$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: ZV5J2DRFSG/VmluOuxYXh6Se7nZIqhaCaGSyflHGe4s= Subject key identifier: 7C:E5:20:41:A3:1F:6D:F1:37:64:47:9C:28:50:A3:2B:89:19:C6:68 Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0C4A Signing time: Fri 30 May 2025 18:38:22 +0000 Manifest this update: Fri 30 May 2025 18:38:22 +0000 Manifest next update: Fri 06 Jun 2025 18:38:22 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: 2KJ/3B5jQGcuizxqtnxIAWzsSaYtVD5IAk0LEBMeulo=) 2: F3529CDCAE1511EE92D99E46C4F9AE02.roa (hash: hTD7DjMK2EnPCWqJypUdiJk7jUHRPt10GcfYU8sN4po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: May 30 18:38:22 2025 GMT Not After : Jun 6 18:38:22 2025 GMT Subject: CN=6839fb1e-5ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0c:91:a3:35:f0:02:4e:da:d1:b5:c3:68:ff: 1f:f3:46:a0:36:79:c3:10:93:fa:f0:fb:2c:65:78: 62:20:76:18:f0:a1:56:89:d6:42:70:dd:20:c6:ed: bc:1b:0f:2e:60:f8:9f:b0:ec:6e:63:14:c9:ea:5a: c3:7e:ae:f6:8b:af:da:e4:a7:bc:f1:a6:d6:53:11: 0d:6d:0e:af:4e:67:b3:b2:a2:e5:e0:fb:7a:79:70: b2:5b:bd:7a:16:3b:5e:0c:4c:8a:f4:b7:6c:cb:ed: 15:29:68:f8:ad:99:c5:da:33:ca:83:15:a9:0d:ce: f7:bf:26:de:0e:b8:4a:9d:49:6c:ac:72:0b:93:ba: 67:7d:bf:7c:13:d6:11:cb:4b:7c:05:32:d8:9c:6e: 8f:fc:3e:07:6b:a7:99:98:13:41:c7:99:b5:a4:a7: e0:03:35:15:3e:f3:c1:bb:63:8d:20:57:0d:2a:fb: 7b:a8:42:11:48:9b:81:53:8c:70:78:4c:8d:97:36: c4:77:b5:7c:3f:51:87:11:1f:84:e8:93:3b:43:5b: 4f:48:23:65:cb:39:fc:62:1a:e2:20:14:d9:0e:72: 8b:72:dc:80:1a:86:43:09:1e:06:2e:d4:e1:d3:c0: cd:ea:10:47:0e:a1:64:51:06:5f:5a:f1:77:5e:d1: 1b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E5:20:41:A3:1F:6D:F1:37:64:47:9C:28:50:A3:2B:89:19:C6:68 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:54:44:62:59:d9:8b:78:3a:d6:9d:c6:b3:82:5f:45:73:cc: c3:f2:63:40:d2:b9:4c:77:33:d5:d0:41:ae:3e:a0:60:af:6f: 61:9d:f1:01:6f:73:a6:69:8e:df:47:9a:d9:cd:48:cc:fb:32: 54:16:37:7b:8a:e9:bc:20:20:6f:e5:b5:44:73:17:a3:b7:a7: 20:d0:fa:47:ab:1e:38:98:ec:5a:67:56:14:83:ea:c5:f1:ab: af:83:dd:64:30:27:77:b7:9d:38:eb:53:ba:0b:ef:76:da:5a: 44:e0:6a:15:a6:5e:52:b3:f3:14:3b:d8:6f:18:7b:ac:4f:6c: 6a:24:4f:44:dc:ff:f9:75:97:ce:0a:13:12:a3:af:82:ef:99: a4:78:e6:d6:d1:0c:d3:23:a8:d8:d2:18:4b:28:a5:a8:da:5f: f7:a8:19:59:57:c5:71:a8:af:4f:8b:19:4a:1d:d3:17:70:28: 8a:76:db:ae:32:6e:12:0a:e2:2c:a3:ec:8f:62:60:90:d4:b3: 42:5b:44:c2:e4:a8:5c:40:c9:58:c1:e8:a7:13:17:6f:97:d6: 09:73:a3:e5:f1:a9:bf:32:52:87:42:be:bb:49:96:3e:0f:70: a2:2d:3e:52:fb:1e:3c:07:32:0b:7d:c5:6d:4e:d8:d4:4d:4c: 82:0e:e0:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjUwNTMwMTgzODIyWhcNMjUwNjA2MTgzODIyWjAYMRYwFAYD VQQDEw02ODM5ZmIxZS01ZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgyRozXwAk7a0bXDaP8f80agNnnDEJP68PssZXhiIHYY8KFWidZCcN0gxu28 Gw8uYPifsOxuYxTJ6lrDfq72i6/a5Ke88abWUxENbQ6vTmezsqLl4Pt6eXCyW716 FjteDEyK9Ldsy+0VKWj4rZnF2jPKgxWpDc73vybeDrhKnUlsrHILk7pnfb98E9YR y0t8BTLYnG6P/D4Ha6eZmBNBx5m1pKfgAzUVPvPBu2ONIFcNKvt7qEIRSJuBU4xw eEyNlzbEd7V8P1GHER+E6JM7Q1tPSCNlyzn8YhriIBTZDnKLctyAGoZDCR4GLtTh 08DN6hBHDqFkUQZfWvF3XtEbzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzlIEGj H23xN2RHnChQoyuJGcZoMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrVERiWdmLeDrWncazgl9Fc8zD8mNA0rlMdzPV0EGuPqBgr29hnfEB b3OmaY7fR5rZzUjM+zJUFjd7ium8ICBv5bVEcxejt6cg0PpHqx44mOxaZ1YUg+rF 8auvg91kMCd3t50461O6C+922lpE4GoVpl5Ss/MUO9hvGHusT2xqJE9E3P/5dZfO ChMSo6+C75mkeObW0QzTI6jY0hhLKKWo2l/3qBlZV8VxqK9PixlKHdMXcCiKdtuu Mm4SCuIso+yPYmCQ1LNCW0TC5KhcQMlYweinExdvl9YJc6Pl8am/MlKHQr67SZY+ D3CiLT5S+x48BzILfcVtTtjUTUyCDuBi -----END CERTIFICATE-----Generated at Sat May 31 16:38:08 2025 by rpki-client