$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: vNYafkof4KHljA6xrI+OqKu3XoCk/gTMDCHRuhei5vE= Subject key identifier: 85:36:09:74:E6:6C:56:CD:42:0F:CE:89:DA:B3:12:3A:51:15:04:F1 Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C1D Signing time: Fri 30 May 2025 18:47:17 +0000 Manifest this update: Fri 30 May 2025 18:47:17 +0000 Manifest next update: Fri 06 Jun 2025 18:47:17 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: LMIPGEg4DPEU2Fg2xfSQ7BnqM7Hen+6mznKg7rEZOkA=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 18:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: May 30 18:47:17 2025 GMT Not After : Jun 6 18:47:17 2025 GMT Subject: CN=6839fd35-42e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c0:85:b7:e1:0c:a7:d9:3a:66:1b:5b:b3:e7: 82:87:5a:4f:ff:cf:24:cc:ae:e8:a7:a0:ae:60:5d: 00:31:7b:a4:f7:1a:8b:4f:94:3c:e5:b1:a5:2e:58: 45:0b:c8:8c:0c:24:db:99:6c:23:32:ab:27:ed:5f: aa:b3:a2:ae:08:13:ad:48:80:e0:43:29:32:73:a7: ba:d0:85:36:ae:b1:47:de:5e:68:65:e9:b3:f6:e6: 11:0a:b5:0e:be:ce:86:8e:28:f3:8f:50:e8:26:a8: 66:32:d2:6c:90:ec:13:d5:b5:7b:b8:46:67:79:36: 51:49:a5:b0:0d:6e:d6:6e:f6:ad:3a:c1:2f:e2:7e: ec:b0:d2:15:1d:e9:d2:48:2a:d4:37:2f:7e:77:e7: 0b:8e:aa:d4:c5:39:60:df:ec:0c:de:1b:de:89:5b: b9:c7:eb:86:fc:5e:87:c5:bc:e5:db:33:17:88:1d: b5:ce:2a:62:62:0a:ba:52:9b:2d:a0:d4:36:fc:8a: 65:8c:db:fc:ed:64:79:01:64:43:81:44:9d:e6:26: 76:77:15:ba:bf:9f:5c:48:05:a4:ed:49:bd:9d:bb: 39:1f:f1:1a:17:d6:a5:db:a6:c3:50:bc:77:40:b3: 7a:88:92:33:2f:21:1b:5f:25:33:ac:ae:e6:15:a5: 71:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:36:09:74:E6:6C:56:CD:42:0F:CE:89:DA:B3:12:3A:51:15:04:F1 X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:5f:40:d6:5d:21:2f:af:25:1b:85:84:67:98:e1:04:30:86: ae:7c:60:54:92:b3:77:36:f3:ce:54:85:85:5f:dc:da:c8:e1: c4:ab:3f:7f:64:78:df:ec:7d:d9:7c:92:42:25:58:16:ed:d7: bd:63:46:d1:d8:74:ff:2f:92:92:fd:37:cf:5c:b1:86:b9:0f: 96:0f:3b:12:4d:94:99:1f:38:b4:f8:86:dd:d5:1e:53:9a:64: 5d:d1:56:94:12:ac:b7:8b:90:aa:69:31:67:95:cd:57:20:47: c9:dc:96:6d:33:0c:56:06:bc:4b:40:2f:df:82:8b:b4:2e:31: 57:7b:cf:c1:bc:40:15:1e:30:d3:af:34:1e:fd:7d:62:d3:47: 6f:79:41:a3:ee:e3:17:a7:1e:13:4c:66:f9:6b:8b:10:37:27: 1c:54:73:27:db:5f:17:d4:4f:8c:cc:b4:a3:60:c2:c1:7f:ff: bf:e9:8e:71:3b:ca:bf:e6:ed:d9:70:39:25:8f:bc:d5:c3:27: 01:17:50:1d:9c:0c:7b:98:11:2a:3c:47:db:15:66:9a:87:15: bb:d3:c5:62:59:1f:76:1e:f2:b5:a4:ba:4f:2f:0e:da:c2:f5: 93:bd:62:5f:af:c2:71:6b:5d:63:38:8b:45:9e:08:5f:13:f3: d5:81:34:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUwNTMwMTg0NzE3WhcNMjUwNjA2MTg0NzE3WjAYMRYwFAYD VQQDEw02ODM5ZmQzNS00MmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosCFt+EMp9k6Zhtbs+eCh1pP/88kzK7op6CuYF0AMXuk9xqLT5Q85bGlLlhF C8iMDCTbmWwjMqsn7V+qs6KuCBOtSIDgQykyc6e60IU2rrFH3l5oZemz9uYRCrUO vs6Gjijzj1DoJqhmMtJskOwT1bV7uEZneTZRSaWwDW7WbvatOsEv4n7ssNIVHenS SCrUNy9+d+cLjqrUxTlg3+wM3hveiVu5x+uG/F6Hxbzl2zMXiB21zipiYgq6Upst oNQ2/IpljNv87WR5AWRDgUSd5iZ2dxW6v59cSAWk7Um9nbs5H/EaF9al26bDULx3 QLN6iJIzLyEbXyUzrK7mFaVx/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIU2CXTm bFbNQg/OidqzEjpRFQTxMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYX0DWXSEvryUbhYRnmOEEMIaufGBUkrN3NvPOVIWFX9zayOHEqz9/ ZHjf7H3ZfJJCJVgW7de9Y0bR2HT/L5KS/TfPXLGGuQ+WDzsSTZSZHzi0+Ibd1R5T mmRd0VaUEqy3i5CqaTFnlc1XIEfJ3JZtMwxWBrxLQC/fgou0LjFXe8/BvEAVHjDT rzQe/X1i00dveUGj7uMXpx4TTGb5a4sQNyccVHMn218X1E+MzLSjYMLBf/+/6Y5x O8q/5u3ZcDklj7zVwycBF1AdnAx7mBEqPEfbFWaahxW708ViWR92HvK1pLpPLw7a wvWTvWJfr8Jxa11jOItFnghfE/PVgTTE -----END CERTIFICATE-----Generated at Sat May 31 17:11:30 2025 by rpki-client