$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: QbFv+CcHBWgQZsXSTAFaYh7dvbjD1RLCdbexdD+AxpY= Subject key identifier: 79:B8:A9:4E:C4:F8:CE:97:F2:90:07:BB:B6:8E:83:59:CA:76:6F:E2 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 08B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 089B Signing time: Mon 12 May 2025 20:22:35 +0000 Manifest this update: Mon 12 May 2025 20:22:35 +0000 Manifest next update: Mon 19 May 2025 20:22:35 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: 4EeZlFMRHDsIhmfn+rkHPSclItNwItQmBQp4nDqFhRs=) 2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: KT6K45U/vV1zQkhhfiaxr9a9XeTKLIwG0eEDcyR3ERI=) 3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: LbbFjEbhHg5fzKZNW2jokQ6UuaIS/rDPKgFU2q0pJeg=) 4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: Gzcr6RaAc7WjlspRH4slQcyVh4i/nmyVkR/RXd4O0KM=) 5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lg2iSZUiBgCc3+l3q9JExUq+jxWe1fvszct9oy4Ys3k=) 6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: tlDd7aRrzNeu6uslbfPluCcOk663EDpRsH8KL9nqlD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2231 (0x8b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: May 12 20:22:35 2025 GMT Not After : May 19 20:22:35 2025 GMT Subject: CN=6822588b-625a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b0:d5:57:61:12:80:03:5c:9e:66:f4:ba:43: b4:58:60:d0:0f:1c:f9:79:81:1a:a5:ab:44:15:3f: 11:b3:a2:e2:cb:f4:30:af:b3:c7:e6:b0:14:15:d6: 62:b8:dc:0d:f2:85:bc:81:bb:62:7e:8b:29:19:a9: ce:5a:36:dc:d4:d9:2e:db:1f:0c:cb:ab:33:8d:4a: 2b:b4:6f:38:fe:23:56:c5:ff:e7:fb:00:69:90:53: 1f:a6:ce:f1:5d:04:c3:9a:3d:35:02:d0:be:d6:38: 9b:13:7e:73:10:4d:63:e4:16:bc:a9:9b:5b:97:1f: b8:06:9c:5a:b6:78:fc:e9:c0:ee:ae:5f:82:e5:ff: 26:5f:f3:b5:92:59:bf:d8:d5:94:7a:52:42:2e:0d: 12:71:89:db:f5:dd:0f:a8:fa:c8:c0:94:9e:e8:d1: 71:ce:52:2d:32:f9:21:65:25:05:e7:6b:d8:f0:0c: a3:81:07:6a:bd:63:05:7c:ab:40:b4:7b:77:7c:88: ca:f2:5a:5b:a4:b8:80:16:2c:b6:25:9c:b9:7e:c6: 0a:1b:2e:9d:6e:66:fe:6a:f4:c7:b5:6c:ef:30:80: dd:5e:b3:52:c1:9f:99:ca:06:1d:22:d7:f8:88:03: 1c:95:55:6f:c4:7b:98:c7:29:b3:3f:ba:c3:42:c1: c5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B8:A9:4E:C4:F8:CE:97:F2:90:07:BB:B6:8E:83:59:CA:76:6F:E2 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:30:db:75:d0:75:e8:01:e1:60:6b:f3:c0:83:f5:55:f9:15: 90:d6:50:aa:e9:e5:24:90:64:29:b8:97:49:f8:3c:4a:e2:33: 61:9f:24:8e:a5:0f:cf:1e:67:e3:f1:89:15:e5:02:5b:ca:39: 67:f8:02:5d:54:0e:ae:27:32:c3:4e:02:bb:0f:32:2f:18:37: 39:c6:cb:82:e2:e1:89:76:5a:a7:60:63:34:65:40:ae:30:06: 0b:bc:9a:c1:dc:91:b4:b2:ac:a7:2b:b8:e6:a6:d4:5c:8a:d1: a9:28:17:d0:6e:8e:98:39:d2:b7:09:31:95:9f:cf:88:1c:33: 17:bc:66:2a:d7:d0:cb:a0:e3:f4:12:89:70:78:d4:a1:cd:4c: 85:d2:53:3f:21:fa:9d:3a:56:a3:bb:bd:8d:70:e6:a9:a8:07: 1c:c3:c7:fd:87:1d:d3:8a:9f:f9:b2:29:c1:49:15:5c:41:cd: d8:95:5a:47:9f:89:13:99:bd:24:a9:c2:29:50:30:5a:87:c5: 23:c2:ce:95:9c:82:1f:07:22:e1:5c:85:62:9f:00:90:27:d0: 04:e9:89:59:8c:77:75:e4:90:4b:5d:03:73:99:2e:c9:3d:83: 28:9d:f2:2e:ca:a6:a4:9b:d7:34:be:e0:64:85:22:e8:43:92: 15:16:b0:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwNTEyMjAyMjM1WhcNMjUwNTE5MjAyMjM1WjAYMRYwFAYD VQQDEw02ODIyNTg4Yi02MjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7DVV2ESgANcnmb0ukO0WGDQDxz5eYEapatEFT8Rs6Liy/Qwr7PH5rAUFdZi uNwN8oW8gbtifospGanOWjbc1Nku2x8My6szjUortG84/iNWxf/n+wBpkFMfps7x XQTDmj01AtC+1jibE35zEE1j5Ba8qZtblx+4Bpxatnj86cDurl+C5f8mX/O1klm/ 2NWUelJCLg0ScYnb9d0PqPrIwJSe6NFxzlItMvkhZSUF52vY8AyjgQdqvWMFfKtA tHt3fIjK8lpbpLiAFiy2JZy5fsYKGy6dbmb+avTHtWzvMIDdXrNSwZ+ZygYdItf4 iAMclVVvxHuYxymzP7rDQsHF1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHm4qU7E +M6X8pAHu7aOg1nKdm/iMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIMNt10HXoAeFga/PAg/VV+RWQ1lCq6eUkkGQpuJdJ+DxK4jNhnySO pQ/PHmfj8YkV5QJbyjln+AJdVA6uJzLDTgK7DzIvGDc5xsuC4uGJdlqnYGM0ZUCu MAYLvJrB3JG0sqynK7jmptRcitGpKBfQbo6YOdK3CTGVn8+IHDMXvGYq19DLoOP0 EolweNShzUyF0lM/IfqdOlaju72NcOapqAccw8f9hx3Tip/5sinBSRVcQc3YlVpH n4kTmb0kqcIpUDBah8Ujws6VnIIfByLhXIVinwCQJ9AE6YlZjHd15JBLXQNzmS7J PYMonfIuyqakm9c0vuBkhSLoQ5IVFrAk -----END CERTIFICATE-----Generated at Wed May 14 18:18:37 2025 by rpki-client