$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft File: 5nG8sr6VpsiFJxIdiBXovPGKoeI.mft (raw, json) Hash identifier: 2kPz00kpNPGetbVX4R7f8k7mq77tDauQW5KtmWTYBUk= Subject key identifier: 39:B2:28:E1:A4:34:EC:3D:52:43:8F:FB:32:A7:09:68:D5:A8:77:63 Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 09B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft Manifest number: 09AD Signing time: Sun 20 Apr 2025 19:46:57 +0000 Manifest this update: Sun 20 Apr 2025 19:46:56 +0000 Manifest next update: Sun 27 Apr 2025 19:46:56 +0000 Files and hashes: 1: 5nG8sr6VpsiFJxIdiBXovPGKoeI.crl (hash: RIHDgESKiHtDBHYgZzQrSG+trqSp+e1nNQp2v0HogUg=) 2: 209BA8B682DF11EAABBC5018C4F9AE02.roa (hash: 8aW0SKFCuzpKiRgqZbEn9MAhCjT3ayoMsYjGk6vj7OA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2485 (0x9b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926, serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Apr 20 19:46:56 2025 GMT Not After : Apr 27 19:46:56 2025 GMT Subject: CN=68054f30-2de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a7:e1:4f:c7:71:a1:2c:1c:90:d2:70:53:28: 98:fc:8e:d4:07:0e:d5:7e:e7:42:12:6e:2c:a8:1b: f0:96:9e:84:fd:2a:93:7e:9b:d2:9f:92:0e:02:fa: 31:0d:30:6f:d4:b3:bc:08:53:20:74:a7:6e:ef:73: cc:8e:62:26:b0:fd:b9:83:8f:08:7c:54:cb:e0:6c: 69:74:70:41:67:23:e6:42:41:da:4c:c7:23:16:8a: 9f:d7:e1:0e:cd:98:bb:76:fc:78:f5:2f:b6:e4:64: fd:7b:ed:7c:6f:37:1a:71:a7:1a:bb:fc:a7:54:00: d2:64:32:3c:79:d3:76:2c:70:82:e5:dc:d5:b9:e3: 16:61:ad:b5:c9:f2:99:41:0f:82:53:e7:05:f7:3e: 2f:1f:81:b4:63:9c:82:e1:c6:f9:bd:e6:c7:91:8a: 1a:da:61:34:b6:57:11:8d:6c:3e:65:2e:ed:0b:e0: 65:32:fc:b5:41:d3:28:d7:46:6b:5a:05:9d:c7:54: dc:34:5c:b8:0c:fc:78:42:62:db:c4:ad:bc:ef:e1: fe:9c:b1:5b:b5:1b:d3:e8:b2:6b:16:9e:aa:ab:67: 9a:55:58:74:b4:81:a7:21:74:9a:ca:32:81:8e:dc: 23:20:08:05:7b:c3:92:a6:c2:ef:f8:68:f5:b1:4b: d7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B2:28:E1:A4:34:EC:3D:52:43:8F:FB:32:A7:09:68:D5:A8:77:63 X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:2f:dd:1f:80:55:f2:af:a5:77:3b:07:a0:36:ba:1b:a1:6d: 54:1d:01:69:fe:e9:2f:29:fd:c3:a5:51:67:11:a0:62:47:5e: c1:45:4c:7f:cf:3a:a0:ad:cf:29:2f:c1:39:4c:4a:f1:d0:1a: 55:36:f3:1d:f3:86:a9:a2:c2:a5:db:fc:5b:b9:86:4b:e9:34: 4a:e8:ab:32:f1:6f:19:99:ce:d9:1e:5b:fc:f2:76:c1:c9:d6: 76:f1:f5:92:b3:87:fd:44:68:54:83:16:7e:cf:60:54:5e:7a: f0:23:5f:f9:0e:36:c2:50:e0:03:2d:92:67:d3:0a:e3:ee:2d: aa:cb:7a:7a:ed:4b:54:23:bd:eb:d7:98:05:17:cd:de:7d:10: 19:5c:33:57:ad:97:02:d7:4d:35:76:0d:9d:69:e6:36:90:59: f8:38:de:70:5b:8a:0c:2e:31:7b:b9:67:b7:7d:e0:ba:d8:9c: eb:41:64:b0:99:5a:0d:23:d8:3d:0e:4b:b2:60:b5:92:50:b6: 54:83:72:b1:d1:d4:58:9c:e3:81:17:93:3d:63:aa:98:49:1d: 39:f3:55:8e:d4:ec:42:10:06:c8:a3:7c:c4:94:b8:92:9b:76: bc:7f:d8:f4:0e:11:04:a0:37:42:2a:5c:91:6e:b5:b5:95:ee: 67:ee:24:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjUwNDIwMTk0NjU2WhcNMjUwNDI3MTk0NjU2WjAYMRYwFAYD VQQDEw02ODA1NGYzMC0yZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qfhT8dxoSwckNJwUyiY/I7UBw7VfudCEm4sqBvwlp6E/SqTfpvSn5IOAvox DTBv1LO8CFMgdKdu73PMjmImsP25g48IfFTL4GxpdHBBZyPmQkHaTMcjFoqf1+EO zZi7dvx49S+25GT9e+18bzcacacau/ynVADSZDI8edN2LHCC5dzVueMWYa21yfKZ QQ+CU+cF9z4vH4G0Y5yC4cb5vebHkYoa2mE0tlcRjWw+ZS7tC+BlMvy1QdMo10Zr WgWdx1TcNFy4DPx4QmLbxK287+H+nLFbtRvT6LJrFp6qq2eaVVh0tIGnIXSayjKB jtwjIAgFe8OSpsLv+Gj1sUvXUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmyKOGk NOw9UkOP+zKnCWjVqHdjMB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDkyNi9CMzg1NzhDNDgyRDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBz aUZKeElkaUJYb3ZQR0tvZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSL90fgFXyr6V3OwegNroboW1UHQFp/ukvKf3DpVFnEaBiR17BRUx/ zzqgrc8pL8E5TErx0BpVNvMd84aposKl2/xbuYZL6TRK6Ksy8W8Zmc7ZHlv88nbB ydZ28fWSs4f9RGhUgxZ+z2BUXnrwI1/5DjbCUOADLZJn0wrj7i2qy3p67UtUI73r 15gFF83efRAZXDNXrZcC1001dg2daeY2kFn4ON5wW4oMLjF7uWe3feC62JzrQWSw mVoNI9g9DkuyYLWSULZUg3Kx0dRYnOOBF5M9Y6qYSR0581WO1OxCEAbIo3zElLiS m3a8f9j0DhEEoDdCKlyRbrW1le5n7iTS -----END CERTIFICATE-----Generated at Tue Apr 22 03:29:04 2025 by rpki-client