$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft File: c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json) Hash identifier: 9+SSq32yG52AxRFoEPcXzYa1Dv/Nk7CicX+/+4ne7/0= Subject key identifier: DD:77:F6:7F:3B:14:60:4B:EA:3E:15:C5:DB:32:9D:FB:7C:9A:FD:1A Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 0326 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft Manifest number: 0322 Signing time: Sat 29 Mar 2025 01:22:29 +0000 Manifest this update: Sat 29 Mar 2025 01:22:29 +0000 Manifest next update: Sat 05 Apr 2025 01:22:29 +0000 Files and hashes: 1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: SPfDMJFtoB6a/Wq8mis7qK4gPS9gWoZI2ADzJ6cKn7E=) 2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: Py8gHJNmqLpByr4I29rw6Mm8G9sMV9RnjA0oEGne9CY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 806 (0x326) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8 Validity Not Before: Mar 29 01:22:29 2025 GMT Not After : Apr 5 01:22:29 2025 GMT Subject: CN=67e74b55-14a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:1d:11:e3:43:97:35:e7:00:15:44:85:37: 87:5e:68:2d:e6:51:e8:40:33:7b:ee:1c:04:06:a4: 6b:53:49:aa:dc:86:19:a0:b2:36:c0:b9:9c:5e:16: ea:ba:e9:20:71:d6:c5:7f:f2:e2:56:a5:e7:eb:1a: 1a:c1:2e:ab:83:51:c7:64:2e:f2:3f:21:bb:7f:34: 1b:5a:cf:2e:b0:e2:4a:22:cc:4d:20:ee:35:a6:1c: d3:e7:9a:c3:fa:6b:39:c5:86:3c:e7:8f:a0:41:16: 05:8f:fa:75:da:ae:90:ed:fd:1a:dc:67:8c:61:28: 6e:94:80:88:cd:4b:57:ea:98:66:e3:18:84:7c:50: 9c:34:51:79:49:64:f2:09:8a:5f:18:67:cd:93:8c: 34:ca:97:09:3d:7e:f5:3e:5a:44:ec:bc:5c:c3:5d: 9d:3e:14:dd:74:49:4e:27:2e:d5:a8:d2:7b:e3:7b: ac:66:07:6f:7c:17:a5:d9:09:fa:c2:51:59:59:bb: 16:c5:41:cb:e5:15:bd:d7:44:0f:d9:c3:eb:86:cd: 43:47:cc:2e:86:f7:ab:d7:f8:fa:cb:1c:eb:25:fb: 58:19:b3:6d:3f:5b:e5:2f:0c:eb:86:da:ea:ab:1c: 9a:c3:ca:63:d3:b1:11:f2:0d:61:90:a0:c9:a5:ca: 06:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:77:F6:7F:3B:14:60:4B:EA:3E:15:C5:DB:32:9D:FB:7C:9A:FD:1A X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:bf:e5:01:23:0a:7f:07:fd:5e:bb:91:2f:d9:62:57:ef:58: 13:87:13:9c:e1:ab:7e:f8:90:aa:fa:c2:81:39:33:23:08:63: a4:a7:9a:72:b0:5c:15:9d:db:9c:33:ce:6b:87:e5:51:fe:4a: e4:02:4f:b0:c4:a9:b3:16:03:c8:7e:97:91:fb:76:c8:76:83: 0a:b0:1c:f2:33:7d:dc:94:99:88:f9:34:be:7a:16:c4:46:9d: bf:62:53:7d:43:8d:22:8a:b7:45:48:95:eb:7d:3d:74:18:6e: bf:42:05:79:b7:2c:ab:d5:05:86:cb:73:1f:90:cb:7c:3a:1f: d2:81:27:30:34:b9:c5:db:d2:27:5f:47:c0:e1:9d:04:d4:42: 10:b2:35:ff:01:b9:4c:e3:98:d8:bd:e8:22:74:2c:9d:50:bb: 59:ca:de:e3:62:7d:d9:9e:8c:5a:8f:df:fb:0f:fa:57:a7:24: 12:fd:ea:22:76:8d:6f:d8:54:24:09:60:cd:61:46:99:ef:5f: c6:1b:af:9e:1c:75:67:b0:49:b4:44:1a:3e:f0:f9:98:8c:e9: fd:25:b5:de:d0:ec:6f:d2:0a:6f:7d:13:dd:9f:34:3e:24:0f: 85:34:92:aa:d6:b1:94:37:8f:95:97:fb:8d:eb:72:50:1f:8f: e1:b5:cd:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjUwMzI5MDEyMjI5WhcNMjUwNDA1MDEyMjI5WjAYMRYwFAYD VQQDEw02N2U3NGI1NS0xNGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiEdEeNDlzXnABVEhTeHXmgt5lHoQDN77hwEBqRrU0mq3IYZoLI2wLmcXhbq uukgcdbFf/LiVqXn6xoawS6rg1HHZC7yPyG7fzQbWs8usOJKIsxNIO41phzT55rD +ms5xYY854+gQRYFj/p12q6Q7f0a3GeMYShulICIzUtX6phm4xiEfFCcNFF5SWTy CYpfGGfNk4w0ypcJPX71PlpE7Lxcw12dPhTddElOJy7VqNJ743usZgdvfBel2Qn6 wlFZWbsWxUHL5RW910QP2cPrhs1DR8wuhver1/j6yxzrJftYGbNtP1vlLwzrhtrq qxyaw8pj07ER8g1hkKDJpcoGtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN139n87 FGBL6j4Vxdsynft8mv0aMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpU LUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzv+UBIwp/B/1eu5Ev2WJX71gThxOc4at++JCq+sKBOTMjCGOkp5py sFwVnducM85rh+VR/krkAk+wxKmzFgPIfpeR+3bIdoMKsBzyM33clJmI+TS+ehbE Rp2/YlN9Q40iirdFSJXrfT10GG6/QgV5tyyr1QWGy3MfkMt8Oh/SgScwNLnF29In X0fA4Z0E1EIQsjX/AblM45jYvegidCydULtZyt7jYn3Znoxaj9/7D/pXpyQS/eoi do1v2FQkCWDNYUaZ71/GG6+eHHVnsEm0RBo+8PmYjOn9JbXe0Oxv0gpvfRPdnzQ+ JA+FNJKq1rGUN4+Vl/uN63JQH4/htc3m -----END CERTIFICATE-----Generated at Fri Apr 4 18:01:38 2025 by rpki-client