$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft File: 5muokllQFHlLtkUdFCgchAAgYgM.mft (raw, json) Hash identifier: fSvXAhm9fjfecdI/E1QrvZGkiYfHBSUPUwX0yCjzwjg= Subject key identifier: 9B:09:70:9B:A4:85:85:7D:7E:D8:4E:D1:5A:CC:FD:3F:27:A0:6C:43 Authority key identifier: E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 Certificate issuer: /CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Certificate serial: 1451 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft Manifest number: 144F Signing time: Fri 04 Apr 2025 16:59:38 +0000 Manifest this update: Fri 04 Apr 2025 16:59:37 +0000 Manifest next update: Fri 11 Apr 2025 16:59:37 +0000 Files and hashes: 1: 5muokllQFHlLtkUdFCgchAAgYgM.crl (hash: SEzMcvfg0+WTxTQ4sN6f22hYclOPyNFIehmDBfKGcl0=) 2: 3FF298D41AFF11EFB20C2648C4F9AE02.roa (hash: h/4RQkDOLBBPlrQUpebdiQb7wWMHpGVL3kG7tSUKXbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5201 (0x1451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BA4 Validity Not Before: Apr 4 16:59:37 2025 GMT Not After : Apr 11 16:59:37 2025 GMT Subject: CN=67f00ffa-41b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d1:c3:5a:67:25:e7:93:c3:88:4e:8c:f1:98: d3:c3:54:2b:ae:bb:65:50:a4:93:25:23:51:f6:b2: 86:fd:4c:f6:ee:1e:06:cb:63:4a:93:c5:8c:eb:3e: b5:07:01:e2:1a:a8:ba:3b:ef:f0:02:0c:31:a9:d6: c5:53:20:e8:4a:a7:fa:8d:36:7e:3a:c4:72:a4:31: c0:fb:2c:82:5b:6a:a4:f4:4c:be:17:a4:d7:6c:60: 44:e9:59:92:17:e1:68:13:78:0a:5d:ae:2c:ea:59: 33:9e:1b:5c:3c:d2:ed:14:df:4e:a0:66:99:a1:d0: a2:ec:75:b6:2d:80:a7:be:16:9a:6d:81:25:c9:87: d8:69:6d:8d:10:7a:6c:86:03:d9:d2:05:56:67:0f: 43:83:42:55:98:cd:32:f3:7d:fd:93:75:81:f9:e5: a9:af:ed:fc:99:5f:5a:d8:5a:84:12:3f:29:e5:45: 7b:45:d9:8d:fd:13:18:36:63:8e:71:07:a7:b2:46: c7:91:2d:cd:1c:d5:6b:0f:61:3a:3a:c8:44:22:a2: d1:cf:70:bc:90:40:df:d7:57:ac:1c:38:9f:f8:90: 94:1b:d1:22:a0:ca:66:83:13:31:fb:48:57:69:59: 01:b7:21:e6:0d:94:bf:0a:7d:05:85:d6:47:4f:71: 48:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:09:70:9B:A4:85:85:7D:7E:D8:4E:D1:5A:CC:FD:3F:27:A0:6C:43 X509v3 Authority Key Identifier: keyid:E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:ac:02:1f:2e:7d:e4:e5:26:b0:09:4d:99:63:29:97:c4:bd: c5:00:80:34:26:d7:91:0c:7b:85:ee:17:df:8c:01:75:25:ab: a8:e4:c8:48:27:29:33:cb:db:e3:a5:33:2e:a7:49:b7:af:67: 16:15:4f:0c:b8:0f:0d:d1:33:f2:3c:23:d2:a5:75:4d:c0:51: 19:52:bc:a3:a0:15:4e:c1:39:4d:cf:df:f1:ad:e8:c2:aa:88: 76:89:9c:6d:22:e8:e4:5e:dc:e5:c8:f3:ed:da:59:73:21:a2: f5:28:34:3d:4b:9d:30:e0:1e:58:3b:b4:f2:46:59:51:99:2d: 84:fd:2e:64:41:1b:e1:31:27:0b:05:d9:da:2b:f1:7f:19:e8: 1a:20:77:91:2b:a7:92:fb:1d:87:65:d3:fa:77:be:9b:f2:3f: 5e:95:b0:a0:fc:b4:c9:43:c5:4b:b7:86:34:9f:6c:cd:9e:97: 62:cc:79:3f:7a:8c:6a:45:72:6d:08:da:15:59:b2:35:db:44: 05:d8:a0:32:90:19:9c:25:33:77:48:75:1e:09:82:ba:66:39: 26:10:ce:1e:89:d9:ee:ef:a3:f2:cf:ef:49:73:52:12:2d:43: d6:95:a8:50:2a:b0:2c:23:b9:b8:db:6e:a6:2a:47:1f:77:f3: e8:d6:45:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCQTQxMTAvBgNVBAUTKEU2NkJBODkyNTk1MDE0Nzk0QkI2NDUxRDE0MjgxQzg0 MDAyMDYyMDMwHhcNMjUwNDA0MTY1OTM3WhcNMjUwNDExMTY1OTM3WjAYMRYwFAYD VQQDEw02N2YwMGZmYS00MWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dHDWmcl55PDiE6M8ZjTw1QrrrtlUKSTJSNR9rKG/Uz27h4Gy2NKk8WM6z61 BwHiGqi6O+/wAgwxqdbFUyDoSqf6jTZ+OsRypDHA+yyCW2qk9Ey+F6TXbGBE6VmS F+FoE3gKXa4s6lkznhtcPNLtFN9OoGaZodCi7HW2LYCnvhaabYElyYfYaW2NEHps hgPZ0gVWZw9Dg0JVmM0y8339k3WB+eWpr+38mV9a2FqEEj8p5UV7RdmN/RMYNmOO cQenskbHkS3NHNVrD2E6OshEIqLRz3C8kEDf11esHDif+JCUG9EioMpmgxMx+0hX aVkBtyHmDZS/Cn0FhdZHT3FIVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsJcJuk hYV9fthO0VrM/T8noGxDMB8GA1UdIwQYMBaAFOZrqJJZUBR5S7ZFHRQoHIQAIGID MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJBNC80N0U5MjY4NjY4 RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZIbEx0a1VkRkNnY2hBQWdZ Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVtdW9rbGxRRkhsTHRrVWRGQ2djaEFBZ1lnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJBNC80N0U5MjY4NjY4RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZI bEx0a1VkRkNnY2hBQWdZZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYrAIfLn3k5SawCU2ZYymXxL3FAIA0JteRDHuF7hffjAF1Jauo5MhI Jykzy9vjpTMup0m3r2cWFU8MuA8N0TPyPCPSpXVNwFEZUryjoBVOwTlNz9/xrejC qoh2iZxtIujkXtzlyPPt2llzIaL1KDQ9S50w4B5YO7TyRllRmS2E/S5kQRvhMScL BdnaK/F/GegaIHeRK6eS+x2HZdP6d76b8j9elbCg/LTJQ8VLt4Y0n2zNnpdizHk/ eoxqRXJtCNoVWbI120QF2KAykBmcJTN3SHUeCYK6ZjkmEM4eidnu76Pyz+9Jc1IS LUPWlahQKrAsI7m4226mKkcfd/Po1kVT -----END CERTIFICATE-----Generated at Fri Apr 4 22:06:40 2025 by rpki-client