$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: xH96++YzboNyiOJSL2jlA5zBLDyeH8KxRZMQekVCDMQ= Subject key identifier: 9A:19:1E:C9:D1:A3:0F:3C:CF:DE:74:6D:5E:18:E9:0E:D0:1B:CD:51 Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 03FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 03F7 Signing time: Sat 31 May 2025 00:40:22 +0000 Manifest this update: Sat 31 May 2025 00:40:22 +0000 Manifest next update: Sat 07 Jun 2025 00:40:22 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: AvNrrR+0G3epbMyoQJHXkYbad06iNJV5kE/lrZQqKww=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: X0bJVDOuH3hxzxDqtFhaGE8zyPysnrk6jtT4gfdw6QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1020 (0x3fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400, serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: May 31 00:40:22 2025 GMT Not After : Jun 7 00:40:22 2025 GMT Subject: CN=683a4ff6-5cf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:51:17:3e:f7:8c:0f:d4:c7:34:b3:85:38:23: a4:ec:5b:f5:e8:9c:84:66:07:d9:4b:b3:cc:ff:11: 9b:4b:dc:56:1f:55:fd:02:9a:7f:d1:e5:34:20:f8: b6:2a:ae:6a:d3:3a:fa:b6:20:4a:ae:92:a0:15:d0: d3:8f:f5:72:47:42:21:65:fa:81:2e:5e:35:7e:ff: a6:28:50:47:c7:71:81:a2:89:73:57:a3:d6:60:0f: cb:55:89:b8:d8:a9:bb:68:af:53:0b:5c:c4:72:9d: fe:5e:6a:95:0b:d3:74:64:ed:dd:3d:a4:e7:ec:90: 39:09:59:bb:1c:67:5e:a3:cb:94:57:40:c7:99:b3: 81:0a:08:88:c9:82:c5:42:38:9f:31:ec:46:c9:00: d9:81:ec:20:88:24:99:ae:85:82:f0:6f:9b:43:9f: b3:88:f5:fe:7f:65:c9:b7:1d:94:e2:8a:ae:81:10: 2a:80:8d:7f:ad:76:83:58:c4:92:ee:1a:1f:2c:71: e0:04:04:81:ca:9a:30:ab:32:4c:ca:0a:84:cf:f3: 81:f1:43:24:6b:8f:9d:7d:bf:3d:81:ab:c8:2d:55: 6e:98:fb:4d:dc:28:82:77:1b:36:cc:8e:4f:76:dc: 2e:25:ff:5a:68:3f:35:0b:21:54:c5:94:39:06:7d: bc:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:19:1E:C9:D1:A3:0F:3C:CF:DE:74:6D:5E:18:E9:0E:D0:1B:CD:51 X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:85:1e:aa:9f:cf:c6:cd:7e:ed:a5:00:2a:e9:6b:ad:96:5b: 3b:89:d5:a6:24:36:a5:ba:8f:57:48:95:2a:30:13:61:73:f9: d0:63:60:43:1c:b7:22:37:7a:2a:f1:6d:55:1d:74:b5:8c:32: 15:27:85:fb:f8:4c:68:e3:6f:91:ad:26:c9:8f:13:5c:b3:2c: 8d:e4:5a:8c:d2:bb:ce:a4:18:57:44:45:ae:9c:65:7f:bb:fe: 59:c8:42:db:8f:b6:25:45:97:90:54:12:c0:58:9a:31:93:a2: cf:cf:a6:1a:56:e4:b0:40:cf:b1:c7:6c:20:6e:3b:dd:df:5f: 06:e0:34:8e:58:f8:37:f8:0f:d4:0e:aa:55:9f:dc:2b:57:c4: 83:24:c6:1d:3e:fe:75:11:67:bf:a7:c4:5e:29:c6:fa:41:92: d3:89:e9:ae:d2:2c:65:6f:cf:a0:ed:bc:33:2a:70:f9:1b:cb: 01:11:10:2a:91:bc:9c:d7:bb:e8:10:93:fc:c0:13:eb:c8:b9: 61:ff:98:10:d8:4c:4c:8f:b8:7d:f7:7b:ca:1d:6d:5f:f1:7e: e6:1c:02:c0:08:94:d4:cb:d6:ed:f0:17:c0:fb:9d:93:5b:86: 8f:ee:a6:f5:a5:5e:9c:a4:75:95:0b:66:59:18:fd:75:32:6f: 83:ad:f9:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjUwNTMxMDA0MDIyWhcNMjUwNjA3MDA0MDIyWjAYMRYwFAYD VQQDEw02ODNhNGZmNi01Y2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1EXPveMD9THNLOFOCOk7Fv16JyEZgfZS7PM/xGbS9xWH1X9App/0eU0IPi2 Kq5q0zr6tiBKrpKgFdDTj/VyR0IhZfqBLl41fv+mKFBHx3GBoolzV6PWYA/LVYm4 2Km7aK9TC1zEcp3+XmqVC9N0ZO3dPaTn7JA5CVm7HGdeo8uUV0DHmbOBCgiIyYLF QjifMexGyQDZgewgiCSZroWC8G+bQ5+ziPX+f2XJtx2U4oqugRAqgI1/rXaDWMSS 7hofLHHgBASBypowqzJMygqEz/OB8UMka4+dfb89gavILVVumPtN3CiCdxs2zI5P dtwuJf9aaD81CyFUxZQ5Bn28VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoZHsnR ow88z950bV4Y6Q7QG81RMB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByhR6qn8/GzX7tpQAq6Wutlls7idWmJDaluo9XSJUqMBNhc/nQY2BD HLciN3oq8W1VHXS1jDIVJ4X7+Exo42+RrSbJjxNcsyyN5FqM0rvOpBhXREWunGV/ u/5ZyELbj7YlRZeQVBLAWJoxk6LPz6YaVuSwQM+xx2wgbjvd318G4DSOWPg3+A/U DqpVn9wrV8SDJMYdPv51EWe/p8ReKcb6QZLTiemu0ixlb8+g7bwzKnD5G8sBERAq kbyc17voEJP8wBPryLlh/5gQ2ExMj7h993vKHW1f8X7mHALACJTUy9bt8BfA+52T W4aP7qb1pV6cpHWVC2ZZGP11Mm+Drfnu -----END CERTIFICATE-----Generated at Sat May 31 16:44:55 2025 by rpki-client