$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: 5hoXxiNNd8pR11h2PloXGWxFIZhLhQJ2nFw/YAGZUto= Subject key identifier: F8:4D:31:99:E7:58:CC:AF:92:96:C3:29:4D:0C:C6:A9:C4:F7:26:D2 Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 01BB Signing time: Sun 15 Jun 2025 02:19:10 +0000 Manifest this update: Sun 15 Jun 2025 02:19:10 +0000 Manifest next update: Sun 22 Jun 2025 02:19:10 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: 4N+C9HtEV9M0GARA3FYU8NjVd7c+85r1/LdTGdzd7/w=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Jun 15 02:19:10 2025 GMT Not After : Jun 22 02:19:10 2025 GMT Subject: CN=684e2d9e-fb26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:52:61:e8:81:d0:5e:59:4a:b9:3a:71:2f:15: 7d:7a:f4:06:d4:3c:6c:ed:d3:5d:74:f5:c1:b2:d3: 91:1f:a3:13:f2:5c:5d:11:f7:33:ce:ce:2b:e7:4b: ac:db:19:ee:b8:ed:79:36:b2:d6:5a:01:f9:f9:af: a1:f1:82:f4:15:2a:64:d6:4f:81:14:22:75:a2:c0: 10:1c:d0:75:d6:b0:e0:84:b6:fa:39:5b:3e:6c:a4: d9:e6:07:67:80:26:3d:75:43:be:38:a4:f9:b6:7a: ae:7c:c6:da:03:ff:bc:6a:a4:57:34:26:f4:9b:62: fd:53:b5:a5:2f:da:dd:c6:0c:e0:4e:9c:33:c7:8d: 62:a8:82:06:78:95:47:d0:e9:15:c2:b7:15:ff:80: d1:03:f0:82:87:a5:ba:f3:b5:dd:05:1f:2e:ba:e2: 64:02:a4:4e:b0:de:44:5f:8f:b6:88:20:3e:1b:43: 58:02:fe:60:3b:c3:13:eb:07:b4:27:a4:dc:b1:06: 9f:dd:fa:a9:ac:02:09:d4:60:8f:8c:a4:c9:c9:c4: 68:7a:d1:05:be:5f:b7:b0:af:d8:76:83:a2:9d:13: 4b:39:23:5f:4f:91:2d:db:b0:8b:c0:bd:d6:21:db: 68:53:b4:f6:ac:1d:dd:1c:61:a9:67:1e:0c:12:d1: a9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4D:31:99:E7:58:CC:AF:92:96:C3:29:4D:0C:C6:A9:C4:F7:26:D2 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:f7:bc:76:c5:eb:fe:67:38:00:e8:73:72:83:96:b9:cc:22: 08:ce:97:66:0f:90:b0:77:10:73:6f:79:27:b7:40:94:16:1b: 61:be:46:ea:c5:fa:f6:69:06:da:dd:96:c8:84:00:fe:7f:73: 8d:87:04:24:f9:46:16:1d:de:9a:04:d2:4a:b8:e6:3d:f3:27: 19:a6:fa:01:eb:cd:7a:0a:72:36:fb:4b:4d:cc:1d:6b:bf:f0: d9:27:56:27:a1:cd:ce:03:6b:98:85:a2:f7:e6:41:ff:2f:18: fe:20:62:c4:c9:2e:ae:03:a8:c9:c9:ae:df:5f:97:69:77:9b: d0:ad:c5:65:50:52:65:dd:0b:8c:87:32:b9:ac:0f:e8:81:13: ed:7a:cd:58:a9:aa:4d:b0:8d:58:fe:4b:0a:ca:3b:9f:25:3f: ad:21:cd:d1:26:97:a1:55:ae:a3:78:46:86:64:7a:d0:28:4d: 52:56:ec:af:b0:4b:b7:2d:31:cc:49:5b:b5:1d:f8:27:48:32: 6f:e5:e5:ea:d1:7a:4d:3a:2a:e5:87:61:da:80:39:f9:f7:21: f8:e2:2a:5d:95:e5:4e:81:f0:1b:13:c7:c2:ba:f9:bf:95:e0: 35:3d:ad:05:3e:98:11:1e:b8:6b:e7:f6:2a:3e:d7:62:ad:79: bf:f0:46:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUwNjE1MDIxOTEwWhcNMjUwNjIyMDIxOTEwWjAYMRYwFAYD VQQDEw02ODRlMmQ5ZS1mYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVJh6IHQXllKuTpxLxV9evQG1Dxs7dNddPXBstORH6MT8lxdEfczzs4r50us 2xnuuO15NrLWWgH5+a+h8YL0FSpk1k+BFCJ1osAQHNB11rDghLb6OVs+bKTZ5gdn gCY9dUO+OKT5tnqufMbaA/+8aqRXNCb0m2L9U7WlL9rdxgzgTpwzx41iqIIGeJVH 0OkVwrcV/4DRA/CCh6W687XdBR8uuuJkAqROsN5EX4+2iCA+G0NYAv5gO8MT6we0 J6TcsQaf3fqprAIJ1GCPjKTJycRoetEFvl+3sK/YdoOinRNLOSNfT5Et27CLwL3W IdtoU7T2rB3dHGGpZx4MEtGpqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhNMZnn WMyvkpbDKU0MxqnE9ybSMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ97x2xev+ZzgA6HNyg5a5zCIIzpdmD5CwdxBzb3knt0CUFhthvkbq xfr2aQba3ZbIhAD+f3ONhwQk+UYWHd6aBNJKuOY98ycZpvoB6816CnI2+0tNzB1r v/DZJ1Ynoc3OA2uYhaL35kH/Lxj+IGLEyS6uA6jJya7fX5dpd5vQrcVlUFJl3QuM hzK5rA/ogRPtes1YqapNsI1Y/ksKyjufJT+tIc3RJpehVa6jeEaGZHrQKE1SVuyv sEu3LTHMSVu1HfgnSDJv5eXq0XpNOirlh2HagDn59yH44ipdleVOgfAbE8fCuvm/ leA1Pa0FPpgRHrhr5/YqPtdirXm/8EYP -----END CERTIFICATE-----Generated at Sun Jun 15 09:39:31 2025 by rpki-client