$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft File: s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft (raw, json) Hash identifier: Zblaa/h2l4ofhU+dBKrcoAcCaFG68q60ihlSlXaNV/M= Subject key identifier: F0:73:10:DD:7B:5C:86:F6:0D:D4:CA:3E:03:7A:C0:BD:A0:81:C8:4A Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 3652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft Manifest number: 357C Signing time: Fri 16 May 2025 14:24:32 +0000 Manifest this update: Fri 16 May 2025 14:24:32 +0000 Manifest next update: Fri 23 May 2025 14:24:32 +0000 Files and hashes: 1: s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl (hash: JM9JRUIwynRhVe+MtcFe5ks5m0MWIjh/SkCXYaT7WZU=) 2: B36EA83C70B111E98CFFF710C4F9AE02.roa (hash: YPxJgAFP2pm+e64iG82yJRkFHNHfja4F2rH7VSVuFpA=) 3: 4BE40306048011F0B0453C78C4F9AE02.roa (hash: 4Ci6FoNbx8kqHd/zZHmZQlAITm4Fel6LtjAZ7twKUas=) 4: 160B219870BA11E99E0F6D2DC4F9AE02.roa (hash: 3QqIb/PpEMe7CSOMb9cfzIUcXW1tet3HABkiD8A3zkU=) 5: 26A143C291EB11EF8A024083C4F9AE02.roa (hash: apyNb0gzlP7QIPlzF+1SGVtUOjpAimi2EUrocnrYZRM=) 6: 18F4FD76918111EC93DCA42AC4F9AE02.roa (hash: 8JKaEfgtThOrevd/FI1wUsWQCsjDZCsWDfH4rtPvYOM=) 7: B0EB27B470B811E9B32F6726C4F9AE02.roa (hash: Yn6iyp3sOHzht7NrUVV1K95CTLrIyR+zeCU6DhPlbi0=) 8: 9538F912A09511EE9616A86EC4F9AE02.roa (hash: UIhH1UdXX1/WldxbBw/5eFdUsW8H5rv3xowCVi4x/js=) 9: 71D60BC2F6BA11EB865C4246C4F9AE02.roa (hash: E9Q0DLQxOx2PNLNxJzUPOmEekE0nfR8RNH8+NziMkYc=) 10: 9AF37E96D71B11EA9532F30CC4F9AE02.roa (hash: 6xFx//HoX9CSfFy+iBeZSYBO+hoRtkc5fjd5y3qvsJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 14:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13906 (0x3652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Validity Not Before: May 16 14:24:32 2025 GMT Not After : May 23 14:24:32 2025 GMT Subject: CN=68274aa0-f7c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:07:43:0f:0e:06:5c:dd:89:17:6f:1e:b0:ae: 8b:d2:52:83:7c:16:05:58:86:56:13:69:66:fc:7e: c1:2b:44:09:71:12:6f:1f:cc:11:5f:47:af:5e:25: fd:df:02:46:42:d0:bd:c1:ff:cd:0d:1a:01:3e:c1: 0d:49:4d:5b:84:da:8a:8c:87:6f:47:7a:e1:f8:d6: f4:b8:79:79:55:2c:7b:69:d3:6b:02:a9:47:27:07: 3e:a5:24:0f:cf:c3:ec:ae:d7:31:e8:77:32:5d:39: 2d:5f:15:37:47:ce:3e:04:7e:57:d1:39:f7:e8:fc: 97:bd:1f:14:0f:03:e4:91:15:97:38:3f:b1:5a:c9: 9f:17:cf:7e:8e:56:f3:ee:97:77:16:fa:8e:49:8f: 09:55:17:07:da:f0:60:d8:e0:3e:fb:a7:7c:3e:1c: 9a:01:78:a8:a2:19:22:f8:80:17:9f:78:dd:cf:8f: 9d:11:81:6b:99:32:fe:f7:10:9c:5a:6e:b4:9f:a1: 2c:2d:49:21:17:e7:0b:4e:65:2b:29:44:b7:21:28: 22:49:20:e9:c2:27:24:80:38:af:66:e6:3f:b0:1d: 10:46:5d:ec:24:52:04:5e:ff:eb:98:b5:30:b6:99: e4:1c:0a:f1:d7:af:44:ff:69:37:6a:c8:f6:18:2e: 3d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:73:10:DD:7B:5C:86:F6:0D:D4:CA:3E:03:7A:C0:BD:A0:81:C8:4A X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:ee:cb:17:3f:b4:f6:1b:4a:48:09:1b:ec:d4:72:4a:1c:f6: 71:08:61:a5:fa:59:dc:25:a9:74:0c:88:70:6d:e2:d5:99:ec: c7:3c:bd:46:db:b8:bf:ee:67:31:ae:ba:36:4e:53:6a:83:f9: d2:5d:ec:31:1d:2e:2f:7b:66:af:8f:3c:dd:84:28:77:da:42: 19:21:e3:62:2e:58:aa:32:71:ac:d5:65:c0:95:d3:01:87:c2: e9:30:37:d7:5d:e7:1a:82:1e:bd:ff:a0:1a:f4:ff:5e:0a:56: 51:4d:5b:41:3e:28:55:d8:22:01:e0:a1:8a:2f:a1:e1:16:78: 19:aa:03:2a:3a:3b:3e:84:d6:a1:02:eb:98:a0:4b:e9:31:80: 0d:c6:22:d5:57:f7:65:f4:56:d2:60:91:ca:79:24:06:98:18: 9e:58:a6:f9:7e:c1:ca:af:e6:bf:f7:14:bf:48:82:d3:bd:30: a9:75:75:d5:1c:70:80:c7:5e:55:59:5d:57:f0:13:43:f7:13: d6:66:4b:18:11:83:1d:c6:26:23:e7:9d:34:51:9b:15:4a:c6: ff:79:f8:74:c6:2a:98:88:ac:58:57:27:96:dd:51:c4:51:a2: b8:6a:63:eb:a5:b6:2b:f5:91:fa:0a:10:33:b8:89:b5:e7:84: bf:dc:7b:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjUwNTE2MTQyNDMyWhcNMjUwNTIzMTQyNDMyWjAYMRYwFAYD VQQDEw02ODI3NGFhMC1mN2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgdDDw4GXN2JF28esK6L0lKDfBYFWIZWE2lm/H7BK0QJcRJvH8wRX0evXiX9 3wJGQtC9wf/NDRoBPsENSU1bhNqKjIdvR3rh+Nb0uHl5VSx7adNrAqlHJwc+pSQP z8Psrtcx6HcyXTktXxU3R84+BH5X0Tn36PyXvR8UDwPkkRWXOD+xWsmfF89+jlbz 7pd3FvqOSY8JVRcH2vBg2OA++6d8PhyaAXioohki+IAXn3jdz4+dEYFrmTL+9xCc Wm60n6EsLUkhF+cLTmUrKUS3ISgiSSDpwickgDivZuY/sB0QRl3sJFIEXv/rmLUw tpnkHArx169E/2k3asj2GC49SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBzEN17 XIb2DdTKPgN6wL2ggchKMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy9FNjU4NTExMjFEODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJm VG42UFU4aUswVTJvbWhoaVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBv7ssXP7T2G0pICRvs1HJKHPZxCGGl+lncJal0DIhwbeLVmezHPL1G 27i/7mcxrro2TlNqg/nSXewxHS4ve2avjzzdhCh32kIZIeNiLliqMnGs1WXAldMB h8LpMDfXXecagh69/6Aa9P9eClZRTVtBPihV2CIB4KGKL6HhFngZqgMqOjs+hNah AuuYoEvpMYANxiLVV/dl9FbSYJHKeSQGmBieWKb5fsHKr+a/9xS/SILTvTCpdXXV HHCAx15VWV1X8BND9xPWZksYEYMdxiYj5500UZsVSsb/efh0xiqYiKxYVyeW3VHE UaK4amPrpbYr9ZH6ChAzuIm154S/3Hta -----END CERTIFICATE-----Generated at Sat May 17 09:24:01 2025 by rpki-client