$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: vKabvxIH0NrmW9EekYxsUUv6GZXdoHmsd97wZn997ZI= Subject key identifier: 1F:89:68:54:D5:A5:D4:FA:5C:A0:DC:B5:DD:D3:F0:E0:A5:86:D7:9F Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0C60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0C53 Signing time: Mon 16 Jun 2025 18:22:06 +0000 Manifest this update: Mon 16 Jun 2025 18:22:05 +0000 Manifest next update: Mon 23 Jun 2025 18:22:05 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: Vb1h5Ij5QMVQL81SI6CxtnOsd3aBwZcyPDJTl3TJbgs=) 2: F3529CDCAE1511EE92D99E46C4F9AE02.roa (hash: hTD7DjMK2EnPCWqJypUdiJk7jUHRPt10GcfYU8sN4po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 18:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3168 (0xc60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Jun 16 18:22:05 2025 GMT Not After : Jun 23 18:22:05 2025 GMT Subject: CN=685060ce-a3ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c0:2f:e5:0b:c9:c3:25:97:4e:dd:a2:ee:9d: ae:ef:20:41:33:4f:8e:5a:7c:f9:12:38:08:aa:05: b1:b6:d4:0d:09:7a:eb:95:f0:65:a5:f4:20:fe:68: 0e:f2:08:ab:ca:79:fa:52:20:ac:ef:d4:a0:b1:fd: 66:52:db:5e:ae:9b:82:23:e0:33:ee:3d:30:12:eb: e1:0e:3c:48:49:ca:e0:89:a0:89:fd:2b:92:5b:19: c7:b4:c8:a6:8f:0f:3b:50:52:80:0d:82:62:de:60: a6:83:d4:89:f7:a1:69:e6:5f:f7:ef:15:02:03:4d: fc:79:bd:cb:4b:c3:bd:ca:fd:cd:72:1c:5c:b8:eb: b7:5e:49:cc:da:12:3d:c2:1e:d0:df:d6:ea:89:9d: 84:fb:16:dd:fe:ac:c0:c7:6d:33:79:64:f5:39:aa: 81:0a:0b:2d:74:3b:87:9a:44:d3:3b:51:05:19:f8: 10:b3:fc:a1:ce:c4:97:91:84:2b:80:a4:17:4f:cd: ac:2f:55:d9:4e:f4:5c:68:b7:ae:23:f0:79:6a:71: c1:71:c5:e5:4c:93:63:98:89:69:27:ae:fa:72:43: 6b:75:69:3a:44:17:82:fa:1a:2b:dc:43:9d:e4:c3: d2:40:6e:8f:00:4f:1f:bb:f7:76:30:50:d1:5c:f7: be:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:89:68:54:D5:A5:D4:FA:5C:A0:DC:B5:DD:D3:F0:E0:A5:86:D7:9F X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:50:2b:7e:51:fe:78:4b:5b:fe:57:fc:fd:9a:8e:2d:c1:67: 54:16:94:d0:7e:f1:68:2f:5f:d1:b2:77:66:6f:ab:64:f5:ef: 65:d1:21:88:17:1a:f4:1e:74:09:d2:70:11:89:62:6e:2f:6f: 94:9b:2d:c4:ca:68:17:56:50:a6:b8:61:52:e2:4f:80:6e:12: 31:7a:6b:8a:f6:e8:ba:b8:8a:29:b6:55:4b:91:28:57:88:30: d9:85:75:51:53:d8:86:87:b6:46:8b:30:e2:cf:e7:c4:02:d8: f6:bf:81:c2:4a:0b:c2:ff:9c:92:38:84:fd:25:c6:a8:24:83: 5a:89:db:42:b1:0d:09:4f:3f:3e:42:1b:64:51:c6:c3:c9:d5: 2c:00:e1:c9:bb:0b:b7:38:0a:06:02:ca:dd:fd:7a:b0:01:fc: 90:e1:d8:eb:23:ca:e6:6d:21:38:58:12:10:37:ec:4d:8d:04: 97:d9:3b:c6:3f:bb:f9:2a:31:07:fc:15:c6:31:71:f4:44:b7: e8:39:ba:61:4e:91:8f:f9:0e:0c:1f:43:ba:af:2b:78:97:ed: c0:94:9f:0f:a6:03:74:31:16:2a:da:f7:b7:43:49:1a:45:66: 0c:ec:12:5d:ce:20:e7:1c:f8:52:a9:b3:e5:4c:65:df:e6:28: c6:4a:6a:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjUwNjE2MTgyMjA1WhcNMjUwNjIzMTgyMjA1WjAYMRYwFAYD VQQDEw02ODUwNjBjZS1hM2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8Av5QvJwyWXTt2i7p2u7yBBM0+OWnz5EjgIqgWxttQNCXrrlfBlpfQg/mgO 8girynn6UiCs79Sgsf1mUtterpuCI+Az7j0wEuvhDjxIScrgiaCJ/SuSWxnHtMim jw87UFKADYJi3mCmg9SJ96Fp5l/37xUCA038eb3LS8O9yv3NchxcuOu3XknM2hI9 wh7Q39bqiZ2E+xbd/qzAx20zeWT1OaqBCgstdDuHmkTTO1EFGfgQs/yhzsSXkYQr gKQXT82sL1XZTvRcaLeuI/B5anHBccXlTJNjmIlpJ676ckNrdWk6RBeC+hor3EOd 5MPSQG6PAE8fu/d2MFDRXPe+9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+JaFTV pdT6XKDctd3T8OClhtefMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKUCt+Uf54S1v+V/z9mo4twWdUFpTQfvFoL1/Rsndmb6tk9e9l0SGI Fxr0HnQJ0nARiWJuL2+Umy3EymgXVlCmuGFS4k+AbhIxemuK9ui6uIoptlVLkShX iDDZhXVRU9iGh7ZGizDiz+fEAtj2v4HCSgvC/5ySOIT9JcaoJINaidtCsQ0JTz8+ QhtkUcbDydUsAOHJuwu3OAoGAsrd/XqwAfyQ4djrI8rmbSE4WBIQN+xNjQSX2TvG P7v5KjEH/BXGMXH0RLfoObphTpGP+Q4MH0O6ryt4l+3AlJ8PpgN0MRYq2ve3Q0ka RWYM7BJdziDnHPhSqbPlTGXf5ijGSmor -----END CERTIFICATE-----Generated at Mon Jun 16 22:11:46 2025 by rpki-client