$ rpki-client -vvf rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft File: s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft (raw, json) Hash identifier: tebXk9KQ3fM0EbP2z1Hx+/keuppKw4DCbHhqz6WYRgU= Subject key identifier: 9B:55:C8:0B:A7:AB:7C:28:46:C6:85:34:B3:18:6B:8A:C0:17:10:1A Authority key identifier: B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 Certificate issuer: /CN=A917530D/serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft Manifest number: 0111 Signing time: Tue 03 Jun 2025 04:49:10 +0000 Manifest this update: Tue 03 Jun 2025 04:49:10 +0000 Manifest next update: Tue 10 Jun 2025 04:49:10 +0000 Files and hashes: 1: s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl (hash: COxFl9tSU3RGbJspPuanj7ZGLVz6+w2YW4F44EVrCNA=) 2: 762CACD0B04311EF95390327C4F9AE02.roa (hash: 7lH097TnqT2Frr0JL7F0/A/6TnFN0hBEwwqzvbNC3Tc=) 3: A97CBD42A06611EFA888B57DC4F9AE02.roa (hash: iA4PiBqhCGu6j+QREktQJZZ0YDevgINmDR162rqZIpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917530D, serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Validity Not Before: Jun 3 04:49:10 2025 GMT Not After : Jun 10 04:49:10 2025 GMT Subject: CN=683e7ec6-8599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:91:a9:a1:9d:44:50:1d:0a:8a:9e:f4:7a:94: 00:0a:dd:6f:e8:ad:5a:8b:72:65:35:8e:f4:ef:9d: 5c:75:45:68:63:23:5c:01:b1:d1:30:ed:ea:c9:e8: 07:36:e4:f5:2a:e1:f1:d1:79:6e:89:df:da:ab:a5: 5f:3e:06:3c:61:a7:eb:50:1e:ac:34:4e:cb:bb:a4: 08:cd:e8:32:36:55:a3:ef:15:29:ce:64:cb:aa:70: dc:f3:62:65:a3:a0:a6:db:cb:0b:be:67:05:02:3b: 2c:2a:13:0e:20:8f:7f:3b:78:b8:15:72:90:d0:5c: 7a:59:f1:01:03:e5:4e:cf:1d:de:da:00:d2:89:1f: 55:77:54:ef:ec:8a:9c:97:65:87:db:b8:b0:03:e6: f6:3c:70:d7:64:1b:be:99:b8:c8:34:b6:df:2a:a1: 5b:7f:c9:03:41:7c:9a:6b:48:50:03:12:26:cd:53: a3:d0:36:e3:a5:ab:13:2f:e3:13:2e:25:74:9a:c6: da:2d:e6:d8:eb:17:aa:c5:db:84:c5:1a:d7:24:27: c3:97:0c:25:35:83:b7:7e:7e:3c:b7:c1:79:18:dd: c9:63:fd:72:c4:ce:22:90:83:e9:61:6e:b2:42:da: c0:3f:db:33:6b:74:f6:5e:cf:ce:08:37:8d:5a:67: 8b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:55:C8:0B:A7:AB:7C:28:46:C6:85:34:B3:18:6B:8A:C0:17:10:1A X509v3 Authority Key Identifier: keyid:B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:da:d4:0f:26:4c:d3:d3:11:04:b2:75:16:17:30:92:bf:81: 9b:a3:c3:c0:ff:df:85:42:7c:1b:e7:e8:59:34:be:4f:11:b7: 11:a8:ea:33:eb:be:40:f6:45:69:c2:7c:13:a4:87:f5:7d:79: 68:9f:6f:8e:e4:d6:38:e4:23:0e:ff:24:1d:d5:76:20:15:19: 1f:4d:43:3c:a6:b0:91:39:97:f6:77:6a:78:73:77:cc:e1:d8: 46:06:35:f0:7b:0f:c1:e1:1f:9d:d5:1a:27:01:0d:85:8f:fd: 2b:5c:3d:66:ef:da:8f:8b:b0:f1:7c:c8:bb:4a:f3:20:0e:fb: 15:5d:34:62:93:ba:e5:ca:72:77:12:ea:e8:34:74:64:47:10: 2a:ad:fd:f5:9b:7f:44:28:0e:63:01:54:50:a8:26:ce:c7:b3: fa:5f:97:ca:85:45:42:9d:61:44:c9:80:d1:2c:32:b7:51:67: 72:db:e0:70:22:67:65:c4:f3:47:0f:08:b4:96:8c:d8:86:aa: 20:38:22:81:a6:8a:9a:7f:2a:cd:fc:e6:26:3f:69:63:60:7c: bd:bc:63:8b:f7:7b:e3:3d:60:0a:f0:e1:eb:d1:9a:90:ce:1f: 28:a0:db:55:0d:ae:6a:49:f1:e0:de:ea:70:6d:ec:90:4f:3f: ab:3e:f7:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUzMEQxMTAvBgNVBAUTKEIzOTkyRjBENDlCQUY2QTM2RkRBNjU4RTVCNDU5NDY5 NTIxRTVCNDQwHhcNMjUwNjAzMDQ0OTEwWhcNMjUwNjEwMDQ0OTEwWjAYMRYwFAYD VQQDEw02ODNlN2VjNi04NTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JGpoZ1EUB0Kip70epQACt1v6K1ai3JlNY70751cdUVoYyNcAbHRMO3qyegH NuT1KuHx0Xluid/aq6VfPgY8YafrUB6sNE7Lu6QIzegyNlWj7xUpzmTLqnDc82Jl o6Cm28sLvmcFAjssKhMOII9/O3i4FXKQ0Fx6WfEBA+VOzx3e2gDSiR9Vd1Tv7Iqc l2WH27iwA+b2PHDXZBu+mbjINLbfKqFbf8kDQXyaa0hQAxImzVOj0DbjpasTL+MT LiV0msbaLebY6xeqxduExRrXJCfDlwwlNYO3fn48t8F5GN3JY/1yxM4ikIPpYW6y QtrAP9sza3T2Xs/OCDeNWmeLgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtVyAun q3woRsaFNLMYa4rAFxAaMB8GA1UdIwQYMBaAFLOZLw1Juvajb9pljltFlGlSHltE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTMwRC9ERDdFMDkxQ0I2 NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi9zNWt2RFVtNjlxTnYybVdPVzBXVWFWSWVX MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3M1a3ZEVW02OXFOdjJtV09XMFdVYVZJZVcwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTMwRC9ERDdFMDkxQ0I2NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi9zNWt2RFVtNjlx TnYybVdPVzBXVWFWSWVXMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC22tQPJkzT0xEEsnUWFzCSv4Gbo8PA/9+FQnwb5+hZNL5PEbcRqOoz 675A9kVpwnwTpIf1fXlon2+O5NY45CMO/yQd1XYgFRkfTUM8prCROZf2d2p4c3fM 4dhGBjXwew/B4R+d1RonAQ2Fj/0rXD1m79qPi7DxfMi7SvMgDvsVXTRik7rlynJ3 EuroNHRkRxAqrf31m39EKA5jAVRQqCbOx7P6X5fKhUVCnWFEyYDRLDK3UWdy2+Bw ImdlxPNHDwi0lozYhqogOCKBpoqafyrN/OYmP2ljYHy9vGOL93vjPWAK8OHr0ZqQ zh8ooNtVDa5qSfHg3upwbeyQTz+rPvcF -----END CERTIFICATE-----Generated at Tue Jun 3 23:49:16 2025 by rpki-client