$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft File: SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json) Hash identifier: hX5MKoR5CWT3Bt52oKgBzypeXx3lLlrM0Br+fRJ7dTw= Subject key identifier: E3:BF:C5:B0:95:11:82:DF:73:CC:08:75:C4:2B:75:16:C5:1B:9F:74 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 04A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft Manifest number: 03DD Signing time: Sun 29 Jun 2025 00:47:57 +0000 Manifest this update: Sun 29 Jun 2025 00:47:56 +0000 Manifest next update: Sun 06 Jul 2025 00:47:56 +0000 Files and hashes: 1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: 6xAv0tTfh8g7WBJYFHlfl27uF5XfX4dEyGGj+Zp3aIE=) 2: B351D67E295D11F0B6373D85C4F9AE02.roa (hash: 6J+RHRu9KQC19R4POfCZ6vtZ0F8pQfkQ77qgKUv03E0=) 3: 235C33AA841511EEB8881E26C4F9AE02.roa (hash: gh6H1oXOeu80i+EJHcbBEp2/DgpqUvIG4FhNIsmOBc8=) 4: FC458FFABD2F11EFACAEDF48C4F9AE02.roa (hash: zB6o1ufSPR15qZaXVJkiDWkGqSq/IwuqWXWe0bUcf1Y=) 5: 340E5DD0141B11F0922B6344C4F9AE02.roa (hash: 3+hYQrTmF+e7jJciHHC9Syz1XLKiAuOCDuMHFEIoOO8=) 6: 212DD5DEEFCB11EFBA51D367C4F9AE02.roa (hash: yoHxToNdVsEl2/mlXGoTSTZxsnICbltZ8OX7V22JdbQ=) 7: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: xMiHMYItwXrD425Qd67NbjvjX4HrJ3EnpnA8c/QF/4k=) 8: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: SilbnDSMyvFBaNxXZnHVsn7YIdcJKbT+9vzuxU+MumM=) 9: 15E5E344239111EF96EC1C11C4F9AE02.roa (hash: A8LP0mnaTBBKppNqPSMaDhPFCk6GGBkjSaBDc8dCjBI=) 10: CF6343DE295D11F0B3C33614C4F9AE02.roa (hash: GEOmMPHt+G2/MbW4UDY6/tPaY4MdJDx+hT+IJOD6OI0=) 11: 423DBDA2BD3011EFBEFB5F49C4F9AE02.roa (hash: 9J2iOFdXW0WTaVQoSkjTpRubYQV1uYwslH5WX54SWS8=) 12: B6E083D46E2F11EEB9C12A34C4F9AE02.roa (hash: cEUErhxJhRs9Ayd1OjEDxa3aUEaS/H1Cn1wGLQy/Hdo=) 13: DD12F48AEC2611EF94F85F09C4F9AE02.roa (hash: 5x3hwbD6OKSIDNRFPjnTH18AkwSHTg00pMz0FKOos+E=) 14: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: R2/WUKzxoHuFFd/QsgqeEUvYq+HCK78+7w9Z8fUIsWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 00:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1186 (0x4a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Jun 29 00:47:56 2025 GMT Not After : Jul 6 00:47:56 2025 GMT Subject: CN=68608d3c-8d63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:63:05:d3:40:f0:7f:2c:21:ed:cf:72:0c:83: dd:4e:c7:ff:a9:82:dd:da:30:ff:b9:49:c9:1d:c2: e6:49:78:87:ca:e9:1f:f1:59:86:49:89:46:28:01: 05:c5:21:7c:67:b9:b2:ba:26:e1:57:1e:be:6a:8f: 9f:51:76:2d:14:00:22:a1:f0:5d:01:09:d0:7c:7b: 1a:78:a3:de:ae:f8:cb:e9:01:09:44:a0:d6:5e:62: 2f:e5:2b:71:96:11:d0:c5:51:88:15:51:fa:d1:bd: b5:18:62:81:cf:0b:7a:87:9a:8d:0c:38:9b:19:02: 20:ea:23:f4:0b:98:57:36:69:9b:e5:ba:6c:4a:e0: a7:02:53:64:98:96:df:14:43:b3:a3:99:55:eb:ea: 8d:c8:cd:b5:fa:5a:26:24:2c:03:8c:9e:c1:45:fa: 9a:97:da:ab:4d:9a:d3:bd:02:c3:b5:42:9a:1d:39: fb:6f:f2:20:b5:2a:53:35:fd:1a:5d:26:2e:71:1b: cb:e2:2c:4e:e7:d6:d1:51:b2:51:80:81:3a:30:9a: e4:3d:10:ac:a1:ab:bf:38:ef:3f:a9:e0:eb:2d:da: ce:02:d5:98:d6:1b:95:32:65:c6:36:91:a7:36:ee: cd:2a:9c:d7:5e:28:3c:16:89:c7:ad:df:23:72:a0: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:BF:C5:B0:95:11:82:DF:73:CC:08:75:C4:2B:75:16:C5:1B:9F:74 X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:c7:78:ed:c1:cf:e7:1e:16:6d:d2:9c:9e:69:dd:9f:51:35: 34:3e:f6:0b:bd:3b:db:d6:7e:b6:a1:59:93:26:6f:ba:36:dd: c6:c9:68:38:03:23:1a:3d:e4:e3:43:ae:68:c1:d3:7f:1f:2d: cf:ed:c6:f4:8e:1f:63:8e:21:20:4f:28:54:9e:b2:c8:2d:d5: 58:39:f2:f2:0f:80:3e:a7:6b:ec:5d:69:46:b4:ff:ac:11:32: fd:cd:47:4e:03:95:7d:81:bb:cc:8b:f4:ff:42:a5:a7:db:a8: 18:97:92:7c:b9:2d:11:b1:25:0d:09:bf:41:06:4a:f2:9d:81: fb:79:15:9a:4c:45:17:68:da:2f:73:9a:9b:07:d8:5d:e7:1a: 7b:75:af:64:47:b0:66:8a:63:3c:1e:e3:9d:85:cc:19:48:31: fc:2c:69:1d:e8:5a:a0:f9:7d:b7:43:30:84:dc:46:c9:01:52: b5:b0:a3:9f:00:2e:a6:25:8f:d8:8e:ed:d7:b2:06:29:e5:67: 01:c6:e4:79:d7:4c:75:70:c9:7e:cc:be:cd:14:a8:b0:0b:4d: 9e:13:1c:33:28:44:0e:50:16:19:26:22:97:2a:06:9e:a1:d2: 8e:db:0f:c7:09:f4:f2:a2:63:7b:c3:9b:84:56:5c:a2:e8:36: 68:38:84:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUwNjI5MDA0NzU2WhcNMjUwNzA2MDA0NzU2WjAYMRYwFAYD VQQDEw02ODYwOGQzYy04ZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2MF00Dwfywh7c9yDIPdTsf/qYLd2jD/uUnJHcLmSXiHyukf8VmGSYlGKAEF xSF8Z7myuibhVx6+ao+fUXYtFAAiofBdAQnQfHsaeKPervjL6QEJRKDWXmIv5Stx lhHQxVGIFVH60b21GGKBzwt6h5qNDDibGQIg6iP0C5hXNmmb5bpsSuCnAlNkmJbf FEOzo5lV6+qNyM21+lomJCwDjJ7BRfqal9qrTZrTvQLDtUKaHTn7b/IgtSpTNf0a XSYucRvL4ixO59bRUbJRgIE6MJrkPRCsoau/OO8/qeDrLdrOAtWY1huVMmXGNpGn Nu7NKpzXXig8FonHrd8jcqAmoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOO/xbCV EYLfc8wIdcQrdRbFG590MB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM3NS8zQUE1REVFMERENTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29t YXBHa0Jtd0c5TFR0bUVaSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlx3jtwc/nHhZt0pyead2fUTU0PvYLvTvb1n62oVmTJm+6Nt3GyWg4 AyMaPeTjQ65owdN/Hy3P7cb0jh9jjiEgTyhUnrLILdVYOfLyD4A+p2vsXWlGtP+s ETL9zUdOA5V9gbvMi/T/QqWn26gYl5J8uS0RsSUNCb9BBkrynYH7eRWaTEUXaNov c5qbB9hd5xp7da9kR7BmimM8HuOdhcwZSDH8LGkd6Fqg+X23QzCE3EbJAVK1sKOf AC6mJY/Yju3XsgYp5WcBxuR510x1cMl+zL7NFKiwC02eExwzKEQOUBYZJiKXKgae odKO2w/HCfTyomN7w5uEVlyi6DZoOITq -----END CERTIFICATE-----Generated at Sun Jun 29 17:34:14 2025 by rpki-client