$ rpki-client -vvf rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft File: P5mfuMEae4Z_G_n5nKHCaglVK34.mft (raw, json) Hash identifier: Z25oyLha8XAYrlj+RTAOimh9pA1gvWfjfFKCvVQ2mLo= Subject key identifier: 87:8C:F6:B1:51:6E:28:2A:81:6F:91:0E:B9:27:03:41:79:28:FB:87 Authority key identifier: 3F:99:9F:B8:C1:1A:7B:86:7F:1B:F9:F9:9C:A1:C2:6A:09:55:2B:7E Certificate issuer: /CN=A917429C/serialNumber=3F999FB8C11A7B867F1BF9F99CA1C26A09552B7E Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft Manifest number: 016C Signing time: Thu 03 Jul 2025 03:59:14 +0000 Manifest this update: Thu 03 Jul 2025 03:59:14 +0000 Manifest next update: Thu 10 Jul 2025 03:59:14 +0000 Files and hashes: 1: P5mfuMEae4Z_G_n5nKHCaglVK34.crl (hash: scIl3KwA9N3kEs1H3mS8CGjRpUu0xUJcq3UGLXrudYw=) 2: D41F53D48DC011EEB2B3600BC4F9AE02.roa (hash: m18iHIQk6Y05pnInRXfSrfccor+XsbyCaftlfR3dVBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.crl rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917429C, serialNumber=3F999FB8C11A7B867F1BF9F99CA1C26A09552B7E Validity Not Before: Jul 3 03:59:14 2025 GMT Not After : Jul 10 03:59:14 2025 GMT Subject: CN=68660012-e52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ec:fe:cc:5d:4a:46:b9:cd:48:40:2e:1b:29: 73:b8:6c:aa:d1:36:a1:43:75:18:0b:3e:be:cf:78: 8b:b0:a4:22:4a:1e:d4:05:fb:15:65:8b:55:df:75: 7a:3f:d3:0b:99:c5:01:d8:8d:e6:56:7b:5e:e6:5a: cd:6f:9f:21:34:1e:d0:db:43:5d:d8:dd:92:e9:68: 78:1b:d3:8c:39:07:4f:37:3a:71:aa:d9:bf:dc:5d: b8:e5:b6:10:eb:58:a9:6c:a3:21:58:29:2e:a3:55: e7:23:e7:ed:59:5b:04:ef:01:ce:fb:72:7e:52:fa: cf:b0:f7:ce:fb:6b:e1:41:4c:3b:87:ed:e0:2d:4d: d8:06:0d:68:00:e2:6e:5e:06:9b:40:50:e9:83:b3: 3b:31:82:95:d3:fd:b8:40:96:c1:af:0a:1e:92:7f: ce:ed:16:33:04:ac:13:98:b0:5b:55:71:37:0b:17: 9e:40:04:42:02:7a:33:6f:39:79:8d:fb:16:0b:82: 53:79:e2:16:ee:50:ba:cb:cc:fb:b3:7d:38:c7:18: a3:33:61:f1:db:c4:7a:3d:5e:15:dd:6a:6d:e6:69: 9c:1c:89:f6:52:4a:bb:24:67:3a:ed:ed:3d:89:53: ec:3f:ff:19:cf:26:8e:4a:81:42:82:93:5b:df:95: b0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8C:F6:B1:51:6E:28:2A:81:6F:91:0E:B9:27:03:41:79:28:FB:87 X509v3 Authority Key Identifier: keyid:3F:99:9F:B8:C1:1A:7B:86:7F:1B:F9:F9:9C:A1:C2:6A:09:55:2B:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:dd:df:78:39:6d:9e:b1:a0:dc:59:a9:0d:3d:64:8a:f1:15: 1b:d7:7e:64:41:97:fe:33:78:67:30:3d:5e:06:e6:ee:ac:d3: f8:5a:67:ca:e8:ac:df:7a:61:d8:9b:b3:36:fd:d8:37:08:81: 02:56:7e:44:d0:43:76:0b:5d:8b:3c:33:ec:b2:8c:07:b5:89: 7a:95:0b:15:08:a2:92:30:a5:5a:1c:96:ea:84:12:03:b8:7f: a2:83:43:dd:e4:27:32:3f:99:2b:17:21:21:a3:36:48:d4:03: 44:2e:92:48:b6:a7:4f:fc:cf:e3:12:58:da:a9:4a:be:c2:31: b7:fe:c7:39:01:83:e2:18:71:d7:9b:a1:27:03:de:47:30:fb: 08:21:8b:79:62:90:2c:be:b2:b0:a7:b0:77:0e:a5:9b:27:41: dc:9c:38:37:ef:3c:00:75:aa:8e:71:d8:9e:77:4e:d4:3a:24: ec:af:ba:ef:ca:b7:74:e6:a2:ca:8b:cb:88:65:99:1b:80:b8: f7:c2:82:a4:86:47:8f:91:31:f1:c2:30:c3:d7:64:80:17:c6: 4d:f6:90:f3:2c:32:fe:4a:0e:86:52:98:11:30:10:04:11:90: 44:3a:0a:a7:97:d0:f3:cd:3e:69:ef:c3:ee:dc:49:7e:b6:69: 8c:8e:4f:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQyOUMxMTAvBgNVBAUTKDNGOTk5RkI4QzExQTdCODY3RjFCRjlGOTlDQTFDMjZB MDk1NTJCN0UwHhcNMjUwNzAzMDM1OTE0WhcNMjUwNzEwMDM1OTE0WjAYMRYwFAYD VQQDEw02ODY2MDAxMi1lNTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsez+zF1KRrnNSEAuGylzuGyq0TahQ3UYCz6+z3iLsKQiSh7UBfsVZYtV33V6 P9MLmcUB2I3mVnte5lrNb58hNB7Q20Nd2N2S6Wh4G9OMOQdPNzpxqtm/3F245bYQ 61ipbKMhWCkuo1XnI+ftWVsE7wHO+3J+UvrPsPfO+2vhQUw7h+3gLU3YBg1oAOJu XgabQFDpg7M7MYKV0/24QJbBrwoekn/O7RYzBKwTmLBbVXE3CxeeQARCAnozbzl5 jfsWC4JTeeIW7lC6y8z7s304xxijM2Hx28R6PV4V3Wpt5mmcHIn2Ukq7JGc67e09 iVPsP/8ZzyaOSoFCgpNb35WwwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeM9rFR bigqgW+RDrknA0F5KPuHMB8GA1UdIwQYMBaAFD+Zn7jBGnuGfxv5+ZyhwmoJVSt+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDI5Qy8wRjE3MkREMjMw MjgxMUVFOTM0QThEMENDNEY5QUUwMi9QNW1mdU1FYWU0Wl9HX241bktIQ2FnbFZL MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A1bWZ1TUVhZTRaX0dfbjVuS0hDYWdsVkszNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDI5Qy8wRjE3MkREMjMwMjgxMUVFOTM0QThEMENDNEY5QUUwMi9QNW1mdU1FYWU0 Wl9HX241bktIQ2FnbFZLMzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ3d94OW2esaDcWakNPWSK8RUb135kQZf+M3hnMD1eBuburNP4WmfK 6KzfemHYm7M2/dg3CIECVn5E0EN2C12LPDPssowHtYl6lQsVCKKSMKVaHJbqhBID uH+ig0Pd5CcyP5krFyEhozZI1ANELpJItqdP/M/jEljaqUq+wjG3/sc5AYPiGHHX m6EnA95HMPsIIYt5YpAsvrKwp7B3DqWbJ0HcnDg37zwAdaqOcdied07UOiTsr7rv yrd05qLKi8uIZZkbgLj3woKkhkePkTHxwjDD12SAF8ZN9pDzLDL+Sg6GUpgRMBAE EZBEOgqnl9DzzT5p78Pu3El+tmmMjk83 -----END CERTIFICATE-----Generated at Thu Jul 3 10:21:14 2025 by rpki-client