$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft File: C5I347CGtYw82c5v1JrCYffVJaM.mft (raw, json) Hash identifier: UcKWVawluLbgvwi8SawwrfIpbUc8WhInkO0Qfjq/Rlo= Subject key identifier: 19:69:7F:46:B4:68:9A:0E:52:CD:BB:55:9F:97:85:89:85:02:2E:50 Authority key identifier: 0B:92:37:E3:B0:86:B5:8C:3C:D9:CE:6F:D4:9A:C2:61:F7:D5:25:A3 Certificate issuer: /CN=A91F08FA/serialNumber=0B9237E3B086B58C3CD9CE6FD49AC261F7D525A3 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft Manifest number: 3C Signing time: Sat 31 May 2025 07:06:23 +0000 Manifest this update: Sat 31 May 2025 07:06:22 +0000 Manifest next update: Sat 07 Jun 2025 07:06:22 +0000 Files and hashes: 1: C5I347CGtYw82c5v1JrCYffVJaM.crl (hash: cRoDe3vEUGsIxfMPdHsWLcNRGZ7i4omeum1Onbn9pVY=) 2: B4F27262FA2911EFA783CE2DC4F9AE02.roa (hash: bP9/t2AlBY53g2t6Q5eQ3rldZs73eo2gwKpDvHbyV4Y=) 3: 9C9C1046F7CD11EF9245601CC4F9AE02.roa (hash: DqTJbrCn4Uj3CYLjBwjQvRunEdKhXtsy8A7Y63yZ9r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.crl rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08FA, serialNumber=0B9237E3B086B58C3CD9CE6FD49AC261F7D525A3 Validity Not Before: May 31 07:06:22 2025 GMT Not After : Jun 7 07:06:22 2025 GMT Subject: CN=683aaa6e-32f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:99:0a:80:5a:8e:19:63:b9:62:0f:4d:a0:ab: 78:45:91:e8:2d:7e:6f:0f:61:b4:3f:00:cb:cb:d1: 8e:8c:52:ea:1f:f8:cb:bf:b3:db:e2:96:07:f5:e7: 09:b5:8e:8b:c5:12:ef:94:81:86:9a:49:3c:bf:3a: f7:fc:a3:18:b0:d7:7f:c8:54:dd:2e:d1:10:79:57: 63:84:0d:f5:62:8c:e2:5b:cb:1b:28:74:56:6a:92: b7:6f:18:a8:91:14:ff:b7:a2:19:61:37:87:ca:3d: 43:e5:7f:4b:0b:88:45:ad:f9:48:16:72:32:bd:ee: 56:20:60:0b:93:7e:16:3a:5a:36:f8:08:b0:8f:ae: 61:78:0b:8c:fd:89:96:e4:11:44:46:e6:d0:7a:cd: b5:72:d7:52:14:d7:5e:42:ef:b3:ca:45:f9:06:d0: 18:1e:94:f1:83:2c:b5:53:44:86:54:91:71:32:16: 26:49:17:ec:5d:c0:89:d7:57:c9:00:24:28:da:20: 06:03:07:74:56:3f:33:bb:b7:9c:fe:b2:4c:d8:74: 83:84:38:e1:56:bf:4f:f6:fa:33:0e:a1:eb:00:96: 56:fa:b1:d8:20:24:b4:89:f7:92:65:d3:b7:d2:d0: a4:3c:9b:b1:47:19:62:37:bb:30:c5:7e:dc:38:4a: cd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:69:7F:46:B4:68:9A:0E:52:CD:BB:55:9F:97:85:89:85:02:2E:50 X509v3 Authority Key Identifier: keyid:0B:92:37:E3:B0:86:B5:8C:3C:D9:CE:6F:D4:9A:C2:61:F7:D5:25:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:41:15:65:5e:3e:4e:71:84:73:bf:8a:aa:ad:1c:d2:50:d8: ee:ae:c2:d9:19:9e:c6:88:03:62:04:56:ea:1b:36:d0:cd:1c: 83:01:1a:4d:41:56:17:36:f9:a3:be:ea:c8:01:57:92:be:12: 95:1e:8f:d6:76:50:55:6e:3e:1f:65:84:21:bd:ff:ca:83:9f: 4c:b3:30:be:5c:8f:f2:cf:45:9e:39:11:6f:fc:97:4a:68:9d: 8a:c3:4c:c9:40:a3:b2:1b:f8:c7:c9:32:1f:1a:f4:93:d8:ef: 06:7c:e5:67:93:1f:94:41:08:a5:8b:1b:2e:7d:b2:b9:29:a5: e1:00:5e:58:5c:fb:ec:90:36:3d:73:91:b7:73:3e:1a:6a:94: 0d:e7:9e:50:8b:13:60:7c:e6:11:5c:62:80:74:b2:2f:d2:48: 28:ca:b0:64:9a:31:4b:90:3b:df:19:68:82:39:dd:18:10:aa: d5:8c:86:1a:85:ac:0b:a0:55:63:37:0a:3c:fc:b4:25:36:96: 27:a7:09:fe:ce:af:41:78:65:dc:fa:01:1b:ac:8f:0e:ab:f1: 59:7d:52:ba:8c:fa:1e:4c:80:f1:08:22:2f:51:e5:70:a0:a3: 2b:81:60:93:f6:d2:20:9e:58:cf:f4:ad:73:39:22:ad:b7:09: 4c:50:40:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhGQTExMC8GA1UEBRMoMEI5MjM3RTNCMDg2QjU4QzNDRDlDRTZGRDQ5QUMyNjFG N0Q1MjVBMzAeFw0yNTA1MzEwNzA2MjJaFw0yNTA2MDcwNzA2MjJaMBgxFjAUBgNV BAMTDTY4M2FhYTZlLTMyZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLmQqAWo4ZY7liD02gq3hFkegtfm8PYbQ/AMvL0Y6MUuof+Mu/s9vilgf15wm1 jovFEu+UgYaaSTy/Ovf8oxiw13/IVN0u0RB5V2OEDfVijOJbyxsodFZqkrdvGKiR FP+3ohlhN4fKPUPlf0sLiEWt+UgWcjK97lYgYAuTfhY6Wjb4CLCPrmF4C4z9iZbk EURG5tB6zbVy11IU115C77PKRfkG0BgelPGDLLVTRIZUkXEyFiZJF+xdwInXV8kA JCjaIAYDB3RWPzO7t5z+skzYdIOEOOFWv0/2+jMOoesAllb6sdggJLSJ95Jl07fS 0KQ8m7FHGWI3uzDFftw4Ss1hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGWl/RrRo mg5SzbtVn5eFiYUCLlAwHwYDVR0jBBgwFoAUC5I347CGtYw82c5v1JrCYffVJaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEZBL0QzN0Y2MjVDRTcz RDExRUY4QTA0NjIxN0M0RjlBRTAyL0M1STM0N0NHdFl3ODJjNXYxSnJDWWZmVkph TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQzVJMzQ3Q0d0WXc4MmM1djFKckNZZmZWSmFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw OEZBL0QzN0Y2MjVDRTczRDExRUY4QTA0NjIxN0M0RjlBRTAyL0M1STM0N0NHdFl3 ODJjNXYxSnJDWWZmVkphTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACVBFWVePk5xhHO/iqqtHNJQ2O6uwtkZnsaIA2IEVuobNtDNHIMBGk1B Vhc2+aO+6sgBV5K+EpUej9Z2UFVuPh9lhCG9/8qDn0yzML5cj/LPRZ45EW/8l0po nYrDTMlAo7Ib+MfJMh8a9JPY7wZ85WeTH5RBCKWLGy59srkppeEAXlhc++yQNj1z kbdzPhpqlA3nnlCLE2B85hFcYoB0si/SSCjKsGSaMUuQO98ZaII53RgQqtWMhhqF rAugVWM3Cjz8tCU2lienCf7Or0F4Zdz6ARusjw6r8Vl9UrqM+h5MgPEIIi9R5XCg oyuBYJP20iCeWM/0rXM5Iq23CUxQQLY= -----END CERTIFICATE-----Generated at Sat May 31 16:36:51 2025 by rpki-client