$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: CZRzl8TazsyjqfL34j2RzuR8S4GfiNdQu0f3F/STzo8= Subject key identifier: 42:7E:0D:5C:F6:69:9F:F1:95:3D:2C:9F:D0:5E:D3:22:A6:3E:AB:DF Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: 94 Signing time: Sat 31 May 2025 05:58:32 +0000 Manifest this update: Sat 31 May 2025 05:58:31 +0000 Manifest next update: Sat 07 Jun 2025 05:58:31 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: zY7C12h8bSEoD930zIF0o9msf/Gh0Ja7AUuCjQyvNOE=) 2: E1EF913A5DF011EFAC9CA43BC4F9AE02.roa (hash: HnEUHlw9gil+mYxp63GxFhUGPoOAuwCoKZnzCLBninA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:58:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: May 31 05:58:31 2025 GMT Not After : Jun 7 05:58:31 2025 GMT Subject: CN=683a9a88-c116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f7:8f:ae:65:25:78:4d:2d:d9:d8:22:fa:b0: 6e:76:76:d9:74:d3:0c:2b:c3:15:65:b4:95:38:74: 5d:bc:56:18:3a:8b:21:a9:b5:7a:87:e8:9a:86:f8: 8b:c7:9f:46:a1:96:9a:36:95:d4:2e:a9:65:6b:a8: ec:ef:ab:f5:8b:c8:0b:99:03:6f:0a:6c:95:82:ef: 3a:5e:03:73:e2:ef:47:ef:69:21:73:06:54:46:ff: 3f:db:8e:f5:5a:ae:b8:60:ba:e9:23:45:d7:31:38: 8f:1e:42:58:19:13:76:bd:66:04:a8:e9:16:81:3f: 8f:9d:d8:69:7f:5c:0c:1c:2f:7d:ed:0d:d1:d9:34: 85:1f:ed:a5:1c:47:f0:37:bb:9d:57:a3:c5:8a:62: ab:b6:65:c3:b6:06:5f:73:0a:b5:7f:73:a2:71:c5: c1:65:32:c9:45:5e:80:f8:2f:c2:74:0f:e7:d4:bf: f7:50:a2:b8:88:d6:32:4f:ba:d5:ac:25:25:0a:ec: 00:e3:4e:64:72:db:af:b7:3a:fd:a7:2d:92:83:e2: 48:b2:08:17:43:c0:b9:f8:24:32:0c:1c:d2:76:96: 5b:13:ee:99:a3:98:0a:19:4c:e9:18:4e:9b:93:f4: 78:7c:21:62:a2:93:09:e1:01:98:96:67:30:cb:25: 68:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7E:0D:5C:F6:69:9F:F1:95:3D:2C:9F:D0:5E:D3:22:A6:3E:AB:DF X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:8a:ce:cf:f2:8f:f2:2e:d4:c3:a8:41:d7:a2:98:a7:f4:fc: 7f:99:4a:71:e4:59:f7:11:3f:6c:14:1e:e8:0e:f0:19:61:8d: 3c:b0:5c:8d:cb:00:aa:0f:fa:1c:12:ed:0b:36:d4:72:cb:3e: eb:cd:1c:6a:af:76:72:3d:ca:9a:4d:6e:8a:20:d9:31:63:15: a4:ab:52:7d:c1:98:8a:ce:c1:f9:99:fd:7b:f4:21:1a:14:80: 6d:97:af:1a:c4:3c:22:d2:da:e9:26:d0:32:32:cf:6d:9e:0f: 7e:f7:f6:55:95:ff:f5:24:f5:6c:5d:77:8b:d9:69:b4:33:8b: 4c:b8:48:c7:ef:ad:cd:96:b2:2c:08:c1:44:7d:f2:e0:fb:7a: 1e:76:48:bb:19:d9:90:d8:5a:0d:28:3b:03:fb:67:a6:da:a7: 5f:30:17:4b:98:6f:cb:39:11:9a:78:4b:0e:32:30:e3:68:96: 8b:8b:d8:c1:25:73:d3:10:b9:ff:42:c9:e0:08:e5:f4:6f:53: a5:20:1d:25:13:96:b2:ff:23:f1:3b:68:35:64:04:cf:eb:5d: 6d:42:d0:43:34:5f:39:b0:22:8f:df:53:27:3c:97:0f:ac:5c: c7:a3:e6:e3:4c:ee:35:c3:39:18:b7:bd:29:ff:40:08:c4:42: b4:15:39:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUwNTMxMDU1ODMxWhcNMjUwNjA3MDU1ODMxWjAYMRYwFAYD VQQDEw02ODNhOWE4OC1jMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/ePrmUleE0t2dgi+rBudnbZdNMMK8MVZbSVOHRdvFYYOoshqbV6h+iahviL x59GoZaaNpXULqlla6js76v1i8gLmQNvCmyVgu86XgNz4u9H72khcwZURv8/2471 Wq64YLrpI0XXMTiPHkJYGRN2vWYEqOkWgT+Pndhpf1wMHC997Q3R2TSFH+2lHEfw N7udV6PFimKrtmXDtgZfcwq1f3OiccXBZTLJRV6A+C/CdA/n1L/3UKK4iNYyT7rV rCUlCuwA405kctuvtzr9py2Sg+JIsggXQ8C5+CQyDBzSdpZbE+6Zo5gKGUzpGE6b k/R4fCFiopMJ4QGYlmcwyyVocQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJ+DVz2 aZ/xlT0sn9Be0yKmPqvfMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3 N3pwYWwxMlF6UTNHVzkyLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWis7P8o/yLtTDqEHXopin9Px/mUpx5Fn3ET9sFB7oDvAZYY08sFyN ywCqD/ocEu0LNtRyyz7rzRxqr3ZyPcqaTW6KINkxYxWkq1J9wZiKzsH5mf179CEa FIBtl68axDwi0trpJtAyMs9tng9+9/ZVlf/1JPVsXXeL2Wm0M4tMuEjH763NlrIs CMFEffLg+3oedki7GdmQ2FoNKDsD+2em2qdfMBdLmG/LORGaeEsOMjDjaJaLi9jB JXPTELn/QsngCOX0b1OlIB0lE5ay/yPxO2g1ZATP611tQtBDNF85sCKP31MnPJcP rFzHo+bjTO41wzkYt70p/0AIxEK0FTl5 -----END CERTIFICATE-----Generated at Sat May 31 17:30:15 2025 by rpki-client