$ rpki-client -vvf rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft File: s5MbVo8uudLtLKTWS-vAhvuduJo.mft (raw, json) Hash identifier: kYbCEWGg8e3QPHCuTUXVF+Jb4C8aWnPOgol38EQJStY= Subject key identifier: BC:B8:29:D1:EA:20:CC:1C:FD:06:79:78:3B:D8:02:2A:A0:6E:73:E1 Authority key identifier: B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A Certificate issuer: /CN=A91867F1/serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Certificate serial: 0AA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft Manifest number: 0AA1 Signing time: Wed 02 Jul 2025 19:46:30 +0000 Manifest this update: Wed 02 Jul 2025 19:46:29 +0000 Manifest next update: Wed 09 Jul 2025 19:46:29 +0000 Files and hashes: 1: s5MbVo8uudLtLKTWS-vAhvuduJo.crl (hash: COog3D6UxY9JgYsAc6r2KfJpXo6fxIdEyAHGq7JciSE=) 2: 6FEF33E05C2B11EAAE63403FC4F9AE02.roa (hash: OjmKjbirK1HOaPuAuxNpB1VjEustiEgzLqIxeeZ+0sM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2728 (0xaa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91867F1, serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Validity Not Before: Jul 2 19:46:29 2025 GMT Not After : Jul 9 19:46:29 2025 GMT Subject: CN=68658c95-d7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5a:55:ec:9d:15:8b:e7:49:5f:eb:29:37:68: 5c:b6:26:8e:be:d0:57:78:7f:dc:d0:83:ff:52:2b: 65:6d:af:83:54:42:97:95:f6:e0:3c:32:40:15:09: 33:39:ba:b4:fe:f5:a8:e0:8b:0c:b3:92:e0:a5:d9: 59:f3:2b:ad:1e:59:a0:f9:b0:42:df:36:41:5d:0e: d1:79:4e:13:7b:9f:a3:94:11:ed:2f:70:00:cd:d7: 59:2f:cb:c9:21:59:3e:2b:27:75:94:fc:84:7f:e4: 38:8c:04:8f:f9:57:4d:bd:b0:a7:40:af:0c:98:7c: 87:6b:29:c2:67:17:87:a1:1c:92:7b:65:f8:2d:7e: 2d:57:7f:74:62:6e:23:26:d3:c3:de:eb:bf:46:8f: d3:30:1a:9c:7f:f9:da:85:29:ec:1e:40:8d:1b:d0: 85:85:d3:5f:75:7d:e5:54:2c:18:19:d6:e4:55:a2: 92:29:38:72:65:99:fd:00:fc:08:d1:1a:6e:a2:82: 71:87:04:0b:f2:d8:5a:10:83:23:b2:f8:3b:b4:c8: c1:47:8b:c0:15:00:68:87:c7:7c:cd:76:aa:f3:c8: f9:5b:5d:78:76:33:e8:a9:d3:18:44:ab:66:f8:5e: 39:7a:0b:6e:05:99:26:cb:b8:2e:ae:c0:f7:19:a9: 76:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:B8:29:D1:EA:20:CC:1C:FD:06:79:78:3B:D8:02:2A:A0:6E:73:E1 X509v3 Authority Key Identifier: keyid:B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ff:5f:8d:86:a1:d2:f3:22:41:95:e5:ea:e4:2f:88:b8:0f: 66:77:e7:cc:23:d0:ae:19:62:d8:12:92:0b:77:04:7c:ac:ca: f3:79:fe:0b:39:8c:cd:6e:f8:59:e0:87:e2:8b:a8:19:5a:93: 53:e3:f4:d0:01:42:51:bd:00:3a:01:db:bd:e8:62:a2:7e:99: d4:2a:7d:6b:e6:6a:65:df:d6:31:2d:f0:e5:79:4e:12:16:5a: 90:64:64:b2:25:bf:af:35:d5:ca:26:85:b6:8d:00:cd:ff:44: a3:23:25:eb:8f:1c:ec:a9:4a:bf:e9:83:d6:e5:c8:9b:e6:e6: cd:90:29:29:ee:49:fc:2b:aa:5a:34:cd:32:73:ef:19:a4:e1: 08:24:5e:55:71:6e:0b:a4:6c:2c:13:cb:13:40:a1:a1:2c:16: 91:2d:5c:5d:4f:36:e2:cf:f1:80:4c:6e:5d:e7:33:0d:00:4a: 9a:6d:97:7d:a9:d8:13:c8:ac:c9:bb:5c:5b:33:e4:a9:77:35: 8b:e7:05:74:f4:5f:d9:35:b9:d6:ed:67:be:e6:65:44:89:79: 8d:a5:6a:99:65:b4:ee:50:7e:74:69:a6:21:b9:0d:82:2d:c3: cb:95:50:80:0b:d2:7a:97:35:74:6d:73:1b:cc:f5:cd:a5:a0: 63:51:2d:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3RjExMTAvBgNVBAUTKEIzOTMxQjU2OEYyRUI5RDJFRDJDQTRENjRCRUJDMDg2 RkI5REI4OUEwHhcNMjUwNzAyMTk0NjI5WhcNMjUwNzA5MTk0NjI5WjAYMRYwFAYD VQQDEw02ODY1OGM5NS1kN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlpV7J0Vi+dJX+spN2hctiaOvtBXeH/c0IP/Uitlba+DVEKXlfbgPDJAFQkz Obq0/vWo4IsMs5LgpdlZ8yutHlmg+bBC3zZBXQ7ReU4Te5+jlBHtL3AAzddZL8vJ IVk+Kyd1lPyEf+Q4jASP+VdNvbCnQK8MmHyHaynCZxeHoRySe2X4LX4tV390Ym4j JtPD3uu/Ro/TMBqcf/nahSnsHkCNG9CFhdNfdX3lVCwYGdbkVaKSKThyZZn9APwI 0RpuooJxhwQL8thaEIMjsvg7tMjBR4vAFQBoh8d8zXaq88j5W114djPoqdMYRKtm +F45egtuBZkmy7gursD3Gal2EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLy4KdHq IMwc/QZ5eDvYAiqgbnPhMB8GA1UdIwQYMBaAFLOTG1aPLrnS7Syk1kvrwIb7nbia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjdGMS84MDlENzE1QzU5 MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVkTHRMS1RXUy12QWh2dWR1 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1TWJWbzh1dWRMdExLVFdTLXZBaHZ1ZHVKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjdGMS84MDlENzE1QzU5MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVk THRMS1RXUy12QWh2dWR1Sm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz/1+NhqHS8yJBleXq5C+IuA9md+fMI9CuGWLYEpILdwR8rMrzef4L OYzNbvhZ4Ifii6gZWpNT4/TQAUJRvQA6Adu96GKifpnUKn1r5mpl39YxLfDleU4S FlqQZGSyJb+vNdXKJoW2jQDN/0SjIyXrjxzsqUq/6YPW5cib5ubNkCkp7kn8K6pa NM0yc+8ZpOEIJF5VcW4LpGwsE8sTQKGhLBaRLVxdTzbiz/GATG5d5zMNAEqabZd9 qdgTyKzJu1xbM+SpdzWL5wV09F/ZNbnW7We+5mVEiXmNpWqZZbTuUH50aaYhuQ2C LcPLlVCAC9J6lzV0bXMbzPXNpaBjUS3C -----END CERTIFICATE-----Generated at Thu Jul 3 00:28:31 2025 by rpki-client