$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: zK5sp82XurKlhWNmQ+1Pc/RorT8oHoDAa6MU4Yxdj4g= Subject key identifier: 5C:FA:63:3F:12:F4:19:82:E1:C7:7A:17:3A:6D:24:FB:5A:91:CF:9A Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 3472 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 3472 Signing time: Sun 20 Apr 2025 14:33:01 +0000 Manifest this update: Sun 20 Apr 2025 14:33:01 +0000 Manifest next update: Sun 27 Apr 2025 14:33:01 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: rJbQURY5a0+IyVitdjqzfMy9ld2aqLMY4Ve8EXcT4g8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 14:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13426 (0x3472) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F, serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: Apr 20 14:33:01 2025 GMT Not After : Apr 27 14:33:01 2025 GMT Subject: CN=6805059d-7a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2c:b8:b7:88:7b:b3:d8:3d:13:9c:1f:aa:3f: 7e:1f:5b:f9:90:54:99:e5:ff:53:77:ba:a4:5c:43: b0:df:8e:bf:d0:4e:63:db:dc:e8:0e:1c:21:cc:12: 1e:70:8e:47:9f:8c:08:af:31:af:24:79:56:e9:b9: 1d:5d:a2:e1:e7:45:41:da:aa:01:86:5a:6d:d7:ed: 43:d4:53:46:81:cb:c3:e5:66:05:93:b0:56:5e:b4: de:24:2f:21:7f:7d:1f:0b:3a:25:7d:21:b3:c1:42: 0f:7a:8c:81:4b:a2:13:3d:c6:28:1c:d9:cc:f0:69: c5:06:62:fe:63:80:68:c7:3b:1b:8d:45:bf:73:c2: 54:ee:9a:5e:34:f1:38:d3:ab:25:5b:69:76:d5:98: 7d:a5:ae:ca:4f:40:aa:18:3a:76:e7:fb:64:e0:de: c5:41:6f:3f:78:08:0a:97:9e:88:87:a9:be:26:35: db:a6:f7:38:00:ba:2b:3c:1a:fd:44:a8:44:a4:6c: 4c:78:76:69:b7:ec:22:e7:39:e2:88:b4:0e:af:d3: 4c:b0:53:0f:c7:1f:40:4e:88:4a:7a:30:64:82:0e: 56:04:c4:f5:8a:d1:55:da:5e:84:b4:a4:53:a2:7e: af:f3:0a:b3:ab:4d:1c:a5:90:43:dc:48:87:33:36: 03:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:FA:63:3F:12:F4:19:82:E1:C7:7A:17:3A:6D:24:FB:5A:91:CF:9A X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:69:06:0e:51:43:27:e3:c8:59:b1:38:f9:63:ac:c7:b5:09: 6e:aa:81:56:0c:58:cf:ac:fa:4b:f0:e6:20:4e:b4:16:a7:0c: e0:5d:18:96:2c:4b:cf:9c:19:26:81:65:4e:9c:74:a7:60:61: 73:b4:2b:6f:5e:72:ad:62:00:1a:5a:9f:6f:88:50:32:c8:3a: ed:fc:f7:fa:6f:9f:4c:cb:77:f0:bf:86:63:c2:d3:be:dc:36: 43:35:71:2d:82:38:cc:16:07:7b:72:25:ab:4e:73:3a:a8:19: a6:a5:ea:a4:a3:76:89:0e:58:0e:89:6f:0f:ca:7e:cb:99:b0: e1:28:72:99:dd:41:03:4c:db:c7:1c:3e:6a:68:31:71:e7:2d: 18:01:8a:52:10:ef:a5:30:b7:43:ad:5a:19:81:80:27:44:12: cd:14:67:90:01:3e:27:3a:68:b4:ae:c4:c5:07:17:2e:ed:9b: 88:1a:13:a6:c7:50:81:8d:c9:e4:40:78:e3:57:27:14:ee:74: 29:a0:44:fc:4b:d0:65:8d:b3:25:f8:ba:3c:4d:e0:df:b8:17: 8e:b9:52:d4:82:bc:eb:46:4b:52:3d:98:8f:5f:8f:1e:82:fb: 76:ca:f9:5c:b4:b6:02:7b:54:cd:8a:22:d2:4e:9f:7a:c4:e7: 09:c0:a8:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjUwNDIwMTQzMzAxWhcNMjUwNDI3MTQzMzAxWjAYMRYwFAYD VQQDEw02ODA1MDU5ZC03YTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCy4t4h7s9g9E5wfqj9+H1v5kFSZ5f9Td7qkXEOw346/0E5j29zoDhwhzBIe cI5Hn4wIrzGvJHlW6bkdXaLh50VB2qoBhlpt1+1D1FNGgcvD5WYFk7BWXrTeJC8h f30fCzolfSGzwUIPeoyBS6ITPcYoHNnM8GnFBmL+Y4BoxzsbjUW/c8JU7ppeNPE4 06slW2l21Zh9pa7KT0CqGDp25/tk4N7FQW8/eAgKl56Ih6m+JjXbpvc4ALorPBr9 RKhEpGxMeHZpt+wi5zniiLQOr9NMsFMPxx9ATohKejBkgg5WBMT1itFV2l6EtKRT on6v8wqzq00cpZBD3EiHMzYDLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFz6Yz8S 9BmC4cd6FzptJPtakc+aMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcaQYOUUMn48hZsTj5Y6zHtQluqoFWDFjPrPpL8OYgTrQWpwzgXRiW LEvPnBkmgWVOnHSnYGFztCtvXnKtYgAaWp9viFAyyDrt/Pf6b59My3fwv4ZjwtO+ 3DZDNXEtgjjMFgd7ciWrTnM6qBmmpeqko3aJDlgOiW8Pyn7LmbDhKHKZ3UEDTNvH HD5qaDFx5y0YAYpSEO+lMLdDrVoZgYAnRBLNFGeQAT4nOmi0rsTFBxcu7ZuIGhOm x1CBjcnkQHjjVycU7nQpoET8S9BljbMl+Lo8TeDfuBeOuVLUgrzrRktSPZiPX48e gvt2yvlctLYCe1TNiiLSTp96xOcJwKiv -----END CERTIFICATE-----Generated at Sun Apr 20 22:23:34 2025 by rpki-client