$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft File: 5CHll4Srb9cADNFZcQHsNg3ZQGY.mft (raw, json) Hash identifier: /HjZ5vfr3JgyQ+mLRIDit/qdJNRFNYyzXrIOvlFUTis= Subject key identifier: C4:1D:23:1F:CD:69:FE:26:02:CB:1E:1A:BD:7E:9B:65:F9:4E:06:36 Authority key identifier: E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 Certificate issuer: /CN=A91A1E1C/serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft Manifest number: 58 Signing time: Sat 05 Apr 2025 06:28:55 +0000 Manifest this update: Sat 05 Apr 2025 06:28:54 +0000 Manifest next update: Sat 12 Apr 2025 06:28:54 +0000 Files and hashes: 1: 5CHll4Srb9cADNFZcQHsNg3ZQGY.crl (hash: Qwr4zFgs3ECxWqiu76HexNIoSkbG58ZyhU/CuUx+ODE=) 2: 5BC18D6C9A6C11EF8C656668C4F9AE02.roa (hash: 1ljn9MSckdlGvWQ7HkpY2v8ly/0oxPt9z/n6V7MEeDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1E1C Validity Not Before: Apr 5 06:28:54 2025 GMT Not After : Apr 12 06:28:54 2025 GMT Subject: CN=67f0cda7-4158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:54:90:2a:74:14:90:93:73:b8:95:ae:23:ce: da:4d:3c:fb:5f:2e:92:85:45:15:4e:12:64:3e:03: c2:31:9f:e2:b1:d4:5d:e1:31:f3:25:70:3a:65:1a: 16:8c:d5:37:b7:49:93:b2:e0:49:d8:a5:05:d6:48: dd:b4:73:3f:f2:aa:2f:4a:b4:81:e3:9a:ca:10:ad: 55:b7:ef:52:e0:b9:c4:f5:36:27:7a:81:e7:dd:be: 80:47:95:31:37:96:93:fd:c1:43:cb:a8:c8:6e:fe: 18:2b:47:bd:8f:30:eb:d5:1b:37:ee:eb:99:fb:e6: 5a:3c:ae:60:16:1e:1b:3e:02:2a:57:36:a6:b2:3d: 75:0a:d5:1f:bb:59:fd:e2:6e:73:15:93:c3:1c:77: 9f:b9:5a:d9:3c:d4:1b:01:3c:ff:bf:b5:b5:ff:be: 12:79:18:70:9e:2e:07:74:7c:e6:f8:40:ca:10:7d: 8e:78:75:36:ec:60:81:26:8b:8e:cc:94:9c:b4:4b: 64:11:20:d9:13:c0:1e:df:48:89:85:7f:b5:e1:e0: 6f:c0:bd:be:eb:4f:35:3e:67:8b:48:c4:86:5a:0e: 68:d0:c7:67:0f:c8:eb:1d:17:8c:8c:aa:84:3f:60: ae:ba:8f:f9:f6:02:37:ec:51:0a:c2:f3:76:40:52: 95:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:1D:23:1F:CD:69:FE:26:02:CB:1E:1A:BD:7E:9B:65:F9:4E:06:36 X509v3 Authority Key Identifier: keyid:E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:48:70:cb:6e:c8:59:38:4f:f2:bd:a6:44:80:ef:9c:38:c6: c0:05:08:cf:cc:08:9e:b5:8b:a9:b1:53:d1:cd:b3:e1:35:a8: 84:be:f8:3f:7b:31:14:67:bb:fa:87:dc:d6:93:4d:ec:ac:de: d4:d1:01:32:39:98:50:7e:64:83:82:b5:78:82:cd:bd:f0:48: 22:75:35:82:98:a7:88:86:50:e8:a1:80:28:ae:39:9f:ae:48: f6:b0:bd:42:0d:64:c1:19:44:f1:60:24:d4:8e:1b:2d:54:45: eb:1e:dc:e2:89:71:bf:2c:a4:6c:af:7f:62:d3:48:b1:a3:ec: f1:bf:cd:90:9e:10:f1:2d:a0:7a:d2:6b:f7:ed:0c:5d:f9:de: b1:e5:88:58:20:33:7b:e6:d7:34:61:59:8c:2f:ce:10:ee:b5: f9:19:c5:ee:bd:b3:c5:80:7b:2f:43:2f:ee:14:df:23:44:ec: f2:58:2c:37:53:1b:50:a7:05:79:2f:6a:eb:d3:78:c8:43:8e: 63:f2:bb:0e:f6:50:ce:5b:87:04:0b:96:7e:22:55:d6:08:6c: 1a:85:29:de:d9:f4:5d:cd:2a:c8:bd:5e:72:49:fe:ca:7d:88: c2:0a:1f:ae:79:a1:35:a1:d8:55:a7:f9:85:5e:ef:66:61:9b: 4c:50:b1:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUUxQzExMC8GA1UEBRMoRTQyMUU1OTc4NEFCNkZENzAwMENEMTU5NzEwMUVDMzYw REQ5NDA2NjAeFw0yNTA0MDUwNjI4NTRaFw0yNTA0MTIwNjI4NTRaMBgxFjAUBgNV BAMTDTY3ZjBjZGE3LTQxNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5VJAqdBSQk3O4la4jztpNPPtfLpKFRRVOEmQ+A8Ixn+Kx1F3hMfMlcDplGhaM 1Te3SZOy4EnYpQXWSN20cz/yqi9KtIHjmsoQrVW371LgucT1Nid6gefdvoBHlTE3 lpP9wUPLqMhu/hgrR72PMOvVGzfu65n75lo8rmAWHhs+AipXNqayPXUK1R+7Wf3i bnMVk8Mcd5+5Wtk81BsBPP+/tbX/vhJ5GHCeLgd0fOb4QMoQfY54dTbsYIEmi47M lJy0S2QRINkTwB7fSImFf7Xh4G/Avb7rTzU+Z4tIxIZaDmjQx2cPyOsdF4yMqoQ/ YK66j/n2AjfsUQrC83ZAUpVRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxB0jH81p /iYCyx4avX6bZflOBjYwHwYDVR0jBBgwFoAU5CHll4Srb9cADNFZcQHsNg3ZQGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExRTFDLzI1MjIyRDgwOTIw MDExRUY5RTBDM0Q2QkM0RjlBRTAyLzVDSGxsNFNyYjljQURORlpjUUhzTmczWlFH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNUNIbGw0U3JiOWNBRE5GWmNRSHNOZzNaUUdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx RTFDLzI1MjIyRDgwOTIwMDExRUY5RTBDM0Q2QkM0RjlBRTAyLzVDSGxsNFNyYjlj QURORlpjUUhzTmczWlFHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACZIcMtuyFk4T/K9pkSA75w4xsAFCM/MCJ61i6mxU9HNs+E1qIS++D97 MRRnu/qH3NaTTeys3tTRATI5mFB+ZIOCtXiCzb3wSCJ1NYKYp4iGUOihgCiuOZ+u SPawvUINZMEZRPFgJNSOGy1URese3OKJcb8spGyvf2LTSLGj7PG/zZCeEPEtoHrS a/ftDF353rHliFggM3vm1zRhWYwvzhDutfkZxe69s8WAey9DL+4U3yNE7PJYLDdT G1CnBXkvauvTeMhDjmPyuw72UM5bhwQLln4iVdYIbBqFKd7Z9F3NKsi9XnJJ/sp9 iMIKH655oTWh2FWn+YVe72Zhm0xQsZo= -----END CERTIFICATE-----Generated at Sat Apr 5 09:31:50 2025 by rpki-client