$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft File: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft (raw, json) Hash identifier: f0WnVKWUTIqx/z1ZXAkON4HoFdwrJgkI7H0w+1vXiaw= Subject key identifier: FE:63:02:F4:50:1E:EA:B4:56:CD:50:1F:B1:B1:A7:68:8D:D0:87:79 Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft Manifest number: 96 Signing time: Sat 31 May 2025 05:54:50 +0000 Manifest this update: Sat 31 May 2025 05:54:50 +0000 Manifest next update: Sat 07 Jun 2025 05:54:50 +0000 Files and hashes: 1: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl (hash: CoHd7iAA9rtdVCy4n9QStcMcobvYO5zYYxKKsI4dssU=) 2: F47CB05C5AE011EFB4CD7428C4F9AE02.roa (hash: dP/ms8awhu5P0L5X1kq3UaHwPpJfEdsfRvw8IFgrpFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62, serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: May 31 05:54:50 2025 GMT Not After : Jun 7 05:54:50 2025 GMT Subject: CN=683a99aa-1da6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a0:b7:8f:67:5d:5c:4a:6f:2e:67:c7:c7:1e: 30:b4:32:2d:05:e8:2d:2c:ef:94:40:5e:b1:0e:91: 6b:40:90:87:0b:f6:ec:05:b3:47:76:e8:bc:e2:30: 60:d7:2a:43:19:7a:7f:b5:c4:d3:33:9e:1f:38:08: 8a:05:56:11:13:d4:de:e1:3c:4a:24:07:a8:ac:93: 88:a4:05:d9:19:32:f7:c8:fd:8e:cf:77:a3:70:61: 9f:ff:d3:81:5d:db:9f:72:af:43:da:ab:8d:be:e6: a1:40:5a:3f:27:df:35:39:a9:5d:d7:de:96:a0:e4: bd:ef:4b:6c:97:07:07:ed:e1:ac:5e:e8:89:a5:c7: c9:04:3c:6a:fa:c8:39:f4:08:7d:c9:da:a2:65:61: c8:08:c0:78:20:76:9c:a6:55:c5:05:ae:0d:7e:51: 70:9d:cb:ef:cc:2f:17:ad:1d:7c:b8:57:93:9c:2a: 56:97:f5:18:80:7f:7b:65:ea:17:1d:00:ea:27:91: 03:7f:3c:2e:51:db:0b:5e:ac:70:ec:a3:40:e3:18: 0e:1f:46:a2:65:f9:97:15:ae:f4:e5:02:8a:4b:36: 8b:53:73:b7:45:06:11:50:c4:ec:73:8e:95:51:b8: c4:31:43:6d:b6:65:60:77:6a:ac:9f:ab:1e:c4:93: 46:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:63:02:F4:50:1E:EA:B4:56:CD:50:1F:B1:B1:A7:68:8D:D0:87:79 X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:11:3e:e6:bd:29:3b:5e:f2:ab:eb:32:fb:a3:6c:02:35:f8: a5:47:8a:28:39:a7:b8:11:cb:f5:11:5c:f4:9f:77:99:51:ee: 6a:48:4d:44:63:46:c2:2b:7d:c6:22:88:a0:19:61:9e:52:15: e9:2c:bd:87:f3:5a:2a:0a:65:12:05:96:4b:cb:ca:7b:b5:2c: bb:0b:a1:cc:f0:44:c0:50:a8:0c:6e:85:8e:d3:28:51:27:ac: 47:a9:87:c4:59:33:7f:33:4c:c8:53:03:9a:f0:bf:e3:99:41: c2:8d:ef:9c:d8:b4:6e:7b:61:c1:c9:c1:b8:e6:da:12:27:b4: 17:37:de:d8:6b:e1:05:73:23:47:d0:53:53:c0:b9:0a:a4:17: bb:59:4f:37:46:cc:60:80:74:65:69:1f:6d:d9:ec:f6:3f:16: 5d:32:1b:12:45:02:57:88:f0:82:f5:6d:a5:3d:c2:6a:e0:b3: 27:97:8f:75:83:1f:09:b3:b6:46:ee:87:6e:48:91:89:d9:ab: 4a:96:ee:87:93:63:71:28:1d:64:61:14:cf:a6:e0:b5:20:6a: e6:48:f9:64:92:f8:36:62:80:da:cc:47:80:e5:d1:6d:e0:e9: b1:76:88:94:34:78:52:14:24:7a:85:f8:53:6e:96:99:15:00: de:6e:7d:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJCNjIxMTAvBgNVBAUTKEU2RjY1RDIyMUI1OTVGNkJBMTNFQjMxNERFRTMzOENB MjQxRTI3MjAwHhcNMjUwNTMxMDU1NDUwWhcNMjUwNjA3MDU1NDUwWjAYMRYwFAYD VQQDEw02ODNhOTlhYS0xZGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6C3j2ddXEpvLmfHxx4wtDItBegtLO+UQF6xDpFrQJCHC/bsBbNHdui84jBg 1ypDGXp/tcTTM54fOAiKBVYRE9Te4TxKJAeorJOIpAXZGTL3yP2Oz3ejcGGf/9OB Xdufcq9D2quNvuahQFo/J981Oald196WoOS970tslwcH7eGsXuiJpcfJBDxq+sg5 9Ah9ydqiZWHICMB4IHacplXFBa4NflFwncvvzC8XrR18uFeTnCpWl/UYgH97ZeoX HQDqJ5EDfzwuUdsLXqxw7KNA4xgOH0aiZfmXFa705QKKSzaLU3O3RQYRUMTsc46V UbjEMUNttmVgd2qsn6sexJNGlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5jAvRQ Huq0Vs1QH7Gxp2iN0Id5MB8GA1UdIwQYMBaAFOb2XSIbWV9roT6zFN7jOMokHicg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkI2Mi9CRDI5QjgxNjVB RTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0WlgydWhQck1VM3VNNHlpUWVK eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI2Mi9CRDI5QjgxNjVBRTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0Wlgy dWhQck1VM3VNNHlpUWVKeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaET7mvSk7XvKr6zL7o2wCNfilR4ooOae4Ecv1EVz0n3eZUe5qSE1E Y0bCK33GIoigGWGeUhXpLL2H81oqCmUSBZZLy8p7tSy7C6HM8ETAUKgMboWO0yhR J6xHqYfEWTN/M0zIUwOa8L/jmUHCje+c2LRue2HBycG45toSJ7QXN97Ya+EFcyNH 0FNTwLkKpBe7WU83RsxggHRlaR9t2ez2PxZdMhsSRQJXiPCC9W2lPcJq4LMnl491 gx8Js7ZG7oduSJGJ2atKlu6Hk2NxKB1kYRTPpuC1IGrmSPlkkvg2YoDazEeA5dFt 4OmxdoiUNHhSFCR6hfhTbpaZFQDebn2M -----END CERTIFICATE-----Generated at Sat May 31 17:48:44 2025 by rpki-client