$ rpki-client -vvf rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft File: 5zsrW0iY5HX_6GmyTTSFzsh90Us.mft (raw, json) Hash identifier: dKWhOt7lZQzLO+gUP0TkdaF3kptYkPKwzC1PnCztRvU= Subject key identifier: 30:03:BD:00:44:3C:18:61:F4:BE:09:A3:B8:F6:11:1D:AF:B7:73:C7 Authority key identifier: E7:3B:2B:5B:48:98:E4:75:FF:E8:69:B2:4D:34:85:CE:C8:7D:D1:4B Certificate issuer: /CN=A9181C93/serialNumber=E73B2B5B4898E475FFE869B24D3485CEC87DD14B Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft Manifest number: 0140 Signing time: Sun 15 Jun 2025 03:32:50 +0000 Manifest this update: Sun 15 Jun 2025 03:32:49 +0000 Manifest next update: Sun 22 Jun 2025 03:32:49 +0000 Files and hashes: 1: 5zsrW0iY5HX_6GmyTTSFzsh90Us.crl (hash: kSb858attbm28R6lNnQNgPLmEDhZKp6RLeHMult5fTU=) 2: A2ED9CA2619D11EE8699DD20C4F9AE02.roa (hash: nKra6kgkDLZMACl29cue2PgvN/WmZ6IhO1y9ruMhiD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.crl rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181C93, serialNumber=E73B2B5B4898E475FFE869B24D3485CEC87DD14B Validity Not Before: Jun 15 03:32:49 2025 GMT Not After : Jun 22 03:32:49 2025 GMT Subject: CN=684e3ee1-4abd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b5:46:12:64:f2:0f:62:9d:54:7f:76:a5:7c: 0c:43:a5:1a:87:5c:53:b9:df:20:08:cb:fa:74:66: 3b:e3:de:b3:f3:4c:e7:08:00:b9:55:79:a9:5f:13: 91:72:51:e9:91:6e:36:3b:db:35:41:e9:3d:60:7d: cb:81:27:8f:00:c3:66:ed:f3:34:47:54:78:e9:8a: 75:61:b4:e1:f9:2f:7f:64:ab:23:bb:bc:4c:b6:2c: 4d:0c:d2:4c:b9:39:c3:9d:fc:fe:11:f8:d8:9d:8f: 9c:26:5e:58:ed:6a:9d:46:94:9e:31:f4:d3:dd:df: e9:64:36:b4:87:bd:e9:2d:35:62:8a:d4:26:a6:dc: dc:b3:fd:87:e2:bc:97:fa:f7:8b:76:2a:7f:fe:e1: fb:9a:e7:fa:35:bd:07:eb:44:f1:42:1a:1e:48:ce: b0:da:34:f2:bd:39:28:7e:f0:23:cc:83:9c:95:2f: 67:e2:13:82:cc:38:e6:19:29:fb:d2:f0:ef:98:20: d7:0a:fe:29:c2:b4:50:6b:c8:bd:7d:21:c9:43:24: ca:50:3c:10:50:ed:a9:c7:1d:6f:42:da:a1:4e:0e: c7:78:dc:c7:b8:56:a0:80:82:12:83:c2:40:6d:00: c7:19:64:d1:ca:a5:ab:80:62:ff:e1:73:b2:c8:4d: b2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:03:BD:00:44:3C:18:61:F4:BE:09:A3:B8:F6:11:1D:AF:B7:73:C7 X509v3 Authority Key Identifier: keyid:E7:3B:2B:5B:48:98:E4:75:FF:E8:69:B2:4D:34:85:CE:C8:7D:D1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5zsrW0iY5HX_6GmyTTSFzsh90Us.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181C93/6D0F640E619711EEA62A3676C4F9AE02/5zsrW0iY5HX_6GmyTTSFzsh90Us.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:7a:6b:cb:bb:9b:4a:cc:c5:7d:25:cb:1d:56:da:23:8e:5b: 04:df:ef:5d:70:29:6b:9c:1e:67:77:b4:6d:e4:f5:99:a2:7e: 2b:7c:db:81:56:43:6b:ba:fa:df:70:65:2d:8e:da:f6:42:9a: 59:32:e2:72:ee:64:bd:2d:f5:8c:dd:c6:22:1e:ba:a1:c5:9a: b0:11:16:8f:7a:74:e7:8a:54:2f:1b:58:96:bc:b5:c4:ee:61: 34:33:ae:23:8f:38:7d:c5:7b:da:18:fb:de:25:03:f9:4b:55: 85:07:74:5e:42:e2:8c:95:da:f7:8f:ad:e4:65:ce:ac:f5:fe: 6e:ec:84:22:50:ae:6f:98:bb:31:eb:01:4b:52:c1:76:1a:5a: 5e:07:78:91:c0:b6:6b:83:7b:f6:ab:40:29:42:ee:0c:5e:c0: 79:d3:7c:05:9b:63:d6:04:22:eb:e5:05:70:a7:5c:91:0b:f2: 6a:f6:ea:50:75:4a:26:ed:01:e4:04:f1:97:f1:97:c0:c5:37: ee:3a:5b:37:b3:c4:95:7c:be:e1:ec:a4:00:87:33:14:aa:ce: 41:1f:f9:22:8b:02:8c:31:c7:04:bc:27:66:03:60:59:6c:b1: 3f:b2:d4:42:59:0f:1b:ea:c9:b0:c8:ea:c0:a5:ab:6c:0f:21: 00:02:d9:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDOTMxMTAvBgNVBAUTKEU3M0IyQjVCNDg5OEU0NzVGRkU4NjlCMjREMzQ4NUNF Qzg3REQxNEIwHhcNMjUwNjE1MDMzMjQ5WhcNMjUwNjIyMDMzMjQ5WjAYMRYwFAYD VQQDEw02ODRlM2VlMS00YWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobVGEmTyD2KdVH92pXwMQ6Uah1xTud8gCMv6dGY7496z80znCAC5VXmpXxOR clHpkW42O9s1Qek9YH3LgSePAMNm7fM0R1R46Yp1YbTh+S9/ZKsju7xMtixNDNJM uTnDnfz+EfjYnY+cJl5Y7WqdRpSeMfTT3d/pZDa0h73pLTViitQmptzcs/2H4ryX +veLdip//uH7muf6Nb0H60TxQhoeSM6w2jTyvTkofvAjzIOclS9n4hOCzDjmGSn7 0vDvmCDXCv4pwrRQa8i9fSHJQyTKUDwQUO2pxx1vQtqhTg7HeNzHuFaggIISg8JA bQDHGWTRyqWrgGL/4XOyyE2yYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDADvQBE PBhh9L4Jo7j2ER2vt3PHMB8GA1UdIwQYMBaAFOc7K1tImOR1/+hpsk00hc7IfdFL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUM5My82RDBGNjQwRTYx OTcxMUVFQTYyQTM2NzZDNEY5QUUwMi81enNyVzBpWTVIWF82R215VFRTRnpzaDkw VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV6c3JXMGlZNUhYXzZHbXlUVFNGenNoOTBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUM5My82RDBGNjQwRTYxOTcxMUVFQTYyQTM2NzZDNEY5QUUwMi81enNyVzBpWTVI WF82R215VFRTRnpzaDkwVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJemvLu5tKzMV9JcsdVtojjlsE3+9dcClrnB5nd7Rt5PWZon4rfNuB VkNruvrfcGUtjtr2QppZMuJy7mS9LfWM3cYiHrqhxZqwERaPenTnilQvG1iWvLXE 7mE0M64jjzh9xXvaGPveJQP5S1WFB3ReQuKMldr3j63kZc6s9f5u7IQiUK5vmLsx 6wFLUsF2GlpeB3iRwLZrg3v2q0ApQu4MXsB503wFm2PWBCLr5QVwp1yRC/Jq9upQ dUom7QHkBPGX8ZfAxTfuOls3s8SVfL7h7KQAhzMUqs5BH/kiiwKMMccEvCdmA2BZ bLE/stRCWQ8b6smwyOrApatsDyEAAtlL -----END CERTIFICATE-----Generated at Sun Jun 15 09:47:53 2025 by rpki-client