$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: T7CIlyYIHwP2xI3k78mVR8LwC60dsTbs0DCbFDBrG3M= Subject key identifier: 81:7D:4D:FB:05:EC:9A:EF:55:15:12:0D:5A:87:BB:28:2B:73:A8:FD Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 3664 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 358D Signing time: Sat 14 Jun 2025 14:24:32 +0000 Manifest this update: Sat 14 Jun 2025 14:24:31 +0000 Manifest next update: Sat 21 Jun 2025 14:24:31 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: NiGP5vyTR9ipkp5EVfBHxt/5wO2Wt0nB67sN8NdfzHk=) 2: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: YPxJgAFP2pm+e64iG82yJRkFHNHfja4F2rH7VSVuFpA=) 3: 4BE40306048011F0B0453C78C4F9AE02.roa (hash: 4Ci6FoNbx8kqHd/zZHmZQlAITm4Fel6LtjAZ7twKUas=) 4: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 3QqIb/PpEMe7CSOMb9cfzIUcXW1tet3HABkiD8A3zkU=) 5: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: apyNb0gzlP7QIPlzF+1SGVtUOjpAimi2EUrocnrYZRM=) 6: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: 8JKaEfgtThOrevd/FI1wUsWQCsjDZCsWDfH4rtPvYOM=) 7: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: Yn6iyp3sOHzht7NrUVV1K95CTLrIyR+zeCU6DhPlbi0=) 8: 9538F912A09511EE9616A86EC4F9AE02.roa (hash: UIhH1UdXX1/WldxbBw/5eFdUsW8H5rv3xowCVi4x/js=) 9: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: UB9M+LLNN3sS8I2EFsp8N9BHGeanS2Z+lbFEvYsOTeM=) 10: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: E9Q0DLQxOx2PNLNxJzUPOmEekE0nfR8RNH8+NziMkYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13924 (0x3664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Jun 14 14:24:31 2025 GMT Not After : Jun 21 14:24:31 2025 GMT Subject: CN=684d8620-c0ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7c:53:2e:38:48:66:14:a8:33:cf:5c:b2:e3: 8c:49:02:bb:9d:75:d1:60:1c:74:a4:d9:4f:d5:67: a9:bd:12:3b:ad:26:9d:f7:d7:4f:a8:d5:69:fc:2c: 6f:7c:31:84:61:a4:e4:28:69:ff:b7:d3:cc:22:77: 8e:aa:5b:8c:4f:09:43:71:18:c4:4b:15:d8:9f:a0: a7:ec:bb:e6:5b:f5:43:24:44:4e:a9:b8:bb:60:07: ec:a8:10:f2:4d:a5:93:ad:b2:39:da:fd:5b:30:de: a7:1c:9c:cf:e2:ea:f4:ee:aa:9a:40:fb:52:7e:bb: 00:70:5a:12:c6:4c:49:75:4a:b4:d0:66:cb:67:68: 7f:2a:90:80:65:45:31:1a:a5:87:2d:07:33:2c:79: 9b:56:46:52:5b:ed:6c:b9:82:34:80:d6:20:f1:96: 4e:b1:b7:c8:c1:75:3c:ea:75:5d:e2:0d:b8:3b:43: 55:62:f2:b1:4a:bf:af:2d:5f:67:d9:ac:21:04:41: a2:8a:89:5a:02:00:76:97:c9:b5:6c:a2:7c:9f:6a: a9:13:60:f0:5f:70:85:04:05:0b:e0:46:d7:4e:f0: e0:c2:3d:ec:ed:b6:a6:9a:6b:63:3c:80:58:87:91: 36:38:ea:b9:71:eb:ed:dd:11:bf:db:c0:08:2b:c8: 7a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:7D:4D:FB:05:EC:9A:EF:55:15:12:0D:5A:87:BB:28:2B:73:A8:FD X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:b9:6b:22:f2:38:dd:d3:30:ca:f3:d3:9d:46:3e:ac:ad:20: 5d:c4:0a:57:5b:c0:5b:e6:b4:e2:89:00:18:51:df:f1:22:87: 85:95:81:9e:f4:4f:aa:be:0d:31:80:ff:53:24:ad:ff:f5:69: 5b:0d:2a:a4:81:a7:07:fb:c7:01:91:e4:c9:d7:dd:fe:12:c2: 7d:2a:ba:72:7d:bc:78:3c:69:66:81:66:6b:46:5c:2f:e9:a4: d7:56:70:bd:b3:09:f9:3d:c8:0e:cf:28:7b:90:2e:8d:48:40: 0d:d2:36:13:25:5f:39:94:56:ed:38:a6:32:c5:d0:f2:76:ef: 2e:0a:4e:63:19:80:85:26:87:88:cb:43:81:7f:bb:3f:1e:1c: 03:86:51:fd:d2:ce:21:42:61:68:7e:b8:35:6a:60:f4:4f:aa: 5d:3b:2c:8f:f6:3d:43:01:06:2f:96:80:9b:8a:14:66:ba:e5: c7:fd:ad:9e:43:31:47:2c:89:d5:4b:09:26:a2:01:4a:92:23: 4b:f4:2a:5b:fd:c8:96:70:76:f5:c5:1b:cf:38:85:b7:7b:3b: fe:93:c2:30:82:c2:39:48:fc:7a:a9:38:aa:6c:26:36:36:90: 28:2b:82:bc:a1:40:68:6e:24:b6:ac:cb:e3:5f:77:99:6c:6e: e6:77:a5:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjUwNjE0MTQyNDMxWhcNMjUwNjIxMTQyNDMxWjAYMRYwFAYD VQQDEw02ODRkODYyMC1jMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHxTLjhIZhSoM89csuOMSQK7nXXRYBx0pNlP1WepvRI7rSad99dPqNVp/Cxv fDGEYaTkKGn/t9PMIneOqluMTwlDcRjESxXYn6Cn7LvmW/VDJEROqbi7YAfsqBDy TaWTrbI52v1bMN6nHJzP4ur07qqaQPtSfrsAcFoSxkxJdUq00GbLZ2h/KpCAZUUx GqWHLQczLHmbVkZSW+1suYI0gNYg8ZZOsbfIwXU86nVd4g24O0NVYvKxSr+vLV9n 2awhBEGiiolaAgB2l8m1bKJ8n2qpE2DwX3CFBAUL4EbXTvDgwj3s7bammmtjPIBY h5E2OOq5cevt3RG/28AIK8h6DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIF9TfsF 7JrvVRUSDVqHuygrc6j9MB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkuWsi8jjd0zDK89OdRj6srSBdxApXW8Bb5rTiiQAYUd/xIoeFlYGe 9E+qvg0xgP9TJK3/9WlbDSqkgacH+8cBkeTJ193+EsJ9Krpyfbx4PGlmgWZrRlwv 6aTXVnC9swn5PcgOzyh7kC6NSEAN0jYTJV85lFbtOKYyxdDydu8uCk5jGYCFJoeI y0OBf7s/HhwDhlH90s4hQmFofrg1amD0T6pdOyyP9j1DAQYvloCbihRmuuXH/a2e QzFHLInVSwkmogFKkiNL9Cpb/ciWcHb1xRvPOIW3ezv+k8IwgsI5SPx6qTiqbCY2 NpAoK4K8oUBobiS2rMvjX3eZbG7md6Ub -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:59 2025 by rpki-client