$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: pllFlcUgFPk6XHkjAeZ4eLpo7HAs1WIqfa8M6eNwwWU= Subject key identifier: CA:59:1D:37:3D:20:79:10:FC:85:61:81:14:80:BE:9D:A7:79:2C:81 Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0B78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0B6E Signing time: Fri 06 Jun 2025 19:06:00 +0000 Manifest this update: Fri 06 Jun 2025 19:05:59 +0000 Manifest next update: Fri 13 Jun 2025 19:05:59 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: CsJd+09F3IOdn1nUx32VN87R6Up9xSJ3TRhrwMyaMrQ=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 19:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2936 (0xb78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Jun 6 19:05:59 2025 GMT Not After : Jun 13 19:05:59 2025 GMT Subject: CN=68433c18-1bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c6:2b:50:ef:1f:f5:d1:f0:d1:13:88:49:94: bb:2c:11:ff:74:f6:f0:93:ca:ea:f6:d1:97:68:4e: 1a:ae:2d:50:db:df:ca:5a:cd:69:70:77:71:7f:f4: 5b:22:b4:d7:8b:7e:28:dd:4d:1f:2d:4c:4f:d8:33: 5b:3c:22:3c:b3:23:5c:85:97:45:0f:bb:67:e5:e4: cc:0a:7a:a4:8a:dc:06:85:8d:3a:b3:82:fa:e3:df: 47:69:0c:e0:e7:92:13:29:03:83:b6:bd:a7:2e:5c: b4:76:f5:62:82:4a:92:6e:d5:53:6e:56:b4:da:b4: 2e:02:6b:39:ee:d6:d4:bc:5f:3d:d1:24:9d:a5:f5: 11:2a:c4:b1:48:12:ee:0e:ea:30:30:a0:61:d4:2d: 18:9f:95:c8:31:0d:d3:0b:6b:90:13:48:ea:66:e1: d8:2e:71:61:be:a7:e8:4c:18:b8:8a:ff:95:59:66: 68:b3:0d:6d:a6:ec:59:3c:74:01:e2:14:00:2f:58: 65:b3:4e:e2:19:92:7d:9f:37:f9:80:e9:0e:d7:77: ad:46:c0:8a:f4:fa:a5:e9:7e:54:12:79:c3:5f:1d: 2c:f5:90:55:ea:8a:0a:a1:b8:28:0a:1e:76:66:f8: 7f:da:40:b4:29:ae:ff:2b:d4:68:3d:fe:51:29:49: c7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:59:1D:37:3D:20:79:10:FC:85:61:81:14:80:BE:9D:A7:79:2C:81 X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:d2:5c:a7:50:8c:f1:32:6f:d8:7a:12:2e:9e:53:57:d2:e7: bb:50:cb:15:37:e0:bb:f9:94:7c:b6:a8:b4:90:30:39:5c:f7: 2a:8f:01:43:c5:3f:b6:ca:b9:e6:1f:b9:fb:2b:47:63:ba:41: 56:89:a3:19:d5:49:a5:14:ed:2f:73:6a:29:8b:9a:61:4d:8b: 50:8f:37:05:9b:d5:e0:81:a9:78:5b:a2:c6:66:85:a0:28:e2: 6c:3e:83:71:e4:ce:10:b7:0c:09:97:29:1a:71:60:7a:ba:9f: 38:db:52:23:c1:07:25:78:01:5b:a6:3c:e1:ef:85:e3:61:09: c9:e9:62:1c:b5:6a:f0:fe:c8:4f:b8:d0:d4:07:81:02:39:ad: 00:56:31:f1:e9:e0:af:b7:bd:1b:48:f1:76:8b:d1:11:7a:45: 25:93:17:21:58:01:48:3c:1f:6b:a8:32:d9:0e:2b:1d:80:36: 10:9d:9a:7d:59:06:66:83:cd:7e:26:86:76:bb:97:69:9d:d9: 01:65:9c:c9:de:9b:ee:28:fc:7d:2d:aa:18:35:01:f1:1c:af: d2:fe:9f:da:8b:41:f2:3d:81:4e:87:6e:6d:bd:82:11:0f:82: 7c:73:84:7c:92:fb:83:a2:15:3c:2d:5d:d2:e4:d4:c1:5b:c4: 49:1f:a6:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUwNjA2MTkwNTU5WhcNMjUwNjEzMTkwNTU5WjAYMRYwFAYD VQQDEw02ODQzM2MxOC0xYmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAucYrUO8f9dHw0ROISZS7LBH/dPbwk8rq9tGXaE4ari1Q29/KWs1pcHdxf/Rb IrTXi34o3U0fLUxP2DNbPCI8syNchZdFD7tn5eTMCnqkitwGhY06s4L6499HaQzg 55ITKQODtr2nLly0dvVigkqSbtVTbla02rQuAms57tbUvF890SSdpfURKsSxSBLu DuowMKBh1C0Yn5XIMQ3TC2uQE0jqZuHYLnFhvqfoTBi4iv+VWWZosw1tpuxZPHQB 4hQAL1hls07iGZJ9nzf5gOkO13etRsCK9Pql6X5UEnnDXx0s9ZBV6ooKobgoCh52 Zvh/2kC0Ka7/K9RoPf5RKUnHtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpZHTc9 IHkQ/IVhgRSAvp2neSyBMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR0lynUIzxMm/YehIunlNX0ue7UMsVN+C7+ZR8tqi0kDA5XPcqjwFD xT+2yrnmH7n7K0djukFWiaMZ1UmlFO0vc2opi5phTYtQjzcFm9Xggal4W6LGZoWg KOJsPoNx5M4QtwwJlykacWB6up8421IjwQcleAFbpjzh74XjYQnJ6WIctWrw/shP uNDUB4ECOa0AVjHx6eCvt70bSPF2i9ERekUlkxchWAFIPB9rqDLZDisdgDYQnZp9 WQZmg81+JoZ2u5dpndkBZZzJ3pvuKPx9LaoYNQHxHK/S/p/ai0HyPYFOh25tvYIR D4J8c4R8kvuDohU8LV3S5NTBW8RJH6Zs -----END CERTIFICATE-----Generated at Sun Jun 8 04:15:13 2025 by rpki-client