$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft File: 5viFuMHmNK45nsq4FzoD245MEpQ.mft (raw, json) Hash identifier: BHq8HYEX3Bxjjd6D0EvZZ1twi0kM34LubPdfIkdQUJo= Subject key identifier: 93:73:94:15:CA:A4:3E:07:09:02:FD:78:1C:3A:4F:54:EC:00:37:39 Authority key identifier: E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 Certificate issuer: /CN=A914C4D7/serialNumber=E6F885B8C1E634AE399ECAB8173A03DB8E4C1294 Certificate serial: 0DBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft Manifest number: 0DB1 Signing time: Fri 04 Apr 2025 18:02:28 +0000 Manifest this update: Fri 04 Apr 2025 18:02:28 +0000 Manifest next update: Fri 11 Apr 2025 18:02:28 +0000 Files and hashes: 1: 5viFuMHmNK45nsq4FzoD245MEpQ.crl (hash: eJAesHFTvqchhlGFymJ7a2nfFFoo5prgUyF3OOAwKlU=) 2: 1801797EB79211E986129837C4F9AE02.roa (hash: I7CEbkBg9Av7yOv0PNqj77FDrgxZjjIl1US16C5a7sQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3514 (0xdba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4D7 Validity Not Before: Apr 4 18:02:28 2025 GMT Not After : Apr 11 18:02:28 2025 GMT Subject: CN=67f01eb4-e0b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b8:13:10:93:63:e1:94:e8:12:9d:d0:9f:bc: 4a:25:11:46:27:c3:2c:99:d2:fe:c4:4f:84:6a:47: c7:07:a8:b3:5b:ff:01:3b:9c:32:ae:20:15:e2:6d: 65:7b:62:fb:50:e1:7d:57:33:60:11:c1:1a:47:32: c4:c5:31:9d:27:cc:3c:e0:24:a6:ba:d3:ae:b1:d5: 55:3f:5a:0d:62:42:a8:0d:42:b1:bb:c0:7c:21:95: 72:fd:35:55:79:d3:8d:3d:76:73:b2:25:8b:ba:f8: f1:dc:07:23:2d:89:88:26:0f:a7:3d:d7:e1:a0:37: 7b:6b:5b:ed:28:03:6c:11:e3:29:97:7c:88:36:0d: 94:c6:73:78:cd:c1:e3:51:29:61:0e:8b:a4:25:15: c7:ad:02:5a:30:50:a4:ef:a0:5a:19:9f:78:2e:c5: d4:df:f8:0a:0e:7e:90:e5:af:4f:3c:04:fc:e8:32: 04:bf:18:16:b2:4d:34:5f:96:47:9b:9e:f8:c3:c3: 9e:b7:a4:19:fb:2e:bf:da:89:f8:85:36:34:36:4c: 9e:62:6d:d6:c6:1d:c0:4b:64:91:0e:22:5f:19:8d: b6:c9:28:17:9a:39:53:62:7a:20:01:db:d8:de:cf: 2b:bd:91:c6:b4:f9:e7:e3:6b:70:ef:18:2a:f5:19: 2e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:73:94:15:CA:A4:3E:07:09:02:FD:78:1C:3A:4F:54:EC:00:37:39 X509v3 Authority Key Identifier: keyid:E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:4f:50:08:e6:01:5b:aa:91:95:10:b5:19:02:48:3a:01:7d: 33:b4:e4:8d:7e:1f:fd:6c:60:0e:b3:80:58:16:af:3c:8b:1a: 9c:c3:c1:be:64:e6:db:a4:d6:cc:cb:f2:f9:a6:7f:f8:ae:61: 5c:f7:ec:f9:4f:68:c9:89:62:fe:46:c7:2e:11:ca:67:7d:3d: b0:95:c1:01:b1:95:f7:27:88:03:05:f4:6a:af:fd:c6:6e:5e: c0:f9:11:7b:7e:05:ff:ac:38:00:f3:fb:be:ce:f6:c8:b7:fe: cc:d6:3d:75:1c:0e:dd:06:fa:a4:01:65:2a:5f:da:27:23:30: 74:91:c9:4f:bc:ce:4a:4a:12:fb:67:80:62:e4:66:89:bb:3d: ee:0b:0f:d2:bc:41:df:ba:6b:3c:6f:d8:0f:45:35:89:d5:fe: 05:7a:44:96:7b:0b:ea:96:dd:68:f1:33:53:4f:cb:48:5e:8a: bc:83:fb:b8:dd:ed:bc:ff:6b:bc:fd:47:cd:a8:ec:bf:ca:2b: 4d:c0:26:7d:00:ce:42:20:6b:62:13:35:c9:6f:22:7b:74:aa: 03:45:36:c3:b9:27:06:c2:66:07:3d:33:c2:9f:e0:25:cf:79: 93:5b:14:08:84:c0:97:2e:f1:49:e2:64:80:f7:d0:10:6f:69: 4e:b2:95:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RDcxMTAvBgNVBAUTKEU2Rjg4NUI4QzFFNjM0QUUzOTlFQ0FCODE3M0EwM0RC OEU0QzEyOTQwHhcNMjUwNDA0MTgwMjI4WhcNMjUwNDExMTgwMjI4WjAYMRYwFAYD VQQDEw02N2YwMWViNC1lMGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbgTEJNj4ZToEp3Qn7xKJRFGJ8MsmdL+xE+EakfHB6izW/8BO5wyriAV4m1l e2L7UOF9VzNgEcEaRzLExTGdJ8w84CSmutOusdVVP1oNYkKoDUKxu8B8IZVy/TVV edONPXZzsiWLuvjx3AcjLYmIJg+nPdfhoDd7a1vtKANsEeMpl3yINg2UxnN4zcHj USlhDoukJRXHrQJaMFCk76BaGZ94LsXU3/gKDn6Q5a9PPAT86DIEvxgWsk00X5ZH m574w8Oet6QZ+y6/2on4hTY0NkyeYm3Wxh3AS2SRDiJfGY22ySgXmjlTYnogAdvY 3s8rvZHGtPnn42tw7xgq9RkuSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNzlBXK pD4HCQL9eBw6T1TsADc5MB8GA1UdIwQYMBaAFOb4hbjB5jSuOZ7KuBc6A9uOTBKU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRENy85OUQ5MTUzQUI3 OTAxMUU5QkVFOEREMzRDNEY5QUUwMi81dmlGdU1IbU5LNDVuc3E0RnpvRDI0NU1F cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2aUZ1TUhtTks0NW5zcTRGem9EMjQ1TUVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRENy85OUQ5MTUzQUI3OTAxMUU5QkVFOEREMzRDNEY5QUUwMi81dmlGdU1IbU5L NDVuc3E0RnpvRDI0NU1FcFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAET1AI5gFbqpGVELUZAkg6AX0ztOSNfh/9bGAOs4BYFq88ixqcw8G+ ZObbpNbMy/L5pn/4rmFc9+z5T2jJiWL+RscuEcpnfT2wlcEBsZX3J4gDBfRqr/3G bl7A+RF7fgX/rDgA8/u+zvbIt/7M1j11HA7dBvqkAWUqX9onIzB0kclPvM5KShL7 Z4Bi5GaJuz3uCw/SvEHfums8b9gPRTWJ1f4FekSWewvqlt1o8TNTT8tIXoq8g/u4 3e28/2u8/UfNqOy/yitNwCZ9AM5CIGtiEzXJbyJ7dKoDRTbDuScGwmYHPTPCn+Al z3mTWxQIhMCXLvFJ4mSA99AQb2lOspVk -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:37 2025 by rpki-client