$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: O4iBzhyELT1b/jUU1LDGLO7hICM/zhVZw/RyisnzHtU= Subject key identifier: 08:10:26:DF:98:33:2D:4E:23:9B:5D:58:50:C8:CB:F8:9B:CB:67:ED Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 07AF Signing time: Thu 12 Jun 2025 20:53:58 +0000 Manifest this update: Thu 12 Jun 2025 20:53:58 +0000 Manifest next update: Thu 19 Jun 2025 20:53:58 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: 9Mt8XFhrLn0bq4YTk1H4d+3240jzw3R3tPspY7VATeQ=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: 5hdkZ5DddWFl8kbLYaaqhPZLjdFJcDk309blXMyKcbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1969 (0x7b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Jun 12 20:53:58 2025 GMT Not After : Jun 19 20:53:58 2025 GMT Subject: CN=684b3e66-7ddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9a:65:9f:60:0e:27:16:99:fa:40:53:3a:06: 81:24:1f:f0:04:38:4f:bf:c5:4b:87:1a:4d:00:b6: d0:a7:af:4e:de:3d:c7:7b:a9:eb:9d:b1:45:0a:0d: 87:c2:af:4c:33:27:99:39:da:41:5e:19:3b:50:48: 5b:85:4f:d8:37:58:ec:3b:8e:36:5f:0a:98:5e:1a: d4:24:0a:0e:2e:b9:fc:a6:aa:c3:a6:54:2b:d9:29: d9:a1:ee:84:ec:fb:54:ab:d6:50:47:34:d1:b2:c5: 93:14:9c:5c:b8:15:f7:bd:fb:32:3a:60:52:91:5f: 15:48:dc:82:6d:07:c4:c5:73:03:c3:61:42:aa:29: 5a:71:cd:3f:56:21:7c:6d:d2:43:0d:af:d8:6e:35: 34:5a:ea:e5:63:f4:54:94:8f:d6:83:40:bf:56:f7: a3:92:da:fe:d8:e0:77:9b:a2:ce:a5:be:7b:33:89: 9b:d6:91:b6:58:ac:4f:80:8d:2c:66:e2:d7:10:7f: cb:f7:19:8d:b2:1a:b1:e9:f8:c0:01:c9:2f:15:db: d7:47:43:6e:1e:ac:d1:2e:d1:0d:6c:f9:2b:7b:b7: be:d8:95:74:63:69:50:52:8b:aa:87:63:4a:48:26: b1:c0:af:34:12:5f:49:0b:13:5c:5d:4f:68:61:87: d8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:10:26:DF:98:33:2D:4E:23:9B:5D:58:50:C8:CB:F8:9B:CB:67:ED X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:a1:b0:44:23:1e:38:77:2f:bb:9b:e8:00:e6:a7:d3:77:6f: 0b:d6:65:b4:a6:53:f5:62:64:cf:74:09:89:d7:04:5b:f1:f7: 6d:c0:01:61:a7:d9:46:84:b8:44:57:47:c8:e1:db:d7:69:6a: 48:2d:d0:6f:5f:a4:2f:89:e0:6a:c3:3f:bb:ab:81:76:07:9f: e2:5a:70:bc:4f:79:39:14:4e:02:48:29:18:5c:eb:dd:b1:06: 53:7c:d1:95:b0:63:6c:33:e8:92:a6:27:39:1f:f9:5e:38:52: fc:ed:aa:fa:46:eb:8e:5f:08:a6:fd:34:2a:03:13:f2:fa:2e: 86:4e:f9:ac:15:fa:09:3e:50:eb:e4:00:a7:89:da:c2:e5:3c: 09:dd:f2:ff:3e:18:ac:ec:4c:85:88:d9:cc:07:3a:8a:42:fc: 00:57:2f:ee:d0:a0:18:ff:ef:22:42:af:6a:e3:ae:ae:8d:6d: 77:7e:c9:5d:64:48:71:cc:30:30:4a:0a:89:5c:e7:34:44:42: db:b9:a0:10:1c:05:87:9e:e7:e7:b9:5e:f7:55:33:f8:46:6b: 87:fb:0c:c2:06:4c:26:e5:c7:a4:dd:55:60:c8:94:22:06:0e: 7f:11:f9:7c:5e:12:b9:ba:0c:ab:11:c1:9d:db:ac:12:2b:b0: d2:9c:55:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUwNjEyMjA1MzU4WhcNMjUwNjE5MjA1MzU4WjAYMRYwFAYD VQQDEw02ODRiM2U2Ni03ZGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5pln2AOJxaZ+kBTOgaBJB/wBDhPv8VLhxpNALbQp69O3j3He6nrnbFFCg2H wq9MMyeZOdpBXhk7UEhbhU/YN1jsO442XwqYXhrUJAoOLrn8pqrDplQr2SnZoe6E 7PtUq9ZQRzTRssWTFJxcuBX3vfsyOmBSkV8VSNyCbQfExXMDw2FCqilacc0/ViF8 bdJDDa/YbjU0WurlY/RUlI/Wg0C/Vvejktr+2OB3m6LOpb57M4mb1pG2WKxPgI0s ZuLXEH/L9xmNshqx6fjAAckvFdvXR0NuHqzRLtENbPkre7e+2JV0Y2lQUouqh2NK SCaxwK80El9JCxNcXU9oYYfY9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgQJt+Y My1OI5tdWFDIy/iby2ftMB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6obBEIx44dy+7m+gA5qfTd28L1mW0plP1YmTPdAmJ1wRb8fdtwAFh p9lGhLhEV0fI4dvXaWpILdBvX6QvieBqwz+7q4F2B5/iWnC8T3k5FE4CSCkYXOvd sQZTfNGVsGNsM+iSpic5H/leOFL87ar6RuuOXwim/TQqAxPy+i6GTvmsFfoJPlDr 5ACnidrC5TwJ3fL/Phis7EyFiNnMBzqKQvwAVy/u0KAY/+8iQq9q466ujW13fsld ZEhxzDAwSgqJXOc0RELbuaAQHAWHnufnuV73VTP4RmuH+wzCBkwm5cek3VVgyJQi Bg5/Efl8XhK5ugyrEcGd26wSK7DSnFVP -----END CERTIFICATE-----Generated at Sat Jun 14 19:17:35 2025 by rpki-client