$ rpki-client -vvf rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft File: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft (raw, json) Hash identifier: TZNACnox6H9QV+S17tJnc6qKWERK+OWMNtfxIZBqwr0= Subject key identifier: 06:E6:84:4E:C4:17:F2:6F:B3:43:3A:2E:7F:B0:9A:D1:F3:B7:0C:54 Authority key identifier: DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E Certificate issuer: /CN=A915FA96/serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft Manifest number: 5A Signing time: Sat 31 May 2025 06:44:33 +0000 Manifest this update: Sat 31 May 2025 06:44:33 +0000 Manifest next update: Sat 07 Jun 2025 06:44:33 +0000 Files and hashes: 1: 2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl (hash: 1RDo+/Y87W14xmu7uV21CMh5Ry6dionQ6rb/DvRV1O8=) 2: 50B93FA8B5EE11EF9AC9D812C4F9AE02.roa (hash: XoqSoHkPs1ffdTh6W19ne37H+1CKa62i2t43qmhHxIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:44:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FA96, serialNumber=DAEFA54358F4BCC0D847CC6DC9CAF78BC5E0996E Validity Not Before: May 31 06:44:33 2025 GMT Not After : Jun 7 06:44:33 2025 GMT Subject: CN=683aa551-41c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:61:8b:19:3d:19:5d:ea:79:c8:93:88:aa:94: 92:4f:85:61:fe:17:2f:d2:0c:f3:8a:d6:0c:31:b1: f1:87:de:90:a7:33:74:ca:5a:d5:8f:dc:f7:c3:1e: 00:0d:00:06:4a:4e:c2:46:92:9c:7c:e1:29:a7:99: 77:33:8d:f9:a6:6a:a2:4f:42:10:b0:ab:38:5c:31: 59:89:a2:12:33:1a:dd:8d:2d:69:cd:19:17:79:47: 65:0d:28:b5:cf:d1:4a:56:df:53:2d:1d:6e:c9:d8: 43:0b:76:e0:0e:43:c9:68:39:68:cc:0f:2d:83:45: 8e:c1:f0:0b:40:6d:29:1d:a7:03:37:a9:5f:ed:5e: 60:96:b8:0c:68:f9:c5:7c:d7:3f:65:d2:18:3b:ad: 6b:b7:cd:83:b0:84:58:b3:d7:36:00:fd:99:cd:45: db:60:f8:1f:70:48:c2:ea:ee:05:43:ec:6c:c6:01: 73:cc:1b:83:0f:3b:44:92:97:db:54:6f:bb:32:1f: b6:23:d6:7e:5b:37:f2:b9:50:39:8b:43:ab:58:3c: 37:0e:18:94:3e:08:85:05:db:56:8c:f2:f2:dc:65: e6:b0:1d:02:0b:a2:7d:ec:fc:6b:23:1d:6b:0b:c2: db:a2:49:17:97:8e:06:e5:e9:8f:1c:ff:c6:4c:65: d2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E6:84:4E:C4:17:F2:6F:B3:43:3A:2E:7F:B0:9A:D1:F3:B7:0C:54 X509v3 Authority Key Identifier: keyid:DA:EF:A5:43:58:F4:BC:C0:D8:47:CC:6D:C9:CA:F7:8B:C5:E0:99:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2u-lQ1j0vMDYR8xtycr3i8XgmW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FA96/8A35090CB5ED11EF9D20690EC4F9AE02/2u-lQ1j0vMDYR8xtycr3i8XgmW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:0e:d5:56:8e:dc:bd:1f:91:26:7e:d3:9f:17:3d:e3:74:76: 11:7b:ef:af:eb:11:ce:a8:e6:83:e1:8c:31:f1:90:6d:45:6f: 89:58:84:a0:85:93:21:16:57:1d:e5:f3:08:6a:53:05:21:17: 49:d8:7a:c3:4f:f0:99:12:0c:26:19:54:b0:42:76:4b:6c:b1: 42:3a:af:31:f8:f1:27:e7:88:83:0e:f1:d0:4c:eb:0e:5f:cd: da:46:f4:e0:cb:d3:86:32:03:5b:e5:c0:d4:4b:eb:03:07:5e: b3:86:6b:10:51:7d:d2:49:a4:e6:ce:9d:df:e4:25:0c:ee:fc: 49:f3:5a:e5:5d:3b:d0:b8:58:d6:b0:53:b0:9c:d8:b9:9b:ca: 70:09:8e:1e:4c:f3:8f:42:2f:a2:5d:1a:c0:2d:1b:2d:50:a9: bf:37:24:de:47:ed:8a:58:85:e5:88:61:76:50:1a:cb:b2:20: a5:ac:75:1d:b5:5b:f3:d7:c8:3e:42:a4:06:2a:24:bb:bd:00: 6e:5e:eb:78:cd:22:cb:3e:f0:0d:fb:21:9a:1a:53:9f:3b:05: 6f:02:9b:39:80:a3:79:02:38:c5:5c:66:38:63:c2:be:00:a0: 41:ec:44:09:cc:53:c0:d1:eb:f6:94:78:3a:fc:89:29:13:12: f5:b6:2f:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkE5NjExMC8GA1UEBRMoREFFRkE1NDM1OEY0QkNDMEQ4NDdDQzZEQzlDQUY3OEJD NUUwOTk2RTAeFw0yNTA1MzEwNjQ0MzNaFw0yNTA2MDcwNjQ0MzNaMBgxFjAUBgNV BAMTDTY4M2FhNTUxLTQxYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXYYsZPRld6nnIk4iqlJJPhWH+Fy/SDPOK1gwxsfGH3pCnM3TKWtWP3PfDHgAN AAZKTsJGkpx84SmnmXczjfmmaqJPQhCwqzhcMVmJohIzGt2NLWnNGRd5R2UNKLXP 0UpW31MtHW7J2EMLduAOQ8loOWjMDy2DRY7B8AtAbSkdpwM3qV/tXmCWuAxo+cV8 1z9l0hg7rWu3zYOwhFiz1zYA/ZnNRdtg+B9wSMLq7gVD7GzGAXPMG4MPO0SSl9tU b7syH7Yj1n5bN/K5UDmLQ6tYPDcOGJQ+CIUF21aM8vLcZeawHQILon3s/GsjHWsL wtuiSReXjgbl6Y8c/8ZMZdKdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBuaETsQX 8m+zQzouf7Ca0fO3DFQwHwYDVR0jBBgwFoAU2u+lQ1j0vMDYR8xtycr3i8XgmW4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGQTk2LzhBMzUwOTBDQjVF RDExRUY5RDIwNjkwRUM0RjlBRTAyLzJ1LWxRMWowdk1EWVI4eHR5Y3IzaThYZ21X NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnUtbFExajB2TURZUjh4dHljcjNpOFhnbVc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG QTk2LzhBMzUwOTBDQjVFRDExRUY5RDIwNjkwRUM0RjlBRTAyLzJ1LWxRMWowdk1E WVI4eHR5Y3IzaThYZ21XNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKAO1VaO3L0fkSZ+058XPeN0dhF776/rEc6o5oPhjDHxkG1Fb4lYhKCF kyEWVx3l8whqUwUhF0nYesNP8JkSDCYZVLBCdktssUI6rzH48SfniIMO8dBM6w5f zdpG9ODL04YyA1vlwNRL6wMHXrOGaxBRfdJJpObOnd/kJQzu/EnzWuVdO9C4WNaw U7Cc2LmbynAJjh5M849CL6JdGsAtGy1Qqb83JN5H7YpYheWIYXZQGsuyIKWsdR21 W/PXyD5CpAYqJLu9AG5e63jNIss+8A37IZoaU587BW8CmzmAo3kCOMVcZjhjwr4A oEHsRAnMU8DR6/aUeDr8iSkTEvW2L4o= -----END CERTIFICATE-----Generated at Sat May 31 17:45:07 2025 by rpki-client