$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft File: Swkt8QQoD0W8PyeW9AHMK0xhROk.mft (raw, json) Hash identifier: pgJv7Bwi2y3HPnf5iBsCXJqeIZKimd6ExLbDZNMcFss= Subject key identifier: E1:F3:34:2B:72:BA:BB:02:86:BE:0F:96:39:F7:D8:4B:C2:58:D1:6E Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft Manifest number: 5E Signing time: Thu 19 Jun 2025 06:28:56 +0000 Manifest this update: Thu 19 Jun 2025 06:28:55 +0000 Manifest next update: Thu 26 Jun 2025 06:28:55 +0000 Files and hashes: 1: Swkt8QQoD0W8PyeW9AHMK0xhROk.crl (hash: nhVvtkSAMuSTwgzmY1ZSpgb3o8QgqBsifP0jhS28GHg=) 2: DE72D5AEBED411EF835BB47AC4F9AE02.roa (hash: 5j81/BZOYpTkz0ooChEWGP+uFOoiaPO0/qxC0SgYzdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Jun 19 06:28:55 2025 GMT Not After : Jun 26 06:28:55 2025 GMT Subject: CN=6853ae27-95a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:2f:a7:50:b8:6b:a8:ab:9d:17:54:1a:15: ff:64:29:66:7a:12:23:73:ed:19:1d:e1:c1:61:4a: 64:d4:e1:38:a6:f5:dc:fd:80:b9:79:f8:ed:70:53: 62:2e:8c:27:8b:3c:23:96:09:ff:31:97:54:4d:ea: 91:54:9b:f3:60:29:08:ee:88:4f:22:3a:ec:12:c2: 77:04:6c:9e:84:7d:ff:fc:cd:a9:29:fb:11:9b:14: 81:fa:a7:bb:77:df:ee:8d:be:60:4c:d5:65:18:a2: ba:54:5a:78:53:7f:da:27:cf:7f:04:39:ab:9b:3f: 89:2d:3d:d8:be:98:bc:82:c0:83:8e:a9:20:55:dc: b2:97:eb:0e:ad:db:7a:cf:fa:99:8d:ec:cb:b7:70: 2c:0d:af:35:a9:f7:5c:66:86:57:5b:80:3e:75:9b: 50:e9:57:03:80:f2:84:83:42:b1:12:9f:85:d7:fc: 39:85:e5:fd:3a:1d:b0:f8:74:1c:19:ed:6e:77:85: 3a:db:e5:98:a0:d5:d1:96:5e:84:6d:52:ba:05:4e: 50:7d:6c:59:b5:05:05:eb:5b:77:21:6c:97:e6:61: cf:44:8c:b5:d3:75:e7:d1:7c:73:6c:76:b7:4a:95: b6:d2:b4:82:ff:73:69:f4:f9:29:c6:20:af:6a:37: 53:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F3:34:2B:72:BA:BB:02:86:BE:0F:96:39:F7:D8:4B:C2:58:D1:6E X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:35:9a:12:c2:67:51:c1:09:53:8b:ee:2f:54:d6:0e:87:cc: e9:21:9e:74:44:3f:40:e0:c8:e6:f7:c2:7b:dd:10:3a:c5:7f: d1:54:8c:3a:8c:64:81:41:f2:32:6b:74:66:67:26:71:23:72: fe:f0:37:28:cc:ce:a1:d3:e5:f9:cb:2a:2e:f2:56:04:4a:d3: 7a:eb:38:55:75:1b:22:a5:7d:45:4d:c1:7b:c2:d3:05:e1:b8: 59:6d:aa:dc:c2:f6:e8:07:c6:16:44:9e:2a:91:95:3c:4a:9e: 09:5a:de:ca:ac:26:e6:58:ee:4d:3e:23:aa:19:80:21:1a:bd: 60:a0:88:62:0c:7a:48:86:15:2d:d6:6e:09:4e:e1:b9:3e:8f: d2:07:4c:65:ff:28:11:e5:2f:4b:98:be:5b:c6:e9:be:77:1f: c5:c3:c3:00:98:26:b0:58:0d:4c:d4:c9:91:ee:7f:e9:ba:89: 77:6b:68:8f:ee:7a:74:9d:20:4e:a4:07:cc:a4:3c:20:ae:9a: e1:06:f4:32:b5:6e:8a:66:60:7d:09:dd:84:93:91:e1:67:5f: e9:c7:9f:be:80:43:32:23:92:c3:a7:f2:b9:dc:be:6a:bb:e0: 29:20:78:5c:40:c7:a5:3d:73:29:72:5b:b9:d2:36:a9:8f:c0: f6:33:57:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODMwNzExMC8GA1UEBRMoNEIwOTJERjEwNDI4MEY0NUJDM0YyNzk2RjQwMUNDMkI0 QzYxNDRFOTAeFw0yNTA2MTkwNjI4NTVaFw0yNTA2MjYwNjI4NTVaMBgxFjAUBgNV BAMTDTY4NTNhZTI3LTk1YTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9XC+nULhrqKudF1QaFf9kKWZ6EiNz7Rkd4cFhSmTU4Tim9dz9gLl5+O1wU2Iu jCeLPCOWCf8xl1RN6pFUm/NgKQjuiE8iOuwSwncEbJ6Eff/8zakp+xGbFIH6p7t3 3+6NvmBM1WUYorpUWnhTf9onz38EOaubP4ktPdi+mLyCwIOOqSBV3LKX6w6t23rP +pmN7Mu3cCwNrzWp91xmhldbgD51m1DpVwOA8oSDQrESn4XX/DmF5f06HbD4dBwZ 7W53hTrb5Zig1dGWXoRtUroFTlB9bFm1BQXrW3chbJfmYc9EjLXTdefRfHNsdrdK lbbStIL/c2n0+SnGIK9qN1PJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4fM0K3K6 uwKGvg+WOffYS8JY0W4wHwYDVR0jBBgwFoAUSwkt8QQoD0W8PyeW9AHMK0xhROkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzA3LzJCQzkyNDUwQkVD RDExRUY5OEM3NDEzMkM0RjlBRTAyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJP ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU3drdDhRUW9EMFc4UHllVzlBSE1LMHhoUk9rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MzA3LzJCQzkyNDUwQkVDRDExRUY5OEM3NDEzMkM0RjlBRTAyL1N3a3Q4UVFvRDBX OFB5ZVc5QUhNSzB4aFJPay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABs1mhLCZ1HBCVOL7i9U1g6HzOkhnnREP0DgyOb3wnvdEDrFf9FUjDqM ZIFB8jJrdGZnJnEjcv7wNyjMzqHT5fnLKi7yVgRK03rrOFV1GyKlfUVNwXvC0wXh uFltqtzC9ugHxhZEniqRlTxKngla3sqsJuZY7k0+I6oZgCEavWCgiGIMekiGFS3W bglO4bk+j9IHTGX/KBHlL0uYvlvG6b53H8XDwwCYJrBYDUzUyZHuf+m6iXdraI/u enSdIE6kB8ykPCCumuEG9DK1bopmYH0J3YSTkeFnX+nHn76AQzIjksOn8rncvmq7 4CkgeFxAx6U9cylyW7nSNqmPwPYzV98= -----END CERTIFICATE-----Generated at Thu Jun 19 19:47:59 2025 by rpki-client