$ rpki-client -vvf rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft File: C5sr_BxrLAlndq91fTrxRUfkPnI.mft (raw, json) Hash identifier: lrDk2Ioc2+IA7HdhpGLGq5ja69HxH4wII8a9fVV9V+8= Subject key identifier: 87:76:B8:74:66:24:CD:55:16:0C:E5:FC:D4:34:0B:61:9F:83:67:26 Authority key identifier: 0B:9B:2B:FC:1C:6B:2C:09:67:76:AF:75:7D:3A:F1:45:47:E4:3E:72 Certificate issuer: /CN=A918F646/serialNumber=0B9B2BFC1C6B2C096776AF757D3AF14547E43E72 Certificate serial: 11DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft Manifest number: 11C9 Signing time: Wed 02 Jul 2025 17:22:55 +0000 Manifest this update: Wed 02 Jul 2025 17:22:54 +0000 Manifest next update: Wed 09 Jul 2025 17:22:54 +0000 Files and hashes: 1: C5sr_BxrLAlndq91fTrxRUfkPnI.crl (hash: N5pyJHyu84R1OHN+6cPiJ/o5TzvK8YkE82aCK0KCj/U=) 2: 60FCDED2F48F11E89651151FC4F9AE02.roa (hash: TiqURCOWDtFV1lphAi7QXXgszXNq/kYQUGQ1WC3OpiM=) 3: DA0E6EFEE86411ECA54EC03BC4F9AE02.roa (hash: mYkKjSQQ/omFBmjS3V6LuAFr1BpNALu/wvYuWXKZHNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.crl rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4574 (0x11de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F646, serialNumber=0B9B2BFC1C6B2C096776AF757D3AF14547E43E72 Validity Not Before: Jul 2 17:22:54 2025 GMT Not After : Jul 9 17:22:54 2025 GMT Subject: CN=68656aee-4f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:10:fd:d8:69:ee:43:79:fd:71:57:37:54:a1: d1:4e:78:1d:de:4f:6b:30:d0:76:f2:e8:bb:60:9c: 18:06:a8:87:93:b0:23:6b:9c:26:24:cf:1a:b1:87: 88:10:5b:85:67:8c:05:7c:5c:a3:54:ba:b0:01:b8: 78:b1:37:8a:dd:60:86:55:8d:07:59:cf:4b:58:24: b9:22:27:34:f6:a5:c7:37:9d:aa:c0:d3:d7:be:02: a0:29:0e:9a:57:94:0e:ee:e9:2d:a8:33:f6:0a:33: 65:0b:77:ff:8c:ed:3a:ee:90:b0:0f:6a:33:f5:5b: b0:ed:48:d0:c9:bc:3f:c2:39:e8:3d:70:d4:df:4b: 0d:69:5a:50:91:ad:31:32:75:cd:64:c2:a4:10:0d: f7:4f:b0:5c:4b:95:6c:d6:60:bd:fe:10:55:b4:7a: ba:a1:e2:de:c2:eb:2f:1b:fb:a4:21:9b:e3:d1:a1: c6:46:18:de:23:cd:23:5c:eb:57:ef:d2:a2:c4:2f: f3:e5:98:25:9b:a2:ac:d0:4e:9f:38:2f:d0:24:20: ce:a4:3f:93:10:40:41:11:8a:ba:7d:dd:7a:bd:19: 19:19:92:cb:42:b9:57:3d:b2:3d:e3:a7:53:96:cf: 5f:db:7e:67:d3:d9:13:8b:01:55:17:36:09:0e:e9: ae:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:76:B8:74:66:24:CD:55:16:0C:E5:FC:D4:34:0B:61:9F:83:67:26 X509v3 Authority Key Identifier: keyid:0B:9B:2B:FC:1C:6B:2C:09:67:76:AF:75:7D:3A:F1:45:47:E4:3E:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:7c:43:60:af:c3:b9:d2:f2:2e:93:09:d2:27:e3:ec:47:9c: ad:cb:c8:fd:fd:84:8a:e3:f0:41:b9:d6:8b:50:90:ef:51:3d: ae:78:c8:14:3e:96:61:ee:6d:13:16:eb:61:45:01:12:33:f9: a9:8e:a0:b1:83:a7:13:ce:07:6e:0f:73:91:3d:d3:ac:02:a0: 76:6b:5a:e9:17:8c:91:91:58:c4:b0:43:13:62:b4:7f:70:1f: f8:0b:43:70:4d:da:d4:b7:5e:26:7a:c0:2c:33:9c:11:f1:ea: 6b:f5:bf:7c:62:9f:b7:2b:8e:57:94:a6:cc:d1:7c:e0:00:9b: 05:01:59:c4:24:a3:10:c4:e2:a4:6a:cf:08:c0:a0:7c:11:bb: e0:1b:2a:5a:58:e7:67:2f:a2:c3:2e:00:01:4e:ee:85:9c:3b: 90:ff:43:ea:b0:9b:44:af:97:b8:81:e9:b3:94:64:0b:91:06: 16:3b:d9:9a:08:d0:f3:4d:8d:4b:1e:d0:1c:77:7d:58:18:58: 59:fe:53:d8:87:98:c2:8c:c5:22:b5:32:fa:65:e6:e2:2d:33: 39:bf:f0:1e:61:d6:ea:3d:a9:ec:02:45:db:73:42:7c:38:79: 76:aa:51:43:bd:93:d7:3b:bd:c0:9c:13:82:42:71:56:36:a4: ad:7e:ff:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY2NDYxMTAvBgNVBAUTKDBCOUIyQkZDMUM2QjJDMDk2Nzc2QUY3NTdEM0FGMTQ1 NDdFNDNFNzIwHhcNMjUwNzAyMTcyMjU0WhcNMjUwNzA5MTcyMjU0WjAYMRYwFAYD VQQDEw02ODY1NmFlZS00ZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxD92GnuQ3n9cVc3VKHRTngd3k9rMNB28ui7YJwYBqiHk7Aja5wmJM8asYeI EFuFZ4wFfFyjVLqwAbh4sTeK3WCGVY0HWc9LWCS5Iic09qXHN52qwNPXvgKgKQ6a V5QO7uktqDP2CjNlC3f/jO067pCwD2oz9Vuw7UjQybw/wjnoPXDU30sNaVpQka0x MnXNZMKkEA33T7BcS5Vs1mC9/hBVtHq6oeLewusvG/ukIZvj0aHGRhjeI80jXOtX 79KixC/z5Zglm6Ks0E6fOC/QJCDOpD+TEEBBEYq6fd16vRkZGZLLQrlXPbI946dT ls9f235n09kTiwFVFzYJDumu8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFId2uHRm JM1VFgzl/NQ0C2Gfg2cmMB8GA1UdIwQYMBaAFAubK/wcaywJZ3avdX068UVH5D5y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjY0Ni9DRUNFOEM5QUY0 OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9DNXNyX0J4ckxBbG5kcTkxZlRyeFJVZmtQ bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M1c3JfQnhyTEFsbmRxOTFmVHJ4UlVma1BuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjY0Ni9DRUNFOEM5QUY0OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9DNXNyX0J4ckxB bG5kcTkxZlRyeFJVZmtQbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUfENgr8O50vIukwnSJ+PsR5yty8j9/YSK4/BBudaLUJDvUT2ueMgU PpZh7m0TFuthRQESM/mpjqCxg6cTzgduD3ORPdOsAqB2a1rpF4yRkVjEsEMTYrR/ cB/4C0NwTdrUt14mesAsM5wR8epr9b98Yp+3K45XlKbM0XzgAJsFAVnEJKMQxOKk as8IwKB8EbvgGypaWOdnL6LDLgABTu6FnDuQ/0PqsJtEr5e4gemzlGQLkQYWO9ma CNDzTY1LHtAcd31YGFhZ/lPYh5jCjMUitTL6ZebiLTM5v/AeYdbqPansAkXbc0J8 OHl2qlFDvZPXO73AnBOCQnFWNqStfv80 -----END CERTIFICATE-----Generated at Thu Jul 3 23:09:59 2025 by rpki-client