$ rpki-client -vvf rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft File: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft (raw, json) Hash identifier: ArimmoPU3jcSqCKcHz5VqI4R18O5TN1kW3O6Y/hghYk= Subject key identifier: BB:45:3A:82:0A:F3:D2:C1:93:2A:DB:73:A6:60:60:70:18:70:F8:77 Authority key identifier: 91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 Certificate issuer: /CN=A917408F/serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft Manifest number: 5A Signing time: Sat 31 May 2025 06:45:54 +0000 Manifest this update: Sat 31 May 2025 06:45:54 +0000 Manifest next update: Sat 07 Jun 2025 06:45:54 +0000 Files and hashes: 1: kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl (hash: Ay+atl/bDIMcPJhLGa/bUrO5D36i75sdY0aoO36+jqk=) 2: 9CEF2622B76E11EF8FCC9767C4F9AE02.roa (hash: 2R62YAvpAuupePKvyUwfJfetCOhCrZjNgarawDnuvxY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917408F, serialNumber=910F2F41408E13DAED7C21DC472DC5C58C458836 Validity Not Before: May 31 06:45:54 2025 GMT Not After : Jun 7 06:45:54 2025 GMT Subject: CN=683aa5a2-d483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:bd:8c:54:df:d0:d2:80:db:c5:80:67:35: f3:b2:ac:5a:9f:ff:49:4f:a3:53:04:f6:6d:ba:23: a9:75:aa:e3:bd:d2:09:b2:c5:05:bc:24:b8:86:ad: 84:fa:44:34:1e:81:24:6e:1d:b9:06:b3:f3:a5:f0: af:86:bd:dd:a9:61:1c:7e:f8:af:3a:a2:42:e9:2e: 59:ad:75:c0:61:3d:d4:a1:06:86:60:c2:46:0b:39: 7a:9c:0e:db:e3:2f:0e:a9:c3:0e:d1:fa:53:1b:43: 6a:4a:6a:ee:33:0a:6c:50:5e:f8:92:d2:3c:b1:84: be:17:cf:b0:89:f0:88:09:48:89:73:d3:9b:44:4b: 7a:97:cd:5e:63:1d:2f:91:f5:5b:ac:75:cf:fe:2f: b6:25:f3:a9:fa:e5:4f:2a:f1:b7:e0:f0:2e:63:77: ad:f8:2b:76:4a:65:48:65:02:ab:24:f7:98:fb:46: 87:1c:7c:a6:82:91:f2:e3:d8:86:93:1e:8e:42:7e: a2:0c:89:21:e3:86:25:ac:b2:19:39:be:7d:b4:87: a0:ea:2d:29:89:d8:90:60:10:6c:57:19:02:2b:4e: 09:b9:cb:e8:11:5a:ed:03:12:00:04:43:fe:60:55: 36:16:44:73:e5:c3:11:62:70:70:e3:4c:ff:58:7b: 5c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:45:3A:82:0A:F3:D2:C1:93:2A:DB:73:A6:60:60:70:18:70:F8:77 X509v3 Authority Key Identifier: keyid:91:0F:2F:41:40:8E:13:DA:ED:7C:21:DC:47:2D:C5:C5:8C:45:88:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917408F/16CD9858B76E11EFACF0F865C4F9AE02/kQ8vQUCOE9rtfCHcRy3FxYxFiDY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:f7:83:8e:b7:51:22:2a:be:56:db:96:e8:e2:42:a7:39:14: 2c:55:f2:67:32:54:7f:97:77:a1:85:49:79:0e:7d:a8:b9:04: 38:cb:d0:15:00:6e:c9:fd:7c:8d:a2:e9:83:d9:9c:61:ed:37: d3:94:8b:c3:9f:99:ac:7e:82:2d:e5:ab:c5:22:6b:22:b9:d8: 75:2d:a0:80:58:37:8d:11:7d:4d:71:3e:1c:85:0c:21:00:63: 97:db:86:cd:8e:1c:1a:f2:56:4c:42:49:4b:85:ad:d3:b0:48: 81:6e:27:1a:c2:d3:04:4e:26:08:37:3d:92:60:1f:6a:45:2d: 87:5d:84:3b:c4:a9:86:4a:72:bc:56:e6:08:94:f6:b1:e7:2f: ff:34:5b:45:f0:78:44:c1:c3:f4:e8:53:94:eb:25:7d:2b:09: b5:de:49:f7:5e:ae:cc:ea:3e:3b:78:8e:39:a9:20:62:68:3d: 68:da:95:8f:0c:cb:86:ee:51:ad:d5:2d:0c:70:aa:68:a0:94: 08:f4:12:dd:65:4b:aa:55:e6:7b:22:c7:75:7f:ff:b5:96:6e: 13:3d:3d:f5:88:9b:49:1d:f9:15:25:cf:61:66:13:f6:4a:45: 10:8f:b8:9c:e7:5d:61:a6:00:17:81:f8:99:94:45:c7:5a:76: a3:64:db:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NDA4RjExMC8GA1UEBRMoOTEwRjJGNDE0MDhFMTNEQUVEN0MyMURDNDcyREM1QzU4 QzQ1ODgzNjAeFw0yNTA1MzEwNjQ1NTRaFw0yNTA2MDcwNjQ1NTRaMBgxFjAUBgNV BAMTDTY4M2FhNWEyLWQ0ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+w72MVN/Q0oDbxYBnNfOyrFqf/0lPo1ME9m26I6l1quO90gmyxQW8JLiGrYT6 RDQegSRuHbkGs/Ol8K+Gvd2pYRx++K86okLpLlmtdcBhPdShBoZgwkYLOXqcDtvj Lw6pww7R+lMbQ2pKau4zCmxQXviS0jyxhL4Xz7CJ8IgJSIlz05tES3qXzV5jHS+R 9Vusdc/+L7Yl86n65U8q8bfg8C5jd634K3ZKZUhlAqsk95j7RoccfKaCkfLj2IaT Ho5CfqIMiSHjhiWsshk5vn20h6DqLSmJ2JBgEGxXGQIrTgm5y+gRWu0DEgAEQ/5g VTYWRHPlwxFicHDjTP9Ye1ypAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu0U6ggrz 0sGTKttzpmBgcBhw+HcwHwYDVR0jBBgwFoAUkQ8vQUCOE9rtfCHcRy3FxYxFiDYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0MDhGLzE2Q0Q5ODU4Qjc2 RTExRUZBQ0YwRjg2NUM0RjlBRTAyL2tROHZRVUNPRTlydGZDSGNSeTNGeFl4RmlE WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1E4dlFVQ09FOXJ0ZkNIY1J5M0Z4WXhGaURZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 MDhGLzE2Q0Q5ODU4Qjc2RTExRUZBQ0YwRjg2NUM0RjlBRTAyL2tROHZRVUNPRTly dGZDSGNSeTNGeFl4RmlEWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIf3g463USIqvlbblujiQqc5FCxV8mcyVH+Xd6GFSXkOfai5BDjL0BUA bsn9fI2i6YPZnGHtN9OUi8Ofmax+gi3lq8UiayK52HUtoIBYN40RfU1xPhyFDCEA Y5fbhs2OHBryVkxCSUuFrdOwSIFuJxrC0wROJgg3PZJgH2pFLYddhDvEqYZKcrxW 5giU9rHnL/80W0XweETBw/ToU5TrJX0rCbXeSfderszqPjt4jjmpIGJoPWjalY8M y4buUa3VLQxwqmiglAj0Et1lS6pV5nsix3V//7WWbhM9PfWIm0kd+RUlz2FmE/ZK RRCPuJznXWGmABeB+JmURcdadqNk2+4= -----END CERTIFICATE-----Generated at Sat May 31 17:40:57 2025 by rpki-client