$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft File: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft (raw, json) Hash identifier: U/5OxlFhLOmxhfKdWu+fTeNip067hDa2MdVpljjOK1U= Subject key identifier: 31:86:AA:D4:14:64:A4:F4:18:8B:AA:66:91:17:B6:71:04:CC:7A:D5 Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft Manifest number: 9D Signing time: Fri 13 Jun 2025 05:11:00 +0000 Manifest this update: Fri 13 Jun 2025 05:11:00 +0000 Manifest next update: Fri 20 Jun 2025 05:11:00 +0000 Files and hashes: 1: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl (hash: YJhckh6XcX0C1LhxVwm0xH578ryJydEBHsC26GBxo4k=) 2: F47CB05C5AE011EFB4CD7428C4F9AE02.roa (hash: dP/ms8awhu5P0L5X1kq3UaHwPpJfEdsfRvw8IFgrpFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62, serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: Jun 13 05:11:00 2025 GMT Not After : Jun 20 05:11:00 2025 GMT Subject: CN=684bb2e4-51e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a6:4e:80:61:3e:19:62:c2:92:4c:ca:05:8e: ed:8b:18:60:b8:cc:b7:47:85:74:c7:27:bb:0b:6f: e5:0f:75:98:b4:d4:1d:6f:49:ec:69:d0:74:7a:d7: e9:f2:c6:f0:90:78:07:c1:c5:c9:33:96:e4:b9:75: 24:00:89:39:01:88:29:d8:5c:4c:cf:46:aa:30:09: cf:00:c7:9f:a0:ea:e4:20:6b:40:e9:18:e0:4d:a7: 1c:09:6c:2b:d8:ff:49:98:b9:af:42:ae:d4:22:56: 6e:20:32:97:e5:e2:53:1d:c4:70:e4:df:5a:74:f6: 2c:e5:70:2d:97:b4:93:a0:34:e3:4c:0c:c6:11:eb: ae:57:38:78:9d:3e:9c:b5:86:1c:07:fe:0a:74:ce: e9:ae:91:3e:30:90:75:9a:4b:65:d5:e0:f4:76:9c: 55:eb:ae:1f:5c:73:f4:2a:ed:61:76:9c:13:bc:74: 8f:df:c4:3d:76:6b:e7:14:3e:69:9b:c3:13:6d:71: 86:68:e1:42:ec:f5:e5:2a:33:05:85:5f:49:4c:f3: 25:f8:7e:9f:b4:a1:08:3f:aa:e4:e3:df:27:ba:4e: 49:9b:48:44:3d:4b:49:1e:6e:d1:1a:d6:34:ae:2f: 13:42:e7:a8:d0:ca:10:19:25:fa:bf:76:fb:fc:4f: ba:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:86:AA:D4:14:64:A4:F4:18:8B:AA:66:91:17:B6:71:04:CC:7A:D5 X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:ba:8a:2a:f9:bc:e8:0d:c5:5e:bf:b2:74:90:30:04:b2:11: 9c:4c:fe:39:07:12:c7:3d:0b:32:f6:b7:02:2d:77:47:9a:48: b4:d4:01:40:24:24:80:e5:92:79:5d:c5:58:4a:13:90:4c:bd: 51:c1:6c:0e:e5:d7:ab:a1:bf:07:a6:ca:75:84:91:18:ff:cd: 37:5c:94:51:ba:96:e9:bc:28:c6:f0:0d:f9:cf:76:3d:a3:8d: a1:75:ab:a7:30:72:d9:56:3f:3f:b1:5b:21:22:d8:d6:68:fa: f6:f0:dd:0d:95:74:62:d9:25:c0:08:9e:42:9f:93:ca:4a:1f: 4b:58:98:52:48:45:e2:ab:01:39:f2:b4:6a:54:2d:17:d1:af: 30:85:60:28:56:45:9f:96:51:ab:e0:91:10:64:8b:b1:79:f1: b9:d1:3f:e2:43:fc:e2:c0:89:57:93:96:58:b2:9b:ea:ba:57: 9b:18:81:f6:ac:b7:f6:af:37:81:2b:f4:7f:e6:31:69:b0:2e: a8:20:89:83:b8:01:77:54:1f:3f:45:f8:8c:56:bf:f7:2e:9b: 48:70:9e:9a:0d:f1:e5:22:61:d7:d8:43:19:13:94:fe:3b:ab: b5:47:a5:be:2f:f7:f9:41:e6:03:70:36:39:c0:f5:cc:b8:8f: d6:c5:dc:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJCNjIxMTAvBgNVBAUTKEU2RjY1RDIyMUI1OTVGNkJBMTNFQjMxNERFRTMzOENB MjQxRTI3MjAwHhcNMjUwNjEzMDUxMTAwWhcNMjUwNjIwMDUxMTAwWjAYMRYwFAYD VQQDEw02ODRiYjJlNC01MWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKZOgGE+GWLCkkzKBY7tixhguMy3R4V0xye7C2/lD3WYtNQdb0nsadB0etfp 8sbwkHgHwcXJM5bkuXUkAIk5AYgp2FxMz0aqMAnPAMefoOrkIGtA6RjgTaccCWwr 2P9JmLmvQq7UIlZuIDKX5eJTHcRw5N9adPYs5XAtl7SToDTjTAzGEeuuVzh4nT6c tYYcB/4KdM7prpE+MJB1mktl1eD0dpxV664fXHP0Ku1hdpwTvHSP38Q9dmvnFD5p m8MTbXGGaOFC7PXlKjMFhV9JTPMl+H6ftKEIP6rk498nuk5Jm0hEPUtJHm7RGtY0 ri8TQueo0MoQGSX6v3b7/E+6TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGGqtQU ZKT0GIuqZpEXtnEEzHrVMB8GA1UdIwQYMBaAFOb2XSIbWV9roT6zFN7jOMokHicg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkI2Mi9CRDI5QjgxNjVB RTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0WlgydWhQck1VM3VNNHlpUWVK eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI2Mi9CRDI5QjgxNjVBRTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0Wlgy dWhQck1VM3VNNHlpUWVKeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMuooq+bzoDcVev7J0kDAEshGcTP45BxLHPQsy9rcCLXdHmki01AFA JCSA5ZJ5XcVYShOQTL1RwWwO5derob8Hpsp1hJEY/803XJRRupbpvCjG8A35z3Y9 o42hdaunMHLZVj8/sVshItjWaPr28N0NlXRi2SXACJ5Cn5PKSh9LWJhSSEXiqwE5 8rRqVC0X0a8whWAoVkWfllGr4JEQZIuxefG50T/iQ/ziwIlXk5ZYspvqulebGIH2 rLf2rzeBK/R/5jFpsC6oIImDuAF3VB8/RfiMVr/3LptIcJ6aDfHlImHX2EMZE5T+ O6u1R6W+L/f5QeYDcDY5wPXMuI/Wxdw0 -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:18 2025 by rpki-client