$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: K5ZBpzbVuftAFYCzI2kYmGKqRQV4VckutchV4uqseYc= Subject key identifier: C9:BF:58:79:20:27:86:06:D6:C0:CE:37:CD:7D:A9:FC:E0:6A:F4:90 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 01B3 Signing time: Sat 31 May 2025 02:51:04 +0000 Manifest this update: Sat 31 May 2025 02:51:04 +0000 Manifest next update: Sat 07 Jun 2025 02:51:04 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: FQmu7+8oz/+0qexs1j8KhADpgqljk12JEhTC+gMCxbU=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:51:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: May 31 02:51:04 2025 GMT Not After : Jun 7 02:51:04 2025 GMT Subject: CN=683a6e98-c8f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:39:1d:f1:33:25:cd:0b:0e:d8:9e:41:72:4f: 13:25:89:cb:cc:02:a9:40:2c:60:e0:e5:e1:c9:1d: 93:a5:3a:ad:a0:ea:87:20:ae:d6:c9:cb:48:3b:71: 1b:e3:f3:53:1c:00:ca:7b:59:3d:c7:76:65:e7:9a: c8:42:de:70:94:4b:5f:cc:32:7b:cb:1c:ca:4a:bc: 92:69:5d:3e:5b:a2:29:25:1d:e3:b6:cf:a7:df:a7: a4:b5:aa:06:f7:99:f9:2e:be:e6:ef:01:5a:09:ef: 94:68:26:04:8a:5e:49:08:59:4b:dc:70:bd:25:40: 31:eb:cf:01:f2:7f:db:1a:26:4e:64:df:f0:bd:4e: a9:08:5b:ca:3b:de:57:98:04:db:8c:a8:1e:80:56: f1:3f:77:8e:1a:ca:30:ba:5e:3d:4a:7d:a2:8f:8e: b9:2d:b0:62:5d:f2:89:d5:af:ea:22:02:d1:5a:58: db:b2:e7:8d:da:a0:21:e5:88:96:af:c6:ab:1b:e6: a3:14:3c:76:ae:e4:b2:6c:fa:9a:b1:fb:07:0a:ae: 8e:64:4e:48:b8:a1:7b:bf:38:6a:b6:62:75:34:e0: ae:81:2f:14:41:38:95:6a:3b:4d:49:b4:a7:a1:33: 4b:d7:86:b5:da:c2:f2:a6:05:eb:0a:ae:ce:4c:1c: e9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BF:58:79:20:27:86:06:D6:C0:CE:37:CD:7D:A9:FC:E0:6A:F4:90 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:56:88:64:36:38:6d:61:5c:7d:be:a4:de:92:ee:cc:22:23: 6e:4e:8c:f5:39:9b:34:ff:53:ee:c6:e3:33:65:30:76:a0:80: e6:35:6e:90:94:d9:d6:7a:db:7d:06:df:73:66:55:df:e8:f6: e6:4d:77:49:3c:34:5d:c7:1c:f2:75:0d:40:ee:59:7a:eb:a9: 61:87:26:70:ab:7d:e9:f1:d7:45:49:23:d5:63:03:85:4e:b6: b1:45:aa:16:22:6d:bc:53:a4:59:f0:84:fb:55:40:c0:2e:c4: cd:34:11:cb:a7:83:8c:cb:e2:9d:4c:75:d2:e6:a4:1d:e0:bf: 52:a1:a0:65:3e:39:4b:dc:ed:11:ba:4c:7e:c9:b4:5f:a7:a7: 6e:d1:20:e9:9e:bc:8b:be:0a:e0:23:8c:b7:1d:c9:ba:30:eb: e3:d3:a6:a3:ba:d8:d9:c9:29:99:96:f8:ad:37:3b:5a:fe:4e: e5:f8:0c:1a:9c:e7:78:da:df:47:7e:b7:f5:b0:30:f2:e7:21: 52:b1:73:13:fd:1a:a6:8b:9a:dc:61:a5:62:33:8f:1d:12:59: 62:8b:1b:bf:8e:c6:07:92:4d:4c:e3:91:d8:28:11:ea:24:14: 48:22:f6:d5:15:bf:8d:ac:02:59:62:aa:72:7a:a8:1e:bb:96: 14:bb:d6:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUwNTMxMDI1MTA0WhcNMjUwNjA3MDI1MTA0WjAYMRYwFAYD VQQDEw02ODNhNmU5OC1jOGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Dkd8TMlzQsO2J5Bck8TJYnLzAKpQCxg4OXhyR2TpTqtoOqHIK7WyctIO3Eb 4/NTHADKe1k9x3Zl55rIQt5wlEtfzDJ7yxzKSrySaV0+W6IpJR3jts+n36ektaoG 95n5Lr7m7wFaCe+UaCYEil5JCFlL3HC9JUAx688B8n/bGiZOZN/wvU6pCFvKO95X mATbjKgegFbxP3eOGsowul49Sn2ij465LbBiXfKJ1a/qIgLRWljbsueN2qAh5YiW r8arG+ajFDx2ruSybPqasfsHCq6OZE5IuKF7vzhqtmJ1NOCugS8UQTiVajtNSbSn oTNL14a12sLypgXrCq7OTBzpMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMm/WHkg J4YG1sDON819qfzgavSQMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOVohkNjhtYVx9vqTeku7MIiNuToz1OZs0/1PuxuMzZTB2oIDmNW6Q lNnWett9Bt9zZlXf6PbmTXdJPDRdxxzydQ1A7ll666lhhyZwq33p8ddFSSPVYwOF TraxRaoWIm28U6RZ8IT7VUDALsTNNBHLp4OMy+KdTHXS5qQd4L9SoaBlPjlL3O0R ukx+ybRfp6du0SDpnryLvgrgI4y3Hcm6MOvj06ajutjZySmZlvitNzta/k7l+Awa nOd42t9Hfrf1sDDy5yFSsXMT/Rqmi5rcYaViM48dElliixu/jsYHkk1M45HYKBHq JBRIIvbVFb+NrAJZYqpyeqgeu5YUu9b2 -----END CERTIFICATE-----Generated at Sat May 31 17:17:27 2025 by rpki-client