$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: zBXpripIt1h+K7jGgqZWjN3wZ2aixCGeMCEp38B3jG8= Subject key identifier: 93:EF:D0:AF:A6:33:CE:1B:22:16:40:C5:B3:4F:4E:A7:3A:0F:37:54 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 01A9 Signing time: Sun 29 Jun 2025 03:07:27 +0000 Manifest this update: Sun 29 Jun 2025 03:07:26 +0000 Manifest next update: Sun 06 Jul 2025 03:07:26 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: sAzlKceP0h7rv8D1WfSjQdJsws+5/V6HrCCcNxpg1Qg=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: JTgCQ/a/n5QlsjMCTHDArlAgGVjedlWxdAR2U4v5LnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Jun 29 03:07:26 2025 GMT Not After : Jul 6 03:07:26 2025 GMT Subject: CN=6860adef-770c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:83:a5:9f:85:0a:df:a9:e0:e7:5f:5c:a4:a0: 52:e0:d2:6c:86:c8:7a:17:cd:43:a6:83:f0:56:ee: 0f:93:6f:dd:d4:6b:6d:cb:67:fa:0e:87:35:7f:5d: a4:bd:69:ae:7f:8d:3b:80:4f:dd:ce:23:b2:19:c8: b8:34:b6:b0:46:de:7d:d8:7b:86:39:fd:f4:58:fe: e2:d1:ac:5d:08:43:9a:04:d5:05:e3:38:2b:eb:95: d8:31:ba:e7:88:cc:2d:f2:a0:89:2d:cc:73:ed:90: df:de:ef:34:1b:e3:85:81:db:55:3a:a0:2d:d5:78: 75:4d:27:d3:82:23:0a:33:32:49:b3:d8:6e:57:49: 14:fb:31:2d:43:64:de:04:20:09:84:b4:f7:db:92: 3d:20:cc:dc:3a:26:0c:94:f1:20:68:a4:88:eb:4d: 43:7a:6f:bc:06:79:78:e0:46:fa:e1:b7:ad:8f:78: a5:2b:e7:95:c2:16:f0:33:ad:10:95:4c:07:33:2f: 49:15:15:d5:b4:26:fb:42:25:0b:ac:61:4d:b8:21: 9b:2a:2e:d9:52:20:4f:c6:97:d2:08:f9:c0:87:7e: 96:c4:93:e7:fb:f1:93:ea:e0:72:c6:2e:81:71:e0: 77:78:6d:d3:34:21:61:52:b6:8d:3a:14:79:29:95: a6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:EF:D0:AF:A6:33:CE:1B:22:16:40:C5:B3:4F:4E:A7:3A:0F:37:54 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:03:5e:f7:58:af:a3:bf:3e:cc:21:a4:01:18:aa:7e:98:e1: 78:d3:a1:53:12:48:86:c3:72:a6:a3:49:66:b5:5b:20:92:ad: 79:ca:cc:cc:60:08:43:57:d3:9b:29:1a:75:09:41:81:71:bf: ef:0e:a9:59:4e:2d:3b:bd:4e:66:20:9a:b3:9f:50:ae:7a:04: 5b:60:72:69:45:f3:8a:b6:29:6d:03:f4:03:cd:d4:ec:0c:0a: 9e:47:5e:a9:97:cb:41:b2:f1:45:e2:60:3c:c7:db:fb:11:f4: 7b:75:da:31:92:1b:2c:f7:5a:36:97:78:29:ce:4d:d6:c0:70: 4d:0e:5c:c9:6f:f0:65:90:ec:cc:28:85:71:15:27:9e:e1:42: 1a:80:1e:dc:c5:cb:a8:2f:be:86:3d:42:f4:73:16:38:68:5a: 84:d0:c0:0a:74:c5:06:99:20:c2:75:5e:cf:d5:ed:ec:c6:ad: ae:c9:69:80:b6:1e:0e:17:11:e3:d6:ce:00:5b:f1:9d:a0:7f: 64:aa:b5:2f:bb:96:18:80:c6:ad:c9:66:ca:df:61:b5:06:a2: 61:bf:f4:21:96:28:03:d3:bd:f5:2f:e6:17:87:e6:27:65:b3: ce:25:6c:bf:32:c7:85:e4:01:bb:dc:7b:51:2c:6c:e6:5a:e9: 85:33:a6:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUwNjI5MDMwNzI2WhcNMjUwNzA2MDMwNzI2WjAYMRYwFAYD VQQDEw02ODYwYWRlZi03NzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4Oln4UK36ng519cpKBS4NJshsh6F81DpoPwVu4Pk2/d1Gtty2f6Doc1f12k vWmuf407gE/dziOyGci4NLawRt592HuGOf30WP7i0axdCEOaBNUF4zgr65XYMbrn iMwt8qCJLcxz7ZDf3u80G+OFgdtVOqAt1Xh1TSfTgiMKMzJJs9huV0kU+zEtQ2Te BCAJhLT325I9IMzcOiYMlPEgaKSI601Dem+8Bnl44Eb64betj3ilK+eVwhbwM60Q lUwHMy9JFRXVtCb7QiULrGFNuCGbKi7ZUiBPxpfSCPnAh36WxJPn+/GT6uByxi6B ceB3eG3TNCFhUraNOhR5KZWmWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPv0K+m M84bIhZAxbNPTqc6DzdUMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoA173WK+jvz7MIaQBGKp+mOF406FTEkiGw3Kmo0lmtVsgkq15yszM YAhDV9ObKRp1CUGBcb/vDqlZTi07vU5mIJqzn1CuegRbYHJpRfOKtiltA/QDzdTs DAqeR16pl8tBsvFF4mA8x9v7EfR7ddoxkhss91o2l3gpzk3WwHBNDlzJb/BlkOzM KIVxFSee4UIagB7cxcuoL76GPUL0cxY4aFqE0MAKdMUGmSDCdV7P1e3sxq2uyWmA th4OFxHj1s4AW/GdoH9kqrUvu5YYgMatyWbK32G1BqJhv/QhligD0731L+YXh+Yn ZbPOJWy/MseF5AG73HtRLGzmWumFM6YV -----END CERTIFICATE-----Generated at Mon Jun 30 19:07:59 2025 by rpki-client