$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft File: 5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft (raw, json) Hash identifier: i1ThFhAwJa/hpQF7TPVWWtwD7JtCGdRVJdtDGZIlV5s= Subject key identifier: E4:42:B5:F4:6A:AD:BE:F4:DA:2C:C7:B9:35:18:74:8F:0D:CE:5D:45 Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft Manifest number: A1 Signing time: Thu 03 Jul 2025 06:28:08 +0000 Manifest this update: Thu 03 Jul 2025 06:28:07 +0000 Manifest next update: Thu 10 Jul 2025 06:28:07 +0000 Files and hashes: 1: 5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl (hash: dJGUMBRPTZsR6HJf/9Tesdwjh9fntKKwnln65XUwHcg=) 2: 4D06CD2C667411EF8E723587C4F9AE02.roa (hash: 4PdtbIsL2ZotyQ7lOujn962oNOjC34OWUPtAk2nb5/I=) 3: 4CA4BE8E667411EF8E723587C4F9AE02.roa (hash: 8qwHnAzkWpQMSqbxW4gRTYW6uWniUVjWaHfJJJJlxJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8, serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Validity Not Before: Jul 3 06:28:07 2025 GMT Not After : Jul 10 06:28:07 2025 GMT Subject: CN=686622f7-953f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e4:3d:ff:3a:1b:7b:4b:6a:2c:12:48:bb:a0: 0c:b0:58:7b:49:65:5e:03:18:2e:92:51:20:83:f4: de:09:57:f8:5e:a5:0d:e9:c0:e8:64:c3:2b:ae:28: 47:42:ce:73:99:b1:1c:c1:2b:0f:59:e5:2c:e9:ad: 18:2f:b2:b1:50:18:89:f0:2c:0e:96:20:8b:b9:bf: 97:c2:c0:90:8f:09:f8:af:66:fa:4a:0a:31:fa:07: 49:f4:08:2e:95:2c:76:7e:5e:7e:f7:2f:62:8b:d8: 47:db:8a:ae:a3:00:6f:11:53:b4:43:00:91:ef:89: 86:5b:03:30:a5:0f:34:88:43:e9:ec:cc:0d:75:30: 50:f6:96:b8:4c:47:0d:07:dd:91:3b:04:54:66:02: 75:1c:1d:c5:10:70:0c:e8:70:c6:0d:b8:f8:92:e1: 51:be:b6:3e:a0:04:96:01:6b:70:91:35:9a:20:94: e2:9c:32:60:c2:46:8b:6d:82:d0:ce:4d:a9:8a:cc: aa:78:21:84:75:e3:63:15:9e:5a:b9:65:ef:09:6a: b8:74:8a:37:91:66:92:22:86:40:3c:fb:58:f9:88: ca:32:e9:28:57:18:0b:c9:b4:2a:d8:3d:f5:dd:76: e2:67:83:1e:c2:71:15:f1:f2:bd:46:b0:20:5c:38: b6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:42:B5:F4:6A:AD:BE:F4:DA:2C:C7:B9:35:18:74:8F:0D:CE:5D:45 X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:83:81:6d:1c:07:b8:5e:4d:1a:db:9e:3f:ef:29:1f:8d:f5: 80:a7:bb:93:39:8d:b0:29:e4:57:6a:c1:09:53:80:df:2b:5f: 1d:ef:c6:a6:4a:d8:0c:93:6e:cd:9d:4a:d7:0b:92:dc:e5:38: 4b:c3:c5:16:95:0c:d2:66:a0:0e:df:8a:89:dc:89:8e:ac:6b: 6e:75:36:26:5e:c7:a2:dd:a7:1f:3d:f5:18:0c:05:cc:6e:9b: dd:0d:5a:2b:0b:cd:b6:8a:48:fe:f9:e6:50:83:50:03:80:36: ee:5a:58:25:00:ab:1c:f8:b9:33:5e:a5:c8:45:aa:06:d5:72: 1a:33:fd:6b:51:54:57:98:25:aa:b5:78:27:dd:1e:68:31:a4: cb:da:3f:0d:08:f4:0d:db:e6:d0:a7:d6:d2:32:e4:66:bb:6d: 0f:ad:7e:c8:ec:5f:d9:7c:26:e7:3e:e7:92:d5:20:0a:de:10: 33:82:29:9e:1f:c9:e1:fd:7b:1e:0e:5c:17:1d:a4:43:81:6e: 6e:d9:3f:7f:29:04:62:b4:ab:8e:19:d4:df:17:3e:c8:00:8d: 51:da:6f:7f:63:48:34:8d:a6:31:2d:83:47:8c:64:8c:61:77: f3:9d:e6:75:2f:6e:74:7b:56:41:ef:6e:ea:b4:bd:7f:34:01: 03:2e:67:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERDgxMTAvBgNVBAUTKEU2QjU0RDAyN0NFMzQ5OEJGMzVFNEQwNjVCQzQ3OEE5 MzZDMTYxNjkwHhcNMjUwNzAzMDYyODA3WhcNMjUwNzEwMDYyODA3WjAYMRYwFAYD VQQDEw02ODY2MjJmNy05NTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOQ9/zobe0tqLBJIu6AMsFh7SWVeAxguklEgg/TeCVf4XqUN6cDoZMMrrihH Qs5zmbEcwSsPWeUs6a0YL7KxUBiJ8CwOliCLub+XwsCQjwn4r2b6Sgox+gdJ9Agu lSx2fl5+9y9ii9hH24quowBvEVO0QwCR74mGWwMwpQ80iEPp7MwNdTBQ9pa4TEcN B92ROwRUZgJ1HB3FEHAM6HDGDbj4kuFRvrY+oASWAWtwkTWaIJTinDJgwkaLbYLQ zk2pisyqeCGEdeNjFZ5auWXvCWq4dIo3kWaSIoZAPPtY+YjKMukoVxgLybQq2D31 3XbiZ4MewnEV8fK9RrAgXDi20wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORCtfRq rb702izHuTUYdI8Nzl1FMB8GA1UdIwQYMBaAFOa1TQJ840mL815NBlvEeKk2wWFp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEREOC9BNjZBNzVFRTY1 QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZdnpYazBHVzhSNHFUYkJZ V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEREOC9BNjZBNzVFRTY1QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZ dnpYazBHVzhSNHFUYkJZV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgg4FtHAe4Xk0a254/7ykfjfWAp7uTOY2wKeRXasEJU4DfK18d78am StgMk27NnUrXC5Lc5ThLw8UWlQzSZqAO34qJ3ImOrGtudTYmXsei3acfPfUYDAXM bpvdDVorC822ikj++eZQg1ADgDbuWlglAKsc+LkzXqXIRaoG1XIaM/1rUVRXmCWq tXgn3R5oMaTL2j8NCPQN2+bQp9bSMuRmu20PrX7I7F/ZfCbnPueS1SAK3hAzgime H8nh/XseDlwXHaRDgW5u2T9/KQRitKuOGdTfFz7IAI1R2m9/Y0g0jaYxLYNHjGSM YXfzneZ1L250e1ZB727qtL1/NAEDLmfc -----END CERTIFICATE-----Generated at Fri Jul 4 15:10:32 2025 by rpki-client