$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: nXbjLWMWZUCkCMuydJr5CR7XB/HMJWp+gkb7QGQT3/w= Subject key identifier: 8C:B4:6D:26:CC:2C:2D:DF:12:05:AE:EB:87:E1:8B:7F:35:E0:4A:7D Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 019A Signing time: Sat 31 May 2025 03:50:01 +0000 Manifest this update: Sat 31 May 2025 03:50:00 +0000 Manifest next update: Sat 07 Jun 2025 03:50:00 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: 0L/lxa+5MnpJmgoZIvQcw10u7fEi27WhdwNEPT6lxYU=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: May 31 03:50:00 2025 GMT Not After : Jun 7 03:50:00 2025 GMT Subject: CN=683a7c68-d884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:8c:e5:7a:3b:95:19:7b:4e:e9:5a:f1:6d:8f: da:7c:87:1f:e2:c3:9d:5b:6d:ad:25:99:c7:37:1f: d9:c7:c4:47:3a:f3:4b:1d:1c:dc:3a:90:eb:cd:d5: 7d:78:42:68:f4:db:f5:1f:35:8b:54:89:1d:1f:fd: 60:51:cb:db:cc:43:86:de:4a:c2:bc:8b:1a:06:77: ef:3b:05:ab:b0:78:60:b3:04:f0:36:3b:41:77:17: d3:88:48:70:4e:a6:62:5a:d1:bf:cc:1b:24:a7:4a: 84:62:d4:4c:5c:3f:f9:3b:6d:50:a7:e4:f6:44:54: f0:df:03:52:54:0b:e4:fa:a4:cf:31:b9:c4:72:19: e3:07:f9:69:b0:e5:2c:f1:68:0c:9f:c7:c2:e8:38: 0c:d2:7d:23:36:72:db:64:93:1a:97:91:b6:52:ca: 27:bd:c6:c0:6a:0e:28:b4:4d:90:1f:dd:48:7b:67: f7:6c:81:4d:2a:cc:c6:a6:3b:d1:2a:52:04:53:01: be:f6:a8:33:f9:f2:c5:0f:54:1a:be:82:90:88:b1: fa:28:fa:a3:fc:04:b9:f6:49:2c:a9:b4:d7:e5:32: 9e:0b:1b:f8:1f:b0:b5:18:7c:8a:6f:7a:a4:10:68: 81:e7:20:5b:d4:07:3f:2c:54:35:07:03:c8:bf:25: 90:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B4:6D:26:CC:2C:2D:DF:12:05:AE:EB:87:E1:8B:7F:35:E0:4A:7D X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:38:5d:bb:90:9a:2f:a1:58:3c:2b:d6:26:2d:67:3b:26:38: 0b:4f:15:99:c8:70:d1:eb:83:6d:c2:ff:6f:85:b9:53:01:97: 3f:cf:0e:c7:a8:37:3e:da:fa:cd:19:63:10:21:d2:58:69:99: 24:08:21:2a:ce:6a:74:6f:95:6c:4e:e6:27:5c:83:b2:9c:36: 24:c6:d4:ed:36:dd:00:08:12:6e:7f:bf:a7:31:89:a0:90:62: cc:4b:db:21:e1:b8:4f:39:7e:18:31:0e:c1:18:c5:88:69:3d: 50:3c:de:5d:2c:c9:c8:58:ec:6c:ba:ec:a3:69:c5:21:f6:8c: 9e:ab:8c:79:a3:1c:d8:a3:be:0e:31:78:07:71:07:00:20:7f: c4:e1:4e:94:4a:39:e7:6f:f8:79:98:8b:41:7a:68:af:18:54: 6a:65:d6:1d:42:ca:1d:e9:c3:f1:25:2d:26:06:99:e4:f9:43: 51:22:09:82:86:89:b4:c4:3c:4d:91:5c:d0:2c:4d:0c:04:42: 86:02:f0:4e:67:9c:65:64:f1:b7:cd:dc:8d:2e:05:7f:47:e3: 1d:51:37:9c:c0:18:5d:05:8a:09:78:c8:10:55:e0:b9:ab:5c: 76:75:64:b0:61:5d:ad:e5:1c:ae:2b:89:e0:f4:e0:5f:f6:d5: a6:7d:cc:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwNTMxMDM1MDAwWhcNMjUwNjA3MDM1MDAwWjAYMRYwFAYD VQQDEw02ODNhN2M2OC1kODg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+4zlejuVGXtO6VrxbY/afIcf4sOdW22tJZnHNx/Zx8RHOvNLHRzcOpDrzdV9 eEJo9Nv1HzWLVIkdH/1gUcvbzEOG3krCvIsaBnfvOwWrsHhgswTwNjtBdxfTiEhw TqZiWtG/zBskp0qEYtRMXD/5O21Qp+T2RFTw3wNSVAvk+qTPMbnEchnjB/lpsOUs 8WgMn8fC6DgM0n0jNnLbZJMal5G2UsonvcbAag4otE2QH91Ie2f3bIFNKszGpjvR KlIEUwG+9qgz+fLFD1QavoKQiLH6KPqj/AS59kksqbTX5TKeCxv4H7C1GHyKb3qk EGiB5yBb1Ac/LFQ1BwPIvyWQiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIy0bSbM LC3fEgWu64fhi3814Ep9MB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMOF27kJovoVg8K9YmLWc7JjgLTxWZyHDR64Ntwv9vhblTAZc/zw7H qDc+2vrNGWMQIdJYaZkkCCEqzmp0b5VsTuYnXIOynDYkxtTtNt0ACBJuf7+nMYmg kGLMS9sh4bhPOX4YMQ7BGMWIaT1QPN5dLMnIWOxsuuyjacUh9oyeq4x5oxzYo74O MXgHcQcAIH/E4U6USjnnb/h5mItBemivGFRqZdYdQsod6cPxJS0mBpnk+UNRIgmC hom0xDxNkVzQLE0MBEKGAvBOZ5xlZPG3zdyNLgV/R+MdUTecwBhdBYoJeMgQVeC5 q1x2dWSwYV2t5RyuK4ng9OBf9tWmfcxq -----END CERTIFICATE-----Generated at Sat May 31 16:30:36 2025 by rpki-client