$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft File: 05hHRxQle77zpal12QzQ3GW92-8.mft (raw, json) Hash identifier: ZJKJtGOZ61Kg0BDaZAu+7RZDcjdZ1ch7171pbpdgYQE= Subject key identifier: 0B:59:07:59:15:71:18:1B:DC:A7:4D:9A:A5:E4:6D:BD:E2:C6:7F:4F Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft Manifest number: A5 Signing time: Thu 03 Jul 2025 06:23:08 +0000 Manifest this update: Thu 03 Jul 2025 06:23:07 +0000 Manifest next update: Thu 10 Jul 2025 06:23:07 +0000 Files and hashes: 1: 05hHRxQle77zpal12QzQ3GW92-8.crl (hash: 6GrW4+nlEIJA5LfJ33qUst1bUqgYGx7IuqJlfaneq34=) 2: E1EF913A5DF011EFAC9CA43BC4F9AE02.roa (hash: HnEUHlw9gil+mYxp63GxFhUGPoOAuwCoKZnzCLBninA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC, serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Jul 3 06:23:07 2025 GMT Not After : Jul 10 06:23:07 2025 GMT Subject: CN=686621cc-cb1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:69:5c:60:e4:d8:f3:5f:e3:ad:de:55:6e:5a: 56:d0:1a:cd:08:92:6c:87:5a:23:f7:b5:8d:c9:ea: 1a:eb:ae:62:82:dd:04:ff:67:d0:83:07:f0:5f:75: 68:7f:15:cd:9a:c8:c8:17:f5:ad:90:72:b4:41:57: b0:9f:f6:76:e9:d5:0b:01:db:fe:cf:2c:9b:6f:ec: 90:8c:6c:5c:9d:a1:b8:76:78:be:6e:6c:48:5b:d1: 69:c9:d5:2a:dd:fa:e7:41:b4:2d:09:57:93:80:6e: ba:4d:d5:3f:6d:d7:76:a1:63:43:b3:74:e9:e8:ad: 37:34:e9:5a:73:b8:60:98:ed:c4:b7:7a:7a:8f:03: 5e:be:5c:b4:ab:0a:dc:ca:37:c2:6e:24:99:14:fd: c9:e4:66:12:60:60:e3:80:f0:d7:a5:f8:49:ea:18: a4:7b:e0:ff:ad:fb:be:e2:5d:07:82:2c:cc:fb:3a: 60:ff:f7:75:c3:bf:0f:d9:6a:aa:b5:86:bb:72:c4: f7:da:a3:4b:58:84:ac:e0:f8:af:54:72:9c:89:fc: f6:10:e0:98:e3:b2:6f:fb:09:06:8d:be:d0:1e:87: 92:6a:de:d9:b1:cf:e8:56:37:12:b0:8f:61:e5:87: c3:b8:c7:6b:f2:f8:93:46:a8:56:1c:1d:5a:78:81: 1d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:59:07:59:15:71:18:1B:DC:A7:4D:9A:A5:E4:6D:BD:E2:C6:7F:4F X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:56:0f:75:64:9d:36:fc:a3:f1:db:dd:1a:53:9e:12:ac:e8: 81:03:14:32:95:d7:84:37:c3:23:4a:55:76:7d:ee:e1:9b:61: 54:ab:45:f5:ab:58:0b:d5:f4:10:44:8b:0a:0d:c4:cd:89:73: 1f:e6:12:2a:41:cf:d5:2a:b7:22:48:ec:2c:a6:28:81:4e:e7: b0:6e:20:79:57:87:e0:5f:6e:8b:79:1d:ed:39:ad:34:cb:47: 1b:40:ff:81:2a:16:8f:e1:38:35:35:47:9e:d3:5d:23:c6:0e: 13:bb:1d:ef:e4:05:e4:b4:5f:74:44:47:a2:de:c3:a0:56:cd: 98:4c:de:d7:71:48:bc:3c:4a:fe:fb:06:a1:98:38:e2:c5:ef: 6d:41:36:a1:26:dd:a8:ec:e8:6f:72:ff:85:78:16:20:27:b1: 6f:ea:88:18:85:db:4a:30:89:a9:ab:d4:d0:4f:2b:02:6b:ed: b5:c5:c2:d3:21:b5:63:65:5b:9a:b9:a7:7b:4d:95:b5:56:a6: 4e:45:69:13:0f:66:d7:d5:94:41:6b:d0:b0:d9:d9:96:61:42: 96:76:e4:f4:eb:3e:6a:e2:e9:e8:f0:a9:b2:22:91:b5:a2:78: e4:99:20:32:8d:0b:9d:b6:5e:84:f1:ff:35:6b:d0:1b:b1:68: c0:9e:7c:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkMxMTAvBgNVBAUTKEQzOTg0NzQ3MTQyNTdCQkVGM0E1QTk3NUQ5MENEMERD NjVCRERCRUYwHhcNMjUwNzAzMDYyMzA3WhcNMjUwNzEwMDYyMzA3WjAYMRYwFAYD VQQDEw02ODY2MjFjYy1jYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2lcYOTY81/jrd5VblpW0BrNCJJsh1oj97WNyeoa665igt0E/2fQgwfwX3Vo fxXNmsjIF/WtkHK0QVewn/Z26dULAdv+zyybb+yQjGxcnaG4dni+bmxIW9FpydUq 3frnQbQtCVeTgG66TdU/bdd2oWNDs3Tp6K03NOlac7hgmO3Et3p6jwNevly0qwrc yjfCbiSZFP3J5GYSYGDjgPDXpfhJ6hike+D/rfu+4l0HgizM+zpg//d1w78P2Wqq tYa7csT32qNLWISs4PivVHKcifz2EOCY47Jv+wkGjb7QHoeSat7Zsc/oVjcSsI9h 5YfDuMdr8viTRqhWHB1aeIEd3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtZB1kV cRgb3KdNmqXkbb3ixn9PMB8GA1UdIwQYMBaAFNOYR0cUJXu+86WpddkM0Nxlvdvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCQy85NTJCQUUyRTVE RjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3N3pwYWwxMlF6UTNHVzky LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTItOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi8wNWhIUnhRbGU3 N3pwYWwxMlF6UTNHVzkyLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWVg91ZJ02/KPx290aU54SrOiBAxQyldeEN8MjSlV2fe7hm2FUq0X1 q1gL1fQQRIsKDcTNiXMf5hIqQc/VKrciSOwspiiBTuewbiB5V4fgX26LeR3tOa00 y0cbQP+BKhaP4Tg1NUee010jxg4Tux3v5AXktF90REei3sOgVs2YTN7XcUi8PEr+ +wahmDjixe9tQTahJt2o7Ohvcv+FeBYgJ7Fv6ogYhdtKMImpq9TQTysCa+21xcLT IbVjZVuauad7TZW1VqZORWkTD2bX1ZRBa9Cw2dmWYUKWduT06z5q4uno8KmyIpG1 onjkmSAyjQudtl6E8f81a9AbsWjAnnzQ -----END CERTIFICATE-----Generated at Fri Jul 4 00:19:19 2025 by rpki-client