$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: keySYbO4m64kw6qTBbVwY/d4KZneFSjHEiVG+UI0ooE= Subject key identifier: 25:A7:79:BD:8D:E2:5E:D6:F9:98:05:48:F5:C7:E3:89:86:E8:72:A5 Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 040C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 0407 Signing time: Tue 01 Jul 2025 00:58:54 +0000 Manifest this update: Tue 01 Jul 2025 00:58:54 +0000 Manifest next update: Tue 08 Jul 2025 00:58:54 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: VjLr1kmEws4Bvf3YsXR3QiSg0/SCq+WPGZa5lk3msAM=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: X0bJVDOuH3hxzxDqtFhaGE8zyPysnrk6jtT4gfdw6QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400, serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Jul 1 00:58:54 2025 GMT Not After : Jul 8 00:58:54 2025 GMT Subject: CN=686332ce-3c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b9:67:35:5b:e8:e3:93:b2:90:30:ef:70:77: 4e:28:52:bd:63:27:ea:65:e6:24:8b:36:15:3e:af: fa:ee:df:6e:82:56:32:fb:5d:a3:f3:fd:08:9b:e0: 87:1a:b3:90:5e:c5:80:37:b0:6e:10:8c:14:e2:8f: 15:f5:fa:61:da:0d:62:11:2a:8e:82:d7:bd:7b:32: f3:03:bf:ae:7c:fb:e0:24:db:b3:6e:ef:de:d5:38: e9:ed:9e:fa:b5:c1:9e:c0:9c:10:49:7d:4d:a3:e9: 3c:25:95:52:52:d6:13:0b:21:77:71:d6:68:d6:87: e1:42:b3:a6:49:e5:5e:a6:eb:86:4b:7e:34:86:62: 64:7d:bb:51:c4:b9:78:f5:73:70:c3:e7:4a:db:1a: db:90:d7:b3:be:43:d5:17:e0:1d:7f:10:05:0b:b1: d4:45:a9:d4:81:49:79:5a:9e:24:16:36:38:0a:a6: 29:3b:a9:8d:c3:02:f8:a2:9c:ce:36:3e:55:22:ef: 19:8c:67:09:55:61:50:2b:f3:5f:56:58:f0:64:93: 07:43:b8:39:ef:75:3c:2f:0b:60:7c:8b:8c:cc:de: 42:41:c9:b9:a5:13:82:69:45:96:5a:06:a0:b2:f9: a2:0b:31:c4:e4:6c:a6:57:8b:39:9d:ed:5d:07:ae: 74:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A7:79:BD:8D:E2:5E:D6:F9:98:05:48:F5:C7:E3:89:86:E8:72:A5 X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:da:7b:ff:f4:c7:02:e7:dc:62:dd:e1:d7:e4:3c:72:e0:08: c8:81:96:f0:b5:99:3b:52:4d:0e:3e:ef:bd:dd:13:dc:9e:b6: e5:e6:28:de:a9:9a:0a:0a:5f:1c:7a:ee:85:d1:7f:fb:37:dd: 68:ce:b0:3f:0c:12:21:43:04:10:75:e7:e0:b5:3e:a3:88:02: b5:28:86:8d:1e:ba:6f:09:74:20:94:2e:43:03:55:ee:f8:e1: 79:27:58:db:31:60:76:f0:28:4a:79:71:91:1c:6b:82:23:ef: c0:bb:ba:e3:78:ea:22:ec:d6:4a:5a:14:33:5f:c4:cb:9c:c7: d5:7d:49:9d:87:85:98:3c:11:60:af:26:5b:b1:b4:14:9c:76: 8e:3c:35:b0:ad:8e:e3:70:03:a8:83:0a:53:75:7e:04:3d:a0: 8b:4f:37:58:b6:c7:63:65:a9:99:17:1c:a2:6b:36:63:4f:0e: 20:56:32:e7:4e:5a:83:18:05:4a:dd:aa:a0:99:a3:4c:3b:54: 44:40:08:3b:fa:b2:26:be:3b:d8:bb:19:64:5c:bd:c9:f6:1b: ad:5f:0c:2e:11:23:58:63:58:a9:40:0e:54:04:a6:f8:ec:0a: c5:a2:ee:1e:c0:96:e1:a2:f9:89:07:59:0e:72:f7:d3:4a:e5: 34:8c:94:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjUwNzAxMDA1ODU0WhcNMjUwNzA4MDA1ODU0WjAYMRYwFAYD VQQDEw02ODYzMzJjZS0zYzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrlnNVvo45OykDDvcHdOKFK9YyfqZeYkizYVPq/67t9uglYy+12j8/0Im+CH GrOQXsWAN7BuEIwU4o8V9fph2g1iESqOgte9ezLzA7+ufPvgJNuzbu/e1Tjp7Z76 tcGewJwQSX1No+k8JZVSUtYTCyF3cdZo1ofhQrOmSeVepuuGS340hmJkfbtRxLl4 9XNww+dK2xrbkNezvkPVF+AdfxAFC7HURanUgUl5Wp4kFjY4CqYpO6mNwwL4opzO Nj5VIu8ZjGcJVWFQK/NfVljwZJMHQ7g573U8LwtgfIuMzN5CQcm5pROCaUWWWgag svmiCzHE5GymV4s5ne1dB650fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWneb2N 4l7W+ZgFSPXH44mG6HKlMB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB42nv/9McC59xi3eHX5Dxy4AjIgZbwtZk7Uk0OPu+93RPcnrbl5ije qZoKCl8ceu6F0X/7N91ozrA/DBIhQwQQdefgtT6jiAK1KIaNHrpvCXQglC5DA1Xu +OF5J1jbMWB28ChKeXGRHGuCI+/Au7rjeOoi7NZKWhQzX8TLnMfVfUmdh4WYPBFg ryZbsbQUnHaOPDWwrY7jcAOogwpTdX4EPaCLTzdYtsdjZamZFxyiazZjTw4gVjLn TlqDGAVK3aqgmaNMO1REQAg7+rImvjvYuxlkXL3J9hutXwwuESNYY1ipQA5UBKb4 7ArFou4ewJbhovmJB1kOcvfTSuU0jJR3 -----END CERTIFICATE-----Generated at Tue Jul 1 22:47:08 2025 by rpki-client