$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft File: 5CHll4Srb9cADNFZcQHsNg3ZQGY.mft (raw, json) Hash identifier: wUe9GQbqUgZMWaJA148CzrXTajTEjat5SCKpahfYowc= Subject key identifier: E7:76:B5:BA:0B:8D:CD:28:C4:C0:B4:30:3E:D4:7C:DB:89:31:CC:EA Authority key identifier: E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 Certificate issuer: /CN=A91A1E1C/serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft Manifest number: 76 Signing time: Thu 05 Jun 2025 06:11:45 +0000 Manifest this update: Thu 05 Jun 2025 06:11:45 +0000 Manifest next update: Thu 12 Jun 2025 06:11:45 +0000 Files and hashes: 1: 5CHll4Srb9cADNFZcQHsNg3ZQGY.crl (hash: BqVB8Vnf5xXTFDBFl1yoPwbfFsh3GXTaR+S0h3WhXGc=) 2: 5BC18D6C9A6C11EF8C656668C4F9AE02.roa (hash: 1ljn9MSckdlGvWQ7HkpY2v8ly/0oxPt9z/n6V7MEeDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 06:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1E1C, serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Validity Not Before: Jun 5 06:11:45 2025 GMT Not After : Jun 12 06:11:45 2025 GMT Subject: CN=68413521-a670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9a:57:b6:e9:9d:1e:59:17:58:9e:c1:9d:07: 06:82:64:78:bc:e6:c2:0e:05:df:4e:09:c7:67:04: c1:1c:45:fa:9e:44:0a:93:36:76:2f:05:94:67:64: 0c:ea:8f:a2:59:32:d3:21:1c:98:90:5b:ae:d4:0e: 1b:f3:5b:4e:e2:32:b0:02:10:8a:1e:b1:57:68:17: c9:eb:eb:0e:1c:19:9e:ec:05:70:75:9e:2f:e3:c9: 3b:d8:e2:e9:76:56:86:08:38:f9:19:be:ac:bb:97: b6:cb:b3:be:af:ba:58:11:f0:9d:31:6d:ca:73:61: b1:24:e0:e4:7d:10:28:33:bf:47:ae:ac:82:7e:4a: 0c:51:d2:88:27:cb:a9:4c:5c:8c:7f:46:c6:08:a6: 08:db:b5:26:87:c3:a7:48:ef:a9:e1:e2:fe:1f:fb: 89:3b:6d:28:fa:e6:1f:64:f6:d6:db:27:dc:a6:a6: aa:c7:bc:88:69:b9:91:1f:fd:76:f5:94:69:e5:ed: ad:07:b9:63:98:75:b1:5a:ee:c3:e0:19:cd:6b:16: de:03:85:0b:4a:64:4a:9d:fe:aa:60:4c:2e:24:37: af:0a:c5:a2:34:b4:7f:04:d9:ac:91:02:11:b8:fb: ea:6c:1d:02:b7:91:bf:19:d9:a9:33:4b:df:a2:d1: 58:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:76:B5:BA:0B:8D:CD:28:C4:C0:B4:30:3E:D4:7C:DB:89:31:CC:EA X509v3 Authority Key Identifier: keyid:E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:42:97:0a:90:f9:b8:03:c9:fb:73:5d:44:81:d8:a6:da:21: ad:65:5e:9f:e4:9e:c9:c9:02:1b:5c:a5:70:df:67:14:33:cd: 1a:f1:bb:73:2e:55:29:75:66:5e:87:27:73:1f:ba:c2:76:a4: 0c:55:96:b6:ea:61:71:69:d7:a8:24:83:04:12:f6:01:e3:32: 40:28:a6:ed:8f:27:43:bb:69:42:91:d8:9e:b9:93:7f:20:3c: a0:14:7b:35:bf:e7:75:85:1b:c4:82:68:bd:ba:8b:92:a2:ae: 3e:ea:d1:26:8a:23:4d:d9:3c:76:f9:97:78:19:e8:4a:10:88: a0:d5:92:89:c1:81:ef:72:cd:b4:3c:56:9d:eb:b7:19:1d:ec: c8:18:4f:42:91:a2:f6:d6:f5:bc:07:88:fb:cd:37:92:98:65: ac:38:c5:ff:a3:28:3f:45:81:4b:74:9a:f9:d6:b4:56:4a:48: 44:23:b9:ad:6d:b1:ef:ef:5f:4a:31:5d:fb:8e:03:2c:dc:bf: b7:4f:ce:81:b6:a6:6e:b8:6f:c7:72:f9:5f:89:f1:70:10:00: 49:db:fb:09:c9:d1:ff:43:49:bc:e5:0c:ec:e4:96:d1:e7:fc: 9e:ca:62:39:15:fe:05:dd:f4:67:56:c0:c6:65:71:f7:1e:75: 8b:14:a6:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUUxQzExMC8GA1UEBRMoRTQyMUU1OTc4NEFCNkZENzAwMENEMTU5NzEwMUVDMzYw REQ5NDA2NjAeFw0yNTA2MDUwNjExNDVaFw0yNTA2MTIwNjExNDVaMBgxFjAUBgNV BAMTDTY4NDEzNTIxLWE2NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbmle26Z0eWRdYnsGdBwaCZHi85sIOBd9OCcdnBMEcRfqeRAqTNnYvBZRnZAzq j6JZMtMhHJiQW67UDhvzW07iMrACEIoesVdoF8nr6w4cGZ7sBXB1ni/jyTvY4ul2 VoYIOPkZvqy7l7bLs76vulgR8J0xbcpzYbEk4OR9ECgzv0eurIJ+SgxR0ogny6lM XIx/RsYIpgjbtSaHw6dI76nh4v4f+4k7bSj65h9k9tbbJ9ympqrHvIhpuZEf/Xb1 lGnl7a0HuWOYdbFa7sPgGc1rFt4DhQtKZEqd/qpgTC4kN68KxaI0tH8E2ayRAhG4 ++psHQK3kb8Z2akzS9+i0VgHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU53a1uguN zSjEwLQwPtR824kxzOowHwYDVR0jBBgwFoAU5CHll4Srb9cADNFZcQHsNg3ZQGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExRTFDLzI1MjIyRDgwOTIw MDExRUY5RTBDM0Q2QkM0RjlBRTAyLzVDSGxsNFNyYjljQURORlpjUUhzTmczWlFH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNUNIbGw0U3JiOWNBRE5GWmNRSHNOZzNaUUdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx RTFDLzI1MjIyRDgwOTIwMDExRUY5RTBDM0Q2QkM0RjlBRTAyLzVDSGxsNFNyYjlj QURORlpjUUhzTmczWlFHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADBClwqQ+bgDyftzXUSB2KbaIa1lXp/knsnJAhtcpXDfZxQzzRrxu3Mu VSl1Zl6HJ3MfusJ2pAxVlrbqYXFp16gkgwQS9gHjMkAopu2PJ0O7aUKR2J65k38g PKAUezW/53WFG8SCaL26i5Kirj7q0SaKI03ZPHb5l3gZ6EoQiKDVkonBge9yzbQ8 Vp3rtxkd7MgYT0KRovbW9bwHiPvNN5KYZaw4xf+jKD9FgUt0mvnWtFZKSEQjua1t se/vX0oxXfuOAyzcv7dPzoG2pm64b8dy+V+J8XAQAEnb+wnJ0f9DSbzlDOzkltHn /J7KYjkV/gXd9GdWwMZlcfcedYsUpjM= -----END CERTIFICATE-----Generated at Fri Jun 6 17:25:55 2025 by rpki-client