$ rpki-client -vvf rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft File: S5R0cysQASlff10ywBNpOhk3aBM.mft (raw, json) Hash identifier: E+a0bOQ2Xb4jL1vURO15/DUax6qFZkM6Ra9YHLvsP5M= Subject key identifier: 1E:D0:18:C9:30:A2:8F:1B:F9:12:16:86:D8:48:D2:1A:90:38:E5:45 Authority key identifier: 4B:94:74:73:2B:10:01:29:5F:7F:5D:32:C0:13:69:3A:19:37:68:13 Certificate issuer: /CN=A915393C/serialNumber=4B9474732B1001295F7F5D32C013693A19376813 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft Manifest number: 8E Signing time: Sat 31 May 2025 06:01:50 +0000 Manifest this update: Sat 31 May 2025 06:01:49 +0000 Manifest next update: Sat 07 Jun 2025 06:01:49 +0000 Files and hashes: 1: S5R0cysQASlff10ywBNpOhk3aBM.crl (hash: WIGQkHHgKqCgEy3IMCHpuiEn9503jNjV1K9XOkagVDI=) 2: D970354A640E11EF93D18659C4F9AE02.roa (hash: k3HZpqynszzvTxkVmhHqGRdf/ZQZ2uvnxZO8lo9Yzko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.crl rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915393C, serialNumber=4B9474732B1001295F7F5D32C013693A19376813 Validity Not Before: May 31 06:01:49 2025 GMT Not After : Jun 7 06:01:49 2025 GMT Subject: CN=683a9b4e-5ca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:15:26:31:48:e9:c7:78:70:ff:86:1e:db:60: b7:0f:c4:0f:14:2c:7d:f2:7e:17:b7:f0:43:83:07: df:e8:fa:ee:7e:48:cc:47:98:8f:98:b1:a5:df:9a: ad:7f:3b:bf:bb:b5:28:e1:89:44:a8:41:42:5b:ab: 67:68:28:6c:71:0b:fe:10:78:f5:97:01:54:5d:55: 3d:2c:35:3b:d9:2e:8b:54:20:a9:10:91:fa:e9:9a: 4e:b1:1d:a9:ed:6f:ea:c6:63:e5:35:6b:19:f6:62: 77:e7:5f:7a:68:51:5c:b7:ee:43:59:e8:fd:2c:d5: 25:d8:39:5b:a0:e8:84:4f:fd:2c:97:49:b4:33:c9: c1:64:84:91:7a:03:5e:78:c2:03:25:9d:33:bd:42: a9:af:58:74:fb:d7:23:b8:af:d8:32:03:cf:3d:db: 06:1c:d7:18:ee:89:84:9c:4a:4f:54:11:07:1e:b8: d1:66:6a:aa:eb:8b:11:d2:2a:a5:5f:9c:ad:57:62: ab:28:1e:0f:cb:9d:c6:21:68:92:70:e1:0e:c3:68: 07:12:0b:bb:5b:91:72:36:1e:1a:ae:cd:53:95:7b: 7d:a4:4e:99:b0:e6:d8:0f:2e:97:42:4a:15:56:cc: a8:b8:bf:33:78:64:33:d8:51:40:69:46:b5:46:b0: d0:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D0:18:C9:30:A2:8F:1B:F9:12:16:86:D8:48:D2:1A:90:38:E5:45 X509v3 Authority Key Identifier: keyid:4B:94:74:73:2B:10:01:29:5F:7F:5D:32:C0:13:69:3A:19:37:68:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:66:aa:80:9d:c5:65:a7:fb:1e:85:f4:ac:67:7b:b1:c6:fa: be:96:4b:68:ee:03:d4:d6:e2:1f:f0:90:d5:cb:c6:b5:57:b7: 90:e1:fb:b0:81:f5:5d:ad:9a:a7:2a:3a:36:7c:f9:47:3f:dd: 76:05:35:ed:a7:b4:9a:61:42:ba:ff:f8:fb:a3:90:87:f2:79: 87:31:43:f1:59:f7:08:57:e9:2d:2e:41:12:e0:3c:08:6e:22: fe:d3:aa:84:71:9f:86:d3:e7:c2:c3:07:1d:e2:06:60:30:a0: 64:35:da:82:12:db:a2:ed:db:87:dc:c6:b7:04:37:d9:84:ce: e8:6f:19:b7:08:d3:16:76:58:e0:59:9f:a5:03:5d:a9:18:ce: 96:14:85:76:dc:08:95:4d:5f:94:e9:2b:a0:5b:95:12:1e:5e: 8c:69:9e:f8:34:55:75:c8:21:04:29:fb:73:f1:fa:01:c6:92: 65:b3:ed:00:59:38:71:5d:1a:79:1a:4e:17:a1:d5:ba:4f:b5: f2:c8:49:a4:19:a8:72:dd:c9:93:98:11:15:79:71:d1:69:71: 3a:a8:3e:14:47:c9:eb:73:bc:af:72:62:18:b0:4a:9d:23:f8: 64:21:46:ed:09:08:6f:2c:6a:d5:ea:74:53:35:eb:ca:3c:de: ee:50:ba:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM5M0MxMTAvBgNVBAUTKDRCOTQ3NDczMkIxMDAxMjk1RjdGNUQzMkMwMTM2OTNB MTkzNzY4MTMwHhcNMjUwNTMxMDYwMTQ5WhcNMjUwNjA3MDYwMTQ5WjAYMRYwFAYD VQQDEw02ODNhOWI0ZS01Y2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+BUmMUjpx3hw/4Ye22C3D8QPFCx98n4Xt/BDgwff6PrufkjMR5iPmLGl35qt fzu/u7Uo4YlEqEFCW6tnaChscQv+EHj1lwFUXVU9LDU72S6LVCCpEJH66ZpOsR2p 7W/qxmPlNWsZ9mJ35196aFFct+5DWej9LNUl2DlboOiET/0sl0m0M8nBZISRegNe eMIDJZ0zvUKpr1h0+9cjuK/YMgPPPdsGHNcY7omEnEpPVBEHHrjRZmqq64sR0iql X5ytV2KrKB4Py53GIWiScOEOw2gHEgu7W5FyNh4ars1TlXt9pE6ZsObYDy6XQkoV VsyouL8zeGQz2FFAaUa1RrDQiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7QGMkw oo8b+RIWhthI0hqQOOVFMB8GA1UdIwQYMBaAFEuUdHMrEAEpX39dMsATaToZN2gT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzkzQy82RDA0MzE1RTY0 MEUxMUVGQjU0NDY0NThDNEY5QUUwMi9TNVIwY3lzUUFTbGZmMTB5d0JOcE9oazNh Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M1UjBjeXNRQVNsZmYxMHl3Qk5wT2hrM2FCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzkzQy82RDA0MzE1RTY0MEUxMUVGQjU0NDY0NThDNEY5QUUwMi9TNVIwY3lzUUFT bGZmMTB5d0JOcE9oazNhQk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfZqqAncVlp/sehfSsZ3uxxvq+lkto7gPU1uIf8JDVy8a1V7eQ4fuw gfVdrZqnKjo2fPlHP912BTXtp7SaYUK6//j7o5CH8nmHMUPxWfcIV+ktLkES4DwI biL+06qEcZ+G0+fCwwcd4gZgMKBkNdqCEtui7duH3Ma3BDfZhM7obxm3CNMWdljg WZ+lA12pGM6WFIV23AiVTV+U6SugW5USHl6MaZ74NFV1yCEEKftz8foBxpJls+0A WThxXRp5Gk4XodW6T7XyyEmkGahy3cmTmBEVeXHRaXE6qD4UR8nrc7yvcmIYsEqd I/hkIUbtCQhvLGrV6nRTNevKPN7uULp6 -----END CERTIFICATE-----Generated at Sat May 31 16:45:48 2025 by rpki-client