$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft File: 05fnjG3TxpaFEzQVMschiNd1Z68.mft (raw, json) Hash identifier: gEt2vLtNTIFy4QFzszLnPKYlShv1XixVIyNs78Guoqw= Subject key identifier: AF:5F:B6:3E:7E:73:AA:9A:80:B8:07:6C:D7:EA:D2:1E:6E:EB:41:54 Authority key identifier: D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF Certificate issuer: /CN=A91D3CA7/serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Certificate serial: 02B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft Manifest number: 02B3 Signing time: Thu 15 May 2025 01:28:30 +0000 Manifest this update: Thu 15 May 2025 01:28:29 +0000 Manifest next update: Thu 22 May 2025 01:28:29 +0000 Files and hashes: 1: 05fnjG3TxpaFEzQVMschiNd1Z68.crl (hash: /pttc3iFgHKoMFMMp7cvmlG8RaoLi5Iizoqy7w94U9U=) 2: DE183F1CF46611EC815F7283C4F9AE02.roa (hash: 9MdpJxrwdV0aU1f/zX8n/hykvTdPQn1kKe0kWScV57Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3CA7, serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Validity Not Before: May 15 01:28:29 2025 GMT Not After : May 22 01:28:29 2025 GMT Subject: CN=6825433e-c353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9c:5e:ac:c3:a6:f0:c7:46:bc:a8:6a:25:ab: b3:a5:06:b5:0e:9d:de:2b:c0:06:1a:62:c5:cb:00: 57:01:c4:8f:ba:dc:9f:9f:5a:11:e7:e6:9c:13:ed: fe:06:1f:98:d0:af:ca:43:33:69:17:27:2b:5d:4a: fa:10:11:7f:fc:a3:c9:14:8d:f7:67:28:64:7c:bb: 5f:db:e8:e4:b2:73:3f:f2:19:32:d9:f5:f2:82:fe: 41:77:6a:1a:8c:e3:96:ea:45:eb:b5:eb:a8:ad:b0: f3:fa:2b:a7:f3:de:4b:c9:f6:e3:85:33:79:8f:35: 94:5f:28:2b:51:7a:e1:38:e7:36:5c:b2:fd:76:4c: c5:aa:1a:c7:75:d2:4e:ef:95:fa:e2:1e:05:f0:7a: 1a:9e:75:b5:d4:90:44:a8:65:3f:91:e4:fe:da:b3: 82:12:38:1a:38:43:c8:1f:c6:62:c9:56:04:e8:83: 86:72:df:74:2a:78:df:1c:25:39:9a:9d:a3:cf:85: 51:da:8f:5e:17:b8:0a:83:18:1c:c6:16:de:9e:9e: 50:ea:10:74:e5:5b:fa:1f:91:14:3a:9e:8f:7d:47: c9:5b:50:9a:78:4d:43:12:eb:1a:41:62:ac:27:c0: 7e:b1:ee:c3:22:86:51:84:d0:5f:5c:9a:00:b2:c7: 28:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5F:B6:3E:7E:73:AA:9A:80:B8:07:6C:D7:EA:D2:1E:6E:EB:41:54 X509v3 Authority Key Identifier: keyid:D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:6e:bb:46:73:ad:8a:52:b9:12:04:23:a8:2d:a2:76:90:98: 64:2a:92:93:af:52:f6:31:f7:1a:cd:48:ab:cc:bc:39:99:eb: 34:5c:fe:70:2f:e0:3d:f3:17:4d:75:d4:79:85:5f:2a:00:8b: 5e:68:46:82:43:91:d7:89:ea:ea:52:a0:a9:ce:c1:f4:21:80: 34:5c:54:71:d6:7d:30:aa:ef:4c:3a:2f:52:bf:00:ac:83:ca: 63:9f:62:cb:f5:2b:b1:54:ec:26:db:ef:66:f9:c0:34:b5:e9: d2:ef:29:3c:12:af:bb:e8:85:f3:f7:ce:14:44:fb:53:b1:c5: 1d:1d:13:4d:4d:3f:52:dd:d6:8f:c5:2e:4e:0d:e9:88:b9:4e: 85:03:fe:e9:31:e4:a7:1d:05:ce:68:09:16:af:14:1a:87:db: 83:3f:88:ae:0a:5b:f5:ee:30:6c:ab:5d:d3:87:1e:16:2b:a5: 78:75:94:6b:9b:97:8a:8c:88:6a:cc:cf:1c:7c:d0:73:1e:64: 50:3f:ef:3e:5d:86:8c:9d:f4:65:54:bf:4c:a0:ea:1e:15:19: d8:f3:83:c0:cf:92:6c:cc:8e:b7:13:aa:a7:01:16:62:88:b5: 8e:71:d9:de:ac:52:6e:f8:ed:8e:49:ae:f6:b5:3e:ab:dd:1e: d2:3c:8e:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNDQTcxMTAvBgNVBAUTKEQzOTdFNzhDNkREM0M2OTY4NTEzMzQxNTMyQzcyMTg4 RDc3NTY3QUYwHhcNMjUwNTE1MDEyODI5WhcNMjUwNTIyMDEyODI5WjAYMRYwFAYD VQQDEw02ODI1NDMzZS1jMzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJxerMOm8MdGvKhqJauzpQa1Dp3eK8AGGmLFywBXAcSPutyfn1oR5+acE+3+ Bh+Y0K/KQzNpFycrXUr6EBF//KPJFI33ZyhkfLtf2+jksnM/8hky2fXygv5Bd2oa jOOW6kXrteuorbDz+iun895LyfbjhTN5jzWUXygrUXrhOOc2XLL9dkzFqhrHddJO 75X64h4F8HoannW11JBEqGU/keT+2rOCEjgaOEPIH8ZiyVYE6IOGct90KnjfHCU5 mp2jz4VR2o9eF7gKgxgcxhbenp5Q6hB05Vv6H5EUOp6PfUfJW1CaeE1DEusaQWKs J8B+se7DIoZRhNBfXJoAsscoCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9ftj5+ c6qagLgHbNfq0h5u60FUMB8GA1UdIwQYMBaAFNOX54xt08aWhRM0FTLHIYjXdWev MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0NBNy8zRjBFMEUwNkY0 NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhwYUZFelFWTXNjaGlOZDFa NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1Zm5qRzNUeHBhRkV6UVZNc2NoaU5kMVo2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0NBNy8zRjBFMEUwNkY0NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhw YUZFelFWTXNjaGlOZDFaNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALbrtGc62KUrkSBCOoLaJ2kJhkKpKTr1L2MfcazUirzLw5mes0XP5w L+A98xdNddR5hV8qAIteaEaCQ5HXierqUqCpzsH0IYA0XFRx1n0wqu9MOi9SvwCs g8pjn2LL9SuxVOwm2+9m+cA0tenS7yk8Eq+76IXz984URPtTscUdHRNNTT9S3daP xS5ODemIuU6FA/7pMeSnHQXOaAkWrxQah9uDP4iuClv17jBsq13Thx4WK6V4dZRr m5eKjIhqzM8cfNBzHmRQP+8+XYaMnfRlVL9MoOoeFRnY84PAz5JszI63E6qnARZi iLWOcdnerFJu+O2OSa72tT6r3R7SPI6b -----END CERTIFICATE-----Generated at Thu May 15 06:40:59 2025 by rpki-client