$ rpki-client -vvf rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft File: 5cOmhsg97m0zv-xUHqy0pKCJknk.mft (raw, json) Hash identifier: 5daNcAAMigqaNydr9UpGK4RWDpODIcbCZ9uOmYzck8U= Subject key identifier: E1:56:8A:BD:CB:09:86:ED:38:78:3E:BD:55:78:5F:2C:B6:9F:1A:C5 Authority key identifier: E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 Certificate issuer: /CN=A9153AA6/serialNumber=E5C3A686C83DEE6D33BFEC541EACB4A4A0899279 Certificate serial: 16B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft Manifest number: 16A8 Signing time: Fri 04 Apr 2025 16:45:14 +0000 Manifest this update: Fri 04 Apr 2025 16:45:14 +0000 Manifest next update: Fri 11 Apr 2025 16:45:14 +0000 Files and hashes: 1: 5cOmhsg97m0zv-xUHqy0pKCJknk.crl (hash: jnwCACB4haAgkzR2TTCyZTElP4oLMCydzVUubxS6jGg=) 2: 99C6F94CF52511E7948D5A0BC4F9AE02.roa (hash: vVPzJlO8vaF4Vh+BV9iHSW1TnZ35r0+ZhJx7At1qJd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5809 (0x16b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153AA6 Validity Not Before: Apr 4 16:45:14 2025 GMT Not After : Apr 11 16:45:14 2025 GMT Subject: CN=67f00c9a-30e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:2c:47:9d:b4:b0:1f:ea:7c:24:d8:52:17:29: e8:d5:4a:e4:ab:a2:45:e2:17:55:3b:f1:07:e0:3c: 68:0c:6f:ae:61:27:ba:78:3c:2e:67:76:09:9b:62: 29:24:02:ca:b9:61:45:c4:94:d1:bd:90:ed:c9:89: ab:d7:fe:8e:85:73:f7:eb:83:ff:31:40:c2:31:94: 22:c7:88:db:d6:5b:af:6a:77:1c:22:6e:61:d8:a7: 34:56:3d:54:50:b2:d1:27:4b:35:4a:ce:a5:37:82: f6:94:ca:6f:0b:f2:96:2d:32:89:c7:45:21:39:62: e1:f9:2e:3b:0f:b2:50:3d:92:ec:b2:4b:dd:35:be: 6a:fe:71:2c:59:ea:17:79:67:8a:04:1d:cb:ce:47: 3d:88:b2:d8:8a:cd:dd:64:2b:20:90:d8:7f:41:5e: 44:0c:56:03:ee:7c:7c:60:f3:08:ee:b3:5c:1a:d6: 6b:04:fc:fe:b5:c6:4d:1a:3a:ee:f1:9a:16:bc:e6: 50:ef:8f:f1:29:14:ae:db:20:39:d8:67:c2:03:ca: ef:a1:b9:91:bf:c8:3a:ab:e8:60:e5:71:e2:c6:85: a7:d7:63:38:89:10:3d:65:a3:4b:90:81:81:b0:cd: 55:c0:24:f7:13:bf:b5:ea:78:0a:55:79:a6:0b:e2: 77:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:56:8A:BD:CB:09:86:ED:38:78:3E:BD:55:78:5F:2C:B6:9F:1A:C5 X509v3 Authority Key Identifier: keyid:E5:C3:A6:86:C8:3D:EE:6D:33:BF:EC:54:1E:AC:B4:A4:A0:89:92:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5cOmhsg97m0zv-xUHqy0pKCJknk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153AA6/9C3D87E6F52411E79644B009C4F9AE02/5cOmhsg97m0zv-xUHqy0pKCJknk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d6:9b:78:3e:37:82:7b:94:bf:4f:51:7f:07:81:72:e7:6e: 8b:4f:5b:8e:b8:39:a8:6f:a6:16:37:3a:8d:0c:14:13:88:50: 40:0a:9e:59:07:26:86:76:b4:ed:18:f2:a7:f2:7a:47:1e:34: 69:8a:ba:94:52:cd:8f:fd:ad:fd:dd:e0:d6:dc:82:d8:dc:87: f6:23:89:75:8c:d0:1d:66:a7:c8:54:db:3f:9e:d8:dd:e6:f8: bd:df:1e:01:2b:62:50:84:e2:aa:21:58:c8:5c:78:a4:5b:18: 0c:fd:ce:45:04:1d:4c:18:bb:7b:a0:cd:a0:4f:c0:b0:76:39: dc:e7:b3:ad:e1:aa:4f:81:cb:41:4e:7b:b8:43:5b:af:a2:54: 7e:63:b6:a9:58:57:88:c1:2e:04:27:05:6b:f8:33:41:9b:47: ed:66:3c:a2:e4:9c:27:b2:8c:1c:30:5a:ee:d7:8f:f2:19:0f: ed:15:a0:57:f6:d4:19:2f:79:aa:37:79:d2:80:0a:ef:32:91: fc:57:13:4c:5d:36:fa:b9:07:d1:dc:6e:0e:d3:19:3f:c6:53: 49:6e:0e:18:ab:d8:74:19:6c:e0:8a:26:c7:9b:9f:b8:d5:96: 37:f2:bf:df:61:37:19:43:c2:42:8d:92:be:ac:c7:d3:77:5a: c2:ac:86:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBQTYxMTAvBgNVBAUTKEU1QzNBNjg2QzgzREVFNkQzM0JGRUM1NDFFQUNCNEE0 QTA4OTkyNzkwHhcNMjUwNDA0MTY0NTE0WhcNMjUwNDExMTY0NTE0WjAYMRYwFAYD VQQDEw02N2YwMGM5YS0zMGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9SxHnbSwH+p8JNhSFyno1Urkq6JF4hdVO/EH4DxoDG+uYSe6eDwuZ3YJm2Ip JALKuWFFxJTRvZDtyYmr1/6OhXP364P/MUDCMZQix4jb1luvanccIm5h2Kc0Vj1U ULLRJ0s1Ss6lN4L2lMpvC/KWLTKJx0UhOWLh+S47D7JQPZLsskvdNb5q/nEsWeoX eWeKBB3Lzkc9iLLYis3dZCsgkNh/QV5EDFYD7nx8YPMI7rNcGtZrBPz+tcZNGjru 8ZoWvOZQ74/xKRSu2yA52GfCA8rvobmRv8g6q+hg5XHixoWn12M4iRA9ZaNLkIGB sM1VwCT3E7+16ngKVXmmC+J3PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFWir3L CYbtOHg+vVV4Xyy2nxrFMB8GA1UdIwQYMBaAFOXDpobIPe5tM7/sVB6stKSgiZJ5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0FBNi85QzNEODdFNkY1 MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdtMHp2LXhVSHF5MHBLQ0pr bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVjT21oc2c5N20wenYteFVIcXkwcEtDSmtuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0FBNi85QzNEODdFNkY1MjQxMUU3OTY0NEIwMDlDNEY5QUUwMi81Y09taHNnOTdt MHp2LXhVSHF5MHBLQ0prbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX1pt4PjeCe5S/T1F/B4Fy526LT1uOuDmob6YWNzqNDBQTiFBACp5Z ByaGdrTtGPKn8npHHjRpirqUUs2P/a393eDW3ILY3If2I4l1jNAdZqfIVNs/ntjd 5vi93x4BK2JQhOKqIVjIXHikWxgM/c5FBB1MGLt7oM2gT8Cwdjnc57Ot4apPgctB Tnu4Q1uvolR+Y7apWFeIwS4EJwVr+DNBm0ftZjyi5JwnsowcMFru14/yGQ/tFaBX 9tQZL3mqN3nSgArvMpH8VxNMXTb6uQfR3G4O0xk/xlNJbg4Yq9h0GWzgiibHm5+4 1ZY38r/fYTcZQ8JCjZK+rMfTd1rCrIav -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:55 2025 by rpki-client