$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: GBPIZstD63WuksV/LB0gyFPGeVcKrGEWGddheQm0XlU= Subject key identifier: 13:09:02:E4:67:09:4F:61:32:CF:87:4E:CD:C9:90:B7:5A:6B:E2:DC Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C2E Signing time: Wed 02 Jul 2025 18:48:13 +0000 Manifest this update: Wed 02 Jul 2025 18:48:12 +0000 Manifest next update: Wed 09 Jul 2025 18:48:12 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: 0HJmRfb+S1czgsz9Vzsl1m4QgKaNNX+Hi7mGdkrHKA0=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3120 (0xc30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Jul 2 18:48:12 2025 GMT Not After : Jul 9 18:48:12 2025 GMT Subject: CN=68657eed-58ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7f:34:63:f2:9b:b4:8d:96:45:98:3d:ad:14: 19:0b:bd:88:7d:3b:63:58:1f:bd:bc:5f:b1:ad:c2: 44:f3:f4:60:44:a6:a0:f8:b3:d7:00:55:8e:a3:b4: 9f:f8:0b:d2:29:a2:c9:fa:86:9f:d9:9e:56:a0:aa: 3c:c3:2e:2e:9a:e7:cf:9a:e8:62:41:91:7c:d6:d0: 7c:f4:c0:4f:e1:a8:c3:9e:22:f8:01:6c:73:ef:45: cd:13:72:1f:6a:1b:aa:7c:95:76:2c:0d:e4:07:97: 46:c3:ee:07:47:09:5d:df:59:6c:df:c6:0c:38:b2: 4a:b3:24:7f:b2:5c:9f:e6:94:2a:af:7a:0a:1c:5f: 53:b9:7d:fb:f4:5e:5a:b0:4a:f5:df:f6:b3:ec:dc: e0:de:aa:d9:66:2d:a5:c2:ec:a6:b5:95:da:f3:b0: 70:ec:b0:13:94:af:86:6f:26:41:d6:28:e6:61:20: dc:f6:b8:a9:4f:96:f2:8d:fb:42:a0:67:95:27:a6: 22:9d:d2:3d:2b:0b:67:4c:8f:6c:22:b9:c1:6c:a5: 97:66:ce:8c:c1:31:9b:44:21:aa:a9:81:1b:58:a2: f9:8f:87:04:29:55:5b:b0:0c:eb:4b:9b:93:ea:19: f7:45:e3:bb:05:a3:a0:9b:74:bb:47:51:d4:fb:5a: f0:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:09:02:E4:67:09:4F:61:32:CF:87:4E:CD:C9:90:B7:5A:6B:E2:DC X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:90:58:df:8c:48:d7:a8:f7:a4:f9:9a:12:24:27:3b:1e:09: 59:9b:8c:10:72:b4:59:3e:ed:0e:82:2b:cf:cd:bb:e0:27:bf: 17:fc:fe:ee:52:f7:a7:50:53:67:10:59:bf:a5:44:93:02:c2: 29:f0:18:83:e1:65:8d:52:a3:6d:8e:ac:02:f8:f4:52:4b:bb: 71:70:27:d2:28:90:44:00:46:76:01:21:86:a2:02:c4:fc:f9: 9c:b2:cf:c5:11:48:38:9f:da:0f:22:7b:44:06:90:b7:3b:7a: 67:3e:c4:05:a5:85:c0:45:74:80:09:eb:2b:68:ad:a0:f3:ef: 9a:63:bf:05:50:0f:ba:ad:3a:2d:fb:3a:c8:10:db:83:15:11: 3f:bc:7a:a6:54:c2:3a:61:7c:3b:1e:5f:ee:7c:3c:08:2e:84: 04:52:9d:97:ed:33:9c:df:ad:30:ed:42:57:fc:1f:6d:0c:d5: 3b:b3:68:05:e7:a1:55:1c:d5:90:b7:20:84:dc:19:13:12:7d: ce:4d:9f:ca:9d:52:b9:c3:d0:a2:3d:6a:d7:43:45:38:e4:b9: c3:2c:dd:23:45:bb:56:d1:94:02:09:63:e1:40:48:12:68:70: 12:0c:1d:c6:70:da:a5:36:09:a1:d5:aa:1d:38:f1:2b:08:7f: 78:75:83:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUwNzAyMTg0ODEyWhcNMjUwNzA5MTg0ODEyWjAYMRYwFAYD VQQDEw02ODY1N2VlZC01OGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuX80Y/KbtI2WRZg9rRQZC72IfTtjWB+9vF+xrcJE8/RgRKag+LPXAFWOo7Sf +AvSKaLJ+oaf2Z5WoKo8wy4umufPmuhiQZF81tB89MBP4ajDniL4AWxz70XNE3If ahuqfJV2LA3kB5dGw+4HRwld31ls38YMOLJKsyR/slyf5pQqr3oKHF9TuX379F5a sEr13/az7Nzg3qrZZi2lwuymtZXa87Bw7LATlK+GbyZB1ijmYSDc9ripT5byjftC oGeVJ6YindI9KwtnTI9sIrnBbKWXZs6MwTGbRCGqqYEbWKL5j4cEKVVbsAzrS5uT 6hn3ReO7BaOgm3S7R1HU+1rwQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMJAuRn CU9hMs+HTs3JkLdaa+LcMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABkFjfjEjXqPek+ZoSJCc7HglZm4wQcrRZPu0OgivPzbvgJ78X/P7u UvenUFNnEFm/pUSTAsIp8BiD4WWNUqNtjqwC+PRSS7txcCfSKJBEAEZ2ASGGogLE /Pmcss/FEUg4n9oPIntEBpC3O3pnPsQFpYXARXSACesraK2g8++aY78FUA+6rTot +zrIENuDFRE/vHqmVMI6YXw7Hl/ufDwILoQEUp2X7TOc360w7UJX/B9tDNU7s2gF 56FVHNWQtyCE3BkTEn3OTZ/KnVK5w9CiPWrXQ0U45LnDLN0jRbtW0ZQCCWPhQEgS aHASDB3GcNqlNgmh1aodOPErCH94dYNj -----END CERTIFICATE-----Generated at Wed Jul 2 23:20:52 2025 by rpki-client