$ rpki-client -vvf rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft File: P5mfuMEae4Z_G_n5nKHCaglVK34.mft (raw, json) Hash identifier: ezC2YjwAKAIrr40Ag4+vPpGBlia0oEIciMdMBdqDOKM= Subject key identifier: 07:4E:FC:BF:96:F4:3D:BD:18:13:B6:80:0A:D0:EE:7E:4E:3D:CF:90 Authority key identifier: 3F:99:9F:B8:C1:1A:7B:86:7F:1B:F9:F9:9C:A1:C2:6A:09:55:2B:7E Certificate issuer: /CN=A917429C/serialNumber=3F999FB8C11A7B867F1BF9F99CA1C26A09552B7E Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft Manifest number: 0153 Signing time: Tue 13 May 2025 03:23:39 +0000 Manifest this update: Tue 13 May 2025 03:23:38 +0000 Manifest next update: Tue 20 May 2025 03:23:38 +0000 Files and hashes: 1: P5mfuMEae4Z_G_n5nKHCaglVK34.crl (hash: In8kzhi1vRfnyJuBZtN/4LBrm3pg6A22sKI6QlD4rVA=) 2: D41F53D48DC011EEB2B3600BC4F9AE02.roa (hash: m18iHIQk6Y05pnInRXfSrfccor+XsbyCaftlfR3dVBk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.crl rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:23:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917429C, serialNumber=3F999FB8C11A7B867F1BF9F99CA1C26A09552B7E Validity Not Before: May 13 03:23:38 2025 GMT Not After : May 20 03:23:38 2025 GMT Subject: CN=6822bb3b-7513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:eb:35:76:e7:8f:a3:12:6c:67:ad:fe:35:8c: aa:0c:ec:46:df:d3:64:c1:7d:2d:26:47:67:68:79: 35:8b:76:d1:3f:79:4a:2a:ee:0a:d2:b4:90:5c:d8: c8:49:79:a4:64:69:cd:ae:1c:cd:a7:10:49:d2:71: 7a:1f:bc:2d:0a:b6:99:d3:1a:77:26:84:30:5d:db: a4:7b:22:67:82:45:9f:5d:fa:b1:86:d0:40:5e:31: ae:2c:24:75:49:7e:e4:9a:d2:1c:15:0f:2e:da:c5: f9:93:c8:c5:c5:38:3b:9a:a8:c5:06:b2:e3:dd:e3: 1a:d5:7f:f9:2d:e5:96:89:6e:76:3c:a4:5f:e7:8c: 92:ae:8a:a8:c0:f6:c3:6b:b5:33:73:bb:95:ec:c1: 56:1e:63:f3:9e:ed:0b:7c:0a:b1:c3:d4:82:02:eb: ca:41:d8:19:f6:c2:ac:47:33:22:29:e2:84:7a:5a: c1:86:15:56:6f:d1:a4:9a:4b:6e:14:54:21:e5:56: d3:db:90:48:b8:57:71:fc:3f:3f:87:cc:a5:98:bd: 71:fe:7e:f2:79:06:af:2a:9b:05:09:11:d8:cf:0f: e2:eb:6d:f0:cc:53:07:65:0e:b5:93:6a:0d:e5:27: 4d:cb:2d:fd:6a:b1:64:4f:9b:4e:39:c4:98:28:0e: 2f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:4E:FC:BF:96:F4:3D:BD:18:13:B6:80:0A:D0:EE:7E:4E:3D:CF:90 X509v3 Authority Key Identifier: keyid:3F:99:9F:B8:C1:1A:7B:86:7F:1B:F9:F9:9C:A1:C2:6A:09:55:2B:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:70:63:d8:53:9a:33:f0:9a:92:a4:74:ce:ad:8a:1b:3c:29: 27:d1:55:75:81:23:e5:6b:07:a3:25:67:1b:8b:d0:2d:0c:f2: 07:45:dd:5a:f1:6c:fb:d3:05:ab:3f:bd:b0:3b:d6:3a:55:a6: 98:73:fb:7a:83:3e:8c:cf:61:ce:f9:b2:0a:c9:7c:a0:c1:d7: 77:4b:d8:aa:88:65:6b:9c:57:98:c1:7a:97:4e:20:3c:46:5b: 57:6a:27:03:bf:22:ea:8a:15:82:b2:dc:32:cc:a8:b7:58:d2: 96:f4:b1:6f:cd:06:3f:c8:a1:1a:43:f0:ad:7d:8a:37:1c:cf: 83:81:14:f1:74:18:02:c5:b3:d9:b8:65:28:9d:e4:a6:b1:0c: 73:1f:a5:91:a1:77:a6:31:5a:75:c9:50:2d:56:17:f7:7d:29: 6a:d1:fd:e1:e1:2b:4c:e7:a8:e3:5d:ad:5f:e3:bd:fc:1c:de: 58:31:cd:7d:dc:e8:be:51:2f:ea:3d:36:af:35:c3:78:bc:18: 98:61:d6:39:88:aa:d6:ac:35:df:58:3b:e9:2a:b6:a1:6d:96: 46:b9:61:5c:8a:c9:e9:ae:45:8e:42:f5:ef:2e:24:da:f4:ae: df:f9:a0:10:7c:bc:a8:65:76:7e:3f:9c:0e:19:b4:c1:61:7e: 07:16:48:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQyOUMxMTAvBgNVBAUTKDNGOTk5RkI4QzExQTdCODY3RjFCRjlGOTlDQTFDMjZB MDk1NTJCN0UwHhcNMjUwNTEzMDMyMzM4WhcNMjUwNTIwMDMyMzM4WjAYMRYwFAYD VQQDEw02ODIyYmIzYi03NTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+s1duePoxJsZ63+NYyqDOxG39NkwX0tJkdnaHk1i3bRP3lKKu4K0rSQXNjI SXmkZGnNrhzNpxBJ0nF6H7wtCraZ0xp3JoQwXdukeyJngkWfXfqxhtBAXjGuLCR1 SX7kmtIcFQ8u2sX5k8jFxTg7mqjFBrLj3eMa1X/5LeWWiW52PKRf54ySroqowPbD a7Uzc7uV7MFWHmPznu0LfAqxw9SCAuvKQdgZ9sKsRzMiKeKEelrBhhVWb9Gkmktu FFQh5VbT25BIuFdx/D8/h8ylmL1x/n7yeQavKpsFCRHYzw/i623wzFMHZQ61k2oN 5SdNyy39arFkT5tOOcSYKA4vRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdO/L+W 9D29GBO2gArQ7n5OPc+QMB8GA1UdIwQYMBaAFD+Zn7jBGnuGfxv5+ZyhwmoJVSt+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDI5Qy8wRjE3MkREMjMw MjgxMUVFOTM0QThEMENDNEY5QUUwMi9QNW1mdU1FYWU0Wl9HX241bktIQ2FnbFZL MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A1bWZ1TUVhZTRaX0dfbjVuS0hDYWdsVkszNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDI5Qy8wRjE3MkREMjMwMjgxMUVFOTM0QThEMENDNEY5QUUwMi9QNW1mdU1FYWU0 Wl9HX241bktIQ2FnbFZLMzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgcGPYU5oz8JqSpHTOrYobPCkn0VV1gSPlawejJWcbi9AtDPIHRd1a 8Wz70wWrP72wO9Y6VaaYc/t6gz6Mz2HO+bIKyXygwdd3S9iqiGVrnFeYwXqXTiA8 RltXaicDvyLqihWCstwyzKi3WNKW9LFvzQY/yKEaQ/CtfYo3HM+DgRTxdBgCxbPZ uGUoneSmsQxzH6WRoXemMVp1yVAtVhf3fSlq0f3h4StM56jjXa1f4738HN5YMc19 3Oi+US/qPTavNcN4vBiYYdY5iKrWrDXfWDvpKrahbZZGuWFcisnprkWOQvXvLiTa 9K7f+aAQfLyoZXZ+P5wOGbTBYX4HFkiS -----END CERTIFICATE-----Generated at Tue May 13 16:12:27 2025 by rpki-client