$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft File: c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json) Hash identifier: RNziySRv6EPc5zW0npGNlHCOHSAdmc4EkZ50YaOSYRA= Subject key identifier: DB:3A:CB:78:6D:DA:68:1A:59:86:7D:7F:C3:1E:C9:96:A9:76:DF:CB Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 034D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft Manifest number: 0349 Signing time: Sun 15 Jun 2025 00:43:14 +0000 Manifest this update: Sun 15 Jun 2025 00:43:14 +0000 Manifest next update: Sun 22 Jun 2025 00:43:14 +0000 Files and hashes: 1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: E4eczSG80I0r2oDJphLGO07cX7CDKA8oFhZYgkDAvo0=) 2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: Py8gHJNmqLpByr4I29rw6Mm8G9sMV9RnjA0oEGne9CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 845 (0x34d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8, serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Validity Not Before: Jun 15 00:43:14 2025 GMT Not After : Jun 22 00:43:14 2025 GMT Subject: CN=684e1722-e1ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5a:d2:de:ba:91:9f:ca:94:06:58:6f:30:35: 54:75:8d:5e:03:f8:cd:e0:be:20:32:65:8f:44:6c: 5d:be:10:54:04:dc:17:69:5f:07:29:23:16:e7:ab: 0f:8e:22:ba:56:c0:c7:07:08:ae:25:c1:79:b0:f5: 0a:03:f8:ba:59:8a:4f:5e:b4:b8:9d:cc:3c:02:c6: 97:5e:a2:c1:00:db:eb:fa:2b:1b:35:75:7a:8a:17: ea:0d:07:51:ea:f3:1e:ba:01:48:b2:72:2b:a3:ef: a2:55:59:dd:b3:28:07:bd:7c:ef:05:60:bf:2a:a7: ef:ab:f7:a1:cf:2d:83:d0:de:e5:c2:47:ea:c4:c4: 41:14:7b:e6:3f:de:05:2f:db:0d:79:79:5a:b4:8a: 10:95:6f:2e:5d:9a:78:4d:11:d2:68:31:75:fb:f4: 33:e0:3b:0d:e8:7f:7f:27:f2:6d:f0:df:c9:55:cd: a4:bf:f8:ad:f6:c2:cd:ca:cd:d6:3e:2b:b4:05:0d: 80:3e:77:3b:a8:09:ac:17:1e:e2:53:c7:1a:57:1a: 70:29:3b:b3:90:90:0a:9e:72:06:93:df:11:8f:5c: 3b:4a:d2:bf:61:29:a9:e8:9f:ff:48:63:de:9f:8f: d0:ab:51:08:0c:ff:26:b1:92:a1:f6:c6:61:b3:27: 7c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3A:CB:78:6D:DA:68:1A:59:86:7D:7F:C3:1E:C9:96:A9:76:DF:CB X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:19:2c:7f:a2:bc:c9:e3:39:b7:7d:e0:18:b8:fb:e8:25:ef: 3a:ec:a7:9f:7f:ab:a1:8b:0e:b6:fd:89:a4:d1:f9:32:2d:cb: 00:c7:1a:7c:5f:07:78:f4:a6:1c:4a:d3:31:ef:f7:55:6b:c4: bd:d5:95:14:3f:85:60:f6:16:96:b2:18:99:d5:26:0b:7a:68: ec:f5:c2:f6:9d:08:6f:0e:87:c5:c4:66:c0:66:e1:31:5a:03: 05:55:58:a0:a5:f3:54:f6:56:72:d4:e3:56:7a:95:7b:82:75: b4:40:1e:da:18:7c:8d:2c:ae:09:19:30:57:36:80:cb:46:b8: e2:1c:cf:a6:e1:41:f6:40:b2:51:58:06:9b:21:86:a8:4b:98: be:d1:a4:b5:cf:e3:bd:ee:42:97:16:41:bc:a4:b6:c0:6c:62: c4:4f:13:a4:d1:a2:1f:7d:76:e8:8c:c3:6e:58:78:d5:4f:03: bf:32:fd:09:e0:91:9c:7b:3a:8a:fc:6f:5d:95:75:b5:66:65: 9e:69:41:06:86:5b:69:8c:91:d2:44:c5:ad:26:d2:8a:37:98: 6e:58:d2:b0:48:61:83:7b:b4:09:2f:52:6d:8d:e6:79:78:2d: 50:29:36:25:b7:46:4b:ef:29:50:27:b9:bc:bc:31:95:1e:9d: 34:0d:71:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjUwNjE1MDA0MzE0WhcNMjUwNjIyMDA0MzE0WjAYMRYwFAYD VQQDEw02ODRlMTcyMi1lMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFrS3rqRn8qUBlhvMDVUdY1eA/jN4L4gMmWPRGxdvhBUBNwXaV8HKSMW56sP jiK6VsDHBwiuJcF5sPUKA/i6WYpPXrS4ncw8AsaXXqLBANvr+isbNXV6ihfqDQdR 6vMeugFIsnIro++iVVndsygHvXzvBWC/Kqfvq/ehzy2D0N7lwkfqxMRBFHvmP94F L9sNeXlatIoQlW8uXZp4TRHSaDF1+/Qz4DsN6H9/J/Jt8N/JVc2kv/it9sLNys3W Piu0BQ2APnc7qAmsFx7iU8caVxpwKTuzkJAKnnIGk98Rj1w7StK/YSmp6J//SGPe n4/Qq1EIDP8msZKh9sZhsyd8KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNs6y3ht 2mgaWYZ9f8MeyZapdt/LMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpU LUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVGSx/orzJ4zm3feAYuPvoJe867Keff6uhiw62/Ymk0fkyLcsAxxp8 Xwd49KYcStMx7/dVa8S91ZUUP4Vg9haWshiZ1SYLemjs9cL2nQhvDofFxGbAZuEx WgMFVVigpfNU9lZy1ONWepV7gnW0QB7aGHyNLK4JGTBXNoDLRrjiHM+m4UH2QLJR WAabIYaoS5i+0aS1z+O97kKXFkG8pLbAbGLETxOk0aIffXbojMNuWHjVTwO/Mv0J 4JGcezqK/G9dlXW1ZmWeaUEGhltpjJHSRMWtJtKKN5huWNKwSGGDe7QJL1JtjeZ5 eC1QKTYlt0ZL7ylQJ7m8vDGVHp00DXFQ -----END CERTIFICATE-----Generated at Mon Jun 16 15:57:41 2025 by rpki-client