$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: douK+LHBFZcl0YsgEUfBqFHz6pcYkbNmH9nI3yyS+x4= Subject key identifier: 8A:CF:63:35:83:C8:B7:E0:65:B3:A1:34:6F:35:FA:6D:E3:9E:64:B9 Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 16C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 16A7 Signing time: Fri 30 May 2025 16:50:34 +0000 Manifest this update: Fri 30 May 2025 16:50:33 +0000 Manifest next update: Fri 06 Jun 2025 16:50:33 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: 3biK3yK00xjnnOGAj/bOVn5GinKaKQCXvkNNlxOSUZI=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5824 (0x16c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: May 30 16:50:33 2025 GMT Not After : Jun 6 16:50:33 2025 GMT Subject: CN=6839e1d9-be57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:78:ab:c6:e0:7b:85:c1:40:6d:67:43:9b:07: 0e:89:a1:53:f5:49:96:18:dd:86:ae:93:95:aa:2c: e0:e6:30:47:5c:b3:90:a4:d6:62:2d:68:21:6c:df: 74:82:f6:40:7e:fd:2f:ad:4d:80:18:f9:ff:14:62: f1:31:ae:30:7f:83:ba:27:f5:74:47:06:97:4e:31: 04:9f:ce:47:43:f4:61:d4:13:66:8c:b5:ba:d3:ea: d4:90:e0:e7:ee:db:9e:04:1c:3a:ee:e5:65:90:7a: a7:e0:2c:be:bc:79:73:b1:a4:ba:4e:e7:56:34:a4: 66:53:2f:41:b1:5a:dd:a0:63:59:71:e3:94:af:bf: cf:e5:4b:0d:57:2b:9e:e4:52:fb:22:dc:43:10:2e: 33:48:a0:6a:df:05:5e:35:00:2c:88:c1:af:43:9b: 7e:01:3e:1e:dc:37:2e:c5:ad:01:1c:68:6f:e7:cc: 5c:91:33:04:8a:17:a3:92:2c:49:fe:8a:91:50:b1: 0a:38:c3:ba:68:1f:47:a2:91:51:7d:11:3b:bf:53: a3:0c:86:4e:39:61:4b:37:63:7c:87:06:fe:34:0e: 23:4d:aa:5f:71:90:91:fc:b8:f2:c1:00:4d:c8:40: 51:21:15:c2:7a:6a:65:ae:37:dc:95:55:37:14:1e: 86:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CF:63:35:83:C8:B7:E0:65:B3:A1:34:6F:35:FA:6D:E3:9E:64:B9 X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:d5:04:b1:75:14:58:9e:a9:19:57:ae:94:be:33:42:72:09: 9a:cb:e2:d7:03:24:c1:35:92:3a:b0:d3:60:52:4c:c0:c5:40: e6:9d:69:c0:a5:8c:cd:b0:54:cb:70:55:4b:9f:a7:2f:be:b7: fa:c2:64:9a:cb:b2:7e:94:d6:f4:53:e3:62:a6:d2:58:32:9f: 51:ac:8e:5e:da:cd:71:9d:fc:2f:d4:e5:a9:36:1d:29:34:1e: f5:74:88:20:e2:cc:d3:70:96:d5:23:4b:d3:8a:04:90:b0:32: 6e:b0:01:be:69:35:b7:cd:f5:09:66:3d:fd:e4:1d:e9:09:53: 75:be:02:0b:0c:e3:2d:3c:04:db:c7:e5:52:67:10:c8:a9:0c: 8a:54:ea:6d:3d:98:5e:35:a6:66:28:a9:a4:1a:bb:c1:87:ee: 87:f2:76:66:43:83:06:a1:05:05:21:f3:29:00:e3:43:9a:7d: 9f:6c:75:b5:bb:e3:a5:36:32:cf:c7:67:01:11:f5:cd:3c:38: 9f:d4:40:96:d7:a2:5f:8b:43:67:2e:a3:fe:e8:3d:3a:dc:cb: 40:df:66:57:5a:8f:63:85:83:e3:6f:e9:6d:5b:58:b8:d7:8f: 4f:02:ed:29:69:72:0d:bd:c6:bc:1d:fa:0e:f0:8e:28:88:01: 27:d0:59:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUwNTMwMTY1MDMzWhcNMjUwNjA2MTY1MDMzWjAYMRYwFAYD VQQDEw02ODM5ZTFkOS1iZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nirxuB7hcFAbWdDmwcOiaFT9UmWGN2GrpOVqizg5jBHXLOQpNZiLWghbN90 gvZAfv0vrU2AGPn/FGLxMa4wf4O6J/V0RwaXTjEEn85HQ/Rh1BNmjLW60+rUkODn 7tueBBw67uVlkHqn4Cy+vHlzsaS6TudWNKRmUy9BsVrdoGNZceOUr7/P5UsNVyue 5FL7ItxDEC4zSKBq3wVeNQAsiMGvQ5t+AT4e3Dcuxa0BHGhv58xckTMEihejkixJ /oqRULEKOMO6aB9HopFRfRE7v1OjDIZOOWFLN2N8hwb+NA4jTapfcZCR/LjywQBN yEBRIRXCemplrjfclVU3FB6GbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrPYzWD yLfgZbOhNG81+m3jnmS5MB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/1QSxdRRYnqkZV66UvjNCcgmay+LXAyTBNZI6sNNgUkzAxUDmnWnA pYzNsFTLcFVLn6cvvrf6wmSay7J+lNb0U+NiptJYMp9RrI5e2s1xnfwv1OWpNh0p NB71dIgg4szTcJbVI0vTigSQsDJusAG+aTW3zfUJZj395B3pCVN1vgILDOMtPATb x+VSZxDIqQyKVOptPZheNaZmKKmkGrvBh+6H8nZmQ4MGoQUFIfMpAONDmn2fbHW1 u+OlNjLPx2cBEfXNPDif1ECW16Jfi0NnLqP+6D063MtA32ZXWo9jhYPjb+ltW1i4 149PAu0paXINvca8HfoO8I4oiAEn0FlK -----END CERTIFICATE-----Generated at Sat May 31 17:26:19 2025 by rpki-client