$ rpki-client -vvf rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft File: 5rsDqligwnDrZrPq6yQI__q6Xsc.mft (raw, json) Hash identifier: 3+HCZyfqphOBXgxi3MNARzK5b1ACGlCVgAtWEWsxQeU= Subject key identifier: 90:26:90:8F:67:2C:8E:DD:3E:C5:58:70:35:C7:29:E4:C7:66:E4:26 Authority key identifier: E6:BB:03:AA:58:A0:C2:70:EB:66:B3:EA:EB:24:08:FF:FA:BA:5E:C7 Certificate issuer: /CN=A914D2BF/serialNumber=E6BB03AA58A0C270EB66B3EAEB2408FFFABA5EC7 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft Manifest number: 0177 Signing time: Sat 29 Mar 2025 03:18:30 +0000 Manifest this update: Sat 29 Mar 2025 03:18:30 +0000 Manifest next update: Sat 05 Apr 2025 03:18:30 +0000 Files and hashes: 1: 5rsDqligwnDrZrPq6yQI__q6Xsc.crl (hash: Y/HDrUxXY+QD7hnyv047+bsVzVjy/y7hyMRTSaHvpnc=) 2: AEF266ECD34811EDAD96D95DC4F9AE02.roa (hash: uEvVY1ok6a49Mu9d75rAbyeazYfnD3ESapA5YfOEXsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.crl rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D2BF Validity Not Before: Mar 29 03:18:30 2025 GMT Not After : Apr 5 03:18:30 2025 GMT Subject: CN=67e76686-f9fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:72:b0:16:cc:d3:b2:26:35:ff:68:c4:c8:10: 97:87:0a:fc:e5:e2:63:4e:66:5e:0e:82:06:18:02: f7:ba:df:55:23:24:fb:00:26:66:2a:7b:e6:15:a3: 2b:dd:e9:1f:25:b6:b0:48:23:dd:60:da:2e:7d:34: e9:ae:45:c2:d9:6e:98:7f:01:03:2c:90:9b:cf:dc: a6:7f:22:de:8a:ec:d5:5a:cf:b2:20:00:0a:34:98: 57:5a:77:6f:04:18:60:1c:d1:2e:06:41:00:1c:4a: be:e5:25:cb:bd:68:58:48:23:41:45:15:95:e5:77: 48:55:b4:0a:b6:18:02:32:e0:12:b3:52:72:88:4d: 26:b0:ad:2e:2d:78:47:c7:aa:3a:5f:ed:b5:be:78: ba:0a:5d:b6:3a:ed:ba:48:3d:33:34:29:86:05:8a: eb:86:c4:6c:64:5c:f5:5e:64:89:cc:ec:8e:33:2d: 75:fa:77:82:48:e7:4f:26:3f:47:ed:cd:13:eb:3d: fb:42:21:dc:a9:ba:fe:97:a4:41:a9:7a:cd:d2:7f: 12:5d:2e:87:86:d7:c0:71:33:92:1a:4f:78:67:97: 49:14:e2:68:63:dd:95:63:4f:90:d8:14:7f:09:90: ed:9b:bf:3a:13:b5:52:48:e9:1a:fb:af:03:ea:06: 0e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:26:90:8F:67:2C:8E:DD:3E:C5:58:70:35:C7:29:E4:C7:66:E4:26 X509v3 Authority Key Identifier: keyid:E6:BB:03:AA:58:A0:C2:70:EB:66:B3:EA:EB:24:08:FF:FA:BA:5E:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rsDqligwnDrZrPq6yQI__q6Xsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D2BF/2A71E6BCD34411ED8E2C5464C4F9AE02/5rsDqligwnDrZrPq6yQI__q6Xsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ca:83:62:30:a2:98:43:90:c6:aa:5a:07:6d:a9:0e:f5:59: 1c:f2:0e:16:70:42:52:eb:a0:58:7e:9d:ba:9c:a7:06:7f:f4: 18:3d:7a:bc:df:f4:13:43:25:82:42:67:98:34:3c:dd:34:13: f5:48:48:ee:d1:df:9c:dc:cd:58:3d:eb:70:3b:6c:cf:a4:a8: 12:7d:e7:3d:59:e3:c2:4a:6e:5d:5b:ba:5f:ff:e1:9a:b3:1e: fb:2c:0b:99:35:cd:c8:e5:16:67:ff:a8:04:52:af:b9:8f:e1: 12:48:d5:bd:c9:0f:1d:bb:d7:46:27:65:84:32:4c:64:0a:89: b4:ce:75:9c:c5:87:2b:ef:59:56:c7:24:ae:b3:20:2b:f1:95: 3b:bd:73:b3:33:ed:4c:05:61:37:32:6e:58:9e:ea:ff:b6:d1: ca:95:df:36:7a:ba:aa:b0:bb:06:64:05:d1:c7:95:21:d5:0c: 35:e3:ab:a2:1b:80:64:ca:bb:37:be:32:20:09:c2:72:dc:c2: f4:38:96:97:fc:ed:c0:58:2d:80:22:6e:53:e7:1a:9a:24:18: fd:ce:2f:b9:26:cc:92:38:b0:34:e3:f6:45:85:ae:e2:20:37: 13:74:9f:98:ba:57:d9:95:c9:be:a1:0c:df:89:83:5c:d8:f5: 08:dc:88:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyQkYxMTAvBgNVBAUTKEU2QkIwM0FBNThBMEMyNzBFQjY2QjNFQUVCMjQwOEZG RkFCQTVFQzcwHhcNMjUwMzI5MDMxODMwWhcNMjUwNDA1MDMxODMwWjAYMRYwFAYD VQQDEw02N2U3NjY4Ni1mOWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunKwFszTsiY1/2jEyBCXhwr85eJjTmZeDoIGGAL3ut9VIyT7ACZmKnvmFaMr 3ekfJbawSCPdYNoufTTprkXC2W6YfwEDLJCbz9ymfyLeiuzVWs+yIAAKNJhXWndv BBhgHNEuBkEAHEq+5SXLvWhYSCNBRRWV5XdIVbQKthgCMuASs1JyiE0msK0uLXhH x6o6X+21vni6Cl22Ou26SD0zNCmGBYrrhsRsZFz1XmSJzOyOMy11+neCSOdPJj9H 7c0T6z37QiHcqbr+l6RBqXrN0n8SXS6HhtfAcTOSGk94Z5dJFOJoY92VY0+Q2BR/ CZDtm786E7VSSOka+68D6gYO2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAmkI9n LI7dPsVYcDXHKeTHZuQmMB8GA1UdIwQYMBaAFOa7A6pYoMJw62az6uskCP/6ul7H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDJCRi8yQTcxRTZCQ0Qz NDQxMUVEOEUyQzU0NjRDNEY5QUUwMi81cnNEcWxpZ3duRHJaclBxNnlRSV9fcTZY c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyc0RxbGlnd25EclpyUHE2eVFJX19xNlhzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDJCRi8yQTcxRTZCQ0QzNDQxMUVEOEUyQzU0NjRDNEY5QUUwMi81cnNEcWxpZ3du RHJaclBxNnlRSV9fcTZYc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4yoNiMKKYQ5DGqloHbakO9Vkc8g4WcEJS66BYfp26nKcGf/QYPXq8 3/QTQyWCQmeYNDzdNBP1SEju0d+c3M1YPetwO2zPpKgSfec9WePCSm5dW7pf/+Ga sx77LAuZNc3I5RZn/6gEUq+5j+ESSNW9yQ8du9dGJ2WEMkxkCom0znWcxYcr71lW xySusyAr8ZU7vXOzM+1MBWE3Mm5Ynur/ttHKld82erqqsLsGZAXRx5Uh1Qw146ui G4Bkyrs3vjIgCcJy3ML0OJaX/O3AWC2AIm5T5xqaJBj9zi+5JsySOLA04/ZFha7i IDcTdJ+YulfZlcm+oQzfiYNc2PUI3Ihs -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:19 2025 by rpki-client