$ rpki-client -vvf rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft File: 5hI_ServZkwi-UzV67rqztOHoW8.mft (raw, json) Hash identifier: qPIl1txpuvK6t0KB5BrzlBvOTjb1WoC0BxeuDihSd3g= Subject key identifier: 69:3E:4D:DE:59:FA:F0:9A:72:6C:07:A8:FD:21:9C:62:12:51:F3:BB Authority key identifier: E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F Certificate issuer: /CN=A91B861D/serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Certificate serial: 0606 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft Manifest number: 0600 Signing time: Thu 12 Jun 2025 22:30:13 +0000 Manifest this update: Thu 12 Jun 2025 22:30:12 +0000 Manifest next update: Thu 19 Jun 2025 22:30:12 +0000 Files and hashes: 1: 5hI_ServZkwi-UzV67rqztOHoW8.crl (hash: 5a+cVkWElfyw57HBupY/QPexpN5tx6dVHW9iqS5CGxk=) 2: 2496CA7E557E11EF8AC47D15C4F9AE02.roa (hash: Si88NstkAfEiBBnqBOs/DXYPITXuyjYlx7/3WbtXefA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B861D, serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Validity Not Before: Jun 12 22:30:12 2025 GMT Not After : Jun 19 22:30:12 2025 GMT Subject: CN=684b54f5-e8a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7c:b3:e9:31:65:55:00:8d:e1:74:08:95:a9: df:29:65:12:93:53:57:0c:6d:22:ca:d4:43:b0:fb: 24:6e:3c:23:ee:cd:9b:d3:85:27:05:c5:af:b2:75: 9d:df:e1:c9:b7:cc:b9:9c:14:f3:51:f6:d1:b9:8a: f7:c4:16:e8:e6:74:4c:4a:2e:f2:0a:19:14:7d:8f: e0:42:e6:e4:db:68:6f:11:52:fc:42:18:94:c4:e9: e0:bb:88:02:29:2e:69:89:93:fa:74:2e:b2:15:b9: ec:57:56:a8:0c:bd:45:79:25:b4:da:0a:7b:03:a5: 4e:fb:54:2e:eb:a0:3d:33:03:c9:58:2c:ef:ce:bb: 47:a1:90:94:c0:2a:d2:73:2f:cd:73:ec:fa:de:25: c0:67:b1:21:8d:9c:0c:df:a2:1a:a7:2d:41:37:e1: 4d:a9:ed:ea:b1:06:2f:d2:f3:99:86:82:de:da:37: bf:23:50:e1:0a:76:1b:3e:1f:ee:c5:8c:a8:93:35: f8:0f:5b:ef:09:b8:12:8b:3d:8b:3e:c1:57:8c:88: 0e:42:57:13:72:2c:0d:9a:29:db:ff:84:c9:0c:70: 41:5b:7e:83:47:7f:b2:79:2e:7b:3c:de:53:97:6d: 9b:9e:ce:19:a9:b6:84:3c:0a:88:65:ce:e3:c6:e9: a2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3E:4D:DE:59:FA:F0:9A:72:6C:07:A8:FD:21:9C:62:12:51:F3:BB X509v3 Authority Key Identifier: keyid:E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:f5:eb:6e:7c:87:9d:e0:73:32:1f:f3:d2:36:7b:8c:ee:0b: 5d:23:8a:f8:a7:ca:06:38:1b:ec:d8:86:df:83:7e:ec:cd:60: a8:59:73:19:29:f4:36:4d:7b:7d:62:65:75:79:c7:9f:e3:32: 6d:ae:45:7b:eb:d1:4a:bd:4b:30:91:b2:83:40:9d:af:17:17: 6f:1c:d3:04:16:74:1b:4e:18:de:b4:54:16:d2:65:88:ab:9d: a8:9e:50:0a:77:5a:01:ea:37:c0:3d:26:e2:93:dd:8d:0f:69: 4a:3b:c6:44:fe:1b:7e:2b:6a:fc:c2:2a:9d:ec:a9:5a:42:07: df:24:6d:b6:ff:cd:83:76:f8:ac:be:f7:3e:1a:07:fa:f7:bb: 85:98:3a:53:1b:6e:8d:7d:2a:e9:fb:cb:35:41:64:e9:2e:d9: 98:25:f1:6d:a1:aa:1b:94:3b:b1:07:6e:e9:bf:27:a0:82:9c: d6:36:27:2e:36:12:92:72:58:86:5e:a3:10:78:ec:05:09:37: 89:c6:e7:b9:25:e7:49:80:a5:e3:70:c8:0b:99:32:44:a9:0f: 3f:65:68:6a:34:5e:b5:71:8b:5c:4f:89:a7:80:ed:dd:0e:96: 8d:a0:e7:8d:43:41:79:6c:8e:4a:d4:8b:11:43:78:c1:ae:f6: 5d:65:ca:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg2MUQxMTAvBgNVBAUTKEU2MTIzRjQ5RUFFRjY2NEMyMkY5NENENUVCQkFFQUNF RDM4N0ExNkYwHhcNMjUwNjEyMjIzMDEyWhcNMjUwNjE5MjIzMDEyWjAYMRYwFAYD VQQDEw02ODRiNTRmNS1lOGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunyz6TFlVQCN4XQIlanfKWUSk1NXDG0iytRDsPskbjwj7s2b04UnBcWvsnWd 3+HJt8y5nBTzUfbRuYr3xBbo5nRMSi7yChkUfY/gQubk22hvEVL8QhiUxOngu4gC KS5piZP6dC6yFbnsV1aoDL1FeSW02gp7A6VO+1Qu66A9MwPJWCzvzrtHoZCUwCrS cy/Nc+z63iXAZ7EhjZwM36Iapy1BN+FNqe3qsQYv0vOZhoLe2je/I1DhCnYbPh/u xYyokzX4D1vvCbgSiz2LPsFXjIgOQlcTciwNminb/4TJDHBBW36DR3+yeS57PN5T l22bns4ZqbaEPAqIZc7jxumijQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGk+Td5Z +vCacmwHqP0hnGISUfO7MB8GA1UdIwQYMBaAFOYSP0nq72ZMIvlM1eu66s7Th6Fv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODYxRC9EMjk5N0Y2MEFC RTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlprd2ktVXpWNjdycXp0T0hv VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVoSV9TZXJ2Wmt3aS1VelY2N3JxenRPSG9XOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODYxRC9EMjk5N0Y2MEFCRTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlpr d2ktVXpWNjdycXp0T0hvVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG9etufIed4HMyH/PSNnuM7gtdI4r4p8oGOBvs2Ibfg37szWCoWXMZ KfQ2TXt9YmV1ecef4zJtrkV769FKvUswkbKDQJ2vFxdvHNMEFnQbThjetFQW0mWI q52onlAKd1oB6jfAPSbik92ND2lKO8ZE/ht+K2r8wiqd7KlaQgffJG22/82Ddvis vvc+Ggf697uFmDpTG26NfSrp+8s1QWTpLtmYJfFtoaoblDuxB27pvyeggpzWNicu NhKScliGXqMQeOwFCTeJxue5JedJgKXjcMgLmTJEqQ8/ZWhqNF61cYtcT4mngO3d DpaNoOeNQ0F5bI5K1IsRQ3jBrvZdZcqh -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:13 2025 by rpki-client