$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: HPWioun0z+XW2Po8F5TpQBQOd8U6eNdUCgLDDnsjS8w= Subject key identifier: 3B:82:00:07:3F:A6:D6:64:91:CF:53:4E:73:A5:87:07:8F:41:34:2E Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 03C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 03BC Signing time: Thu 19 Jun 2025 00:32:05 +0000 Manifest this update: Thu 19 Jun 2025 00:32:05 +0000 Manifest next update: Thu 26 Jun 2025 00:32:05 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: fQ5R/WmhQMDPUQKVS9iCW6chBvvvXOgHztq3Mr4m6y4=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 0ekBq+u3qTtCrN1H3WBpcyEBXqtT/nmRB1wnzUy864Q=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: AajhgEbZBOC20FRVNZHV44NbIbhPj9V3ePlv/pPgwT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:32:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Jun 19 00:32:05 2025 GMT Not After : Jun 26 00:32:05 2025 GMT Subject: CN=68535a85-753d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f4:7d:3b:a9:17:fa:66:82:ea:8c:68:8b:41: 70:19:c1:20:09:83:d2:78:11:67:09:0c:50:d6:9a: 23:b8:87:f1:14:3e:46:11:51:83:f9:6f:45:e7:d7: eb:93:20:12:36:b6:f6:ca:a8:e6:a8:d2:9a:3d:d5: d3:af:da:93:5c:59:c1:e7:8e:f6:ea:23:f2:d4:fe: 64:80:c2:fa:e3:68:e4:09:2a:4a:16:1c:fa:1f:d5: f8:87:8e:ce:af:16:36:79:30:4d:17:62:c7:65:b9: 40:4d:82:29:09:9b:43:41:dd:b1:36:bf:b8:f6:cd: 4e:9c:ac:a9:67:d3:fe:ce:e4:aa:3c:06:11:be:04: d7:0b:e4:30:dc:8b:bb:7c:5f:c0:95:c7:66:c9:4d: 8d:9a:3d:66:7b:c0:cd:7c:07:20:b9:07:9e:fe:7d: 5e:ac:01:56:ac:d4:29:39:60:b3:0e:cd:72:9e:22: d4:a5:d5:38:14:4d:66:46:c5:6f:e0:94:f7:0b:35: 68:54:e9:62:0d:5b:6e:fc:d9:3b:f5:01:47:51:cf: 3e:21:ab:7c:34:a0:c8:e9:55:3f:48:b7:ac:e2:d6: 60:48:33:01:11:5a:7a:4b:2a:fa:11:f6:4c:b5:a7: 83:5b:ef:37:28:4c:f4:f8:ae:8d:96:a9:37:f0:b5: 9f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:82:00:07:3F:A6:D6:64:91:CF:53:4E:73:A5:87:07:8F:41:34:2E X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:c9:9e:3a:d1:6d:34:30:5b:f5:50:72:f6:d2:3d:19:73:c8: 8e:30:a8:32:57:87:e9:76:46:43:61:74:46:7d:aa:cd:e1:3a: d8:53:f2:c1:ef:d2:cb:09:28:fd:5e:ee:4f:54:62:99:0c:4c: 31:8f:ad:ac:d9:c8:f7:03:ec:2b:08:ad:cc:de:59:34:3e:23: 8e:be:68:2d:5b:99:f0:a4:52:cd:0d:b3:21:6a:6d:a2:ee:ef: f4:cb:c8:18:a9:29:a2:cf:f8:7f:cc:e3:9c:34:90:7c:a0:3d: bb:16:ee:5a:87:b2:b9:85:d4:6f:4b:2d:0e:88:4a:23:ae:a7: fe:87:ca:1e:60:d7:cc:98:e7:fb:d9:60:33:eb:c6:20:55:2f: 1c:02:5a:5b:64:6f:1b:7b:b1:a7:6b:13:b6:e9:01:91:d8:26: 8e:82:94:6b:cf:d7:6d:fc:13:b1:17:bb:6f:17:ba:43:1a:58: bc:aa:06:4a:66:88:6a:cd:21:16:a4:dd:01:dd:25:ad:3b:13: 37:ef:2d:59:22:bc:81:78:14:06:e1:e4:91:a9:c5:25:f8:44: 52:e9:b2:c3:7e:65:89:10:2b:86:a6:06:b5:2b:cd:46:d2:47: 5c:dd:16:9f:bc:6c:d5:2f:9a:ba:27:b2:f6:f5:3f:e4:a4:9a: a1:7a:b0:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUwNjE5MDAzMjA1WhcNMjUwNjI2MDAzMjA1WjAYMRYwFAYD VQQDEw02ODUzNWE4NS03NTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvR9O6kX+maC6oxoi0FwGcEgCYPSeBFnCQxQ1pojuIfxFD5GEVGD+W9F59fr kyASNrb2yqjmqNKaPdXTr9qTXFnB54726iPy1P5kgML642jkCSpKFhz6H9X4h47O rxY2eTBNF2LHZblATYIpCZtDQd2xNr+49s1OnKypZ9P+zuSqPAYRvgTXC+Qw3Iu7 fF/AlcdmyU2Nmj1me8DNfAcguQee/n1erAFWrNQpOWCzDs1yniLUpdU4FE1mRsVv 4JT3CzVoVOliDVtu/Nk79QFHUc8+Iat8NKDI6VU/SLes4tZgSDMBEVp6Syr6EfZM taeDW+83KEz0+K6Nlqk38LWfTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDuCAAc/ ptZkkc9TTnOlhwePQTQuMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPyZ460W00MFv1UHL20j0Zc8iOMKgyV4fpdkZDYXRGfarN4TrYU/LB 79LLCSj9Xu5PVGKZDEwxj62s2cj3A+wrCK3M3lk0PiOOvmgtW5nwpFLNDbMham2i 7u/0y8gYqSmiz/h/zOOcNJB8oD27Fu5ah7K5hdRvSy0OiEojrqf+h8oeYNfMmOf7 2WAz68YgVS8cAlpbZG8be7GnaxO26QGR2CaOgpRrz9dt/BOxF7tvF7pDGli8qgZK ZohqzSEWpN0B3SWtOxM37y1ZIryBeBQG4eSRqcUl+ERS6bLDfmWJECuGpga1K81G 0kdc3RafvGzVL5q6J7L29T/kpJqherCn -----END CERTIFICATE-----Generated at Fri Jun 20 05:06:23 2025 by rpki-client