$ rpki-client -vvf rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft File: 5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft (raw, json) Hash identifier: VBERYrjFxIo5nf4VWdoQlnWJZu5e8mlFlHymaZzuu3k= Subject key identifier: 36:80:8D:61:36:9D:71:39:86:0F:75:45:47:F2:AE:1C:F0:C1:83:66 Authority key identifier: E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 Certificate issuer: /CN=A91652F7/serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Certificate serial: 08A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft Manifest number: 089E Signing time: Fri 30 May 2025 20:45:44 +0000 Manifest this update: Fri 30 May 2025 20:45:43 +0000 Manifest next update: Fri 06 Jun 2025 20:45:43 +0000 Files and hashes: 1: 5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl (hash: 8osuocshYoSqlbTycOi4DLmpZYExJKWYap5CJd1O9ko=) 2: A12DD18E2F1C11EDA3E29B09C4F9AE02.roa (hash: JY394gUy9qqM6BqtEt3A+TeeEC3ZSaP+KRzIxp12INs=) 3: A29A66FE2F1C11EDA3E29B09C4F9AE02.roa (hash: pwrQo06SW1WaZHmpSMN3Di6drTMadsg0IhrZWaRW7r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2217 (0x8a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652F7, serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Validity Not Before: May 30 20:45:43 2025 GMT Not After : Jun 6 20:45:43 2025 GMT Subject: CN=683a18f7-84fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6f:dd:aa:26:92:14:4f:82:31:b7:22:53:2f: ef:99:3f:ac:ff:88:4c:e9:ff:88:65:38:51:a2:c7: c0:1e:74:8b:fa:9d:a2:1f:72:e2:df:3c:7d:33:b6: 49:16:de:86:d5:5f:9f:d6:6d:0d:21:a5:de:2c:61: 96:bd:22:63:ea:71:0d:f3:ed:31:ab:b3:99:67:56: d8:23:0e:0a:2e:03:1b:a2:0c:23:3b:92:55:96:18: 2f:2f:da:d8:b4:18:2b:8e:dc:1b:d8:1b:36:b0:6f: 0b:d5:4c:96:a8:37:a3:68:a3:81:ae:c0:d5:2d:bd: 69:80:6e:16:e7:bd:d3:08:74:4d:4e:c1:55:81:c5: 07:ef:7a:ef:5d:15:16:ff:c7:6a:43:f5:c0:50:b7: 8b:d6:88:78:d4:bd:27:5c:a0:23:c1:ba:52:35:4e: 4f:f6:b1:6a:06:a2:70:e3:51:8d:a7:35:93:b2:dd: 4f:ef:85:cd:c6:70:68:30:93:85:6b:75:1a:04:1a: 6f:e9:83:da:2a:a8:7c:c9:9a:28:fa:fc:15:7c:82: 8a:1d:0f:80:86:f9:1f:c0:59:8a:aa:01:53:32:28: ff:4f:29:db:6c:e7:69:3a:de:8b:b3:bd:d1:b4:48: c5:14:84:a6:40:00:f8:b5:67:b2:33:f3:fb:1a:c1: 45:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:80:8D:61:36:9D:71:39:86:0F:75:45:47:F2:AE:1C:F0:C1:83:66 X509v3 Authority Key Identifier: keyid:E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:5e:54:f2:dc:ca:77:01:2b:d5:2f:83:94:19:24:2c:1c:9f: d4:dc:4f:32:aa:b1:79:30:50:51:70:c9:64:25:9b:0a:8d:00: 70:80:38:9c:d8:8f:b4:42:23:33:bc:04:2a:13:7e:c5:eb:14: 07:ae:98:73:e8:6f:b4:c3:ca:5b:a5:e2:d4:fb:df:0f:81:0d: 0e:ba:98:0b:3e:ad:5f:45:49:ce:25:5f:35:e8:b1:50:db:3d: ef:34:9e:c1:29:d3:82:d4:90:1b:c5:cf:3f:3e:79:b4:f8:78: d5:9b:a9:5d:6e:38:ef:a8:51:2f:d0:7f:48:f6:8f:1d:bc:69: a8:08:2c:96:15:86:52:8f:35:f4:eb:50:f3:2c:12:44:ce:4e: f9:cf:e3:a5:d7:4e:30:31:71:7a:f0:92:41:92:ef:a3:23:70: 3d:d5:21:42:ec:26:45:bd:d1:e0:f6:b0:33:9c:11:e3:c3:e9: 11:db:c2:fd:19:54:69:47:af:f4:59:55:89:bc:ca:d7:49:ca: 98:ee:ac:18:d2:b9:bd:fd:8e:7a:31:1a:03:81:7e:69:dc:9d: 3f:90:e2:8d:52:96:3b:66:bf:a1:d0:23:98:31:bb:66:8f:85: 51:4d:7c:35:91:be:f4:e4:b5:03:ec:a1:a5:35:d0:f1:fb:18: f9:c0:31:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyRjcxMTAvBgNVBAUTKEU1MDI3NTdDNjE3QzIxRDQ3QjFCMzU1OUMwOUQ2RUE3 QzNBRkU0MDMwHhcNMjUwNTMwMjA0NTQzWhcNMjUwNjA2MjA0NTQzWjAYMRYwFAYD VQQDEw02ODNhMThmNy04NGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW/dqiaSFE+CMbciUy/vmT+s/4hM6f+IZThRosfAHnSL+p2iH3Li3zx9M7ZJ Ft6G1V+f1m0NIaXeLGGWvSJj6nEN8+0xq7OZZ1bYIw4KLgMbogwjO5JVlhgvL9rY tBgrjtwb2Bs2sG8L1UyWqDejaKOBrsDVLb1pgG4W573TCHRNTsFVgcUH73rvXRUW /8dqQ/XAULeL1oh41L0nXKAjwbpSNU5P9rFqBqJw41GNpzWTst1P74XNxnBoMJOF a3UaBBpv6YPaKqh8yZoo+vwVfIKKHQ+AhvkfwFmKqgFTMij/TynbbOdpOt6Ls73R tEjFFISmQAD4tWeyM/P7GsFFAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDaAjWE2 nXE5hg91RUfyrhzwwYNmMB8GA1UdIwQYMBaAFOUCdXxhfCHUexs1WcCdbqfDr+QD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTJGNy83Q0M0NUZBRUJB QUYxMUVBQTZERDFBM0RDNEY5QUUwMi81UUoxZkdGOElkUjdHelZad0oxdXA4T3Y1 QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRSjFmR0Y4SWRSN0d6Vlp3SjF1cDhPdjVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTJGNy83Q0M0NUZBRUJBQUYxMUVBQTZERDFBM0RDNEY5QUUwMi81UUoxZkdGOElk UjdHelZad0oxdXA4T3Y1QU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZXlTy3Mp3ASvVL4OUGSQsHJ/U3E8yqrF5MFBRcMlkJZsKjQBwgDic 2I+0QiMzvAQqE37F6xQHrphz6G+0w8pbpeLU+98PgQ0OupgLPq1fRUnOJV816LFQ 2z3vNJ7BKdOC1JAbxc8/Pnm0+HjVm6ldbjjvqFEv0H9I9o8dvGmoCCyWFYZSjzX0 61DzLBJEzk75z+Ol104wMXF68JJBku+jI3A91SFC7CZFvdHg9rAznBHjw+kR28L9 GVRpR6/0WVWJvMrXScqY7qwY0rm9/Y56MRoDgX5p3J0/kOKNUpY7Zr+h0COYMbtm j4VRTXw1kb705LUD7KGlNdDx+xj5wDFx -----END CERTIFICATE-----Generated at Sat May 31 17:23:31 2025 by rpki-client