$ rpki-client -vvf rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft File: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft (raw, json) Hash identifier: cxYFDMHSR9CQeUCPuUSs9laG4Xl2ZrFiU8Wa/YZQv/8= Subject key identifier: 25:FA:7B:D9:9E:DA:32:0C:F9:49:F7:54:1A:AC:BF:40:92:0E:E4:86 Authority key identifier: E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 Certificate issuer: /CN=A913ABFE/serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft Manifest number: 016E Signing time: Sat 31 May 2025 03:40:29 +0000 Manifest this update: Sat 31 May 2025 03:40:28 +0000 Manifest next update: Sat 07 Jun 2025 03:40:28 +0000 Files and hashes: 1: 5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl (hash: qmhpzy3HZhVni9Zs5H8xdS60pG9VCIVkYEs5cc3J82E=) 2: F4C13F18066811F0B521BF2FC4F9AE02.roa (hash: epExzgPr36sDhlRxRH5MQNOpHIGT7+cJfb/YyVTxfcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ABFE, serialNumber=E588C73E6CB4FDB38B84EE40F8F9B64C50BE4B73 Validity Not Before: May 31 03:40:28 2025 GMT Not After : Jun 7 03:40:28 2025 GMT Subject: CN=683a7a2d-f650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:32:38:c6:e7:75:b1:00:24:55:b1:7e:32:8b: d8:9b:5a:2d:e1:e9:50:88:5b:6c:fe:bc:b1:3a:9e: f9:41:36:78:6a:36:f2:a2:36:cc:b4:96:f9:cb:31: 78:1c:b4:f7:cd:3a:d0:af:a2:36:ba:4d:90:12:14: 2c:66:89:7c:6d:70:15:4d:99:26:5a:b6:d0:64:6c: 51:ca:b2:8e:47:2a:04:a9:fc:9e:50:24:23:77:5d: 7c:74:43:38:00:df:ca:59:9d:7f:f9:25:2d:ff:6d: 42:fc:a4:06:89:16:02:0c:1e:e4:2b:03:50:18:f7: 0f:b8:09:14:01:13:89:7e:b8:b2:ed:3a:76:b9:41: 58:82:92:50:a2:b1:0f:23:99:89:f0:42:e1:70:0b: 9e:76:dd:91:99:15:c3:2a:e5:c8:a0:0f:95:c2:6b: 81:ed:3a:57:64:8c:9b:b9:c7:a8:f8:62:39:c0:c4: d6:f3:c5:5f:72:d5:2b:e8:3a:35:78:84:5c:ab:2c: 42:db:19:76:13:f9:9f:69:07:1d:49:98:d2:65:bf: c1:a5:c0:e8:31:3a:4e:cf:d4:9a:a5:07:b5:6a:74: ef:dd:9e:9a:48:67:41:6d:db:d0:0b:5c:19:73:4c: 4a:d1:72:b5:f5:24:c4:f2:3c:e0:7d:b5:7d:66:47: 6b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:FA:7B:D9:9E:DA:32:0C:F9:49:F7:54:1A:AC:BF:40:92:0E:E4:86 X509v3 Authority Key Identifier: keyid:E5:88:C7:3E:6C:B4:FD:B3:8B:84:EE:40:F8:F9:B6:4C:50:BE:4B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ABFE/F1D5587E25F111EEB7B48058C4F9AE02/5YjHPmy0_bOLhO5A-Pm2TFC-S3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:af:ca:b9:45:4b:9e:c3:ff:ee:f5:9a:04:fe:be:93:a1:24: fa:4e:bb:b4:7d:cf:8c:d3:4c:01:13:67:7e:e9:20:b3:b8:b4: a0:20:e3:40:5d:d9:f1:5c:98:09:b9:91:23:fb:fa:c3:4a:65: 5c:30:22:49:f5:e9:b4:ff:2d:81:53:62:c9:b9:28:ed:6d:92: 9b:7e:14:3f:45:5b:cf:8e:8f:ff:5f:6d:c4:8f:09:5f:d6:32: de:5a:d4:75:8d:02:51:5a:49:ce:75:4a:9e:de:03:2d:d5:1e: 8d:49:63:5c:83:4b:bd:1f:6b:76:d5:f5:12:cd:c3:1d:c4:51: 3f:b5:b3:d6:f0:9d:31:e1:81:7f:2e:03:8b:6c:8b:62:b0:49: 50:b7:23:27:ed:0d:2a:f8:0c:96:bb:d6:5d:3c:d0:17:95:f5: f9:4c:af:13:90:d8:61:2d:b6:f1:b6:d5:47:96:2b:7d:39:88: 7b:9d:7a:db:6e:6f:50:d6:bc:ac:3a:66:ce:6b:e0:a2:22:89: 92:f5:73:e0:83:04:f8:57:f0:8b:1f:26:95:f8:dc:61:65:5f: f4:ff:99:00:4b:b2:6d:6e:b1:3e:e3:86:48:df:46:f6:3f:68: 1c:e9:39:c6:92:f2:86:59:fd:b2:b4:7a:8b:5e:77:a0:d6:9f: bf:d9:84:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FCRkUxMTAvBgNVBAUTKEU1ODhDNzNFNkNCNEZEQjM4Qjg0RUU0MEY4RjlCNjRD NTBCRTRCNzMwHhcNMjUwNTMxMDM0MDI4WhcNMjUwNjA3MDM0MDI4WjAYMRYwFAYD VQQDEw02ODNhN2EyZC1mNjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjI4xud1sQAkVbF+MovYm1ot4elQiFts/ryxOp75QTZ4ajbyojbMtJb5yzF4 HLT3zTrQr6I2uk2QEhQsZol8bXAVTZkmWrbQZGxRyrKORyoEqfyeUCQjd118dEM4 AN/KWZ1/+SUt/21C/KQGiRYCDB7kKwNQGPcPuAkUAROJfriy7Tp2uUFYgpJQorEP I5mJ8ELhcAuedt2RmRXDKuXIoA+VwmuB7TpXZIybuceo+GI5wMTW88VfctUr6Do1 eIRcqyxC2xl2E/mfaQcdSZjSZb/BpcDoMTpOz9SapQe1anTv3Z6aSGdBbdvQC1wZ c0xK0XK19STE8jzgfbV9Zkdr1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCX6e9me 2jIM+Un3VBqsv0CSDuSGMB8GA1UdIwQYMBaAFOWIxz5stP2zi4TuQPj5tkxQvktz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUJGRS9GMUQ1NTg3RTI1 RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9iT0xoTzVBLVBtMlRGQy1T M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZakhQbXkwX2JPTGhPNUEtUG0yVEZDLVMzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUJGRS9GMUQ1NTg3RTI1RjExMUVFQjdCNDgwNThDNEY5QUUwMi81WWpIUG15MF9i T0xoTzVBLVBtMlRGQy1TM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVr8q5RUuew//u9ZoE/r6ToST6Tru0fc+M00wBE2d+6SCzuLSgIONA XdnxXJgJuZEj+/rDSmVcMCJJ9em0/y2BU2LJuSjtbZKbfhQ/RVvPjo//X23Ejwlf 1jLeWtR1jQJRWknOdUqe3gMt1R6NSWNcg0u9H2t21fUSzcMdxFE/tbPW8J0x4YF/ LgOLbItisElQtyMn7Q0q+AyWu9ZdPNAXlfX5TK8TkNhhLbbxttVHlit9OYh7nXrb bm9Q1rysOmbOa+CiIomS9XPggwT4V/CLHyaV+NxhZV/0/5kAS7JtbrE+44ZI30b2 P2gc6TnGkvKGWf2ytHqLXneg1p+/2YSg -----END CERTIFICATE-----Generated at Sat May 31 17:03:27 2025 by rpki-client