$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft File: 03F5y7l9aA5qgNwS7kIv6LbjY_U.mft (raw, json) Hash identifier: vamSEn9IGAMRogA7ZVezLEsKcUYehQGpp7VmpnPfOX8= Subject key identifier: BE:C4:CA:61:7D:33:A0:3C:23:F7:21:C0:38:1C:4B:9F:51:34:10:80 Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 074C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft Manifest number: 06E7 Signing time: Fri 30 May 2025 22:19:08 +0000 Manifest this update: Fri 30 May 2025 22:19:08 +0000 Manifest next update: Fri 06 Jun 2025 22:19:08 +0000 Files and hashes: 1: 03F5y7l9aA5qgNwS7kIv6LbjY_U.crl (hash: 6wn7IOGT/cHwkRBulEkrtanD81ADqQ9r7JVkBqsZa2o=) 2: B46F239C6A8D11EB82AF1144C4F9AE02.roa (hash: S6sSUQCmJtkaMtMbA1O0Mmg6DyeiEI+XUAJAroLQzw0=) 3: B24078AA6A8D11EB82AF1144C4F9AE02.roa (hash: 3GgLx+CbNEwoDetwa0xclFosAF0ThnHDNkGy9hkBwHY=) 4: B34D07906A8D11EB82AF1144C4F9AE02.roa (hash: gFTQhXxxWg+vWFd9YUvmY8166bjE5yYi7F/AL03zQaU=) 5: B57F14B86A8D11EB82AF1144C4F9AE02.roa (hash: e4/df1ZKDr4aEamOFlzJbyomY0cdDHsDrVrwwMv17eI=) 6: 35BE363E668F11EBA738AF61C4F9AE02.roa (hash: 4feN6gwvjlguQsUZ0+vuacffttVLy9DJIXoMNN8hWOI=) 7: 4CBC0878AA5111ECBEC4A312C4F9AE02.roa (hash: zplnnTYrDs6ATh1oYF/06orqoqHtQxFtplLwmc2mqPA=) 8: E9ECC32008C611EDBC862E48C4F9AE02.roa (hash: 53gHj/OrKFXtL8aMTpoTUjSuuGCGwdKOy6cQhgB55pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: May 30 22:19:08 2025 GMT Not After : Jun 6 22:19:08 2025 GMT Subject: CN=683a2edc-300e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6f:d4:85:8b:6f:ea:d6:13:3b:e4:6d:68:39: 98:ac:6d:62:b4:74:a8:6e:e9:31:a2:d9:77:0a:8e: 89:6c:b9:4f:13:84:d5:33:13:56:63:16:a2:ef:22: 69:e1:65:e6:0c:df:0d:92:23:77:fd:a3:f6:e4:88: 09:8b:15:b3:00:b8:89:a3:b3:5c:25:c8:e3:9c:94: 32:d8:24:84:19:23:6e:1b:9d:ce:51:2e:9b:96:79: df:8a:c2:4b:cf:eb:b3:c4:94:98:cb:c4:a9:32:fc: 2a:6d:e9:9d:5c:59:24:15:72:f3:fd:c6:ab:92:63: d7:80:08:90:43:96:e5:6f:0b:2b:93:57:0c:d1:29: 5e:58:b1:bf:89:6d:e4:12:81:17:56:07:ce:50:ce: 63:91:be:45:77:dd:99:64:9b:d8:7d:22:3c:26:ff: 5a:e4:47:c2:21:21:b5:36:17:14:12:8c:66:84:24: ae:7c:20:eb:20:30:36:2d:93:b5:50:d2:d3:83:06: 0d:b6:33:80:15:4a:b6:8b:0f:85:4b:63:39:aa:7d: 5e:90:4a:03:9f:fa:df:9d:09:e6:3d:bb:1a:c8:57: d2:87:6f:4b:5b:b9:e2:40:5a:cd:40:e9:23:2f:63: f5:0c:dd:c7:61:54:f5:83:3c:da:c5:bb:0d:f1:bf: 1c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:C4:CA:61:7D:33:A0:3C:23:F7:21:C0:38:1C:4B:9F:51:34:10:80 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:24:3c:ad:ba:87:df:9a:9f:d0:1e:ca:5f:57:c5:f3:a9:d2: 27:59:91:ec:45:0c:af:26:51:01:32:2c:39:b2:4d:c3:a2:9f: 6f:fa:96:0f:3b:94:ff:5b:00:42:76:8d:52:39:36:9e:54:bb: 70:a7:83:cf:f6:5b:28:98:3b:26:5c:d7:34:e1:be:5f:1f:2a: 20:92:06:c3:83:d2:90:48:fc:44:8e:6e:3c:35:74:36:33:28: 06:b7:c4:b5:9d:23:1a:19:26:e6:00:f2:56:70:26:62:8c:ad: 60:73:66:fc:fc:04:a4:c7:05:14:2a:3a:f9:94:8e:82:48:3d: 35:33:df:69:b5:f7:f7:31:f5:7b:91:b1:fc:2d:9f:a7:47:34: 11:df:64:c4:0f:a2:b8:fd:ba:a7:de:77:7e:e7:64:a8:dd:28: 3b:3d:a5:ab:f7:ee:2e:fa:99:ff:91:a8:6b:e6:b1:53:72:b0: 6c:56:04:1d:b1:54:cf:0d:79:45:b5:b3:d7:7e:20:9d:8c:84: 6b:c6:81:d8:df:52:ee:fd:a3:58:f9:02:b3:91:77:ed:6a:5e: 40:06:a1:46:b8:df:94:6a:fa:4d:36:4a:3c:52:16:4a:bc:62: 8d:e4:a9:22:09:d8:8f:03:d7:12:18:b3:3c:28:4b:cd:a4:e0: 8c:f7:b6:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUwNTMwMjIxOTA4WhcNMjUwNjA2MjIxOTA4WjAYMRYwFAYD VQQDEw02ODNhMmVkYy0zMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5G/UhYtv6tYTO+RtaDmYrG1itHSobukxotl3Co6JbLlPE4TVMxNWYxai7yJp 4WXmDN8NkiN3/aP25IgJixWzALiJo7NcJcjjnJQy2CSEGSNuG53OUS6blnnfisJL z+uzxJSYy8SpMvwqbemdXFkkFXLz/carkmPXgAiQQ5blbwsrk1cM0SleWLG/iW3k EoEXVgfOUM5jkb5Fd92ZZJvYfSI8Jv9a5EfCISG1NhcUEoxmhCSufCDrIDA2LZO1 UNLTgwYNtjOAFUq2iw+FS2M5qn1ekEoDn/rfnQnmPbsayFfSh29LW7niQFrNQOkj L2P1DN3HYVT1gzzaxbsN8b8c2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7EymF9 M6A8I/chwDgcS59RNBCAMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REYxRi9GNUNCNkU2QTVDNTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFB NXFnTndTN2tJdjZMYmpZX1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbJDytuoffmp/QHspfV8XzqdInWZHsRQyvJlEBMiw5sk3Dop9v+pYP O5T/WwBCdo1SOTaeVLtwp4PP9lsomDsmXNc04b5fHyogkgbDg9KQSPxEjm48NXQ2 MygGt8S1nSMaGSbmAPJWcCZijK1gc2b8/ASkxwUUKjr5lI6CSD01M99ptff3MfV7 kbH8LZ+nRzQR32TED6K4/bqn3nd+52So3Sg7PaWr9+4u+pn/kahr5rFTcrBsVgQd sVTPDXlFtbPXfiCdjIRrxoHY31Lu/aNY+QKzkXftal5ABqFGuN+UavpNNko8UhZK vGKN5KkiCdiPA9cSGLM8KEvNpOCM97bE -----END CERTIFICATE-----Generated at Sat May 31 17:56:21 2025 by rpki-client