$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft File: 5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft (raw, json) Hash identifier: cVvD4gMIy+lAJKGyP/ZPhiGg2v25DLrFpdP/WLbX11E= Subject key identifier: 01:41:FB:63:A2:C2:AD:FA:9C:AF:D0:28:36:96:34:B3:9F:5F:85:71 Authority key identifier: E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 Certificate issuer: /CN=A91EEEB8/serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Certificate serial: 34CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft Manifest number: 34AA Signing time: Wed 02 Jul 2025 15:10:09 +0000 Manifest this update: Wed 02 Jul 2025 15:10:08 +0000 Manifest next update: Wed 09 Jul 2025 15:10:08 +0000 Files and hashes: 1: 5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl (hash: p6MrDAW8jtuwY5SrPzsaVnE8dv813SsLXXtw8HzQU10=) 2: 32DFCCDCEB8011EAAB806163C4F9AE02.roa (hash: d8SyVppxPlIuR4fpNFIkYTURn6Yx4CMf1TSPHGG+TtY=) 3: 9A4EE834EB8111EA87E2C165C4F9AE02.roa (hash: 2HjZqBm6c0Bz0zik/PCkuHSNvhZSOIqG0dnIWyE0YeQ=) 4: FC75A532DBAC11EA9FF2FA1FC4F9AE02.roa (hash: EbIaf/1Sy/3aBx9khl+6A1cQZxzTMmTyasNR7QqdjR8=) 5: 60DA0694D9E111EA82120960C4F9AE02.roa (hash: 0RxGIy0cRn46gMQ4a+LKJK3dXVABCl5t2jG6UZ82riU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEEB8, serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Validity Not Before: Jul 2 15:10:08 2025 GMT Not After : Jul 9 15:10:08 2025 GMT Subject: CN=68654bd1-8140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4e:15:02:d0:16:90:4a:f9:fd:20:22:fe:fd: 2a:d8:55:97:39:da:2e:5a:e2:60:56:9c:89:43:98: e9:98:01:13:d3:4d:30:db:cc:fb:14:39:98:c5:96: 1f:7a:a5:29:aa:36:52:75:ab:2a:da:ee:c1:5b:9d: dd:11:a7:69:f1:d0:98:b1:80:19:3f:27:05:71:2c: 08:14:00:74:71:d3:35:b8:79:a3:8e:89:aa:37:6e: d3:6f:f9:db:22:41:4a:56:64:42:74:37:6b:98:8b: c7:6f:ab:cf:a0:55:b4:34:17:28:8b:71:ba:d1:bb: 0e:e8:e0:b6:9a:c2:5c:bf:73:5c:68:f6:43:f6:76: cf:2a:a2:39:3f:3c:67:8f:f4:97:ac:e3:65:b8:a1: 6c:e8:f9:33:97:49:33:e1:83:39:d9:b4:60:40:b1: 6a:ab:6a:8b:03:2a:c0:84:60:7c:c7:b5:6e:de:d2: ac:85:49:c7:9d:a1:9f:9f:c9:c9:67:da:15:1a:92: 69:87:ac:4e:df:4c:52:ef:15:2c:98:0e:a8:4a:59: 21:57:c7:8f:2d:20:38:9b:36:27:de:d9:98:8b:c4: c4:e5:76:6b:fb:c3:52:10:8a:59:9f:20:3c:58:c2: 21:16:66:2e:1b:eb:eb:4d:c5:80:26:08:53:32:53: e7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:41:FB:63:A2:C2:AD:FA:9C:AF:D0:28:36:96:34:B3:9F:5F:85:71 X509v3 Authority Key Identifier: keyid:E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:1d:7a:cb:3f:9b:62:cc:95:8e:22:f8:42:95:e4:dc:57:9c: 5f:b5:57:f7:c6:6e:05:ee:67:f1:11:1e:d4:71:12:86:fe:72: 05:21:9e:b2:ac:6f:09:2a:3a:23:63:05:06:dc:66:56:0a:26: c1:9a:1d:ca:71:55:84:6c:71:a7:7d:58:e7:a3:70:c5:94:b6: de:5c:b0:c3:30:0f:94:e3:49:0a:9f:34:4f:96:c7:ed:ab:00: 08:8a:9b:69:7e:98:11:d9:31:dc:77:14:94:a6:e2:f5:2e:19: d2:a7:0b:2b:b7:b0:77:c5:d8:0d:89:db:30:84:60:7f:a9:e3: c2:61:e5:03:b0:a0:0e:e1:36:cb:3e:c3:05:71:86:4f:d9:8d: ac:29:4a:83:c0:bc:11:7f:0d:9a:bc:2c:91:91:27:0b:fe:38: 1e:31:66:97:1f:af:90:02:4d:ef:90:1d:d3:34:62:cf:da:1a: 57:4c:60:af:76:28:54:b3:40:41:11:49:3b:85:39:50:50:2b: c1:df:e6:66:2b:2b:99:58:0f:4a:89:12:32:69:38:62:b7:c8: da:91:91:74:ca:6b:77:cd:4f:4c:2a:19:cb:b7:eb:e7:30:b3: de:c2:35:05:4e:10:da:11:eb:8c:46:7d:e1:82:dc:1c:6a:5d: 99:48:12:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFQjgxMTAvBgNVBAUTKEU2MjJDODExNEYzRjI0QUE2QTgwN0M4MTQxRTM5NjRC NTUxQkI5MzAwHhcNMjUwNzAyMTUxMDA4WhcNMjUwNzA5MTUxMDA4WjAYMRYwFAYD VQQDEw02ODY1NGJkMS04MTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA404VAtAWkEr5/SAi/v0q2FWXOdouWuJgVpyJQ5jpmAET000w28z7FDmYxZYf eqUpqjZSdasq2u7BW53dEadp8dCYsYAZPycFcSwIFAB0cdM1uHmjjomqN27Tb/nb IkFKVmRCdDdrmIvHb6vPoFW0NBcoi3G60bsO6OC2msJcv3NcaPZD9nbPKqI5Pzxn j/SXrONluKFs6Pkzl0kz4YM52bRgQLFqq2qLAyrAhGB8x7Vu3tKshUnHnaGfn8nJ Z9oVGpJph6xO30xS7xUsmA6oSlkhV8ePLSA4mzYn3tmYi8TE5XZr+8NSEIpZnyA8 WMIhFmYuG+vrTcWAJghTMlPnVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFB+2Oi wq36nK/QKDaWNLOfX4VxMB8GA1UdIwQYMBaAFOYiyBFPPySqaoB8gUHjlktVG7kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUVCOC84RTBGMkNCNjFE QTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pLcHFnSHlCUWVPV1MxVWJ1 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpTElFVThfSktwcWdIeUJRZU9XUzFVYnVUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUVCOC84RTBGMkNCNjFEQTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pL cHFnSHlCUWVPV1MxVWJ1VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGHXrLP5tizJWOIvhCleTcV5xftVf3xm4F7mfxER7UcRKG/nIFIZ6y rG8JKjojYwUG3GZWCibBmh3KcVWEbHGnfVjno3DFlLbeXLDDMA+U40kKnzRPlsft qwAIiptpfpgR2THcdxSUpuL1LhnSpwsrt7B3xdgNidswhGB/qePCYeUDsKAO4TbL PsMFcYZP2Y2sKUqDwLwRfw2avCyRkScL/jgeMWaXH6+QAk3vkB3TNGLP2hpXTGCv dihUs0BBEUk7hTlQUCvB3+ZmKyuZWA9KiRIyaThit8jakZF0ymt3zU9MKhnLt+vn MLPewjUFThDaEeuMRn3hgtwcal2ZSBKm -----END CERTIFICATE-----Generated at Thu Jul 3 14:42:03 2025 by rpki-client