$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: uHbW6crfgocMzM3ZvGrFfhhkszOrb5Ev8Uiqh2zA3XU= Subject key identifier: 73:5E:55:66:7D:DE:15:9D:78:06:45:39:C2:68:17:18:0C:8A:1C:FA Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 366F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 3598 Signing time: Wed 02 Jul 2025 14:24:53 +0000 Manifest this update: Wed 02 Jul 2025 14:24:53 +0000 Manifest next update: Wed 09 Jul 2025 14:24:53 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: KqCt2+ELLo5+WiFwIG2aVGoc/7GyySGRtvTwziin1P4=) 2: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: YPxJgAFP2pm+e64iG82yJRkFHNHfja4F2rH7VSVuFpA=) 3: 4BE40306048011F0B0453C78C4F9AE02.roa (hash: 4Ci6FoNbx8kqHd/zZHmZQlAITm4Fel6LtjAZ7twKUas=) 4: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 3QqIb/PpEMe7CSOMb9cfzIUcXW1tet3HABkiD8A3zkU=) 5: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: apyNb0gzlP7QIPlzF+1SGVtUOjpAimi2EUrocnrYZRM=) 6: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: 8JKaEfgtThOrevd/FI1wUsWQCsjDZCsWDfH4rtPvYOM=) 7: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: Yn6iyp3sOHzht7NrUVV1K95CTLrIyR+zeCU6DhPlbi0=) 8: 9538F912A09511EE9616A86EC4F9AE02.roa (hash: UIhH1UdXX1/WldxbBw/5eFdUsW8H5rv3xowCVi4x/js=) 9: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: UB9M+LLNN3sS8I2EFsp8N9BHGeanS2Z+lbFEvYsOTeM=) 10: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: E9Q0DLQxOx2PNLNxJzUPOmEekE0nfR8RNH8+NziMkYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13935 (0x366f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: Jul 2 14:24:53 2025 GMT Not After : Jul 9 14:24:53 2025 GMT Subject: CN=68654135-5acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:02:e2:6e:aa:57:4c:55:e9:d6:7c:4e:9c:18: d6:bc:ba:ad:11:83:94:eb:79:77:13:94:f6:ad:38: a3:74:75:46:0d:27:78:db:52:ea:7d:4f:77:dc:4b: ef:40:65:d8:b2:c6:0b:56:8a:c5:e6:26:e2:23:b6: 06:25:e7:6c:99:f4:5e:09:e8:d8:37:3f:71:a2:34: e4:09:3f:2e:2a:5a:23:0f:1f:1a:d5:4c:15:14:f9: bb:2d:66:02:85:1d:f7:03:1c:60:da:3b:c4:a7:2a: 9e:a2:53:ca:ef:a6:3d:e4:9d:07:56:f9:fb:8c:93: 57:b0:4a:27:82:2f:01:07:a7:d0:86:51:cd:e5:0f: 96:ae:ce:8f:17:e0:78:b4:8b:49:3d:54:e2:9b:b9: 9f:89:1d:bf:8c:8e:72:a6:f6:c9:68:fd:71:f0:7a: 2e:07:40:bc:0f:af:1d:38:94:18:01:6f:43:6b:20: af:06:66:02:0b:63:ab:99:a9:b7:c1:72:e3:db:f8: 6b:05:bd:60:34:d6:95:57:d4:fe:f0:c2:48:92:f8: 2d:f1:95:78:cc:a4:d9:a3:ab:4e:f5:bb:1d:74:22: aa:4e:fc:23:65:7f:dc:0a:1f:49:e1:99:a2:e4:0e: c3:98:8b:32:3d:22:fe:b4:0b:b5:e9:c1:20:4e:7c: 73:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:5E:55:66:7D:DE:15:9D:78:06:45:39:C2:68:17:18:0C:8A:1C:FA X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b5:ad:8e:2a:9a:f1:b6:61:39:6e:30:52:ba:25:bd:7f:cf: 60:01:14:53:01:db:0f:2d:94:84:b0:c1:ee:66:df:82:3e:05: 9a:ca:d4:83:20:47:e4:11:3a:f7:5a:a3:3b:0e:3c:7e:98:85: 41:ba:7c:37:85:95:a2:17:59:0c:bc:4e:da:56:16:cf:18:12: 91:04:9d:04:3c:c9:57:9b:89:15:27:69:69:f8:5c:72:31:35: c6:79:22:a3:66:a3:3b:75:92:16:1b:47:c3:79:30:e8:a1:96: c3:da:fe:e7:a0:59:21:74:2f:85:94:72:e1:32:63:00:86:38: ae:3f:29:a4:5a:1b:4c:ae:3f:98:68:ca:59:e8:d0:8c:de:e9: 42:25:6d:a7:ba:7f:68:dd:49:e9:14:54:a3:a7:e8:ee:f3:60: 50:45:51:6f:f3:5d:3a:02:3e:03:70:c9:a7:46:a3:6e:cc:3d: fa:9f:63:99:2f:0b:e5:23:9c:c4:a5:ac:00:32:d0:97:1d:75: 12:e5:81:89:15:a4:11:da:a2:0a:88:b2:ae:2f:21:c5:37:0c: da:6c:98:be:09:a4:cb:04:8a:cd:cb:20:a9:13:88:0f:79:51: 43:54:35:14:b9:99:c8:3c:c3:3a:30:d1:2d:39:f4:51:7f:d7: 5a:b7:89:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjUwNzAyMTQyNDUzWhcNMjUwNzA5MTQyNDUzWjAYMRYwFAYD VQQDEw02ODY1NDEzNS01YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wLibqpXTFXp1nxOnBjWvLqtEYOU63l3E5T2rTijdHVGDSd421LqfU933Evv QGXYssYLVorF5ibiI7YGJedsmfReCejYNz9xojTkCT8uKlojDx8a1UwVFPm7LWYC hR33Axxg2jvEpyqeolPK76Y95J0HVvn7jJNXsEongi8BB6fQhlHN5Q+Wrs6PF+B4 tItJPVTim7mfiR2/jI5ypvbJaP1x8HouB0C8D68dOJQYAW9DayCvBmYCC2Ormam3 wXLj2/hrBb1gNNaVV9T+8MJIkvgt8ZV4zKTZo6tO9bsddCKqTvwjZX/cCh9J4Zmi 5A7DmIsyPSL+tAu16cEgTnxz5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNeVWZ9 3hWdeAZFOcJoFxgMihz6MB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNta2OKprxtmE5bjBSuiW9f89gARRTAdsPLZSEsMHuZt+CPgWaytSD IEfkETr3WqM7Djx+mIVBunw3hZWiF1kMvE7aVhbPGBKRBJ0EPMlXm4kVJ2lp+Fxy MTXGeSKjZqM7dZIWG0fDeTDooZbD2v7noFkhdC+FlHLhMmMAhjiuPymkWhtMrj+Y aMpZ6NCM3ulCJW2nun9o3UnpFFSjp+ju82BQRVFv8106Aj4DcMmnRqNuzD36n2OZ LwvlI5zEpawAMtCXHXUS5YGJFaQR2qIKiLKuLyHFNwzabJi+CaTLBIrNyyCpE4gP eVFDVDUUuZnIPMM6MNEtOfRRf9dat4nu -----END CERTIFICATE-----Generated at Thu Jul 3 18:33:35 2025 by rpki-client