$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft File: 5jRJcTfNjgmazQdoyBzzu0QmUbo.mft (raw, json) Hash identifier: UO+AiqpjA4VqIO9fFxHGOilbc58OMwJN8UY+CEovaAs= Subject key identifier: B7:02:75:12:1E:F8:71:A3:82:EA:2F:DE:46:E4:DB:8D:11:27:6A:E4 Authority key identifier: E6:34:49:71:37:CD:8E:09:9A:CD:07:68:C8:1C:F3:BB:44:26:51:BA Certificate issuer: /CN=A91CF064/serialNumber=E634497137CD8E099ACD0768C81CF3BB442651BA Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft Manifest number: A3 Signing time: Sat 31 May 2025 05:46:16 +0000 Manifest this update: Sat 31 May 2025 05:46:16 +0000 Manifest next update: Sat 07 Jun 2025 05:46:15 +0000 Files and hashes: 1: 5jRJcTfNjgmazQdoyBzzu0QmUbo.crl (hash: 5UvbksBYng2lxb7S/yAGIqhML5fVi+3tVPMaY3vX1uU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.crl rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064, serialNumber=E634497137CD8E099ACD0768C81CF3BB442651BA Validity Not Before: May 31 05:46:16 2025 GMT Not After : Jun 7 05:46:15 2025 GMT Subject: CN=683a97a8-dd73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c6:d1:97:46:47:cb:46:9a:9f:74:e3:12:3c: 0b:7a:0d:ca:cc:cd:fe:64:b6:f9:b8:ef:d9:ed:c3: 30:59:fb:79:e8:f8:e6:65:72:ea:cd:42:9a:8a:4d: 2d:b2:42:55:c7:d6:0a:bb:dc:06:c9:ff:2d:12:8a: 0e:8d:1e:12:03:2e:3e:0d:11:61:52:da:16:5c:65: 15:3e:65:20:ae:56:e9:4c:68:18:70:e0:38:9f:2f: 44:a9:a8:1f:73:29:cf:a2:98:bc:36:54:c3:98:42: 6a:5a:a7:3f:b0:d5:72:28:ad:79:63:89:54:8c:8a: bf:f9:1f:14:1c:b4:06:fe:fc:34:5a:3d:7d:28:1f: 01:6d:78:08:78:8e:44:98:1e:e2:0f:54:57:a3:1f: d6:19:12:82:2d:80:d6:b8:e6:0c:dd:5a:05:bc:b6: 5e:52:0b:07:cd:e6:ef:be:60:76:70:16:a1:10:53: 59:eb:db:9a:9b:74:e9:3e:6b:c3:b0:e1:3f:f2:5c: 6b:23:e6:41:b3:ce:2c:be:32:7a:99:66:f8:2e:38: f2:18:fe:63:93:71:d3:fe:bb:c2:6b:8e:16:8e:da: 38:79:8b:74:3a:59:b2:10:cb:f4:74:f6:be:d6:96: 60:91:b9:76:e2:a6:5e:30:e9:d1:eb:2d:7d:a7:0d: 31:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:02:75:12:1E:F8:71:A3:82:EA:2F:DE:46:E4:DB:8D:11:27:6A:E4 X509v3 Authority Key Identifier: keyid:E6:34:49:71:37:CD:8E:09:9A:CD:07:68:C8:1C:F3:BB:44:26:51:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:7d:11:48:4c:92:f5:e1:34:c2:e2:a4:ec:8b:f0:21:f6:ee: 30:d0:cf:e4:c1:c7:25:67:5d:d7:15:34:20:f3:42:4a:95:c8: 1f:bf:38:a9:34:ae:23:96:45:14:0e:77:61:26:ea:de:63:9b: e2:82:28:b5:39:d2:12:ab:36:4f:1d:1f:38:dc:d8:75:c2:39: 68:b5:5a:4c:d3:6b:23:40:aa:b6:91:ef:16:c4:7c:c4:a5:fa: d5:34:1e:3a:7f:68:a4:93:0e:d6:f2:f0:4f:9b:76:09:98:38: be:7f:8b:5b:51:77:63:96:64:79:54:93:83:b0:1b:52:e6:d5: 2b:d3:82:2f:a6:fc:6a:12:38:62:9b:1d:61:be:49:90:5a:53: d7:00:9e:aa:f3:43:94:06:58:5c:c7:2d:79:18:41:8e:68:1e: 2a:1c:06:b9:bf:b6:45:ba:70:63:e7:b0:60:02:e4:56:90:26: 9a:6c:9d:c5:72:82:5a:b6:ca:b3:82:10:d9:21:28:38:e3:d1: 5f:70:80:26:44:d8:b3:19:11:3a:d4:97:9e:b2:ea:8f:0d:f5: 21:72:96:c6:80:4d:33:9d:86:42:e9:9a:d7:68:38:6d:be:e2: 68:3d:8c:f6:af:c2:e5:39:f9:f3:52:92:43:2f:77:58:ba:50: 25:26:dc:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEU2MzQ0OTcxMzdDRDhFMDk5QUNEMDc2OEM4MUNGM0JC NDQyNjUxQkEwHhcNMjUwNTMxMDU0NjE2WhcNMjUwNjA3MDU0NjE1WjAYMRYwFAYD VQQDEw02ODNhOTdhOC1kZDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MbRl0ZHy0aan3TjEjwLeg3KzM3+ZLb5uO/Z7cMwWft56PjmZXLqzUKaik0t skJVx9YKu9wGyf8tEooOjR4SAy4+DRFhUtoWXGUVPmUgrlbpTGgYcOA4ny9Eqagf cynPopi8NlTDmEJqWqc/sNVyKK15Y4lUjIq/+R8UHLQG/vw0Wj19KB8BbXgIeI5E mB7iD1RXox/WGRKCLYDWuOYM3VoFvLZeUgsHzebvvmB2cBahEFNZ69uam3TpPmvD sOE/8lxrI+ZBs84svjJ6mWb4LjjyGP5jk3HT/rvCa44Wjto4eYt0OlmyEMv0dPa+ 1pZgkbl24qZeMOnR6y19pw0x3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcCdRIe +HGjguov3kbk240RJ2rkMB8GA1UdIwQYMBaAFOY0SXE3zY4Jms0HaMgc87tEJlG6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GQzJGRjlDNjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi81alJKY1RmTmpnbWF6UWRveUJ6enUwUW1V Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVqUkpjVGZOamdtYXpRZG95Qnp6dTBRbVViby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjA2NC9GQzJGRjlDNjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi81alJKY1RmTmpn bWF6UWRveUJ6enUwUW1VYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdfRFITJL14TTC4qTsi/Ah9u4w0M/kwcclZ13XFTQg80JKlcgfvzip NK4jlkUUDndhJureY5vigii1OdISqzZPHR843Nh1wjlotVpM02sjQKq2ke8WxHzE pfrVNB46f2ikkw7W8vBPm3YJmDi+f4tbUXdjlmR5VJODsBtS5tUr04IvpvxqEjhi mx1hvkmQWlPXAJ6q80OUBlhcxy15GEGOaB4qHAa5v7ZFunBj57BgAuRWkCaabJ3F coJatsqzghDZISg449FfcIAmRNizGRE61JeesuqPDfUhcpbGgE0znYZC6ZrXaDht vuJoPYz2r8LlOfnzUpJDL3dYulAlJtz3 -----END CERTIFICATE-----Generated at Sat May 31 17:22:04 2025 by rpki-client