27: 0d:29:16:8b:55:20:6c:1d:2e:50:6d:e7:29:17:17:82:49:71: 7d:5e:44:ba:00:3f:ca:12:69:9a:d0:32:a7:fe:42:1c:75:68: 3d:e5:6b:af:40:5f:00:93:65:61:1a:a8:33:7b:93:51:86:a8: 2f:cf:cf:6a:18:d0:2b:be:77:70:dc:60:de:50:42:8a:64:a4: ac:f4:4f:98:43:ad:ce:55:a4:57:8b:ba:93:cd:42:de:8e:b5: 25:8a:20:d2:d2:ab:01:ce:25:49:5e:19:44:2f:0b:8c:b4:e2: 2b:e0:82:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTUxMjIxMTAvBgNVBAUTKEU1MDY5M0NBMTg1QkI2NUQ5MkNBRkIzMEUzNzZGNTFC OTU5QUQyRDgwHhcNMjUwNjExMDI1OTA2WhcNMjUwNjE4MDI1OTA2WjAYMRYwFAYD VQQDEw02ODQ4ZjBmYi1kMDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzv1sid/blsj3/oSzqk1yCTB/+QqjPzzEkeLjY+ijNtQAZ9lD/TjSTf2FIXKs gCmV/BTCD/bdDD1Yyt/5vymf7vFZKsmFY8ZYZS8HOfYBb1UXNfK+WrQwKyj54EUb 37HwTakXUhuSjEVwVzTNgYwWpshi6jL6xXLWt6wOMfdOWK0Ga9g4aK1VEhm4kYVI DFhfum51BmWIXtsY329jNlGkjmTbcVo1mlYJaevbZtwjGpqXE4ehf5Le/ZyCs727 FNZ5G40Ft/9I57N+ddejWTQ6/rHWQ2AJkbZlxUy7U8iWxlmTPfEly1tAgpVefrKL eHcwsK416EUVixKGT3imscNTqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqxoNoH phSnhQVDqxvmIztrhFLYMB8GA1UdIwQYMBaAFOUGk8oYW7Zdksr7MON29RuVmtLY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNTEyMi8zMEM3QTM4RUVG MUYxMUVEQkY3MUNDODBDNEY5QUUwMi81UWFUeWhoYnRsMlN5dnN3NDNiMUc1V2Ew dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRYVR5aGhidGwyU3l2c3c0M2IxRzVXYTB0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NTEyMi8zMEM3QTM4RUVGMUYxMUVEQkY3MUNDODBDNEY5QUUwMi81UWFUeWhoYnRs MlN5dnN3NDNiMUc1V2EwdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa4ghi7JNP2/9ivlSDqJfU4hNGNfQObc4DX2UBcdPQkHFv2Yvq7SGq trPDsWBpNlcCPNKyhny6AIVCj5qUO8GTsLULE8NMMDGoqCTpnJ77e5iel9r6+YTb jSkn7OkXvrbxiba4o8cMzkzUABuT4uMC2LFsIoS7kmfseJeleLPccniRowgXLD5A fAe9kzs3NicNKRaLVSBsHS5QbecpFxeCSXF9XkS6AD/KEmma0DKn/kIcdWg95Wuv QF8Ak2VhGqgze5NRhqgvz89qGNArvndw3GDeUEKKZKSs9E+YQ63OVaRXi7qTzULe jrUliiDS0qsBziVJXhlELwuMtOIr4IKT -----END CERTIFICATE-----Generated at Thu Jun 12 19:16:56 2025 by rpki-client