$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft File: 5EZZ6m_c00PGwef_0BSlsHgYlos.mft (raw, json) Hash identifier: uILbuQq+LmjUsxJgAoG7dVupM2dnm7Fc25kVNdaoXdg= Subject key identifier: 1F:27:1D:94:29:92:A3:7B:10:DE:9F:83:5F:2A:49:AF:F5:55:2B:9A Authority key identifier: E4:46:59:EA:6F:DC:D3:43:C6:C1:E7:FF:D0:14:A5:B0:78:18:96:8B Certificate issuer: /CN=A91B3062/serialNumber=E44659EA6FDCD343C6C1E7FFD014A5B07818968B Certificate serial: 06C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft Manifest number: 06C4 Signing time: Mon 30 Jun 2025 22:24:41 +0000 Manifest this update: Mon 30 Jun 2025 22:24:40 +0000 Manifest next update: Mon 07 Jul 2025 22:24:40 +0000 Files and hashes: 1: 5EZZ6m_c00PGwef_0BSlsHgYlos.crl (hash: ARpkvCwSE73HPkC2fhrntrAE6wWZEeLnDXxXKoUHG1w=) 2: C8FB0DB8616D11EB928F0250C4F9AE02.roa (hash: wvBpCoANMp6HM7/0VPGZvZaF4FC0qm23TRsKibzPLZk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.crl rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3062, serialNumber=E44659EA6FDCD343C6C1E7FFD014A5B07818968B Validity Not Before: Jun 30 22:24:40 2025 GMT Not After : Jul 7 22:24:40 2025 GMT Subject: CN=68630ea8-2dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:30:34:13:07:fe:e8:1a:e7:00:88:98:f8:f4: be:bd:d8:7b:6a:a1:91:30:19:9f:64:08:24:ce:94: b0:02:cb:ef:f4:0f:98:b4:a1:fc:63:92:64:7f:b7: c5:ac:65:1e:c6:f6:b6:47:af:36:c1:2b:09:e3:9a: ee:65:50:21:53:0c:04:fc:ba:58:36:f6:9d:56:2a: 2c:20:de:51:ae:c4:60:48:25:7a:7f:6c:d6:14:d7: fb:b6:c9:a8:df:23:e6:70:64:49:2e:8e:9e:2f:cc: a4:40:b7:af:2a:60:7b:7f:03:4c:5e:7c:e2:0e:51: 2e:e3:b7:b5:29:64:10:ca:5e:a8:35:7d:4f:db:b4: b2:8a:f2:71:88:6c:f7:fa:64:80:28:bb:2e:49:5c: df:17:40:26:35:63:db:9a:5d:23:75:74:13:4f:e8: 0f:c0:c8:f2:06:9d:75:49:c4:a7:d0:a5:35:6c:27: 07:64:62:c7:ba:91:6c:1b:cb:61:61:70:5d:64:48: b6:34:7a:d2:03:dd:fb:11:c8:ee:ce:b4:e0:37:0c: a2:88:e1:74:75:2c:9c:45:4e:9a:24:5a:0c:3d:b6: 64:a7:82:f0:3a:ab:77:28:d9:fc:21:b9:89:46:96: c4:93:62:19:68:20:5e:88:c0:35:49:35:6b:ed:b1: ab:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:27:1D:94:29:92:A3:7B:10:DE:9F:83:5F:2A:49:AF:F5:55:2B:9A X509v3 Authority Key Identifier: keyid:E4:46:59:EA:6F:DC:D3:43:C6:C1:E7:FF:D0:14:A5:B0:78:18:96:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5EZZ6m_c00PGwef_0BSlsHgYlos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3062/988089E4616B11EBA647874AC4F9AE02/5EZZ6m_c00PGwef_0BSlsHgYlos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e6:ec:08:cb:82:bc:3d:5f:0c:bb:d7:91:1f:cf:7d:65:27: 06:7c:09:18:af:4f:05:6d:69:88:8d:27:19:0b:ff:a5:2b:69: 4f:b2:36:e0:de:a6:0f:d5:30:55:70:1c:5b:f0:e5:80:80:21: b2:d2:13:04:6f:c0:42:a9:90:f9:a7:41:3f:cf:9a:50:1c:10: a2:60:8d:b5:a8:5a:ce:ed:77:88:2b:13:c7:49:a4:ca:b2:42: ed:cc:fc:61:7d:30:9f:06:f9:13:0c:9f:14:a0:b8:52:ab:d0: 38:8d:5e:f8:26:c6:96:87:b7:13:73:36:e4:e9:0d:17:c7:7e: f3:84:d0:66:66:0d:1d:24:a4:d0:3f:e2:e2:ee:05:0f:2c:f5: 16:57:ca:88:15:a1:93:93:4e:93:63:ea:3b:36:d4:9e:ef:db: 8c:fe:c1:50:57:7a:34:fc:82:33:72:d2:67:dc:b3:a4:4e:40: b9:b1:49:13:b4:5a:66:88:75:d2:88:52:c7:49:da:02:54:9a: 1c:99:b0:a3:65:ca:c2:e6:d0:38:fa:4d:9e:98:28:d7:1f:af: 31:74:5b:53:50:71:d0:6b:5b:1b:f3:17:81:b4:e9:00:e0:3f: a2:3a:60:8f:b8:be:cf:23:27:47:c6:f1:90:75:a3:5f:ff:a5: f8:f5:c7:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMwNjIxMTAvBgNVBAUTKEU0NDY1OUVBNkZEQ0QzNDNDNkMxRTdGRkQwMTRBNUIw NzgxODk2OEIwHhcNMjUwNjMwMjIyNDQwWhcNMjUwNzA3MjIyNDQwWjAYMRYwFAYD VQQDEw02ODYzMGVhOC0yZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6zA0Ewf+6BrnAIiY+PS+vdh7aqGRMBmfZAgkzpSwAsvv9A+YtKH8Y5Jkf7fF rGUexva2R682wSsJ45ruZVAhUwwE/LpYNvadViosIN5RrsRgSCV6f2zWFNf7tsmo 3yPmcGRJLo6eL8ykQLevKmB7fwNMXnziDlEu47e1KWQQyl6oNX1P27SyivJxiGz3 +mSAKLsuSVzfF0AmNWPbml0jdXQTT+gPwMjyBp11ScSn0KU1bCcHZGLHupFsG8th YXBdZEi2NHrSA937EcjuzrTgNwyiiOF0dSycRU6aJFoMPbZkp4LwOqt3KNn8IbmJ RpbEk2IZaCBeiMA1STVr7bGrdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8nHZQp kqN7EN6fg18qSa/1VSuaMB8GA1UdIwQYMBaAFORGWepv3NNDxsHn/9AUpbB4GJaL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzA2Mi85ODgwODlFNDYx NkIxMUVCQTY0Nzg3NEFDNEY5QUUwMi81RVpaNm1fYzAwUEd3ZWZfMEJTbHNIZ1ls b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVFWlo2bV9jMDBQR3dlZl8wQlNsc0hnWWxvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzA2Mi85ODgwODlFNDYxNkIxMUVCQTY0Nzg3NEFDNEY5QUUwMi81RVpaNm1fYzAw UEd3ZWZfMEJTbHNIZ1lsb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy5uwIy4K8PV8Mu9eRH899ZScGfAkYr08FbWmIjScZC/+lK2lPsjbg 3qYP1TBVcBxb8OWAgCGy0hMEb8BCqZD5p0E/z5pQHBCiYI21qFrO7XeIKxPHSaTK skLtzPxhfTCfBvkTDJ8UoLhSq9A4jV74JsaWh7cTczbk6Q0Xx37zhNBmZg0dJKTQ P+Li7gUPLPUWV8qIFaGTk06TY+o7NtSe79uM/sFQV3o0/IIzctJn3LOkTkC5sUkT tFpmiHXSiFLHSdoCVJocmbCjZcrC5tA4+k2emCjXH68xdFtTUHHQa1sb8xeBtOkA 4D+iOmCPuL7PIydHxvGQdaNf/6X49cds -----END CERTIFICATE-----Generated at Wed Jul 2 03:30:08 2025 by rpki-client