$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: Ao1DzUZ3M1lRGOw+mA5A4WzxE4/bRmkBAA94eCmqNGs= Subject key identifier: 0F:56:8C:12:C9:CB:EA:9A:16:17:62:92:E1:83:9B:1E:49:D4:A0:0A Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 01A2 Signing time: Sun 15 Jun 2025 03:16:51 +0000 Manifest this update: Sun 15 Jun 2025 03:16:50 +0000 Manifest next update: Sun 22 Jun 2025 03:16:50 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: ffnFTQEJfpNaEruVPk8tKb8iMpLx+3CfgdChMOMiFO4=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 03:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Jun 15 03:16:50 2025 GMT Not After : Jun 22 03:16:50 2025 GMT Subject: CN=684e3b22-a5bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:09:93:12:94:d6:d1:10:be:8c:27:b7:ab:f9: 36:b6:1b:4b:3b:04:ba:23:1e:f6:47:81:8d:fc:79: 3e:3f:d5:c7:7d:19:a5:ad:8e:b8:5d:b6:9c:36:08: 83:2c:e3:c1:dc:88:29:ff:fc:4c:a8:09:79:c1:17: 95:0e:3a:6a:01:36:22:29:f9:42:98:a6:87:26:36: 64:05:dd:dd:71:54:46:a1:0e:7b:2d:44:a5:f1:87: 49:5d:cc:f3:ae:1a:30:63:ba:35:04:6d:ee:b4:3c: d9:2c:4e:de:7e:f2:06:eb:2a:7b:75:b1:91:b4:3b: 6d:11:0d:84:89:71:ca:9a:4d:18:0d:aa:e0:79:f6: 15:a6:15:01:db:dc:91:b5:ff:c3:b2:6d:44:73:7b: 4c:2a:67:f0:42:b2:1c:06:3b:62:76:3d:26:0b:3a: ac:75:eb:fe:38:dd:1d:b0:b0:69:2b:39:2b:48:84: ef:c7:55:eb:97:0c:e2:54:a0:fd:71:51:3a:15:71: 65:4e:52:dc:6e:bd:35:1b:cd:ec:f5:c6:ff:99:06: b1:6a:36:63:a5:b3:ef:77:41:e0:82:8a:12:01:7a: fe:08:45:4d:12:89:8a:c3:5c:bd:8b:b1:28:ab:39: d7:60:88:47:7c:ef:47:04:c0:04:5f:24:27:8b:97: 5f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:56:8C:12:C9:CB:EA:9A:16:17:62:92:E1:83:9B:1E:49:D4:A0:0A X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:b3:13:c2:62:17:ef:bc:35:7a:3a:50:bb:79:97:95:2b:b1: 9d:d9:c3:94:f2:1d:ad:62:9f:9b:d8:c0:ce:c5:ee:fc:d5:bc: da:ea:8e:96:d1:c9:79:ff:34:f8:bb:08:e1:7f:42:3f:55:b4: 45:91:50:77:8f:c3:a7:b3:7f:6d:b6:86:58:66:35:b4:de:c8: b2:dd:9a:05:35:84:6e:7d:4d:9a:1c:8c:db:fb:a2:8a:c0:57: 46:36:e2:02:20:6f:f0:27:d7:83:53:85:a3:c4:f8:2d:b9:2b: c9:fc:6e:f5:a5:0d:b4:67:8d:cf:c5:50:2a:2b:d8:21:0a:09: f8:a0:61:85:9a:28:77:7c:83:c3:23:45:ac:96:0c:6b:07:7a: c8:b3:b7:61:0c:b9:c8:98:4c:60:cb:f2:7a:e0:91:c0:f2:46: aa:e4:fa:b9:45:1d:b9:6c:f8:46:8e:94:bc:9e:af:c7:20:8d: 4b:ac:1c:f1:53:54:ea:3c:75:0d:37:2e:72:69:70:7d:51:1a: 91:e1:7c:37:03:8d:d2:8a:02:a2:18:1f:22:52:23:6a:02:8b: af:0e:c4:5b:86:af:f6:bb:cf:b1:26:b3:25:56:0b:9c:f6:b9: f2:01:19:f5:e2:77:0b:a1:26:c8:2e:2d:ed:ff:ff:52:39:d7: 00:a8:8f:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwNjE1MDMxNjUwWhcNMjUwNjIyMDMxNjUwWjAYMRYwFAYD VQQDEw02ODRlM2IyMi1hNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugmTEpTW0RC+jCe3q/k2thtLOwS6Ix72R4GN/Hk+P9XHfRmlrY64XbacNgiD LOPB3Igp//xMqAl5wReVDjpqATYiKflCmKaHJjZkBd3dcVRGoQ57LUSl8YdJXczz rhowY7o1BG3utDzZLE7efvIG6yp7dbGRtDttEQ2EiXHKmk0YDargefYVphUB29yR tf/Dsm1Ec3tMKmfwQrIcBjtidj0mCzqsdev+ON0dsLBpKzkrSITvx1XrlwziVKD9 cVE6FXFlTlLcbr01G83s9cb/mQaxajZjpbPvd0HggooSAXr+CEVNEomKw1y9i7Eo qznXYIhHfO9HBMAEXyQni5dfkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9WjBLJ y+qaFhdikuGDmx5J1KAKMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgsxPCYhfvvDV6OlC7eZeVK7Gd2cOU8h2tYp+b2MDOxe781bza6o6W 0cl5/zT4uwjhf0I/VbRFkVB3j8Ons39ttoZYZjW03siy3ZoFNYRufU2aHIzb+6KK wFdGNuICIG/wJ9eDU4WjxPgtuSvJ/G71pQ20Z43PxVAqK9ghCgn4oGGFmih3fIPD I0WslgxrB3rIs7dhDLnImExgy/J64JHA8kaq5Pq5RR25bPhGjpS8nq/HII1LrBzx U1TqPHUNNy5yaXB9URqR4Xw3A43SigKiGB8iUiNqAouvDsRbhq/2u8+xJrMlVguc 9rnyARn14ncLoSbILi3t//9SOdcAqI8y -----END CERTIFICATE-----Generated at Sun Jun 15 18:04:06 2025 by rpki-client