$ rpki-client -vvf rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft File: V5NDbSKpagYTaFEgO7clmE1wsBc.mft (raw, json) Hash identifier: oE73eZKqU/Q1odcJc456L5Ve8WCMuBO/dr60d9oa2kw= Subject key identifier: B4:81:C6:CD:E1:DC:4B:05:CC:81:41:AB:16:A0:41:B3:5D:4E:C9:69 Authority key identifier: 57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 Certificate issuer: /CN=A9159DCD/serialNumber=5793436D22A96A06136851203BB725984D70B017 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft Manifest number: 0161 Signing time: Fri 13 Jun 2025 02:57:21 +0000 Manifest this update: Fri 13 Jun 2025 02:57:21 +0000 Manifest next update: Fri 20 Jun 2025 02:57:21 +0000 Files and hashes: 1: V5NDbSKpagYTaFEgO7clmE1wsBc.crl (hash: cesJPWKA3Mu8Krgqw/pizbUMcDDEObdI6g0ogICA9vQ=) 2: 29D600062C3311EEBFF69B6CC4F9AE02.roa (hash: q7jOTproZWiG/PibVmdnyADWbCK3ghnPut/xoR7KaRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 02:57:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159DCD, serialNumber=5793436D22A96A06136851203BB725984D70B017 Validity Not Before: Jun 13 02:57:21 2025 GMT Not After : Jun 20 02:57:21 2025 GMT Subject: CN=684b9391-111e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:79:e5:cf:f5:c3:79:92:8b:e7:47:27:d8:4a: 11:b2:9c:1b:dc:f7:ec:55:71:11:2d:52:33:fb:e9: 73:a0:bb:4c:7d:0b:e7:f0:e1:cf:7a:35:77:e1:6f: 42:bf:46:a8:c8:72:85:0e:ee:3d:33:ce:f3:73:1b: 6d:02:2e:af:11:1a:f3:d6:90:79:d5:4b:a0:08:bb: c2:63:50:fd:9d:80:c9:d4:33:cc:fd:ad:87:86:76: 5a:3c:07:c8:ed:e3:56:3b:db:5f:6f:42:91:55:e6: d0:c3:ac:89:ba:42:69:11:40:ca:cd:df:d4:7f:46: 78:08:bc:e3:09:c4:ea:bd:33:67:d1:cf:cc:68:74: 3b:76:a7:a1:63:7b:1d:07:9f:54:5e:06:30:bd:68: 1b:17:4f:be:68:a8:b0:32:00:51:74:b6:b3:bb:26: 34:71:c4:7d:2d:85:0d:c0:f8:a3:87:5a:1a:7a:21: 73:04:c3:d5:c4:52:11:67:16:f2:2f:0a:95:d8:4e: 09:13:5b:7d:a6:c3:fb:22:26:b8:68:a6:21:8a:9e: ac:0b:00:24:76:2a:57:0e:cc:8f:ff:21:f1:7a:e6: 0b:65:4b:86:d3:dd:fd:1a:59:14:0d:b1:9e:10:29: a8:98:2d:c0:5d:e4:96:31:56:61:fc:e1:e4:a3:bb: 79:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:81:C6:CD:E1:DC:4B:05:CC:81:41:AB:16:A0:41:B3:5D:4E:C9:69 X509v3 Authority Key Identifier: keyid:57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6a:22:99:ac:8c:d9:be:17:99:04:b5:9d:6d:7d:a8:e5:f9: e1:23:3d:fa:34:5f:a1:5c:44:1d:49:6f:d6:2b:72:80:de:93: 44:9e:a0:c8:11:4b:4b:ab:dc:2d:62:4b:47:ed:05:63:4a:e1: 37:1c:f0:e3:a6:bb:05:bb:f2:b7:61:59:bb:63:4f:6e:f5:75: de:49:6f:57:5f:c0:11:b4:e1:89:8c:22:54:43:b0:5f:6f:d6: 40:1f:22:23:e6:d0:00:34:e2:a4:96:bc:c9:55:7a:39:ea:0f: cc:be:4d:4f:bd:57:ce:af:72:99:6a:11:32:ec:e4:93:b3:de: 5e:c1:82:1f:1d:52:d9:99:18:68:da:5c:92:fc:4b:97:cb:63: a4:d8:2a:32:30:6d:ee:59:e3:1f:a4:a3:60:9f:32:74:08:7c: 55:bb:b9:ee:72:a2:80:0a:d3:64:71:a1:69:8e:be:62:91:59: 15:4f:1c:5c:8e:36:b4:22:31:92:dc:6c:3a:43:19:15:d3:4b: 9b:fb:66:9f:ac:bf:42:7d:4a:a0:3c:60:ba:c5:72:df:1a:4e: c8:3b:de:c7:5d:6d:c4:0a:2e:92:22:dc:46:ef:bd:b7:7e:f9: 1d:9c:49:6d:cc:11:34:88:9f:72:28:eb:ce:17:ef:13:52:41: 96:06:2c:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlEQ0QxMTAvBgNVBAUTKDU3OTM0MzZEMjJBOTZBMDYxMzY4NTEyMDNCQjcyNTk4 NEQ3MEIwMTcwHhcNMjUwNjEzMDI1NzIxWhcNMjUwNjIwMDI1NzIxWjAYMRYwFAYD VQQDEw02ODRiOTM5MS0xMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Xnlz/XDeZKL50cn2EoRspwb3PfsVXERLVIz++lzoLtMfQvn8OHPejV34W9C v0aoyHKFDu49M87zcxttAi6vERrz1pB51UugCLvCY1D9nYDJ1DPM/a2HhnZaPAfI 7eNWO9tfb0KRVebQw6yJukJpEUDKzd/Uf0Z4CLzjCcTqvTNn0c/MaHQ7dqehY3sd B59UXgYwvWgbF0++aKiwMgBRdLazuyY0ccR9LYUNwPijh1oaeiFzBMPVxFIRZxby LwqV2E4JE1t9psP7Iia4aKYhip6sCwAkdipXDsyP/yHxeuYLZUuG0939GlkUDbGe ECmomC3AXeSWMVZh/OHko7t51wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSBxs3h 3EsFzIFBqxagQbNdTslpMB8GA1UdIwQYMBaAFFeTQ20iqWoGE2hRIDu3JZhNcLAX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OURDRC9BMDBENzAwNjJD MjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFnWVRhRkVnTzdjbG1FMXdz QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y1TkRiU0twYWdZVGFGRWdPN2NsbUUxd3NCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OURDRC9BMDBENzAwNjJDMjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFn WVRhRkVnTzdjbG1FMXdzQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdaiKZrIzZvheZBLWdbX2o5fnhIz36NF+hXEQdSW/WK3KA3pNEnqDI EUtLq9wtYktH7QVjSuE3HPDjprsFu/K3YVm7Y09u9XXeSW9XX8ARtOGJjCJUQ7Bf b9ZAHyIj5tAANOKklrzJVXo56g/Mvk1PvVfOr3KZahEy7OSTs95ewYIfHVLZmRho 2lyS/EuXy2Ok2CoyMG3uWeMfpKNgnzJ0CHxVu7nucqKACtNkcaFpjr5ikVkVTxxc jja0IjGS3Gw6QxkV00ub+2afrL9CfUqgPGC6xXLfGk7IO97HXW3ECi6SItxG7723 fvkdnEltzBE0iJ9yKOvOF+8TUkGWBize -----END CERTIFICATE-----Generated at Sat Jun 14 19:02:10 2025 by rpki-client