$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: 1zU+KBWEv8qsx9pHybxZHKMVtOldFhha04O27k7xGZ0= Subject key identifier: C8:F9:58:06:0E:63:82:67:BB:15:42:26:C2:F8:80:E4:76:D5:2B:EF Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0B83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0B79 Signing time: Sat 28 Jun 2025 18:45:47 +0000 Manifest this update: Sat 28 Jun 2025 18:45:47 +0000 Manifest next update: Sat 05 Jul 2025 18:45:47 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: E7PTw65+/iTO2I0zasyVqJbGnwy0mOjdHorx9Q48QzA=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2947 (0xb83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Jun 28 18:45:47 2025 GMT Not After : Jul 5 18:45:47 2025 GMT Subject: CN=6860385b-b89f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e9:92:66:96:34:fe:5b:74:34:f0:8e:1c:fc: f5:26:7a:71:ec:ff:d2:02:64:75:c9:c3:23:e8:8d: a4:cd:b3:d9:7f:00:42:ca:9d:aa:d5:f4:8f:ca:3d: ad:3f:e3:53:bf:74:84:68:bc:a7:c8:53:1c:75:7f: 06:fe:98:bc:1e:14:65:94:33:cb:0a:fe:34:24:c7: 8f:57:a6:b5:32:a1:be:98:64:fc:46:48:d9:7b:99: 77:b7:e8:b5:59:43:d8:7d:a0:e7:b2:1e:23:37:1a: a3:aa:12:e0:20:44:6d:fb:f1:e4:9f:b4:ea:dd:e5: 77:b8:2c:64:4e:8f:8a:f1:d4:b2:ee:b7:bb:c5:03: c4:06:c6:b9:be:90:01:7b:c4:ac:5b:09:80:f1:73: e9:3f:ff:bf:17:ea:34:1b:c1:d5:6d:3a:8e:16:4e: 95:59:70:15:f9:cf:3e:a1:62:35:95:8c:58:23:09: 69:6b:5a:a6:28:49:98:67:f7:71:a7:73:57:e2:3a: 4a:b1:ce:db:98:e6:a7:3a:46:9a:fa:ec:e7:96:f8: 12:2f:59:40:88:07:b1:40:5a:1a:3e:b6:60:9e:8b: 76:c6:78:77:d8:65:01:25:1d:7c:57:b4:15:fb:3f: b7:65:2b:67:4a:07:36:b0:67:94:48:64:94:56:0c: 3d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F9:58:06:0E:63:82:67:BB:15:42:26:C2:F8:80:E4:76:D5:2B:EF X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:73:53:86:c2:73:ec:38:90:af:b3:90:90:92:f4:70:40:c2: c7:22:3d:d8:47:8c:1a:13:34:3f:50:c0:f3:44:f8:0c:dc:81: 39:1d:0b:f8:89:74:48:04:86:a7:05:3c:e9:29:36:a3:20:13: 9d:04:c7:fd:42:70:94:90:36:14:5c:1f:96:31:1d:b6:ff:8d: 67:b4:38:88:dc:54:25:bf:16:ec:80:12:3b:53:31:c3:7e:79: 7d:eb:3d:b9:aa:44:1f:0b:b8:3e:30:73:8b:b0:c2:57:af:0c: aa:d8:a1:1e:a1:ba:b3:85:4d:cc:5f:bb:18:56:cc:90:35:74: 84:30:b6:ee:fb:29:50:95:8d:a7:51:c7:d4:b9:b3:5b:01:30: 60:69:15:b2:ec:78:8a:f3:e7:86:14:06:25:25:f1:16:c4:7b: ca:76:72:58:d1:42:83:ce:10:b7:81:bb:d9:71:34:13:9a:65: 27:13:9b:17:cf:c1:90:da:b2:fb:6f:47:a2:6f:96:a9:76:d0: a5:55:64:ec:01:8d:e5:ca:fa:4e:94:08:cc:bf:80:ae:58:1b: ca:b7:54:2a:3f:77:cb:e6:ff:72:c5:e8:b1:88:b2:19:8b:d1: cd:d3:d0:88:2e:b0:ec:ca:5b:36:28:29:c3:24:d2:e2:b8:93: 78:b5:a4:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUwNjI4MTg0NTQ3WhcNMjUwNzA1MTg0NTQ3WjAYMRYwFAYD VQQDEw02ODYwMzg1Yi1iODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OmSZpY0/lt0NPCOHPz1Jnpx7P/SAmR1ycMj6I2kzbPZfwBCyp2q1fSPyj2t P+NTv3SEaLynyFMcdX8G/pi8HhRllDPLCv40JMePV6a1MqG+mGT8RkjZe5l3t+i1 WUPYfaDnsh4jNxqjqhLgIERt+/Hkn7Tq3eV3uCxkTo+K8dSy7re7xQPEBsa5vpAB e8SsWwmA8XPpP/+/F+o0G8HVbTqOFk6VWXAV+c8+oWI1lYxYIwlpa1qmKEmYZ/dx p3NX4jpKsc7bmOanOkaa+uznlvgSL1lAiAexQFoaPrZgnot2xnh32GUBJR18V7QV +z+3ZStnSgc2sGeUSGSUVgw9rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMj5WAYO Y4JnuxVCJsL4gOR21SvvMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnc1OGwnPsOJCvs5CQkvRwQMLHIj3YR4waEzQ/UMDzRPgM3IE5HQv4 iXRIBIanBTzpKTajIBOdBMf9QnCUkDYUXB+WMR22/41ntDiI3FQlvxbsgBI7UzHD fnl96z25qkQfC7g+MHOLsMJXrwyq2KEeobqzhU3MX7sYVsyQNXSEMLbu+ylQlY2n UcfUubNbATBgaRWy7HiK8+eGFAYlJfEWxHvKdnJY0UKDzhC3gbvZcTQTmmUnE5sX z8GQ2rL7b0eib5apdtClVWTsAY3lyvpOlAjMv4CuWBvKt1QqP3fL5v9yxeixiLIZ i9HN09CILrDsyls2KCnDJNLiuJN4taQ1 -----END CERTIFICATE-----Generated at Sun Jun 29 17:08:25 2025 by rpki-client