$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft File: 5KlM-o0vn1s570Y1BZHOMS5RT7M.mft (raw, json) Hash identifier: mA0+jNW5vwnGiprUeGJNzSAHiqD89XZoleuo/qET0l4= Subject key identifier: 54:76:BC:AB:C7:56:17:60:8D:FE:3B:C2:DE:8E:46:B2:EE:95:FA:D0 Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft Manifest number: 0273 Signing time: Sat 31 May 2025 02:00:09 +0000 Manifest this update: Sat 31 May 2025 02:00:09 +0000 Manifest next update: Sat 07 Jun 2025 02:00:09 +0000 Files and hashes: 1: 5KlM-o0vn1s570Y1BZHOMS5RT7M.crl (hash: AgK82NuDd4quIZKbXnc2WZSqMe+FjZH2w29bc6z7jx8=) 2: F3997FACE21D11EFA5819B7EC4F9AE02.roa (hash: YJknqh8T+qXW11AGQpkWixPSeb/oim2jtPvDZDC0Y5M=) 3: 5B69CE3A474A11EF8624EE6DC4F9AE02.roa (hash: 0d7okG44VFnG4nuLf3zjFz92ZcS33/9Y18izFVAiNWk=) 4: 3D331986E17211EFA5959B2FC4F9AE02.roa (hash: pOsL4nJKiT9Wc01cD2wPZO+WlYtBX9ZtStyQuOwRJu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AB3, serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Validity Not Before: May 31 02:00:09 2025 GMT Not After : Jun 7 02:00:09 2025 GMT Subject: CN=683a62a9-a8ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b6:19:27:22:c6:7e:e8:d5:d7:33:25:78:6e: 50:e5:dc:1b:20:ee:9a:7f:40:99:6d:d4:71:2a:de: e4:b0:ed:b4:04:aa:44:c2:7a:a1:da:4b:c5:d9:b0: 44:d6:20:db:0f:f2:2b:50:3f:64:f0:6a:02:14:91: 1b:93:8b:67:36:05:07:60:0d:8d:5b:cf:81:7b:e7: ed:18:e7:48:a8:4a:ad:fb:62:7b:b1:d7:e2:e2:aa: a7:82:fa:1f:91:ce:10:6b:45:09:1d:8a:09:29:d1: 99:2a:05:6f:f2:a6:72:44:ef:a8:0a:52:90:7b:9e: 6c:f2:54:5f:47:ff:c6:e8:b4:69:eb:74:f8:12:36: 75:38:2e:24:e4:35:2e:f6:38:c7:ea:b9:b7:a7:95: f2:04:ad:47:84:53:92:6f:b4:16:ab:05:5f:4f:86: e9:f6:11:74:61:1f:88:28:4c:02:08:e6:b7:7a:ee: 0c:06:ee:66:90:fa:67:de:36:16:fd:e6:98:14:1b: 79:01:61:7a:62:99:60:d9:23:10:24:0e:cd:61:bd: 9d:c4:67:5c:d6:a8:3c:e8:c7:eb:2b:13:f3:28:ea: 1e:4d:ac:6e:2c:71:45:57:84:91:c8:8a:86:08:5b: 4f:e6:45:47:e2:62:5a:33:6a:3e:4a:f2:11:5e:9f: ed:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:76:BC:AB:C7:56:17:60:8D:FE:3B:C2:DE:8E:46:B2:EE:95:FA:D0 X509v3 Authority Key Identifier: keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:35:da:02:5e:78:d9:71:04:3e:33:61:b7:c4:b5:1e:bc:2c: 55:13:a8:74:73:f0:28:d4:d5:b3:a0:ce:49:b2:2a:f9:0e:17: 4b:85:d4:b0:7f:04:4e:39:8a:eb:75:06:f9:b2:de:91:51:af: 39:f9:97:f5:7b:3b:be:bf:17:3c:79:50:00:60:56:b0:23:70: ae:d2:5f:c9:0a:47:53:39:5e:89:04:c1:64:af:64:f4:3f:64: 79:4f:b9:25:46:d3:c7:21:60:72:f6:90:e9:81:f3:cd:78:cc: f3:20:55:bc:9b:93:97:1f:9b:1f:7c:78:1f:48:38:02:39:8c: bb:ea:2d:d9:03:70:19:ca:17:40:bc:bd:1f:4b:af:ce:97:c9: 2a:18:5d:35:86:90:f4:9f:22:c7:62:05:0c:ff:82:92:64:2e: 52:5c:8a:0f:c4:05:32:ee:14:38:76:2b:25:9a:6f:c5:de:6d: 82:31:cb:a4:b5:2d:de:8e:07:54:96:59:45:f2:a9:26:1d:a5: a8:f4:62:5c:77:43:e3:5a:a8:60:4c:e4:c0:3c:2b:ee:16:d3: 35:de:de:59:44:63:0f:f7:04:40:dd:53:19:3d:41:21:aa:d3: bb:52:f9:51:74:ab:8e:48:97:8a:8a:20:a5:7a:6e:cc:92:a1: d2:e1:97:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBQjMxMTAvBgNVBAUTKEU0QTk0Q0ZBOEQyRjlGNUIzOUVGNDYzNTA1OTFDRTMx MkU1MTRGQjMwHhcNMjUwNTMxMDIwMDA5WhcNMjUwNjA3MDIwMDA5WjAYMRYwFAYD VQQDEw02ODNhNjJhOS1hOGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobYZJyLGfujV1zMleG5Q5dwbIO6af0CZbdRxKt7ksO20BKpEwnqh2kvF2bBE 1iDbD/IrUD9k8GoCFJEbk4tnNgUHYA2NW8+Be+ftGOdIqEqt+2J7sdfi4qqngvof kc4Qa0UJHYoJKdGZKgVv8qZyRO+oClKQe55s8lRfR//G6LRp63T4EjZ1OC4k5DUu 9jjH6rm3p5XyBK1HhFOSb7QWqwVfT4bp9hF0YR+IKEwCCOa3eu4MBu5mkPpn3jYW /eaYFBt5AWF6Yplg2SMQJA7NYb2dxGdc1qg86MfrKxPzKOoeTaxuLHFFV4SRyIqG CFtP5kVH4mJaM2o+SvIRXp/tNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR2vKvH Vhdgjf47wt6ORrLulfrQMB8GA1UdIwQYMBaAFOSpTPqNL59bOe9GNQWRzjEuUU+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0FCMy8wNUVEOTRDRTE5 NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4xczU3MFkxQlpIT01TNVJU N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLbE0tbzB2bjFzNTcwWTFCWkhPTVM1UlQ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0FCMy8wNUVEOTRDRTE5NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4x czU3MFkxQlpIT01TNVJUN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaNdoCXnjZcQQ+M2G3xLUevCxVE6h0c/Ao1NWzoM5Jsir5DhdLhdSw fwROOYrrdQb5st6RUa85+Zf1ezu+vxc8eVAAYFawI3Cu0l/JCkdTOV6JBMFkr2T0 P2R5T7klRtPHIWBy9pDpgfPNeMzzIFW8m5OXH5sffHgfSDgCOYy76i3ZA3AZyhdA vL0fS6/Ol8kqGF01hpD0nyLHYgUM/4KSZC5SXIoPxAUy7hQ4dislmm/F3m2CMcuk tS3ejgdUlllF8qkmHaWo9GJcd0PjWqhgTOTAPCvuFtM13t5ZRGMP9wRA3VMZPUEh qtO7UvlRdKuOSJeKiiClem7MkqHS4ZcZ -----END CERTIFICATE-----Generated at Sat May 31 17:23:37 2025 by rpki-client