$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: nZ2uhpfQ6HGmg4HzmPGPyT8tmh8fq2Dp9LQrb20PPw8= Subject key identifier: 05:96:81:96:24:94:51:1D:C8:E7:01:A4:DA:17:91:2C:4F:D2:0B:30 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 046C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 0458 Signing time: Wed 18 Jun 2025 17:05:20 +0000 Manifest this update: Wed 18 Jun 2025 17:05:20 +0000 Manifest next update: Wed 25 Jun 2025 17:05:20 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: 5/z4z9QUc+Fpe2yDzTAcIqaM5cb+aAa9/4cQ5Hed8Zc=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: BSTa7sI/Wxp7paF8iFEhYcOXczYzjvqpGs3tFatgPsE=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: EM7EONiwHXhiPFzyfONkaOBX/AROwU9rjV4ETvuVQDQ=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: TLiIvWlCkSUznKaCtTmASc45uAF4Q8KIvn7LhcKxI18=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HMDK7qPjAO3ncQEJzX6SKnODDt4e7glxidti8sfhV1k=) 6: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Z/SQA8GAHBj69mDXnfsLMK8qu+tlZ5LxlzdXDGduFGo=) 7: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: AfGxVPGE0X5aiSEnPrV13VcxuUAvslUoJjsgWW+PD9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1132 (0x46c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Jun 18 17:05:20 2025 GMT Not After : Jun 25 17:05:20 2025 GMT Subject: CN=6852f1d0-b802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:68:f9:0e:e2:2f:e5:f0:ac:5f:b5:7f:00:9c: 57:c6:f0:e4:d2:f9:f1:37:8b:dd:f0:8a:ca:a3:f6: aa:f5:13:83:17:8b:d6:4a:5e:18:b8:31:5e:4f:34: 19:8d:09:0f:e4:b1:3d:26:99:73:f4:dc:73:fb:f6: 9f:28:43:5b:1d:eb:70:fc:76:aa:78:72:7b:74:e1: f6:7c:32:b9:81:f2:10:f3:98:f4:fa:25:61:0d:56: 3e:7f:8b:71:35:68:27:dd:d5:ff:08:a5:6a:c2:48: 91:dc:ee:66:a1:a1:77:53:64:9f:9a:5d:58:b3:ec: 32:aa:6c:f8:73:de:9a:97:91:49:9b:14:c4:3d:f3: c3:fd:46:5c:3c:37:2d:4d:f8:eb:f7:6d:c9:74:18: 45:37:81:ac:f0:cc:ed:ae:66:93:bb:e7:a1:03:b7: d3:61:85:67:ec:38:16:38:c1:08:fc:cf:6b:f0:70: 87:79:84:5a:a9:f0:ef:f8:f3:da:38:c3:5d:07:c5: 4d:7e:72:44:15:b1:c3:a6:34:e2:f4:37:1e:72:1b: 99:62:b0:c2:7f:d2:1d:d7:41:01:64:42:16:7d:8d: ae:be:20:57:68:39:9f:e9:e5:90:b6:30:90:0d:dc: ed:da:e2:94:11:1b:52:82:a9:ee:c4:03:be:2b:1d: e3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:96:81:96:24:94:51:1D:C8:E7:01:A4:DA:17:91:2C:4F:D2:0B:30 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:e0:5a:95:1e:63:ce:54:52:d0:55:ed:a0:15:29:5d:3e:f1: 55:5f:e6:89:9f:7b:78:17:cf:ad:04:88:cb:75:66:35:a2:32: 5c:c1:4b:45:04:af:9d:ab:28:1c:bc:88:28:f9:3f:e5:0f:8e: 13:62:0e:f9:39:b2:d2:f5:f4:f6:dc:84:7f:49:34:4d:7b:19: 82:77:65:c2:ff:26:e1:89:94:ec:db:0f:d2:60:0b:18:a8:90: 1d:e1:ec:7e:92:7f:5f:0f:0c:2c:fd:59:00:97:09:1b:ba:6d: 50:f9:ca:79:d7:1e:f9:06:93:d3:00:b0:c8:ec:bf:3c:96:63: dc:26:df:07:d1:ec:3a:9b:e4:ba:65:86:63:ac:12:47:2c:b9: 60:7d:ec:65:ab:1d:a4:07:89:ec:81:3c:87:1d:f7:9a:c6:45: 91:98:1c:a9:5b:32:96:45:9b:fb:88:4f:dd:2f:86:dd:0e:18: 7b:73:15:e1:fc:51:9d:72:10:c6:a5:d8:5c:33:8e:94:55:a5: 06:a9:04:fc:69:ca:e6:98:6b:e5:58:30:c4:08:97:aa:56:0b: cb:54:33:fa:41:fe:f3:1d:82:2c:37:fa:da:6f:31:d6:5b:57: 92:dc:a6:db:9f:05:da:1e:ff:e9:81:20:48:6e:e0:0e:63:bd: e3:c1:fb:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUwNjE4MTcwNTIwWhcNMjUwNjI1MTcwNTIwWjAYMRYwFAYD VQQDEw02ODUyZjFkMC1iODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWj5DuIv5fCsX7V/AJxXxvDk0vnxN4vd8IrKo/aq9RODF4vWSl4YuDFeTzQZ jQkP5LE9Jplz9Nxz+/afKENbHetw/HaqeHJ7dOH2fDK5gfIQ85j0+iVhDVY+f4tx NWgn3dX/CKVqwkiR3O5moaF3U2Sfml1Ys+wyqmz4c96al5FJmxTEPfPD/UZcPDct Tfjr923JdBhFN4Gs8MztrmaTu+ehA7fTYYVn7DgWOMEI/M9r8HCHeYRaqfDv+PPa OMNdB8VNfnJEFbHDpjTi9DcechuZYrDCf9Id10EBZEIWfY2uviBXaDmf6eWQtjCQ Ddzt2uKUERtSgqnuxAO+Kx3jrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWWgZYk lFEdyOcBpNoXkSxP0gswMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa4FqVHmPOVFLQVe2gFSldPvFVX+aJn3t4F8+tBIjLdWY1ojJcwUtF BK+dqygcvIgo+T/lD44TYg75ObLS9fT23IR/STRNexmCd2XC/ybhiZTs2w/SYAsY qJAd4ex+kn9fDwws/VkAlwkbum1Q+cp51x75BpPTALDI7L88lmPcJt8H0ew6m+S6 ZYZjrBJHLLlgfexlqx2kB4nsgTyHHfeaxkWRmBypWzKWRZv7iE/dL4bdDhh7cxXh /FGdchDGpdhcM46UVaUGqQT8acrmmGvlWDDECJeqVgvLVDP6Qf7zHYIsN/rabzHW W1eS3KbbnwXaHv/pgSBIbuAOY73jwfv7 -----END CERTIFICATE-----Generated at Thu Jun 19 17:47:54 2025 by rpki-client