$ rpki-client -vvf rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft File: 5sRskdEtWFoSsFVpYh3uGtP4kI4.mft (raw, json) Hash identifier: 4MsgTG4eqJL1bLQLcN6bgLZeHp3uBldMktKkLzJMGtA= Subject key identifier: AC:7B:28:59:3E:7F:43:1A:E4:86:D4:35:8B:48:BC:E1:27:1B:6D:16 Authority key identifier: E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E Certificate issuer: /CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft Manifest number: 012D Signing time: Sat 31 May 2025 04:14:20 +0000 Manifest this update: Sat 31 May 2025 04:14:19 +0000 Manifest next update: Sat 07 Jun 2025 04:14:19 +0000 Files and hashes: 1: 5sRskdEtWFoSsFVpYh3uGtP4kI4.crl (hash: d9C9icT9IPDxZ+FaaH6RbrHfXicv2fMt4/WpLJEgKCw=) 2: 1B299892726F11EEB1217365C4F9AE02.roa (hash: 6cDYRuNREDOcfjp20jGUwg25me6jxHxjZr5vSBlmhG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A362, serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Validity Not Before: May 31 04:14:19 2025 GMT Not After : Jun 7 04:14:19 2025 GMT Subject: CN=683a821c-ac70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:45:b7:00:b8:e8:2f:af:e6:ea:44:29:5c:23: 5a:47:91:07:9a:83:c3:ea:77:dc:a4:d9:da:0c:cc: 6b:e9:70:62:e0:c0:56:c2:cb:ff:32:ff:b2:e1:47: c5:e4:be:eb:d0:9e:ab:1c:93:fc:4d:8b:0b:d2:de: fe:b4:14:0c:4a:99:ff:57:cf:b9:57:f1:02:33:6d: 5e:2f:a3:b6:21:b3:f8:d2:4d:7c:82:95:a8:eb:a4: 08:d6:c0:e2:01:36:ca:19:35:17:a7:1e:c5:37:4e: 4e:d9:92:00:83:13:c8:82:2c:e1:78:02:6c:6c:9e: 02:e9:68:b4:f0:de:ef:c6:5e:7f:a3:24:76:76:7d: ca:54:5a:00:f4:ac:b6:f0:fc:d4:fa:75:3f:14:7a: d2:c2:69:9a:c1:1d:6e:40:4e:e2:b3:b7:3e:b1:b0: 33:17:77:e4:85:1d:7b:af:f2:df:54:8e:7b:f2:7a: f2:e9:b4:45:87:c8:ea:d4:77:dd:1a:a5:ed:e6:a8: 10:2e:3d:94:08:db:6d:ed:09:b1:c3:0f:de:bd:47: 22:17:9b:a4:33:da:d7:e6:04:3d:6b:d9:c8:2a:73: 30:7e:7a:2d:34:ce:bb:c6:3c:1c:ca:ad:89:cd:9a: 3f:ca:75:fc:ac:3d:1d:2d:f0:cc:2a:52:28:f7:99: a2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:7B:28:59:3E:7F:43:1A:E4:86:D4:35:8B:48:BC:E1:27:1B:6D:16 X509v3 Authority Key Identifier: keyid:E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:5b:86:a0:09:79:0a:95:9c:f1:26:e9:ff:26:11:c3:60:f2: c8:48:a3:e5:ee:f2:d5:32:85:c0:5e:c1:00:51:17:95:2d:23: 16:31:f6:a6:39:ba:78:20:6a:91:bc:37:7a:e2:53:5f:a5:32: 19:3e:75:43:a5:0d:3e:8a:f7:21:ee:1a:38:2d:f4:4d:3a:89: 9a:3a:5c:3a:81:38:ef:b4:e2:8a:f0:a1:0b:89:6e:8b:81:ec: f6:29:c0:27:fc:d8:a2:b1:b0:6b:27:1f:0c:62:bc:e1:9e:45: 3c:05:a4:c9:fa:33:9a:1a:eb:cc:2e:16:a7:a1:ec:14:bd:0c: 43:11:f9:ca:59:ac:e3:8d:49:a5:f0:ed:59:5c:1f:df:54:d8: f6:49:cc:3b:5a:ee:a5:b9:5e:cc:26:33:de:6b:1f:6c:ab:de: 5f:5f:7c:c7:00:75:16:58:88:94:ab:55:f9:bb:4c:66:7d:52: ed:5a:28:90:37:0d:8d:4e:cc:c9:e0:11:56:b2:98:0c:43:f2: e0:67:e8:e8:85:e1:bf:85:3f:5c:8e:06:28:8f:a3:e3:4b:13: 37:c3:db:76:2c:ec:6a:51:10:73:d8:37:78:95:b2:81:6e:0c: 14:34:2b:a9:b9:43:27:32:7a:89:f8:d2:b6:83:7e:26:01:bf: cf:21:b5:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EzNjIxMTAvBgNVBAUTKEU2QzQ2QzkxRDEyRDU4NUExMkIwNTU2OTYyMURFRTFB RDNGODkwOEUwHhcNMjUwNTMxMDQxNDE5WhcNMjUwNjA3MDQxNDE5WjAYMRYwFAYD VQQDEw02ODNhODIxYy1hYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmEW3ALjoL6/m6kQpXCNaR5EHmoPD6nfcpNnaDMxr6XBi4MBWwsv/Mv+y4UfF 5L7r0J6rHJP8TYsL0t7+tBQMSpn/V8+5V/ECM21eL6O2IbP40k18gpWo66QI1sDi ATbKGTUXpx7FN05O2ZIAgxPIgizheAJsbJ4C6Wi08N7vxl5/oyR2dn3KVFoA9Ky2 8PzU+nU/FHrSwmmawR1uQE7is7c+sbAzF3fkhR17r/LfVI578nry6bRFh8jq1Hfd GqXt5qgQLj2UCNtt7Qmxww/evUciF5ukM9rX5gQ9a9nIKnMwfnotNM67xjwcyq2J zZo/ynX8rD0dLfDMKlIo95micQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKx7KFk+ f0Ma5IbUNYtIvOEnG20WMB8GA1UdIwQYMBaAFObEbJHRLVhaErBVaWId7hrT+JCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTM2Mi83Q0JBNEM0Qzcy NkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdGb1NzRlZwWWgzdUd0UDRr STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVzUnNrZEV0V0ZvU3NGVnBZaDN1R3RQNGtJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTM2Mi83Q0JBNEM0QzcyNkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdG b1NzRlZwWWgzdUd0UDRrSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzW4agCXkKlZzxJun/JhHDYPLISKPl7vLVMoXAXsEAUReVLSMWMfam Obp4IGqRvDd64lNfpTIZPnVDpQ0+ivch7ho4LfRNOomaOlw6gTjvtOKK8KELiW6L gez2KcAn/NiisbBrJx8MYrzhnkU8BaTJ+jOaGuvMLhanoewUvQxDEfnKWazjjUml 8O1ZXB/fVNj2Scw7Wu6luV7MJjPeax9sq95fX3zHAHUWWIiUq1X5u0xmfVLtWiiQ Nw2NTszJ4BFWspgMQ/LgZ+joheG/hT9cjgYoj6PjSxM3w9t2LOxqURBz2Dd4lbKB bgwUNCupuUMnMnqJ+NK2g34mAb/PIbVE -----END CERTIFICATE-----Generated at Sat May 31 17:57:41 2025 by rpki-client