$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: cHdYe6bvnmA3kGLZcguOqJBEvB54NAeOX7RcF5WG6lE= Subject key identifier: B9:86:59:0B:49:DF:FA:DF:E7:0D:77:E0:07:CD:1D:04:52:E5:57:F6 Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 07A8 Signing time: Fri 30 May 2025 21:26:24 +0000 Manifest this update: Fri 30 May 2025 21:26:24 +0000 Manifest next update: Fri 06 Jun 2025 21:26:24 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: dbUhh9c0K7IYaI5YEm6AUTODAkK0TmxMqRKk35aQVNY=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: 5hdkZ5DddWFl8kbLYaaqhPZLjdFJcDk309blXMyKcbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1962 (0x7aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: May 30 21:26:24 2025 GMT Not After : Jun 6 21:26:24 2025 GMT Subject: CN=683a2280-6779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d5:e7:b7:af:f1:f2:70:97:bf:7f:43:71:c0: 4a:8b:fa:85:9d:86:c1:08:70:9f:74:19:d6:af:d7: cd:11:32:f5:01:c4:b3:d4:06:8c:f9:27:76:08:9a: 81:be:6d:05:44:b2:00:30:5c:b9:73:5a:67:1c:1a: 5c:37:4e:d2:97:d1:6f:af:ce:df:73:f8:56:50:87: a4:be:0d:59:8d:05:3c:50:85:59:87:c0:42:9c:fa: ec:c6:fc:a4:93:bc:39:93:7e:14:7a:54:3b:1e:4e: 6f:c0:a6:26:3d:33:9b:33:e7:6d:f8:b2:a0:bc:e3: 54:ba:63:d3:7e:5e:02:89:50:03:10:3a:bb:a9:e7: 35:3e:56:cb:e1:cb:ae:e9:cf:c7:c8:dc:56:99:f2: d8:8d:2e:d9:d2:a3:4c:a5:7a:81:c1:85:6e:2a:4d: 64:b6:ce:4e:e5:f9:e9:06:9b:d0:85:77:f5:94:9c: 05:7d:b4:76:30:37:3a:86:10:72:da:30:74:62:f5: 0d:92:22:3d:4e:8b:52:33:80:fc:5b:e6:af:f8:4b: 51:31:ca:95:02:5f:ab:7c:05:91:33:7b:03:48:a4: 40:c8:5e:f9:1d:f9:75:b3:24:ef:42:e3:22:f7:bb: 3f:fa:33:0d:2a:c4:e4:69:06:ce:6a:94:91:18:bd: 3d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:86:59:0B:49:DF:FA:DF:E7:0D:77:E0:07:CD:1D:04:52:E5:57:F6 X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:21:ce:cb:f7:82:1e:00:13:19:84:ea:25:97:fe:8b:4f:0b: ac:f2:01:5e:4b:91:8d:02:89:3a:19:c5:14:42:f5:d5:3f:b6: 51:6f:f2:32:c3:ff:19:32:d2:ff:f3:e3:14:14:e9:05:9e:25: 80:9c:f9:6d:0c:d3:49:5a:c5:33:6a:2f:5a:83:df:1c:b2:a9: f4:37:4a:0c:c5:88:ad:64:1b:59:e1:01:8c:8d:1c:2d:cf:26: c3:6c:60:78:7c:4c:63:50:de:b4:67:72:26:0a:8f:5a:a9:60: 38:0c:11:78:a9:b4:b5:e8:fc:7e:54:8a:47:2a:59:68:ae:35: a8:97:76:19:71:a1:af:40:ad:63:b7:39:a2:37:e7:5e:80:54: b5:d2:f2:00:5d:93:5a:76:fa:3a:39:de:0a:5f:78:83:4c:04: aa:00:14:ca:c5:cd:f0:f6:e6:02:14:32:12:34:a6:87:73:b3: ae:50:45:79:36:05:b2:4a:82:f6:b3:f3:e4:04:94:4f:ad:4b: 8f:62:d5:2a:67:7f:13:42:8c:58:e8:55:f9:1e:db:35:df:f7: 15:2d:a8:e3:2f:15:8a:bf:ae:94:d4:33:c3:f4:cc:ff:36:c9: 19:2e:74:81:78:87:8e:f0:1e:73:ec:e5:e8:5a:09:c8:3b:c6: b5:36:fd:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUwNTMwMjEyNjI0WhcNMjUwNjA2MjEyNjI0WjAYMRYwFAYD VQQDEw02ODNhMjI4MC02Nzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdXnt6/x8nCXv39DccBKi/qFnYbBCHCfdBnWr9fNETL1AcSz1AaM+Sd2CJqB vm0FRLIAMFy5c1pnHBpcN07Sl9Fvr87fc/hWUIekvg1ZjQU8UIVZh8BCnPrsxvyk k7w5k34UelQ7Hk5vwKYmPTObM+dt+LKgvONUumPTfl4CiVADEDq7qec1PlbL4cuu 6c/HyNxWmfLYjS7Z0qNMpXqBwYVuKk1kts5O5fnpBpvQhXf1lJwFfbR2MDc6hhBy 2jB0YvUNkiI9TotSM4D8W+av+EtRMcqVAl+rfAWRM3sDSKRAyF75Hfl1syTvQuMi 97s/+jMNKsTkaQbOapSRGL09WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmGWQtJ 3/rf5w134AfNHQRS5Vf2MB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAIc7L94IeABMZhOoll/6LTwus8gFeS5GNAok6GcUUQvXVP7ZRb/Iy w/8ZMtL/8+MUFOkFniWAnPltDNNJWsUzai9ag98csqn0N0oMxYitZBtZ4QGMjRwt zybDbGB4fExjUN60Z3ImCo9aqWA4DBF4qbS16Px+VIpHKllorjWol3YZcaGvQK1j tzmiN+degFS10vIAXZNadvo6Od4KX3iDTASqABTKxc3w9uYCFDISNKaHc7OuUEV5 NgWySoL2s/PkBJRPrUuPYtUqZ38TQoxY6FX5Hts13/cVLajjLxWKv66U1DPD9Mz/ NskZLnSBeIeO8B5z7OXoWgnIO8a1Nv0k -----END CERTIFICATE-----Generated at Sat May 31 17:14:46 2025 by rpki-client