$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: CuWJ4MUyx+SATeVI1KInx3tjWdeLiVjvAmrk4aLA6DQ= Subject key identifier: 74:41:C7:89:6D:5E:FC:8E:28:D5:63:88:7F:5A:3F:7C:DD:A3:82:FE Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 05E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 05E5 Signing time: Fri 30 May 2025 23:09:26 +0000 Manifest this update: Fri 30 May 2025 23:09:25 +0000 Manifest next update: Fri 06 Jun 2025 23:09:25 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: 33Nc1vHK/NAajN0baL9BEnWSZdTtxpJ9izlY+A3qdk8=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: 9tQnJbgHn9CXIDaZmtJ4XxjigORNQV18RL9rnYpJw1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1513 (0x5e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE, serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: May 30 23:09:25 2025 GMT Not After : Jun 6 23:09:25 2025 GMT Subject: CN=683a3aa5-8152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5c:53:d8:91:6b:3e:13:ba:19:2e:f1:5e:d8: 67:3e:89:df:d5:43:c7:06:85:4c:fa:75:fb:b2:9e: 02:60:d0:8c:53:ed:2c:ea:19:be:cd:fd:c3:6b:a0: b3:a1:d6:7f:3a:9e:28:e1:8f:92:9e:a7:4e:93:58: f1:ec:04:31:a1:76:34:60:ce:33:5d:0d:a1:4e:da: 5a:79:1d:32:ec:ed:f5:42:b3:5f:9f:cd:20:1c:03: fd:8c:34:96:e9:30:d8:15:86:59:89:94:db:5c:5a: 6e:a8:5a:66:8c:1a:8d:17:0b:16:62:c8:49:56:56: 53:91:bc:30:76:13:97:3e:6a:c2:62:08:9f:ec:4b: 34:80:bb:6b:31:24:ec:b3:41:f0:ee:de:35:ad:7e: 4f:f9:0f:25:d8:3f:01:31:df:5b:52:20:97:58:eb: eb:d6:42:ba:02:8e:89:6a:4b:90:4b:c9:15:50:da: e0:38:30:a3:4f:82:f7:e6:02:aa:b9:6d:e7:e6:d0: 56:9b:24:89:5d:94:74:c3:f2:52:42:2f:a2:ee:77: b3:d1:19:9f:bc:17:d8:f6:d1:bb:24:23:d7:c5:c9: 99:7f:dc:86:c5:ec:de:e6:88:da:20:fd:f5:b5:32: 4b:42:07:10:50:12:c2:82:39:42:b9:ff:32:c9:3b: c3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:41:C7:89:6D:5E:FC:8E:28:D5:63:88:7F:5A:3F:7C:DD:A3:82:FE X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b4:05:ab:a6:6c:2f:f1:1e:ba:58:6c:01:45:9c:42:80:64: e8:b5:3a:b1:9c:1f:35:d4:bf:23:17:28:27:cb:56:39:02:fc: 01:0d:be:e7:a5:5a:40:cf:b3:ee:83:db:3b:10:25:d1:4e:05: fb:fe:e2:26:f7:34:a9:a4:6d:68:74:2f:d7:30:67:3d:fd:96: 49:31:e3:07:3c:5d:47:e0:68:87:9e:a8:e2:14:d0:0f:fe:c1: 54:29:1d:c2:32:9f:7c:5a:e3:73:fe:22:8c:48:91:67:91:a1: 78:9c:03:9e:5c:06:ab:eb:74:ab:4e:2f:11:ca:64:e7:ef:b6: 83:72:84:ae:13:0f:6a:46:cb:51:4a:27:f4:c5:17:1e:31:7d: a2:00:3e:80:9a:9b:fb:8a:74:d0:0e:a8:3c:7c:6d:ff:38:b0: 6c:3b:16:4d:95:09:0f:d1:5f:a6:fb:67:ac:5e:ef:82:db:77: 8a:5f:67:e3:6d:7b:1f:7f:03:30:48:f9:c7:e0:5e:5f:8e:7b: 09:af:ea:7a:6f:ff:06:bf:11:57:4b:aa:b5:a0:b7:69:1c:b3: 7c:b2:b8:0f:55:bb:2f:ce:50:b6:60:8e:2b:e4:5b:52:e7:db: 4a:b8:d5:62:88:1b:ba:dd:2d:22:30:85:2c:db:60:3c:12:f8: 4f:1f:f0:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjUwNTMwMjMwOTI1WhcNMjUwNjA2MjMwOTI1WjAYMRYwFAYD VQQDEw02ODNhM2FhNS04MTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFxT2JFrPhO6GS7xXthnPonf1UPHBoVM+nX7sp4CYNCMU+0s6hm+zf3Da6Cz odZ/Op4o4Y+SnqdOk1jx7AQxoXY0YM4zXQ2hTtpaeR0y7O31QrNfn80gHAP9jDSW 6TDYFYZZiZTbXFpuqFpmjBqNFwsWYshJVlZTkbwwdhOXPmrCYgif7Es0gLtrMSTs s0Hw7t41rX5P+Q8l2D8BMd9bUiCXWOvr1kK6Ao6JakuQS8kVUNrgODCjT4L35gKq uW3n5tBWmySJXZR0w/JSQi+i7nez0RmfvBfY9tG7JCPXxcmZf9yGxeze5ojaIP31 tTJLQgcQUBLCgjlCuf8yyTvDfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRBx4lt XvyOKNVjiH9aP3zdo4L+MB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArtAWrpmwv8R66WGwBRZxCgGTotTqxnB811L8jFygny1Y5AvwBDb7n pVpAz7Pug9s7ECXRTgX7/uIm9zSppG1odC/XMGc9/ZZJMeMHPF1H4GiHnqjiFNAP /sFUKR3CMp98WuNz/iKMSJFnkaF4nAOeXAar63SrTi8RymTn77aDcoSuEw9qRstR Sif0xRceMX2iAD6Ampv7inTQDqg8fG3/OLBsOxZNlQkP0V+m+2esXu+C23eKX2fj bXsffwMwSPnH4F5fjnsJr+p6b/8GvxFXS6q1oLdpHLN8srgPVbsvzlC2YI4r5FtS 59tKuNViiBu63S0iMIUs22A8EvhPH/AI -----END CERTIFICATE-----Generated at Sat May 31 17:56:26 2025 by rpki-client