$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft File: 5IPa-2wrg71IK24pCn5AU1W1Ltk.mft (raw, json) Hash identifier: 6YZhGzGMUjbVcay8p8BPVu/ouAur6c1cFHVFI8bxsRI= Subject key identifier: F1:81:49:AE:50:E7:5C:F8:E3:13:FE:33:04:25:18:62:3E:D8:90:31 Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 105A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft Manifest number: 104E Signing time: Fri 30 May 2025 17:34:28 +0000 Manifest this update: Fri 30 May 2025 17:34:27 +0000 Manifest next update: Fri 06 Jun 2025 17:34:27 +0000 Files and hashes: 1: 5IPa-2wrg71IK24pCn5AU1W1Ltk.crl (hash: /HsUpuKYUs2sF0ClyUGMSKi43nObbGfKUNcQG6HaZBA=) 2: 99B6039C215311EA86E1E020C4F9AE02.roa (hash: GBYQ/lKi3z5roPUPwktfDVMLitw965pomXZAG5jfako=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4186 (0x105a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B, serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: May 30 17:34:27 2025 GMT Not After : Jun 6 17:34:27 2025 GMT Subject: CN=6839ec23-27c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:74:85:ba:10:af:b2:6b:a9:b2:06:09:5e:62: e6:9e:b9:b4:1c:09:c0:32:ee:43:aa:8d:59:6c:56: 07:f4:26:58:af:64:a5:2c:09:84:a2:9f:2c:92:61: 22:64:31:d8:09:67:98:83:dd:32:d1:b3:c0:ad:73: 7b:bc:af:c6:69:e8:c9:f9:2f:38:24:b2:73:45:8a: 3d:7c:a4:8f:af:43:9a:5a:18:7e:1e:fc:b7:7f:32: 5a:cd:43:7e:2d:41:b9:da:b5:cc:49:f5:31:25:72: 9a:82:f8:79:07:99:47:e3:9e:37:6b:41:80:74:85: 09:2b:85:3d:c0:0f:14:dd:b7:8e:8c:b8:b4:f7:1b: 8b:62:e5:12:28:5a:db:72:52:0a:8c:1d:f6:82:f5: 4e:30:84:64:58:b7:0e:de:b4:84:b2:ef:42:5b:48: 8a:60:c7:21:ad:b2:4f:71:59:b7:79:8f:77:0f:14: 3c:e0:94:a5:6d:c5:b4:05:fb:f2:58:10:c6:15:5c: 2c:93:b3:0d:a2:1d:86:fc:d4:b2:96:50:6d:29:dd: 00:4e:63:c1:00:bd:2d:ee:4a:53:3d:b1:fb:cc:1f: 77:cc:a5:08:9a:b9:94:37:8a:5b:af:ef:cf:51:36: 68:d5:b1:d3:3e:61:33:fe:30:82:a2:7c:cc:7d:88: e9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:81:49:AE:50:E7:5C:F8:E3:13:FE:33:04:25:18:62:3E:D8:90:31 X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:40:9c:4a:89:37:48:54:1a:ed:ba:83:6f:90:ef:56:4b:e9: 57:91:3f:9d:dc:01:50:4d:f5:59:0d:0b:c5:2d:cd:80:98:a5: ff:78:d4:e4:f5:91:48:b1:a6:cd:78:04:62:63:2a:9f:df:50: 0b:01:8a:75:fa:f1:0f:08:00:1b:25:1d:17:9c:6d:1b:ad:c0: 61:c4:87:ca:73:28:e5:6e:e2:3a:f7:03:c2:b3:ef:5d:3b:f0: 70:02:3f:ce:b0:2d:62:09:5a:6b:1f:4c:f0:60:ce:f9:c2:34: 3a:64:44:1e:4e:3a:50:f9:a4:51:7d:a3:fe:38:92:a1:3b:a2: 7f:4d:16:1e:54:90:06:f3:e9:ee:bb:18:dd:e4:10:cb:4c:bb: 32:41:ee:d6:b7:22:dd:e9:b9:b9:29:9a:2a:d1:1b:84:1f:35: 3c:a6:5c:59:aa:3d:6b:11:b7:74:da:9a:58:42:6b:db:d4:af: d0:91:b9:a8:6a:97:82:e8:c8:a2:bb:dd:b0:65:9d:5b:28:f4: 63:14:de:7f:70:bc:b7:2d:c2:b6:ee:81:e5:35:6b:dc:18:91: 37:04:f6:f0:e5:0c:1c:a4:ef:8e:f5:45:90:90:1a:c7:ed:da: 24:65:8a:df:73:1d:10:7e:13:8c:86:8e:dd:05:6e:e7:55:44: c4:e8:ad:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjUwNTMwMTczNDI3WhcNMjUwNjA2MTczNDI3WjAYMRYwFAYD VQQDEw02ODM5ZWMyMy0yN2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HSFuhCvsmupsgYJXmLmnrm0HAnAMu5Dqo1ZbFYH9CZYr2SlLAmEop8skmEi ZDHYCWeYg90y0bPArXN7vK/GaejJ+S84JLJzRYo9fKSPr0OaWhh+Hvy3fzJazUN+ LUG52rXMSfUxJXKagvh5B5lH4543a0GAdIUJK4U9wA8U3beOjLi09xuLYuUSKFrb clIKjB32gvVOMIRkWLcO3rSEsu9CW0iKYMchrbJPcVm3eY93DxQ84JSlbcW0Bfvy WBDGFVwsk7MNoh2G/NSyllBtKd0ATmPBAL0t7kpTPbH7zB93zKUImrmUN4pbr+/P UTZo1bHTPmEz/jCConzMfYjpdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGBSa5Q 51z44xP+MwQlGGI+2JAxMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTM2Qi9GN0M4N0U4NDNBN0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3 MUlLMjRwQ241QVUxVzFMdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoQJxKiTdIVBrtuoNvkO9WS+lXkT+d3AFQTfVZDQvFLc2AmKX/eNTk 9ZFIsabNeARiYyqf31ALAYp1+vEPCAAbJR0XnG0brcBhxIfKcyjlbuI69wPCs+9d O/BwAj/OsC1iCVprH0zwYM75wjQ6ZEQeTjpQ+aRRfaP+OJKhO6J/TRYeVJAG8+nu uxjd5BDLTLsyQe7WtyLd6bm5KZoq0RuEHzU8plxZqj1rEbd02ppYQmvb1K/Qkbmo apeC6Miiu92wZZ1bKPRjFN5/cLy3LcK27oHlNWvcGJE3BPbw5QwcpO+O9UWQkBrH 7dokZYrfcx0QfhOMho7dBW7nVUTE6K0s -----END CERTIFICATE-----Generated at Sat May 31 17:49:43 2025 by rpki-client