$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft File: 5muokllQFHlLtkUdFCgchAAgYgM.mft (raw, json) Hash identifier: YnTKix/OrMeejzto+STDFMMkf9MJcml7AIGt/gD70E8= Subject key identifier: 0E:31:8D:79:7D:48:25:55:80:6E:F9:4A:D8:0E:74:BE:EA:34:49:14 Authority key identifier: E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 Certificate issuer: /CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Certificate serial: 1475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft Manifest number: 1473 Signing time: Sat 14 Jun 2025 16:50:50 +0000 Manifest this update: Sat 14 Jun 2025 16:50:50 +0000 Manifest next update: Sat 21 Jun 2025 16:50:50 +0000 Files and hashes: 1: 5muokllQFHlLtkUdFCgchAAgYgM.crl (hash: S+09bZzJD3BVTezq9kN0jxYMJMCbd0h0RnHVhsTCZYU=) 2: 3FF298D41AFF11EFB20C2648C4F9AE02.roa (hash: h/4RQkDOLBBPlrQUpebdiQb7wWMHpGVL3kG7tSUKXbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:50:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5237 (0x1475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BA4, serialNumber=E66BA892595014794BB6451D14281C8400206203 Validity Not Before: Jun 14 16:50:50 2025 GMT Not After : Jun 21 16:50:50 2025 GMT Subject: CN=684da86a-14d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:72:28:b6:eb:7c:34:4c:ed:d9:c5:18:19:47: e3:5c:69:ac:7e:8b:5a:61:ad:90:df:ff:20:c2:bf: b0:3f:70:c7:4a:65:e4:72:c6:c3:ba:2a:17:cd:c3: 12:1e:c9:bf:61:fb:2f:47:05:66:52:79:09:35:63: 06:45:38:7e:92:e6:a1:2a:ad:6e:36:80:fb:81:23: 71:5d:ff:9e:94:05:18:49:a3:60:cb:37:44:20:a2: 23:72:98:49:98:b2:f2:07:09:31:99:03:0e:b8:69: cd:f2:88:4a:6e:37:7f:b6:af:0b:f3:11:67:de:b5: 58:a5:52:b1:ed:8d:91:77:70:2e:c2:86:a0:bc:fc: 43:c1:b7:73:a2:6f:f7:8d:f3:ef:51:48:41:64:4f: 70:0f:fa:41:31:51:d5:98:ff:1d:8a:9f:32:8b:0e: 10:90:a3:17:cf:2d:d3:27:f8:f9:37:31:db:55:04: fd:21:55:c9:19:ce:82:37:e4:c3:57:47:50:c2:23: 7d:cf:a2:fe:e5:7c:aa:3d:8c:8c:23:87:84:96:7a: 91:91:9d:72:a1:72:92:1f:90:73:34:9e:8b:52:42: 67:c5:01:13:3e:b3:f5:f3:11:81:da:65:80:8a:86: 9e:cc:01:a1:82:24:e4:4b:34:38:4a:dc:d6:32:bf: e7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:31:8D:79:7D:48:25:55:80:6E:F9:4A:D8:0E:74:BE:EA:34:49:14 X509v3 Authority Key Identifier: keyid:E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:41:e6:37:a4:e8:30:0c:0b:4c:ec:30:e9:7a:94:35:f8:e6: 30:65:58:c9:c3:0c:1e:f2:7d:20:df:92:c5:85:2a:93:79:24: de:df:a4:d3:e9:e7:1c:64:ec:b4:3a:a9:3f:c1:f5:42:1d:3e: 2a:16:76:cf:b7:fa:4b:b1:2f:ba:1c:1b:22:92:3e:8e:ce:ab: 76:70:b3:ad:86:c4:95:8d:10:d2:68:01:e9:c4:95:3d:55:33: a3:09:b0:46:29:05:51:dd:6c:48:45:d2:5f:d6:8e:f9:d0:f4: ba:61:1c:1a:ad:a3:46:83:59:a6:3c:f8:00:b0:b3:19:3e:ec: 81:25:89:ca:3f:3b:e3:a3:8b:2f:3b:bc:d5:b1:73:96:3b:8d: 13:08:94:e6:af:e5:17:30:1e:18:c6:0d:15:d3:e6:48:34:a0: 40:25:a9:9d:4d:7f:2b:f7:c5:68:31:62:51:01:16:dc:18:27: 24:41:f7:c5:c4:69:a7:ce:31:e2:c9:ba:55:5b:cd:a4:55:48: 65:a3:19:73:35:00:d9:5f:43:36:95:5a:94:69:bf:97:d3:0d: b1:ae:48:87:38:ba:20:2e:10:c9:03:31:f2:1a:23:fb:0d:b0: b2:ff:73:c9:e9:3a:10:17:24:9a:c5:50:cc:e7:78:65:8e:22: 24:92:a0:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCQTQxMTAvBgNVBAUTKEU2NkJBODkyNTk1MDE0Nzk0QkI2NDUxRDE0MjgxQzg0 MDAyMDYyMDMwHhcNMjUwNjE0MTY1MDUwWhcNMjUwNjIxMTY1MDUwWjAYMRYwFAYD VQQDEw02ODRkYTg2YS0xNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3Iotut8NEzt2cUYGUfjXGmsfotaYa2Q3/8gwr+wP3DHSmXkcsbDuioXzcMS Hsm/YfsvRwVmUnkJNWMGRTh+kuahKq1uNoD7gSNxXf+elAUYSaNgyzdEIKIjcphJ mLLyBwkxmQMOuGnN8ohKbjd/tq8L8xFn3rVYpVKx7Y2Rd3AuwoagvPxDwbdzom/3 jfPvUUhBZE9wD/pBMVHVmP8dip8yiw4QkKMXzy3TJ/j5NzHbVQT9IVXJGc6CN+TD V0dQwiN9z6L+5XyqPYyMI4eElnqRkZ1yoXKSH5BzNJ6LUkJnxQETPrP18xGB2mWA ioaezAGhgiTkSzQ4StzWMr/n/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4xjXl9 SCVVgG75StgOdL7qNEkUMB8GA1UdIwQYMBaAFOZrqJJZUBR5S7ZFHRQoHIQAIGID MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJBNC80N0U5MjY4NjY4 RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZIbEx0a1VkRkNnY2hBQWdZ Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVtdW9rbGxRRkhsTHRrVWRGQ2djaEFBZ1lnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJBNC80N0U5MjY4NjY4RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZI bEx0a1VkRkNnY2hBQWdZZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbQeY3pOgwDAtM7DDpepQ1+OYwZVjJwwwe8n0g35LFhSqTeSTe36TT 6eccZOy0Oqk/wfVCHT4qFnbPt/pLsS+6HBsikj6Ozqt2cLOthsSVjRDSaAHpxJU9 VTOjCbBGKQVR3WxIRdJf1o750PS6YRwaraNGg1mmPPgAsLMZPuyBJYnKPzvjo4sv O7zVsXOWO40TCJTmr+UXMB4Yxg0V0+ZINKBAJamdTX8r98VoMWJRARbcGCckQffF xGmnzjHiybpVW82kVUhloxlzNQDZX0M2lVqUab+X0w2xrkiHOLogLhDJAzHyGiP7 DbCy/3PJ6ToQFySaxVDM53hljiIkkqCh -----END CERTIFICATE-----Generated at Sun Jun 15 08:44:57 2025 by rpki-client