$ rpki-client -vvf rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft File: 5sRskdEtWFoSsFVpYh3uGtP4kI4.mft (raw, json) Hash identifier: TQtZ4bi6xCepqdehP2bLr4NRMVsYIYp1GxzWIyoxSYA= Subject key identifier: 29:C6:0A:B4:06:7B:9A:FF:F8:70:08:83:14:9B:73:19:74:E1:8A:08 Authority key identifier: E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E Certificate issuer: /CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft Manifest number: 0111 Signing time: Thu 03 Apr 2025 04:09:29 +0000 Manifest this update: Thu 03 Apr 2025 04:09:29 +0000 Manifest next update: Thu 10 Apr 2025 04:09:29 +0000 Files and hashes: 1: 5sRskdEtWFoSsFVpYh3uGtP4kI4.crl (hash: +9nsyIApBkjJWUI8PqtUMqv9LltCsv+CmnLyuE6K4TU=) 2: 1B299892726F11EEB1217365C4F9AE02.roa (hash: 6cDYRuNREDOcfjp20jGUwg25me6jxHxjZr5vSBlmhG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A362 Validity Not Before: Apr 3 04:09:29 2025 GMT Not After : Apr 10 04:09:29 2025 GMT Subject: CN=67ee09f9-8261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4d:83:87:0b:6e:79:d3:df:65:34:21:09:24: de:cd:07:06:bb:57:f5:8f:4e:a7:9d:ff:52:e4:83: 89:0b:98:6d:be:39:39:ca:d9:ef:81:31:b9:53:b2: 60:f3:9b:8e:f7:5e:57:66:f6:e9:d5:f2:7b:08:66: c4:a0:47:d6:cc:2c:7c:39:c2:2b:11:fb:86:f6:77: d0:01:4e:25:7a:48:f3:3e:72:07:be:17:46:8f:fb: 29:25:04:16:e0:8b:fe:6b:5a:93:10:81:c4:2f:3d: fc:40:d1:cb:f9:13:90:a7:b2:e0:2a:9a:fe:1f:c0: 76:ea:d5:27:79:80:5f:67:06:bc:ab:aa:7d:58:86: e3:b3:cb:45:e6:54:dc:74:2e:93:4e:45:12:02:c2: 6b:a0:75:33:31:f3:ef:ac:38:3e:52:0c:25:cc:d6: 5e:37:92:87:bd:4d:e2:73:e8:cb:26:e9:af:ca:2c: 12:77:d8:3e:34:54:67:6f:37:b7:3c:8b:6e:c8:92: 41:01:fc:ad:85:a4:8b:35:21:f9:6e:c5:9c:79:95: b8:cd:82:56:cc:0c:9a:c1:0d:9b:ba:66:57:4c:42: 5b:d4:33:a0:c6:00:06:ca:35:ee:66:6a:3d:a6:2d: a9:41:25:5b:30:a4:86:09:fb:46:0d:3f:98:18:1c: 51:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C6:0A:B4:06:7B:9A:FF:F8:70:08:83:14:9B:73:19:74:E1:8A:08 X509v3 Authority Key Identifier: keyid:E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:2d:b1:08:4a:32:50:5f:3c:bc:19:97:26:f7:74:cc:ec:64: 66:fa:3a:2a:4a:8c:67:16:bd:fd:f9:08:77:42:af:d3:9b:60: f8:07:78:1a:5e:48:e2:ec:9c:e9:15:af:f2:17:9e:ff:3a:f3: 9b:ff:c5:f7:59:e6:9a:d4:84:05:13:cd:01:00:72:0f:f9:6e: 54:ed:b5:4d:04:06:96:c7:dd:8f:ab:42:0a:b9:32:ff:23:b0: 71:e8:7f:1b:f1:29:58:da:86:08:ff:0e:8a:ea:ab:1e:69:fc: 67:63:37:d8:da:27:64:f7:31:c2:ea:cf:a3:7c:01:d5:c7:98: 7c:e7:e4:8c:fe:ca:bd:d5:30:cb:38:d0:ae:97:db:3f:ee:93: 1e:52:06:35:e9:76:77:2d:76:1d:a6:9f:20:7e:65:b4:82:5a: 04:ce:8c:ca:65:f6:39:fd:be:de:cf:f3:d8:7a:8a:b8:29:ab: 46:a7:3b:6c:ef:15:7a:09:a5:2d:ee:fe:78:ad:23:bf:65:6e: 6f:bc:15:3f:a9:a4:5e:9c:1b:af:e5:dc:da:ee:0f:7c:53:ba: c2:32:17:ec:fc:7c:f3:40:ff:08:b0:c5:b8:45:8e:a8:3e:ad: f7:4f:85:a2:c9:d3:99:f1:14:a7:03:5a:19:8a:53:f1:73:33: b7:ab:af:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EzNjIxMTAvBgNVBAUTKEU2QzQ2QzkxRDEyRDU4NUExMkIwNTU2OTYyMURFRTFB RDNGODkwOEUwHhcNMjUwNDAzMDQwOTI5WhcNMjUwNDEwMDQwOTI5WjAYMRYwFAYD VQQDEw02N2VlMDlmOS04MjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqU2DhwtuedPfZTQhCSTezQcGu1f1j06nnf9S5IOJC5htvjk5ytnvgTG5U7Jg 85uO915XZvbp1fJ7CGbEoEfWzCx8OcIrEfuG9nfQAU4lekjzPnIHvhdGj/spJQQW 4Iv+a1qTEIHELz38QNHL+ROQp7LgKpr+H8B26tUneYBfZwa8q6p9WIbjs8tF5lTc dC6TTkUSAsJroHUzMfPvrDg+UgwlzNZeN5KHvU3ic+jLJumvyiwSd9g+NFRnbze3 PItuyJJBAfythaSLNSH5bsWceZW4zYJWzAyawQ2bumZXTEJb1DOgxgAGyjXuZmo9 pi2pQSVbMKSGCftGDT+YGBxRIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnGCrQG e5r/+HAIgxSbcxl04YoIMB8GA1UdIwQYMBaAFObEbJHRLVhaErBVaWId7hrT+JCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTM2Mi83Q0JBNEM0Qzcy NkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdGb1NzRlZwWWgzdUd0UDRr STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVzUnNrZEV0V0ZvU3NGVnBZaDN1R3RQNGtJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTM2Mi83Q0JBNEM0QzcyNkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdG b1NzRlZwWWgzdUd0UDRrSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClLbEISjJQXzy8GZcm93TM7GRm+joqSoxnFr39+Qh3Qq/Tm2D4B3ga Xkji7JzpFa/yF57/OvOb/8X3Weaa1IQFE80BAHIP+W5U7bVNBAaWx92Pq0IKuTL/ I7Bx6H8b8SlY2oYI/w6K6qseafxnYzfY2idk9zHC6s+jfAHVx5h85+SM/sq91TDL ONCul9s/7pMeUgY16XZ3LXYdpp8gfmW0gloEzozKZfY5/b7ez/PYeoq4KatGpzts 7xV6CaUt7v54rSO/ZW5vvBU/qaRenBuv5dza7g98U7rCMhfs/HzzQP8IsMW4RY6o Pq33T4WiydOZ8RSnA1oZilPxczO3q6/B -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:15 2025 by rpki-client