$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: 9BAj3xhepRaUFCupiZOiQk5KhCH3t21GCpeesri02A8= Subject key identifier: EF:5C:7E:4E:29:15:9E:E1:51:7D:9E:9B:C1:A6:3D:DF:E2:5C:8F:E3 Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 11 Signing time: Sat 29 Mar 2025 07:23:27 +0000 Manifest this update: Sat 29 Mar 2025 07:23:27 +0000 Manifest next update: Sat 05 Apr 2025 07:23:27 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: 4JiGo/7s2gGHJSYam6RL0WSwX9CZOHvkvYyfqu4z68g=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D Validity Not Before: Mar 29 07:23:27 2025 GMT Not After : Apr 5 07:23:27 2025 GMT Subject: CN=67e79fef-8e1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:69:1b:06:05:02:00:57:8a:be:f8:07:f2: b2:84:55:3d:94:20:fd:03:da:3d:c2:9e:f9:01:59: 3c:34:a2:bd:4a:2c:43:fe:52:96:69:5a:8c:8e:0c: 97:60:ce:44:5e:6e:3d:47:ea:a3:6c:6b:2e:b7:46: f7:d7:6c:3d:5d:31:77:26:33:fe:aa:25:d2:ef:2d: 40:53:8c:4c:a5:f5:a8:e5:14:ce:84:11:74:c2:26: a1:4a:46:de:23:86:bf:be:b2:55:d5:68:39:b8:b6: 0f:d7:7b:94:d8:f4:dc:78:7d:98:d8:32:54:94:e4: d9:c8:61:43:91:c3:bb:eb:52:90:62:be:1d:39:c0: eb:c3:a2:d7:f3:b6:42:a8:47:47:6c:87:d0:0d:fe: 81:dd:87:70:3f:47:e4:76:49:12:86:0a:ce:fe:ab: 09:92:51:ee:46:f1:c2:cb:45:8a:e4:fd:28:bf:f1: 20:6c:66:b1:82:1a:2b:28:bd:53:98:80:66:8c:c5: b1:6b:36:f2:aa:5d:51:56:57:1f:74:8a:3e:9b:7b: 8b:40:22:03:80:16:3c:c8:fb:97:8e:84:9e:cf:d6: f9:a8:5f:24:6d:a5:8d:9b:2c:f0:68:a8:38:17:bc: 8b:f9:a0:5d:56:dd:f7:c1:77:48:b0:b3:47:e1:61: 9e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:5C:7E:4E:29:15:9E:E1:51:7D:9E:9B:C1:A6:3D:DF:E2:5C:8F:E3 X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:0a:3b:0a:48:53:a0:71:1d:1a:a3:11:91:f2:41:eb:ba:fe: 4c:1c:bf:2b:0b:07:35:8a:e2:4a:18:20:ef:10:1c:8d:6a:3a: 30:5a:ae:eb:b4:85:bf:32:70:32:0d:02:9c:31:41:48:33:4a: 31:1e:ed:5a:87:f3:89:0b:fb:9c:fe:37:b5:a7:17:79:3a:92: 4c:8a:8c:3e:a5:a9:bc:71:ee:aa:40:82:c9:35:ab:41:1b:74: d6:79:ec:09:0e:a5:17:f9:ad:40:26:6e:78:39:fe:e8:fe:cc: 9c:9e:42:4a:fc:56:3b:6f:e9:74:54:97:6a:14:97:64:39:98: be:8e:02:66:ee:cf:56:8c:ea:86:fd:8d:5e:13:d8:c6:66:9f: 76:45:d5:0a:bd:60:37:d4:2b:41:e7:83:5b:c7:08:6b:fd:34: 3a:60:e7:af:66:f6:40:30:47:dd:4c:da:89:7d:fb:02:a5:dc: 9b:51:fb:5b:b1:c7:27:77:c2:c6:8d:98:a9:e0:04:1f:39:71: d4:99:1b:1b:ab:82:fb:02:c4:2f:d5:24:b2:f8:90:f6:dd:af: 44:93:3d:17:f6:73:6e:77:f6:22:1d:52:d0:ed:c0:21:c0:dd: 87:3d:53:14:21:99:51:4a:37:a0:8a:92:ca:ea:54:80:13:3f: f5:d2:aa:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTMxRDExMC8GA1UEBRMoRTYyODIyMEYzRkQwMEY0MTdCOTk3MkUxRDRBMEY2NDE2 OTZFNzk5OTAeFw0yNTAzMjkwNzIzMjdaFw0yNTA0MDUwNzIzMjdaMBgxFjAUBgNV BAMTDTY3ZTc5ZmVmLThlMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxzmkbBgUCAFeKvvgH8rKEVT2UIP0D2j3CnvkBWTw0or1KLEP+UpZpWoyODJdg zkRebj1H6qNsay63RvfXbD1dMXcmM/6qJdLvLUBTjEyl9ajlFM6EEXTCJqFKRt4j hr++slXVaDm4tg/Xe5TY9Nx4fZjYMlSU5NnIYUORw7vrUpBivh05wOvDotfztkKo R0dsh9AN/oHdh3A/R+R2SRKGCs7+qwmSUe5G8cLLRYrk/Si/8SBsZrGCGisovVOY gGaMxbFrNvKqXVFWVx90ij6be4tAIgOAFjzI+5eOhJ7P1vmoXyRtpY2bLPBoqDgX vIv5oF1W3ffBd0iws0fhYZ6RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU71x+TikV nuFRfZ6bwaY93+Jcj+MwHwYDVR0jBBgwFoAU5igiDz/QD0F7mXLh1KD2QWlueZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzFELzJDRjZCOEIwRjlD OTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVa ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWlnaUR6X1FEMEY3bVhMaDFLRDJRV2x1ZVprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF MzFELzJDRjZCOEIwRjlDOTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBG N21YTGgxS0QyUVdsdWVaay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANQKOwpIU6BxHRqjEZHyQeu6/kwcvysLBzWK4koYIO8QHI1qOjBaruu0 hb8ycDINApwxQUgzSjEe7VqH84kL+5z+N7WnF3k6kkyKjD6lqbxx7qpAgsk1q0Eb dNZ57AkOpRf5rUAmbng5/uj+zJyeQkr8Vjtv6XRUl2oUl2Q5mL6OAmbuz1aM6ob9 jV4T2MZmn3ZF1Qq9YDfUK0Hng1vHCGv9NDpg569m9kAwR91M2ol9+wKl3JtR+1ux xyd3wsaNmKngBB85cdSZGxurgvsCxC/VJLL4kPbdr0STPRf2c2539iIdUtDtwCHA 3Yc9UxQhmVFKN6CKksrqVIATP/XSql0= -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:54 2025 by rpki-client