$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: bKRNfNOS1SxuyAlKtPOUociS4slYxZV//fvqCa+IJpg= Subject key identifier: C5:B4:68:C6:4F:28:3C:DF:FA:66:8F:B2:0E:C0:54:0F:37:F8:C1:F6 Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 08C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 08A4 Signing time: Fri 30 May 2025 20:44:47 +0000 Manifest this update: Fri 30 May 2025 20:44:47 +0000 Manifest next update: Fri 06 Jun 2025 20:44:47 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: sMBOc1k+z/lKXZ8+aupGXmRG+hca6HuAy/mGB+pocuQ=) 2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: KT6K45U/vV1zQkhhfiaxr9a9XeTKLIwG0eEDcyR3ERI=) 3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: LbbFjEbhHg5fzKZNW2jokQ6UuaIS/rDPKgFU2q0pJeg=) 4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: Gzcr6RaAc7WjlspRH4slQcyVh4i/nmyVkR/RXd4O0KM=) 5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: Lg2iSZUiBgCc3+l3q9JExUq+jxWe1fvszct9oy4Ys3k=) 6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: tlDd7aRrzNeu6uslbfPluCcOk663EDpRsH8KL9nqlD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2240 (0x8c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: May 30 20:44:47 2025 GMT Not After : Jun 6 20:44:47 2025 GMT Subject: CN=683a18bf-ae7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3d:e5:f9:c4:e0:b3:45:0b:08:ad:d6:66:84: 36:0c:75:ec:72:77:ac:a0:1f:d7:60:3a:ea:de:b0: 64:4e:37:3c:4a:89:66:54:ff:8d:25:14:99:ae:c3: c9:5b:2e:3e:fa:57:0e:3c:fa:42:50:d9:d9:ba:59: 1a:3b:18:4b:7d:23:db:cd:9d:8d:a6:47:ba:8f:6b: 2a:d1:90:f4:94:15:06:03:a4:a9:e8:29:19:09:58: c1:12:a7:e2:b8:f1:47:e0:af:4c:8e:5b:e1:29:08: f0:a9:ff:6a:eb:9a:cf:ef:57:c7:b8:4e:f3:12:01: 8d:54:11:29:24:8c:0a:29:4f:63:24:16:e9:19:27: 6d:b7:93:0d:d7:7e:7e:c5:9d:87:cf:2a:d2:89:04: 92:72:0c:e8:7d:25:41:47:ab:99:59:39:61:5c:00: e1:73:be:17:fd:76:99:92:62:93:37:6c:88:14:44: 77:71:c4:e8:3b:1e:e4:e9:bd:74:88:b1:4f:21:b1: 3a:1b:83:de:b0:70:b1:75:19:12:85:df:2f:49:f3: 51:d4:80:be:d8:f0:b4:8b:dd:3d:04:64:70:9b:fd: ea:23:cc:dd:4e:22:ad:e1:3f:dc:04:dc:ac:af:91: 5c:78:9e:29:54:db:6b:2c:df:5e:7c:a2:d4:e7:ea: 07:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:B4:68:C6:4F:28:3C:DF:FA:66:8F:B2:0E:C0:54:0F:37:F8:C1:F6 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:32:16:49:b8:7a:20:49:13:cb:61:55:aa:4f:a2:39:d7:78: a8:de:17:43:d8:5e:10:78:e8:fa:23:e7:37:66:dc:6e:c6:ad: c4:66:69:20:33:50:76:a7:00:95:54:64:1d:4d:d8:bb:36:b3: 60:44:ef:48:4c:d7:da:bc:ea:f6:06:c6:80:ff:5e:50:dd:4e: d0:2c:91:a4:b5:5e:e5:33:90:3b:d8:53:04:a7:7a:b0:94:e2: b4:8e:c7:95:79:c2:83:69:c2:ad:21:12:b1:d7:55:40:77:41: 26:02:8f:28:4c:52:42:1d:92:65:5f:69:d3:fd:9a:24:83:db: 22:c5:7b:02:c7:14:2e:37:92:65:9c:de:2a:b2:c2:9e:13:78: e4:92:59:f1:a7:a5:5e:c4:14:51:50:63:58:84:eb:88:cf:3d: 7d:ab:bb:ea:f3:ae:24:dc:8e:8e:84:06:2f:17:cd:9d:1c:e7: 35:50:44:3e:a6:d0:2d:7c:52:c7:57:28:8f:8a:4e:4f:e5:0a: 85:5d:19:47:89:91:db:33:9a:f8:e9:4d:b0:05:47:dc:97:c9: c3:00:dd:80:79:b2:2b:f4:d8:9b:6a:7b:c2:b7:8c:49:f3:f1: 18:de:33:99:27:88:3a:04:48:e0:ed:38:f4:89:20:d1:7a:b2: da:df:16:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwNTMwMjA0NDQ3WhcNMjUwNjA2MjA0NDQ3WjAYMRYwFAYD VQQDEw02ODNhMThiZi1hZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArT3l+cTgs0ULCK3WZoQ2DHXscnesoB/XYDrq3rBkTjc8SolmVP+NJRSZrsPJ Wy4++lcOPPpCUNnZulkaOxhLfSPbzZ2Npke6j2sq0ZD0lBUGA6Sp6CkZCVjBEqfi uPFH4K9MjlvhKQjwqf9q65rP71fHuE7zEgGNVBEpJIwKKU9jJBbpGSdtt5MN135+ xZ2HzyrSiQSScgzofSVBR6uZWTlhXADhc74X/XaZkmKTN2yIFER3ccToOx7k6b10 iLFPIbE6G4PesHCxdRkShd8vSfNR1IC+2PC0i909BGRwm/3qI8zdTiKt4T/cBNys r5FceJ4pVNtrLN9efKLU5+oHUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMW0aMZP KDzf+maPsg7AVA83+MH2MB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtMhZJuHogSRPLYVWqT6I513io3hdD2F4QeOj6I+c3Ztxuxq3EZmkg M1B2pwCVVGQdTdi7NrNgRO9ITNfavOr2BsaA/15Q3U7QLJGktV7lM5A72FMEp3qw lOK0jseVecKDacKtIRKx11VAd0EmAo8oTFJCHZJlX2nT/Zokg9sixXsCxxQuN5Jl nN4qssKeE3jkklnxp6VexBRRUGNYhOuIzz19q7vq864k3I6OhAYvF82dHOc1UEQ+ ptAtfFLHVyiPik5P5QqFXRlHiZHbM5r46U2wBUfcl8nDAN2AebIr9NibanvCt4xJ 8/EY3jOZJ4g6BEjg7Tj0iSDRerLa3xaV -----END CERTIFICATE-----Generated at Sat May 31 14:41:33 2025 by rpki-client