$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: Jp01NdjkD25T7FOL8o4SAiijwOEXsZYoKVtU0o650GE= Subject key identifier: 55:4D:B5:26:87:C6:8C:5C:AC:A6:D5:74:6C:CB:E9:9A:03:E7:CB:FB Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 065A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 0655 Signing time: Sat 14 Jun 2025 22:15:37 +0000 Manifest this update: Sat 14 Jun 2025 22:15:37 +0000 Manifest next update: Sat 21 Jun 2025 22:15:37 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: NpqDt64lyj3YhVfhM5dltAqBZ6ZnnQOT4mkGnx9Cqog=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: uQ87OwRIbPff2rIgxwDqjjJe9H/t71HNB3Wpu5Q8ifI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Jun 14 22:15:37 2025 GMT Not After : Jun 21 22:15:37 2025 GMT Subject: CN=684df489-959b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f1:28:0a:90:a4:09:4b:dd:d5:ab:5a:8c:37: 9e:81:42:f2:d0:13:a9:e4:cc:bd:82:1e:23:ba:de: 8f:d2:a3:f6:66:e2:d8:d0:5d:10:6e:cf:7f:e6:12: 3c:e8:49:46:28:f3:5e:04:55:cb:06:21:34:6c:51: 9a:f5:38:56:e9:6a:33:86:12:35:68:1d:3e:77:59: 11:e6:9c:9d:5d:0e:0e:10:a6:21:ea:7d:2f:88:31: c4:3d:a3:bd:86:83:4a:1e:23:0e:5f:26:6f:20:54: 2c:7f:8e:64:7e:8d:23:5d:a4:3c:7d:cb:51:3b:6d: e9:f2:90:d0:dc:d0:cc:82:45:89:26:96:d1:ca:07: d1:91:77:9d:80:c1:3a:e7:1d:d7:fa:21:a5:d2:94: 41:63:bb:b0:6a:82:f0:71:5f:ce:91:b7:8c:96:77: a4:03:46:13:0a:3c:43:ba:7e:fa:b1:5f:c3:5e:1a: 65:20:88:49:24:c1:cd:d2:4a:cd:4d:59:65:42:23: 0f:16:ee:49:69:23:d7:11:a6:6d:12:9c:ba:4b:4d: a7:d8:81:c3:c0:90:eb:63:b3:24:5b:b0:e7:cc:3d: 34:6c:90:8e:9d:bf:14:de:6c:e0:6e:a4:5c:3f:0b: b8:00:3b:90:c0:5b:fa:da:64:dc:d3:7a:ac:4d:67: ec:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:4D:B5:26:87:C6:8C:5C:AC:A6:D5:74:6C:CB:E9:9A:03:E7:CB:FB X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:69:4e:ee:5d:ab:53:e2:df:ce:0b:8c:57:cf:e4:74:61:c8: 17:37:6a:b1:62:a3:09:a7:52:4d:fd:5a:51:62:43:53:45:d2: d6:c9:58:6a:f4:4b:10:91:9c:4e:db:af:1b:e8:6c:0e:42:b7: 55:81:77:f7:0a:ff:b8:14:69:ff:d1:90:c9:a6:92:de:50:d6: f5:4e:6e:d0:b8:db:87:d6:ce:04:09:35:68:98:c1:80:46:b2: 1f:12:b3:f5:86:f1:cb:72:55:b1:0e:b8:b3:78:2c:15:2c:58: 27:e1:f4:2a:e8:aa:40:94:f1:01:9b:14:85:f3:ec:38:a6:37: b4:27:6a:b6:20:32:71:d4:3a:44:1f:22:ba:9e:25:78:77:5c: 1a:07:97:ab:a4:1b:c5:77:84:59:bf:12:0e:a3:bc:b5:74:36: f5:4e:73:83:53:e3:39:50:32:89:87:7a:5e:25:f4:32:32:6a: 0b:e7:a1:b5:cc:06:1d:26:e3:2b:26:b9:67:bb:1b:1a:87:28: e8:05:1f:11:60:d4:43:7d:08:0c:95:8f:33:f1:98:63:5a:90: f2:bd:4b:bb:cc:d2:c9:bc:93:8f:6f:9b:db:66:e8:7f:9c:e8: 05:f6:f7:49:c1:a4:76:7b:1b:08:2a:1b:42:0c:70:93:e5:d9: 11:bb:1c:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwNjE0MjIxNTM3WhcNMjUwNjIxMjIxNTM3WjAYMRYwFAYD VQQDEw02ODRkZjQ4OS05NTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfEoCpCkCUvd1atajDeegULy0BOp5My9gh4jut6P0qP2ZuLY0F0Qbs9/5hI8 6ElGKPNeBFXLBiE0bFGa9ThW6WozhhI1aB0+d1kR5pydXQ4OEKYh6n0viDHEPaO9 hoNKHiMOXyZvIFQsf45kfo0jXaQ8fctRO23p8pDQ3NDMgkWJJpbRygfRkXedgME6 5x3X+iGl0pRBY7uwaoLwcV/OkbeMlnekA0YTCjxDun76sV/DXhplIIhJJMHN0krN TVllQiMPFu5JaSPXEaZtEpy6S02n2IHDwJDrY7MkW7DnzD00bJCOnb8U3mzgbqRc Pwu4ADuQwFv62mTc03qsTWfs2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVNtSaH xoxcrKbVdGzL6ZoD58v7MB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9aU7uXatT4t/OC4xXz+R0YcgXN2qxYqMJp1JN/VpRYkNTRdLWyVhq 9EsQkZxO268b6GwOQrdVgXf3Cv+4FGn/0ZDJppLeUNb1Tm7QuNuH1s4ECTVomMGA RrIfErP1hvHLclWxDrizeCwVLFgn4fQq6KpAlPEBmxSF8+w4pje0J2q2IDJx1DpE HyK6niV4d1waB5erpBvFd4RZvxIOo7y1dDb1TnODU+M5UDKJh3peJfQyMmoL56G1 zAYdJuMrJrlnuxsahyjoBR8RYNRDfQgMlY8z8ZhjWpDyvUu7zNLJvJOPb5vbZuh/ nOgF9vdJwaR2exsIKhtCDHCT5dkRuxyc -----END CERTIFICATE-----Generated at Mon Jun 16 17:22:37 2025 by rpki-client