$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: vwhk8ycjGIiP4IlZh6NsMQmcJ+aPxkeUSmm6vfKjl70= Subject key identifier: 99:81:A6:C5:FD:73:9C:94:A7:07:FC:CE:E0:00:CA:42:84:C0:1C:A1 Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C15 Signing time: Mon 12 May 2025 18:28:23 +0000 Manifest this update: Mon 12 May 2025 18:28:22 +0000 Manifest next update: Mon 19 May 2025 18:28:22 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: xXWsZ3UQRfsnGcSr2LnWAmLF6kIGRMMKXnVnhicOo4A=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3095 (0xc17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: May 12 18:28:22 2025 GMT Not After : May 19 18:28:22 2025 GMT Subject: CN=68223dc6-bbb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f2:9d:68:d2:3b:77:bd:dd:79:d3:1c:90:be: b4:70:42:45:4b:9f:7a:34:19:53:66:44:c7:18:6a: 91:c9:dc:ba:5b:46:09:cc:a8:ac:a7:b7:29:d6:8a: ed:67:73:03:62:7c:0f:44:3f:d1:d8:7a:87:6c:fa: 49:be:92:cd:78:d0:62:9f:9f:1e:1e:c0:8e:67:bb: 64:22:d0:69:58:43:0c:25:be:ad:07:89:01:8c:6a: d7:d7:94:7d:12:58:38:b1:2a:fc:60:29:cc:00:84: bc:3c:6e:f5:f3:8c:ec:a1:87:e8:6f:73:62:87:ab: f1:22:51:a8:c9:90:fc:2d:63:db:92:81:8f:ec:a7: 15:e3:ea:f6:08:89:ce:72:8a:07:5c:27:d6:3a:25: b4:02:a0:a7:28:4a:95:d4:93:96:b6:17:35:dd:63: e9:22:e1:9d:0f:52:86:76:0e:b5:89:e6:b6:94:98: 96:6a:7a:02:3c:28:c5:ef:48:5b:e6:02:b0:38:26: d8:07:43:e3:4f:3f:82:19:de:8b:5f:f6:3a:b7:e3: 1d:da:85:d5:ce:c1:51:59:1b:cb:69:98:9e:37:2d: 2b:e5:2f:c8:ea:df:41:99:15:90:f2:3d:a3:77:6b: 82:fd:fd:71:55:c3:fb:eb:a7:29:a7:ef:ad:bb:fb: df:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:81:A6:C5:FD:73:9C:94:A7:07:FC:CE:E0:00:CA:42:84:C0:1C:A1 X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:bb:2b:c2:83:3e:ba:84:ff:cf:dd:e2:fb:d4:cc:83:07:4a: af:32:f0:7f:d1:54:d3:fe:7b:0e:51:19:0b:3f:59:f4:d7:44: 25:a1:20:9b:2c:c1:51:c5:2b:ec:d2:1a:f7:73:fd:b9:06:d4: ff:a1:25:8a:88:eb:bc:fd:73:88:7d:5a:f1:ca:20:a1:2d:f0: ec:94:d0:33:bd:8a:1f:68:12:c4:b5:84:76:1d:7e:ac:99:e4: c2:26:bf:79:60:29:12:e5:ca:da:ea:66:c9:f3:ec:87:57:33: 93:58:1a:2a:d2:a4:16:1f:85:10:f8:53:1b:15:83:8e:15:fe: a8:dc:56:28:ab:f5:12:a6:6c:cd:74:3f:da:37:d9:96:b7:c8: 31:17:6d:10:e4:13:ee:34:e2:09:0d:08:91:9f:44:9c:2a:0b: 1c:0b:f5:36:fd:fe:02:b8:4d:5a:91:e2:a4:78:90:ad:be:d5: 00:ff:ca:98:09:be:f4:85:f6:3f:5f:00:4e:88:79:9b:3e:08: ba:a4:68:28:ee:b0:e9:5f:c9:97:07:12:1f:47:94:88:3a:ee: df:73:13:da:75:cb:69:65:cc:b8:9a:45:92:1f:9c:cb:63:dd: 58:b2:46:cc:42:cd:01:f5:f5:02:62:34:00:f7:97:b5:9a:39: 0a:52:de:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUwNTEyMTgyODIyWhcNMjUwNTE5MTgyODIyWjAYMRYwFAYD VQQDEw02ODIyM2RjNi1iYmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPKdaNI7d73dedMckL60cEJFS596NBlTZkTHGGqRydy6W0YJzKisp7cp1ort Z3MDYnwPRD/R2HqHbPpJvpLNeNBin58eHsCOZ7tkItBpWEMMJb6tB4kBjGrX15R9 Elg4sSr8YCnMAIS8PG7184zsoYfob3Nih6vxIlGoyZD8LWPbkoGP7KcV4+r2CInO cooHXCfWOiW0AqCnKEqV1JOWthc13WPpIuGdD1KGdg61iea2lJiWanoCPCjF70hb 5gKwOCbYB0PjTz+CGd6LX/Y6t+Md2oXVzsFRWRvLaZieNy0r5S/I6t9BmRWQ8j2j d2uC/f1xVcP766cpp++tu/vfeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmBpsX9 c5yUpwf8zuAAykKEwByhMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANuyvCgz66hP/P3eL71MyDB0qvMvB/0VTT/nsOURkLP1n010QloSCb LMFRxSvs0hr3c/25BtT/oSWKiOu8/XOIfVrxyiChLfDslNAzvYofaBLEtYR2HX6s meTCJr95YCkS5cra6mbJ8+yHVzOTWBoq0qQWH4UQ+FMbFYOOFf6o3FYoq/USpmzN dD/aN9mWt8gxF20Q5BPuNOIJDQiRn0ScKgscC/U2/f4CuE1akeKkeJCtvtUA/8qY Cb70hfY/XwBOiHmbPgi6pGgo7rDpX8mXBxIfR5SIOu7fcxPadctpZcy4mkWSH5zL Y91YskbMQs0B9fUCYjQA95e1mjkKUt5/ -----END CERTIFICATE-----Generated at Wed May 14 04:31:33 2025 by rpki-client