$ rpki-client -vvf rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft File: 5B7XVgdLN63ceU-UC9H1Pj9na5M.mft (raw, json) Hash identifier: ysP+ZGhew92BKrLvYgABdhMwyZE29NSXf0/5ZsoX8xs= Subject key identifier: 35:50:BC:76:16:15:7A:7A:B5:D0:74:72:E4:79:6B:01:99:B4:12:0D Authority key identifier: E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93 Certificate issuer: /CN=A913B5C7/serialNumber=E41ED756074B37ADDC794F940BD1F53E3F676B93 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft Manifest number: DD Signing time: Sat 31 May 2025 05:07:08 +0000 Manifest this update: Sat 31 May 2025 05:07:07 +0000 Manifest next update: Sat 07 Jun 2025 05:07:07 +0000 Files and hashes: 1: 5B7XVgdLN63ceU-UC9H1Pj9na5M.crl (hash: sfkl6ZTVq47fpemoT7YdFl1PLpJ7FmXBiVeayI7pRxQ=) 2: B0CE94A0E80911EEADE3420AC4F9AE02.roa (hash: JMqNNeHY27Hx5eJ7SJKoh8TY1qwKjQvReEB44gwMvpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.crl rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B5C7, serialNumber=E41ED756074B37ADDC794F940BD1F53E3F676B93 Validity Not Before: May 31 05:07:07 2025 GMT Not After : Jun 7 05:07:07 2025 GMT Subject: CN=683a8e7c-614e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:69:d0:14:d2:a7:75:8c:f7:0a:00:f7:27:28: 0d:57:31:c8:e8:0d:1f:bb:22:39:ec:b4:a5:15:9e: 16:95:eb:70:81:a5:20:64:6b:54:4d:75:17:e4:6c: 13:3c:56:85:80:4b:e4:2a:e8:d3:d3:8d:3e:5d:e9: b6:8c:8c:39:cd:8c:0a:6e:c4:90:64:c8:90:7a:3e: 4b:3b:ec:39:9d:1b:9d:ed:24:87:35:86:9f:6a:c3: 84:4c:75:b9:a1:1e:13:33:ce:51:79:77:9b:e6:77: 39:68:60:b8:a2:2d:ed:91:b9:11:ce:53:b3:3b:13: 9a:4c:09:a5:67:b4:14:df:bf:4f:eb:f6:70:a3:9e: 2a:85:b0:dd:da:99:1f:9b:e4:fc:58:7f:f7:9d:30: 72:28:c8:7d:84:c7:4a:84:4e:12:36:41:81:26:6d: a1:af:d6:df:9b:c7:7a:4a:c0:8e:d2:a1:c4:47:95: 4f:19:7f:35:ae:27:36:dc:09:db:69:07:3b:05:11: 55:3c:05:fa:af:76:c3:f3:b7:aa:16:56:75:28:ab: 96:07:dd:39:ae:95:b1:bb:f8:42:8c:84:64:13:8d: fd:2d:60:d8:92:4f:11:51:ca:d6:0a:3a:3b:00:bf: 0d:f4:03:4c:f9:c5:62:c7:7d:eb:ac:b4:8a:42:a2: 5f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:50:BC:76:16:15:7A:7A:B5:D0:74:72:E4:79:6B:01:99:B4:12:0D X509v3 Authority Key Identifier: keyid:E4:1E:D7:56:07:4B:37:AD:DC:79:4F:94:0B:D1:F5:3E:3F:67:6B:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5B7XVgdLN63ceU-UC9H1Pj9na5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B5C7/67D24396E80911EEBE489563C4F9AE02/5B7XVgdLN63ceU-UC9H1Pj9na5M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ef:a9:54:74:8c:91:e4:1c:aa:01:d7:cd:c2:23:6b:ca:fc:57: 9a:fe:e1:e2:78:49:da:67:aa:db:ec:00:1b:88:8e:d8:10:4c: cd:9e:18:84:36:01:ac:34:c9:64:e9:43:34:f2:21:16:ff:46: 35:03:8c:98:93:12:73:7f:12:51:e2:e7:ac:95:60:3c:0e:71: c4:7f:5f:0d:c7:53:13:04:3d:f0:01:94:3e:fd:31:04:bb:e4: dd:a6:92:63:dc:d5:74:08:9e:c8:93:40:e7:e8:99:20:25:2e: 3d:b0:09:54:79:b5:d7:3a:1c:1e:3f:d3:1f:4e:e9:b8:b2:4d: dd:8f:44:f6:62:50:5d:b5:77:3a:4a:3a:9f:b0:7c:39:4b:22: 58:c2:79:0a:f8:d4:27:55:a6:a0:1c:8b:6c:63:96:25:e5:97: ff:09:fc:f5:89:6e:41:68:28:6a:bb:5d:37:38:f5:90:86:24: 84:e0:7f:3e:12:cc:fe:2a:8d:74:57:51:2b:ec:df:57:8b:1e: 9a:ee:5e:e7:62:ab:30:11:44:fa:eb:fc:d9:f9:8a:cf:c6:83: 5f:64:62:eb:c3:8d:bf:2f:8e:4e:75:20:c4:f2:3a:9b:14:52: 49:75:21:b7:7c:5f:cb:c3:20:09:ec:a2:d2:97:74:08:59:d2: 14:69:d4:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I1QzcxMTAvBgNVBAUTKEU0MUVENzU2MDc0QjM3QUREQzc5NEY5NDBCRDFGNTNF M0Y2NzZCOTMwHhcNMjUwNTMxMDUwNzA3WhcNMjUwNjA3MDUwNzA3WjAYMRYwFAYD VQQDEw02ODNhOGU3Yy02MTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWnQFNKndYz3CgD3JygNVzHI6A0fuyI57LSlFZ4WletwgaUgZGtUTXUX5GwT PFaFgEvkKujT040+Xem2jIw5zYwKbsSQZMiQej5LO+w5nRud7SSHNYafasOETHW5 oR4TM85ReXeb5nc5aGC4oi3tkbkRzlOzOxOaTAmlZ7QU379P6/Zwo54qhbDd2pkf m+T8WH/3nTByKMh9hMdKhE4SNkGBJm2hr9bfm8d6SsCO0qHER5VPGX81ric23Anb aQc7BRFVPAX6r3bD87eqFlZ1KKuWB905rpWxu/hCjIRkE439LWDYkk8RUcrWCjo7 AL8N9ANM+cVix33rrLSKQqJfCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVQvHYW FXp6tdB0cuR5awGZtBINMB8GA1UdIwQYMBaAFOQe11YHSzet3HlPlAvR9T4/Z2uT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjVDNy82N0QyNDM5NkU4 MDkxMUVFQkU0ODk1NjNDNEY5QUUwMi81QjdYVmdkTE42M2NlVS1VQzlIMVBqOW5h NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVCN1hWZ2RMTjYzY2VVLVVDOUgxUGo5bmE1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjVDNy82N0QyNDM5NkU4MDkxMUVFQkU0ODk1NjNDNEY5QUUwMi81QjdYVmdkTE42 M2NlVS1VQzlIMVBqOW5hNU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDvqVR0jJHkHKoB183CI2vK/Fea/uHieEnaZ6rb7AAbiI7YEEzNnhiE NgGsNMlk6UM08iEW/0Y1A4yYkxJzfxJR4ueslWA8DnHEf18Nx1MTBD3wAZQ+/TEE u+TdppJj3NV0CJ7Ik0Dn6JkgJS49sAlUebXXOhweP9MfTum4sk3dj0T2YlBdtXc6 SjqfsHw5SyJYwnkK+NQnVaagHItsY5Yl5Zf/Cfz1iW5BaChqu103OPWQhiSE4H8+ Esz+Ko10V1Er7N9Xix6a7l7nYqswEUT66/zZ+YrPxoNfZGLrw42/L45OdSDE8jqb FFJJdSG3fF/LwyAJ7KLSl3QIWdIUadTz -----END CERTIFICATE-----Generated at Sat May 31 16:43:46 2025 by rpki-client