$ rpki-client -vvf rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft File: 5MpluNDHsWXZwip6vfgapm-q1NE.mft (raw, json) Hash identifier: Ec+pzq7oguznPOoCZIKRT6x4Jkqo6YRqtxfz0NR/rWY= Subject key identifier: BC:E9:F8:F5:74:3F:90:2B:ED:BE:A3:C5:CA:B2:B3:24:D9:A8:4B:6B Authority key identifier: E4:CA:65:B8:D0:C7:B1:65:D9:C2:2A:7A:BD:F8:1A:A6:6F:AA:D4:D1 Certificate issuer: /CN=A915EAAF/serialNumber=E4CA65B8D0C7B165D9C22A7ABDF81AA66FAAD4D1 Certificate serial: 3467 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft Manifest number: 3467 Signing time: Fri 04 Apr 2025 14:39:48 +0000 Manifest this update: Fri 04 Apr 2025 14:39:48 +0000 Manifest next update: Fri 11 Apr 2025 14:39:48 +0000 Files and hashes: 1: 5MpluNDHsWXZwip6vfgapm-q1NE.crl (hash: mVNxjiYi01VwWk1HS44IzPw45z0KbyGsCxXHQrkjF2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.crl rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13415 (0x3467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EAAF Validity Not Before: Apr 4 14:39:48 2025 GMT Not After : Apr 11 14:39:48 2025 GMT Subject: CN=67efef34-bbe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:91:72:48:d8:ab:5b:df:c7:d5:b5:1b:20:23: 52:2f:5f:0e:e6:10:84:00:bf:93:42:42:a9:1e:a3: fb:65:ba:c4:f1:eb:31:8e:d8:05:03:8e:ba:ee:bc: 82:b9:4b:53:8e:1d:7d:b2:76:52:c7:98:86:c5:81: d9:eb:ae:b9:a3:f6:2d:46:fd:f8:b7:2c:16:b9:2c: d7:da:55:e7:69:7c:8a:61:b6:2b:5c:7c:92:9f:b7: df:0c:fe:7e:d8:9b:67:8e:03:56:85:e6:2d:aa:82: b5:a7:53:c1:57:02:30:a5:f8:14:92:5e:18:00:af: 10:f3:29:31:b4:98:d6:34:25:b2:e8:54:f5:b4:f5: 15:60:53:24:ab:aa:bd:83:b4:40:34:6c:01:a4:e2: 79:70:ae:d6:b3:10:71:f8:c9:c0:54:44:5d:03:30: c8:e9:48:05:0b:76:02:31:ea:e5:9f:fd:ed:0f:fa: d9:6a:33:3b:8e:ef:ce:3b:d6:da:12:d7:a7:b9:d4: 36:cd:a7:5e:3c:ee:1b:f9:5c:b8:d2:c8:85:84:f1: 9f:d6:6b:bc:2a:c2:11:35:b7:a7:f1:e6:dc:2b:e0: 94:84:58:70:1e:1d:93:ec:f0:78:fd:17:0f:b2:0b: 3c:f8:b8:c2:73:15:59:c1:14:a6:28:47:cd:93:19: 9e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E9:F8:F5:74:3F:90:2B:ED:BE:A3:C5:CA:B2:B3:24:D9:A8:4B:6B X509v3 Authority Key Identifier: keyid:E4:CA:65:B8:D0:C7:B1:65:D9:C2:2A:7A:BD:F8:1A:A6:6F:AA:D4:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:59:2f:4e:32:f7:87:61:21:c8:e1:14:85:d4:e7:f3:f6:c7: 37:5d:77:df:b6:e9:4f:76:7c:58:6c:c1:15:08:f6:d2:56:c9: 3f:45:3a:55:b0:69:9f:de:88:12:3a:9a:ab:08:ad:3d:5a:fe: 5d:f1:69:1f:a7:4c:89:07:9f:0a:13:f1:70:b4:0d:ca:6c:6a: 3d:15:93:5a:81:e0:e1:1a:3f:5a:74:3a:06:76:c9:9d:c1:37: b1:d6:a5:e2:cf:b7:e8:f4:61:62:8d:7b:6a:a3:96:5b:bb:4b: b9:4e:59:b4:e0:f1:e0:b0:51:cb:d0:53:6e:fe:04:cb:10:25: 12:a9:65:7d:17:1c:3d:bc:48:6c:46:64:33:e9:88:69:80:e1: 33:c5:e7:71:4d:8f:7a:6d:cd:34:e8:06:03:4a:1f:5f:f7:cd: 6e:db:80:1f:28:ef:39:58:49:22:91:00:78:0f:8f:eb:af:74: af:37:0d:be:b0:cc:04:38:51:e8:d5:76:90:07:f4:ec:6b:96: 5a:b8:ff:6d:bc:92:41:8a:f1:79:e3:1a:20:5d:96:60:f9:f4: a3:9b:8b:27:d1:74:c2:b8:51:ac:b5:3e:82:e0:4e:73:14:f1: c7:38:1d:c2:4f:ad:3b:b7:8a:43:49:a5:fa:f6:a2:e1:bb:36: 7f:99:ca:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBQUYxMTAvBgNVBAUTKEU0Q0E2NUI4RDBDN0IxNjVEOUMyMkE3QUJERjgxQUE2 NkZBQUQ0RDEwHhcNMjUwNDA0MTQzOTQ4WhcNMjUwNDExMTQzOTQ4WjAYMRYwFAYD VQQDEw02N2VmZWYzNC1iYmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpFySNirW9/H1bUbICNSL18O5hCEAL+TQkKpHqP7ZbrE8esxjtgFA4667ryC uUtTjh19snZSx5iGxYHZ6665o/YtRv34tywWuSzX2lXnaXyKYbYrXHySn7ffDP5+ 2JtnjgNWheYtqoK1p1PBVwIwpfgUkl4YAK8Q8ykxtJjWNCWy6FT1tPUVYFMkq6q9 g7RANGwBpOJ5cK7WsxBx+MnAVERdAzDI6UgFC3YCMerln/3tD/rZajM7ju/OO9ba EtenudQ2zadePO4b+Vy40siFhPGf1mu8KsIRNben8ebcK+CUhFhwHh2T7PB4/RcP sgs8+LjCcxVZwRSmKEfNkxmeaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzp+PV0 P5Ar7b6jxcqysyTZqEtrMB8GA1UdIwQYMBaAFOTKZbjQx7Fl2cIqer34GqZvqtTR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUFBRi9GM0YxOEIyQzFE OEUxMUUyQTMxNEEyRUQwOEIwMkNEMi81TXBsdU5ESHNXWFp3aXA2dmZnYXBtLXEx TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVNcGx1TkRIc1dYWndpcDZ2ZmdhcG0tcTFORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUFBRi9GM0YxOEIyQzFEOEUxMUUyQTMxNEEyRUQwOEIwMkNEMi81TXBsdU5ESHNX WFp3aXA2dmZnYXBtLXExTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyWS9OMveHYSHI4RSF1Ofz9sc3XXfftulPdnxYbMEVCPbSVsk/RTpV sGmf3ogSOpqrCK09Wv5d8Wkfp0yJB58KE/FwtA3KbGo9FZNageDhGj9adDoGdsmd wTex1qXiz7fo9GFijXtqo5Zbu0u5Tlm04PHgsFHL0FNu/gTLECUSqWV9Fxw9vEhs RmQz6YhpgOEzxedxTY96bc006AYDSh9f981u24AfKO85WEkikQB4D4/rr3SvNw2+ sMwEOFHo1XaQB/Tsa5ZauP9tvJJBivF54xogXZZg+fSjm4sn0XTCuFGstT6C4E5z FPHHOB3CT607t4pDSaX69qLhuzZ/mcra -----END CERTIFICATE-----Generated at Fri Apr 4 18:37:22 2025 by rpki-client