$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: spL+6xvx+9FZi9GGR8Suh2N/jKhdTmS6g3YgGn4qq/8= Subject key identifier: E2:3D:6A:4D:89:EC:39:49:F1:A2:03:13:2B:FB:36:77:0B:2D:CA:33 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: AA Signing time: Sun 01 Jun 2025 05:47:35 +0000 Manifest this update: Sun 01 Jun 2025 05:47:35 +0000 Manifest next update: Sun 08 Jun 2025 05:47:35 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: VqfyfFtaXvnioLz13gHABHuThx7S1iso7/JhfJ2jUl8=) 2: 01F62A6438F011EF9A82662BC4F9AE02.roa (hash: 6ibBV+FsUpvviGFZhtbUaWu715IOaDD6qWu96emn7VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Jun 1 05:47:35 2025 GMT Not After : Jun 8 05:47:35 2025 GMT Subject: CN=683be977-aea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:76:33:31:7f:31:91:d3:41:22:af:48:c1:4a: e6:c0:7c:46:ac:4c:dc:3e:15:70:ad:3b:3c:00:c4: 6c:11:30:0a:33:5e:27:03:bf:65:80:84:74:6f:4a: 29:d6:08:fc:37:c4:3c:d1:3f:c4:8f:0e:70:4a:d0: e2:06:71:4a:8e:f4:f5:0e:6b:c5:bd:4e:04:ac:bc: 03:c2:f3:00:5e:5e:b0:cb:e9:b8:2d:99:4a:28:50: 87:6b:b2:62:d2:ab:dc:22:82:73:88:e3:6c:cb:5f: 9a:16:35:de:b2:73:e6:63:ae:a6:83:9d:81:5a:e7: f5:dd:1e:82:4b:4d:26:ba:4f:66:5e:e5:cd:82:0e: e2:53:23:ce:ee:c2:f1:c3:0d:cf:a8:10:19:c8:4e: af:98:47:a8:fc:4c:6d:0c:5c:44:66:5d:3d:b3:6b: 3f:98:ad:10:3e:0f:1a:64:89:7e:ac:27:0f:39:1a: 65:be:17:00:42:ab:d2:ff:54:6a:60:fd:37:e8:fc: 4e:62:24:16:90:d9:99:d1:b7:db:f1:22:27:1b:06: ac:9e:ca:02:70:52:1e:bf:bb:07:39:58:4d:c8:b6: 96:55:d8:6c:b6:bb:08:0a:f3:46:16:c3:fd:9a:ed: d0:d5:62:00:07:52:9c:bc:0b:41:29:c0:80:0e:1b: 57:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3D:6A:4D:89:EC:39:49:F1:A2:03:13:2B:FB:36:77:0B:2D:CA:33 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:4a:04:3b:45:f3:8d:42:9a:82:be:cf:96:7b:23:aa:19:cd: 32:d2:1c:eb:af:22:5e:28:cb:f5:b9:9c:20:09:11:dd:1d:0f: 6c:3c:00:d9:81:4d:2c:84:bd:20:b8:e9:69:54:e8:4e:44:06: 5e:4f:6a:43:0a:0d:af:b5:b4:b3:b1:2f:01:f3:98:48:44:c7: c4:8a:a1:c4:4e:fe:b4:9e:c4:e3:15:c8:e7:e2:f8:cf:38:6f: 7a:ec:10:76:39:61:2c:16:35:3a:bf:09:79:99:72:8a:45:ea: 4c:6b:ad:75:fe:14:38:cb:90:f3:17:0f:05:40:da:f4:15:ae: f1:7b:9b:75:cf:2d:41:ed:1d:b7:b7:17:c7:02:f3:07:63:97: 54:4f:29:9b:33:08:d7:f2:36:d1:63:e5:44:09:0c:64:19:e2: 52:80:46:bd:f3:28:74:2f:6b:b5:fc:14:0b:62:40:9c:fa:5a: b3:1a:2d:f6:58:28:4c:28:3b:f8:fd:16:dc:f5:ef:a7:8b:4d: ba:58:21:1b:78:8c:4b:30:12:5a:82:2f:64:5a:2a:64:46:84: 79:01:f4:ca:2e:5c:d8:ac:89:88:8f:1f:73:e2:dc:f7:c3:e2: 44:41:8e:7f:c9:8a:65:17:2f:35:57:d8:66:ad:e2:2d:bc:a9: e1:df:4f:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUwNjAxMDU0NzM1WhcNMjUwNjA4MDU0NzM1WjAYMRYwFAYD VQQDEw02ODNiZTk3Ny1hZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nYzMX8xkdNBIq9IwUrmwHxGrEzcPhVwrTs8AMRsETAKM14nA79lgIR0b0op 1gj8N8Q80T/Ejw5wStDiBnFKjvT1DmvFvU4ErLwDwvMAXl6wy+m4LZlKKFCHa7Ji 0qvcIoJziONsy1+aFjXesnPmY66mg52BWuf13R6CS00muk9mXuXNgg7iUyPO7sLx ww3PqBAZyE6vmEeo/ExtDFxEZl09s2s/mK0QPg8aZIl+rCcPORplvhcAQqvS/1Rq YP036PxOYiQWkNmZ0bfb8SInGwasnsoCcFIev7sHOVhNyLaWVdhstrsICvNGFsP9 mu3Q1WIAB1KcvAtBKcCADhtXxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOI9ak2J 7DlJ8aIDEyv7NncLLcozMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1SgQ7RfONQpqCvs+WeyOqGc0y0hzrryJeKMv1uZwgCRHdHQ9sPADZ gU0shL0guOlpVOhORAZeT2pDCg2vtbSzsS8B85hIRMfEiqHETv60nsTjFcjn4vjP OG967BB2OWEsFjU6vwl5mXKKRepMa611/hQ4y5DzFw8FQNr0Fa7xe5t1zy1B7R23 txfHAvMHY5dUTymbMwjX8jbRY+VECQxkGeJSgEa98yh0L2u1/BQLYkCc+lqzGi32 WChMKDv4/Rbc9e+ni026WCEbeIxLMBJagi9kWipkRoR5AfTKLlzYrImIjx9z4tz3 w+JEQY5/yYplFy81V9hmreItvKnh308d -----END CERTIFICATE-----Generated at Mon Jun 2 20:50:10 2025 by rpki-client