$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft File: 5CnUKeZreXs9ihy-JJFXetw4pI4.mft (raw, json) Hash identifier: XYcO040SjIhgo2sv+829t1FTWuhxH07mp7vfuhcWrA4= Subject key identifier: 13:1E:9B:D3:20:A5:2E:49:9B:37:8D:11:43:3C:95:0D:BF:E5:38:9E Authority key identifier: E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E Certificate issuer: /CN=A91CC711/serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft Manifest number: F1 Signing time: Tue 01 Jul 2025 06:16:26 +0000 Manifest this update: Tue 01 Jul 2025 06:16:26 +0000 Manifest next update: Tue 08 Jul 2025 06:16:26 +0000 Files and hashes: 1: 5CnUKeZreXs9ihy-JJFXetw4pI4.crl (hash: nT47FEDBkveoRXjWgpeQZ5cT6ZUb3QIrq2w/1msxSyE=) 2: 06FA65A81F2711EF98DA2926C4F9AE02.roa (hash: oS4PRK+VFwkVhFqqmzFtlUlVZ/0tESve4AVvdpaS7tg=) 3: 25ED44B41EE411EFA62B1335C4F9AE02.roa (hash: zb91MkoqcDkuzuZwD7VYBRLCNDf9oSeL0ikN94ozVn8=) 4: A7FC5DEE8D0411EFBD7A0057C4F9AE02.roa (hash: TGsIq74Qma+U6c7Ey8qeEz04VjG5STVU5SpvAS46Q6U=) 5: 359CBDB28D0D11EF90882959C4F9AE02.roa (hash: qdwbcsIyL1f3wI2tO7dwB6BR0n7SfSV/G7xRpNDHqtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:16:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC711, serialNumber=E429D429E66B797B3D8A1CBE2491577ADC38A48E Validity Not Before: Jul 1 06:16:26 2025 GMT Not After : Jul 8 06:16:26 2025 GMT Subject: CN=68637d3a-deeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:94:3e:5b:bd:c6:e8:d4:0d:6b:05:bd:89:b9: 6a:ed:12:e2:4e:52:c6:3a:d5:ba:e6:d8:28:83:a3: 86:f1:63:b4:17:57:1a:b2:5e:14:6f:82:10:36:ce: f6:c9:62:44:eb:1c:68:ed:06:d3:6f:63:8f:c8:5d: dc:6a:1f:e2:7c:d1:82:24:20:9e:70:e1:d4:75:cc: c2:d8:3a:76:67:ee:4b:21:c9:0b:45:f9:01:a1:79: d7:3e:45:d8:db:c8:48:8e:86:21:d3:5f:29:0e:29: 27:d2:ef:96:66:7a:73:5c:99:63:3b:5c:34:ea:53: d6:15:a5:a5:25:00:7d:01:0e:58:49:0e:81:10:b4: 3b:46:81:d7:d7:74:24:5b:1a:52:47:30:1e:99:22: bb:f5:18:d0:d3:93:80:41:2f:8f:5d:37:7d:f7:88: 78:db:fa:85:d9:ab:71:32:a7:72:13:8b:84:4b:e0: 1e:84:4c:1f:07:24:93:ad:6b:c4:33:e6:c6:14:ee: 9e:ae:6c:dd:79:6a:62:12:3a:4b:47:fa:48:c8:d7: 12:e0:37:f0:00:ae:0b:17:fe:be:8c:15:8f:eb:03: 93:76:ed:4d:0b:66:cb:01:42:ce:c3:09:c5:6e:89: a4:a6:55:6b:cc:2f:6d:5d:ab:32:7a:e4:4b:a2:2e: ef:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:1E:9B:D3:20:A5:2E:49:9B:37:8D:11:43:3C:95:0D:BF:E5:38:9E X509v3 Authority Key Identifier: keyid:E4:29:D4:29:E6:6B:79:7B:3D:8A:1C:BE:24:91:57:7A:DC:38:A4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CnUKeZreXs9ihy-JJFXetw4pI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC711/C7D1B0541EE311EF90D21234C4F9AE02/5CnUKeZreXs9ihy-JJFXetw4pI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:5b:ef:93:12:c6:a4:a9:26:51:1c:2e:5f:d0:49:68:01:d5: 57:4d:90:40:3f:fc:d4:ec:0b:b2:51:78:f1:21:0c:8f:fb:11: 93:64:58:c6:7f:e2:10:bb:da:cd:aa:61:c8:77:eb:ba:54:db: a8:c1:13:75:56:ad:58:73:dc:19:c3:47:26:3a:11:86:eb:1e: 57:43:ed:20:10:03:a8:2b:a5:b2:5e:f5:c7:82:bb:d4:1a:36: 24:5e:bf:08:e1:96:c5:af:f0:17:6f:81:79:1c:d4:a4:6d:f2: d8:62:89:c9:97:d2:51:70:b4:ad:5a:8d:a1:4e:5b:40:bc:64: 6f:9e:a3:d9:e6:ba:b6:9b:2f:8f:1d:a2:c8:97:55:11:4f:6e: 06:8d:f0:fa:a6:45:f0:35:ee:e3:d6:a8:f7:c7:c3:3a:02:dd: 12:e9:bd:ff:b3:79:cc:0b:48:d3:36:5f:84:7c:d9:98:9d:42: 54:7e:b3:24:a8:52:40:84:e4:8e:bf:1b:51:2d:eb:2b:40:22: 27:97:ae:64:81:d8:0e:39:d7:ec:5a:01:aa:f9:0a:58:7d:ab: 4b:49:f7:c1:5a:82:50:85:1e:27:dd:8e:b0:cc:77:9a:99:94: ae:0f:fe:f8:91:fc:90:cf:f3:3d:8c:bd:b6:0c:a2:08:f0:69: 36:21:9d:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M3MTExMTAvBgNVBAUTKEU0MjlENDI5RTY2Qjc5N0IzRDhBMUNCRTI0OTE1NzdB REMzOEE0OEUwHhcNMjUwNzAxMDYxNjI2WhcNMjUwNzA4MDYxNjI2WjAYMRYwFAYD VQQDEw02ODYzN2QzYS1kZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pQ+W73G6NQNawW9iblq7RLiTlLGOtW65tgog6OG8WO0F1casl4Ub4IQNs72 yWJE6xxo7QbTb2OPyF3cah/ifNGCJCCecOHUdczC2Dp2Z+5LIckLRfkBoXnXPkXY 28hIjoYh018pDikn0u+WZnpzXJljO1w06lPWFaWlJQB9AQ5YSQ6BELQ7RoHX13Qk WxpSRzAemSK79RjQ05OAQS+PXTd994h42/qF2atxMqdyE4uES+AehEwfBySTrWvE M+bGFO6ermzdeWpiEjpLR/pIyNcS4DfwAK4LF/6+jBWP6wOTdu1NC2bLAULOwwnF bomkplVrzC9tXasyeuRLoi7v1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMem9Mg pS5JmzeNEUM8lQ2/5TieMB8GA1UdIwQYMBaAFOQp1Cnma3l7PYocviSRV3rcOKSO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzcxMS9DN0QxQjA1NDFF RTMxMUVGOTBEMjEyMzRDNEY5QUUwMi81Q25VS2VacmVYczlpaHktSkpGWGV0dzRw STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDblVLZVpyZVhzOWloeS1KSkZYZXR3NHBJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzcxMS9DN0QxQjA1NDFFRTMxMUVGOTBEMjEyMzRDNEY5QUUwMi81Q25VS2VacmVY czlpaHktSkpGWGV0dzRwSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDW++TEsakqSZRHC5f0EloAdVXTZBAP/zU7AuyUXjxIQyP+xGTZFjG f+IQu9rNqmHId+u6VNuowRN1Vq1Yc9wZw0cmOhGG6x5XQ+0gEAOoK6WyXvXHgrvU GjYkXr8I4ZbFr/AXb4F5HNSkbfLYYonJl9JRcLStWo2hTltAvGRvnqPZ5rq2my+P HaLIl1URT24GjfD6pkXwNe7j1qj3x8M6At0S6b3/s3nMC0jTNl+EfNmYnUJUfrMk qFJAhOSOvxtRLesrQCInl65kgdgOOdfsWgGq+QpYfatLSffBWoJQhR4n3Y6wzHea mZSuD/74kfyQz/M9jL22DKII8Gk2IZ0+ -----END CERTIFICATE-----Generated at Thu Jul 3 06:01:33 2025 by rpki-client