$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft File: 5cOmhsg97m0zv-xUHqy0pKCJknk.mft (raw, json) Hash identifier: Py9zazZVwJRd+Ax7AJjfe5Psi4LvWsKPMUs7Doj4whc= Subject key identifier: DD:74:A5:7E:B6:B8:F2:F8:52:1B:B6:47:75:4C:1E:61:B8:AB:F3:92 Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 16D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft Manifest number: 16CC Signing time: Sat 14 Jun 2025 16:36:50 +0000 Manifest this update: Sat 14 Jun 2025 16:36:49 +0000 Manifest next update: Sat 21 Jun 2025 16:36:49 +0000 Files and hashes: 1: 5cOmhsg97m0zv-xUHqy0pKCJknk.crl (hash: lrX2oOJG1Mmcsz8xawAhWJJXLJB8mkOO/Qe/EWkdnF0=) 2: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (hash: vVPzJlO8vaF4Vh+BV9iHSW1TnZ35r0+ZhJx7At1qJd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:36:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5845 (0x16d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6, serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Validity Not Before: Jun 14 16:36:49 2025 GMT Not After : Jun 21 16:36:49 2025 GMT Subject: CN=684da521-30d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d3:66:1f:5f:50:b3:b9:e3:c3:76:12:24:b4: 1e:6e:0f:67:ae:23:df:9a:99:24:f3:fb:f1:da:09: 95:85:27:f1:63:4c:6b:6e:93:99:02:77:a1:63:06: e9:7a:5e:89:07:52:18:ca:fe:46:5a:7e:70:42:2f: c0:98:b6:07:a5:0e:5a:6c:ca:ff:e0:cf:2f:0f:3c: 39:c2:c7:f6:9b:c6:43:e3:43:73:8b:aa:54:99:ea: 40:51:25:bd:e1:db:9b:b0:ef:6a:37:cb:a1:47:45: 5d:9b:76:5f:ee:9c:09:5f:e4:77:9b:49:d1:c8:dd: ca:3b:4e:4f:79:ed:09:f5:51:07:cf:29:70:49:ec: f5:8a:96:0b:16:c4:cc:53:b4:6a:11:30:dd:bd:bb: 96:7f:05:5e:94:6e:15:73:59:96:25:28:24:ef:db: b3:9c:c7:82:74:2d:25:e6:1d:26:25:fd:82:84:c3: 07:2b:29:83:e3:e0:d0:10:0b:c9:ba:45:4d:0f:e9: 9a:e3:99:5c:af:43:ac:23:c8:6d:11:e4:e0:05:07: 4e:e6:18:5a:bf:f1:63:a0:15:84:da:51:b0:2b:fd: 18:6d:90:aa:00:31:68:df:51:20:34:ad:1c:b2:5b: 09:30:02:29:a5:46:7d:da:ad:1d:a8:03:2c:35:2b: c4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:74:A5:7E:B6:B8:F2:F8:52:1B:B6:47:75:4C:1E:61:B8:AB:F3:92 X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:8f:ec:46:4e:7d:4a:ca:a4:d8:68:0f:9b:75:77:28:0d:dc: 02:ba:3b:21:47:52:34:c5:08:ee:a4:08:b5:b6:ab:c6:4e:c1: 4e:44:32:dd:3c:30:09:ec:f7:2c:d6:98:2f:cf:66:d4:f2:6b: a5:8d:47:03:c1:6f:56:14:6e:63:fb:7b:5c:34:8d:ad:c0:f6: e9:ad:e5:dc:36:a0:d1:28:5a:4e:81:10:ee:e3:98:b5:80:08: d6:a7:71:6b:ce:38:65:ae:f5:d5:a8:55:58:72:24:65:96:d9: 8e:99:22:14:72:98:a1:62:b0:24:f1:20:ea:97:fe:ae:2e:b3: 8e:16:8a:15:47:a7:a5:1e:14:fb:a7:b7:ec:1c:5c:9e:10:b9: 3b:3d:b6:27:92:69:6f:f7:9d:f3:7f:b0:96:6b:72:a7:c2:8d: e6:59:07:c5:e2:83:bf:f1:0f:17:4a:b0:74:0d:c3:d6:a9:3c: 51:37:fb:bb:3b:a7:55:d6:98:09:e3:04:ed:3d:c4:9e:79:f8: 64:cc:fd:e6:24:56:c3:18:14:eb:df:04:c6:b7:ef:66:1a:15: ce:b9:6b:77:e1:c8:de:10:57:73:e3:7d:81:46:bf:b5:c1:e1: c6:11:44:5f:64:ca:7f:ab:33:11:5b:ed:60:d7:d4:2c:18:36: bb:df:95:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjUwNjE0MTYzNjQ5WhcNMjUwNjIxMTYzNjQ5WjAYMRYwFAYD VQQDEw02ODRkYTUyMS0zMGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtNmH19Qs7njw3YSJLQebg9nriPfmpkk8/vx2gmVhSfxY0xrbpOZAnehYwbp el6JB1IYyv5GWn5wQi/AmLYHpQ5abMr/4M8vDzw5wsf2m8ZD40Nzi6pUmepAUSW9 4dubsO9qN8uhR0Vdm3Zf7pwJX+R3m0nRyN3KO05Pee0J9VEHzylwSez1ipYLFsTM U7RqETDdvbuWfwVelG4Vc1mWJSgk79uznMeCdC0l5h0mJf2ChMMHKymD4+DQEAvJ ukVND+ma45lcr0OsI8htEeTgBQdO5hhav/FjoBWE2lGwK/0YbZCqADFo31EgNK0c slsJMAIppUZ92q0dqAMsNSvEKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN10pX62 uPL4Uhu2R3VMHmG4q/OSMB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0FBNi85QzNEODdFNkY1MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdt MHp2LXhVSHF5MHBLQ0prbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACj+xGTn1KyqTYaA+bdXcoDdwCujshR1I0xQjupAi1tqvGTsFORDLd PDAJ7Pcs1pgvz2bU8muljUcDwW9WFG5j+3tcNI2twPbpreXcNqDRKFpOgRDu45i1 gAjWp3FrzjhlrvXVqFVYciRlltmOmSIUcpihYrAk8SDql/6uLrOOFooVR6elHhT7 p7fsHFyeELk7PbYnkmlv953zf7CWa3Knwo3mWQfF4oO/8Q8XSrB0DcPWqTxRN/u7 O6dV1pgJ4wTtPcSeefhkzP3mJFbDGBTr3wTGt+9mGhXOuWt34cjeEFdz432BRr+1 weHGEURfZMp/qzMRW+1g19QsGDa735Uu -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:40 2025 by rpki-client