$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft File: -tm5N3fQzrort6a3jVB_d5CSHAY.mft (raw, json) Hash identifier: vsjjsLkIFhAS168UyliduBBcDmj/1g61yg3eRshtrno= Subject key identifier: 53:D1:3D:7B:1A:1C:D6:AD:10:DC:B0:60:89:21:A6:71:CE:0E:72:07 Authority key identifier: FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 Certificate issuer: /CN=A91557F2/serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Certificate serial: 06F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft Manifest number: 084E Signing time: Sat 28 Jun 2025 21:33:55 +0000 Manifest this update: Sat 28 Jun 2025 21:33:55 +0000 Manifest next update: Sat 05 Jul 2025 21:33:55 +0000 Files and hashes: 1: -tm5N3fQzrort6a3jVB_d5CSHAY.crl (hash: qi2Cl68bzz6MfBlh44KBGEYsen3j4Gow4Joom5Zi/co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 21:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F2, serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Validity Not Before: Jun 28 21:33:55 2025 GMT Not After : Jul 5 21:33:55 2025 GMT Subject: CN=68605fc3-34e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:47:f1:a9:3d:bf:28:0c:f4:d2:f8:37:c9:84: 3c:48:a5:7b:d8:35:3f:3f:60:bc:a7:17:b4:16:0d: 70:46:60:06:9e:00:6b:c8:a9:f7:70:a8:1f:59:35: b9:11:97:9f:75:50:b6:17:ec:e3:a3:b9:a9:87:26: 02:35:1c:06:b4:bd:8b:61:d1:17:c3:5f:78:ea:e9: cd:0c:fb:a6:ff:13:52:96:0c:53:ba:35:e6:3e:70: 81:c5:a2:6e:4f:48:c9:0d:f7:9c:80:e4:ce:43:0a: 61:91:5f:ab:c0:5d:c1:ca:ff:9e:90:4f:61:ee:81: da:4d:81:3c:e8:bc:2f:62:17:9b:14:db:74:99:4d: 8b:a3:88:a5:68:29:43:fa:6c:fe:51:66:00:6a:6c: 8d:3b:73:28:2b:b5:6e:81:34:43:a8:31:f7:f3:04: 99:41:6b:f8:ae:5c:bc:e9:1d:4a:8d:2c:1d:53:3b: 06:05:e0:31:31:06:0b:a3:3a:1f:89:f0:11:e5:5a: 93:e6:8f:f6:a7:00:87:3c:d5:aa:d7:fa:4e:b3:65: 99:f0:56:2d:d3:54:62:c0:31:19:d0:0a:3c:0e:73: f9:51:a9:58:79:9c:4b:16:d7:46:1b:32:94:27:ce: be:47:ca:6f:ab:84:5a:65:68:32:46:57:e8:b1:5b: bf:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D1:3D:7B:1A:1C:D6:AD:10:DC:B0:60:89:21:A6:71:CE:0E:72:07 X509v3 Authority Key Identifier: keyid:FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:9e:c1:b7:b7:e0:c6:77:9d:1f:18:77:8d:77:ff:36:67:dc: 7b:10:6a:d5:d7:13:c6:cd:d1:8d:1a:c8:9f:58:b2:ac:37:40: f2:31:a3:b2:e9:27:36:a3:f3:8b:60:d5:74:c4:45:47:10:c0: 16:cb:61:f2:f0:6f:e3:fe:e3:3e:dc:42:d4:3a:8c:49:23:19: e3:cb:af:4c:c4:d8:f2:3c:05:a5:cb:54:c6:07:b7:20:b8:3e: 63:4c:85:74:05:9a:06:ce:bb:5d:a9:ff:10:0a:e2:ac:0d:48: 57:b5:5b:88:7f:33:6a:50:98:69:e5:26:0b:c8:dc:b4:97:08: b7:c8:83:5a:19:c6:ed:bd:44:6e:40:3f:89:7a:8e:bb:e4:41: 61:79:e8:1b:85:18:f1:de:9f:7a:8b:52:40:a6:b9:a1:d6:58: 03:21:7a:92:b1:81:12:b9:8a:4f:32:a9:d7:e7:cb:9b:aa:89: 4c:51:e7:10:1e:93:58:62:7b:50:4a:e2:1b:09:90:83:38:20: 99:f3:4e:a5:17:e9:43:1d:b0:67:3e:46:50:6e:9f:fc:96:a7: c8:c2:24:ca:f9:6b:57:32:fd:d5:c7:bc:76:c0:b1:e4:8f:71: 67:19:32:f7:7d:c8:64:e4:f0:fe:5b:44:4e:4b:a9:f3:e4:4c: c7:25:e8:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjIxMTAvBgNVBAUTKEZBRDlCOTM3NzdEMENFQkEyQkI3QTZCNzhENTA3Rjc3 OTA5MjFDMDYwHhcNMjUwNjI4MjEzMzU1WhcNMjUwNzA1MjEzMzU1WjAYMRYwFAYD VQQDEw02ODYwNWZjMy0zNGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40fxqT2/KAz00vg3yYQ8SKV72DU/P2C8pxe0Fg1wRmAGngBryKn3cKgfWTW5 EZefdVC2F+zjo7mphyYCNRwGtL2LYdEXw1946unNDPum/xNSlgxTujXmPnCBxaJu T0jJDfecgOTOQwphkV+rwF3Byv+ekE9h7oHaTYE86LwvYhebFNt0mU2Lo4ilaClD +mz+UWYAamyNO3MoK7VugTRDqDH38wSZQWv4rly86R1KjSwdUzsGBeAxMQYLozof ifAR5VqT5o/2pwCHPNWq1/pOs2WZ8FYt01RiwDEZ0Ao8DnP5UalYeZxLFtdGGzKU J86+R8pvq4RaZWgyRlfosVu/TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPRPXsa HNatENywYIkhpnHODnIHMB8GA1UdIwQYMBaAFPrZuTd30M66K7emt41Qf3eQkhwG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGMi8yMzM1MDRBNDRG Q0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpyb3J0NmEzalZCX2Q1Q1NI QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10bTVOM2ZRenJvcnQ2YTNqVkJfZDVDU0hBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdGMi8yMzM1MDRBNDRGQ0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpy b3J0NmEzalZCX2Q1Q1NIQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHnsG3t+DGd50fGHeNd/82Z9x7EGrV1xPGzdGNGsifWLKsN0DyMaOy 6Sc2o/OLYNV0xEVHEMAWy2Hy8G/j/uM+3ELUOoxJIxnjy69MxNjyPAWly1TGB7cg uD5jTIV0BZoGzrtdqf8QCuKsDUhXtVuIfzNqUJhp5SYLyNy0lwi3yINaGcbtvURu QD+Jeo675EFheegbhRjx3p96i1JAprmh1lgDIXqSsYESuYpPMqnX58ubqolMUecQ HpNYYntQSuIbCZCDOCCZ806lF+lDHbBnPkZQbp/8lqfIwiTK+WtXMv3Vx7x2wLHk j3FnGTL3fchk5PD+W0ROS6nz5EzHJeiw -----END CERTIFICATE-----Generated at Sun Jun 29 11:27:30 2025 by rpki-client