$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: OpV75MWLTxv0uI56MwS04vtzV3jhZ7+Al92SfBnLsGI= Subject key identifier: 87:EF:EA:8B:A0:FE:FE:5D:D4:6F:15:CD:9E:D0:D8:39:F3:22:A1:2C Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0B7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0B72 Signing time: Sat 14 Jun 2025 18:53:51 +0000 Manifest this update: Sat 14 Jun 2025 18:53:51 +0000 Manifest next update: Sat 21 Jun 2025 18:53:51 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: oUYRj361fVZMy51XWS+CXZPY9zZ+oWiyjvzJD5UirhE=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 18:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2940 (0xb7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Jun 14 18:53:51 2025 GMT Not After : Jun 21 18:53:51 2025 GMT Subject: CN=684dc53f-7070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fd:af:24:9c:ea:49:00:85:8d:07:68:67:1c: ab:f9:78:e6:1e:97:d6:7d:17:05:fc:cc:31:79:5c: 5a:09:11:71:cb:76:19:b8:91:fa:27:69:df:cf:19: bb:52:ac:f0:50:ff:84:c6:19:81:ef:a1:bc:bf:2e: 93:9a:36:98:20:63:a3:4b:82:c9:08:fc:ec:c3:14: 32:92:07:8c:bc:51:ac:1c:f8:5a:1c:f6:20:6e:05: 7f:e4:9e:1a:ad:da:ac:00:b7:82:d9:bc:e6:ed:3f: 10:ad:8d:34:6c:84:29:3f:a9:b2:8b:ca:4d:98:7b: ee:84:25:12:7b:76:cf:be:22:65:12:29:44:da:94: 46:18:f0:3f:2c:fc:78:3e:e8:82:22:05:71:25:2a: f1:fd:21:77:b9:97:56:f7:c2:37:25:09:aa:ce:40: f7:f3:9a:55:22:c7:4d:1c:35:8e:e3:2d:c7:f1:6f: b5:f7:14:9a:e1:17:64:a6:fe:63:79:4f:85:6a:df: 37:0f:34:b9:f3:bc:8d:a2:1a:60:19:d5:5f:19:86: ae:ee:97:ea:be:2b:b8:0d:7c:eb:56:14:9a:c1:48: e9:cd:58:79:dd:d2:70:4d:58:d0:42:d5:aa:14:b4: 7a:35:17:7e:f0:f3:f8:ff:4f:b7:cb:b0:0f:03:2b: 07:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EF:EA:8B:A0:FE:FE:5D:D4:6F:15:CD:9E:D0:D8:39:F3:22:A1:2C X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:5b:90:3c:67:8b:58:ac:21:30:d1:cf:3b:00:e1:9b:a3:b9: 38:06:ac:af:ad:93:25:00:7a:0c:8b:f5:08:b5:e6:d2:cf:b9: 36:71:d5:f3:b1:61:f0:41:24:ec:2e:0e:83:dd:b7:9d:cc:b0: dd:39:30:19:6b:8d:1e:76:c3:5e:ad:d2:11:6a:b3:c2:95:a0: 7a:5f:e4:74:34:d1:2b:f6:7f:2b:95:b9:44:dd:23:63:80:7d: 19:a2:43:fb:c1:ba:9a:ea:66:f6:48:ac:1d:a5:cc:5a:b5:de: aa:e8:ac:1d:08:63:2a:79:81:27:1e:07:54:72:24:4a:db:f3: 9f:ae:8e:8b:89:05:77:c5:8e:e7:06:1f:90:02:04:7d:c6:2d: 44:b6:7d:51:00:af:31:ff:96:9d:d9:e2:e5:66:53:48:a1:45: 95:67:bb:84:be:f1:b7:98:3d:a3:0c:de:8d:8b:17:f7:8a:f4: a2:2b:b8:38:79:78:49:4c:83:35:c2:ad:ab:51:5c:2e:a1:0b: ff:b8:f8:48:22:30:4b:70:b4:8b:ef:ee:c9:f0:cb:49:a6:d8: 5e:43:70:be:61:7e:14:9d:da:4d:20:29:51:63:7c:5a:70:8d: 3c:81:27:70:06:63:d0:56:13:da:7d:79:0f:b8:a0:18:8b:3c: d3:6b:07:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUwNjE0MTg1MzUxWhcNMjUwNjIxMTg1MzUxWjAYMRYwFAYD VQQDEw02ODRkYzUzZi03MDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1v2vJJzqSQCFjQdoZxyr+XjmHpfWfRcF/MwxeVxaCRFxy3YZuJH6J2nfzxm7 UqzwUP+ExhmB76G8vy6TmjaYIGOjS4LJCPzswxQykgeMvFGsHPhaHPYgbgV/5J4a rdqsALeC2bzm7T8QrY00bIQpP6myi8pNmHvuhCUSe3bPviJlEilE2pRGGPA/LPx4 PuiCIgVxJSrx/SF3uZdW98I3JQmqzkD385pVIsdNHDWO4y3H8W+19xSa4Rdkpv5j eU+Fat83DzS587yNohpgGdVfGYau7pfqviu4DXzrVhSawUjpzVh53dJwTVjQQtWq FLR6NRd+8PP4/0+3y7APAysHrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfv6oug /v5d1G8VzZ7Q2DnzIqEsMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBW5A8Z4tYrCEw0c87AOGbo7k4BqyvrZMlAHoMi/UItebSz7k2cdXz sWHwQSTsLg6D3bedzLDdOTAZa40edsNerdIRarPClaB6X+R0NNEr9n8rlblE3SNj gH0ZokP7wbqa6mb2SKwdpcxatd6q6KwdCGMqeYEnHgdUciRK2/Ofro6LiQV3xY7n Bh+QAgR9xi1Etn1RAK8x/5ad2eLlZlNIoUWVZ7uEvvG3mD2jDN6Nixf3ivSiK7g4 eXhJTIM1wq2rUVwuoQv/uPhIIjBLcLSL7+7J8MtJptheQ3C+YX4UndpNIClRY3xa cI08gSdwBmPQVhPafXkPuKAYizzTawdh -----END CERTIFICATE-----Generated at Sun Jun 15 05:16:40 2025 by rpki-client