$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: sOWXlyotNcjxRaw91akn6HKgujUEA/VgLv7DPBHT9GY= Subject key identifier: 2A:64:E5:83:34:08:A4:FA:37:82:A8:CC:55:0E:B2:7E:50:59:E4:BE Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 8F Signing time: Mon 07 Apr 2025 05:17:16 +0000 Manifest this update: Mon 07 Apr 2025 05:17:15 +0000 Manifest next update: Mon 14 Apr 2025 05:17:15 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: YsoPXa64fIqz73b9GXKTWtGJWaLLW7JDclNNpx9ydgU=) 2: 01F62A6438F011EF9A82662BC4F9AE02.roa (hash: 6ibBV+FsUpvviGFZhtbUaWu715IOaDD6qWu96emn7VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873 Validity Not Before: Apr 7 05:17:15 2025 GMT Not After : Apr 14 05:17:15 2025 GMT Subject: CN=67f35fdc-1af9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:71:28:7e:23:b6:20:37:00:08:5b:aa:3e:25: b6:af:f2:a3:76:da:97:bd:7c:93:a2:51:4b:e2:3e: ec:9e:4b:11:b3:8c:70:20:96:7c:0c:41:00:8b:1d: 02:31:3e:27:37:e3:18:79:4b:9b:97:8f:5f:2d:44: dd:8a:bf:5f:1d:c5:8d:45:3b:0f:5f:f9:cc:d5:6c: e8:90:41:94:67:d6:65:5c:83:3e:4e:f1:ea:b0:b6: 49:67:f5:dc:05:40:b9:89:48:10:15:b3:fe:57:84: c4:52:b7:be:64:8e:64:2d:64:4a:20:4f:1c:45:3e: 8d:56:5a:2e:e7:8f:dd:45:77:66:9c:1b:65:53:eb: 52:6c:9c:dd:de:da:0c:08:60:6d:a9:f9:d1:3f:fb: 64:85:4f:1d:08:1d:85:7a:b7:5c:a2:72:9b:18:85: 22:bf:fa:85:86:68:10:db:10:5e:02:02:4e:61:98: 59:fc:38:68:5a:27:29:8c:cb:55:ec:9d:93:a8:a6: 3f:ba:21:86:05:e7:e4:c0:3d:5f:86:2c:40:f4:d6: 73:ca:16:ca:1e:fc:4d:7a:7c:b3:ac:c5:11:7b:40: f6:22:52:87:51:d0:f1:55:f7:4d:6c:dd:e8:70:28: 6d:17:d5:c5:4f:be:f1:cd:55:da:0d:b0:c3:63:a9: f1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:64:E5:83:34:08:A4:FA:37:82:A8:CC:55:0E:B2:7E:50:59:E4:BE X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:66:9c:f0:48:be:29:06:9e:77:0d:ed:8a:be:28:42:0e:61: ab:ac:72:e8:74:f8:6b:f5:75:cd:78:37:02:ea:fc:f3:ec:2b: 26:c9:28:aa:eb:59:3c:a9:65:0e:17:2e:1e:bd:36:cf:12:5a: 41:01:74:16:ac:c1:1b:de:29:af:74:45:dc:28:f7:b5:e3:d0: 79:99:29:c0:04:c6:27:88:d9:94:56:b6:ac:8f:db:7d:59:95: a0:bd:94:14:9e:4c:8a:44:66:5a:2b:3c:86:86:7f:15:9f:39: 44:30:06:92:b9:81:a9:1c:06:a1:2c:fe:69:87:dc:b5:e6:6b: 24:0a:5d:dd:7a:6e:fb:d6:cc:c0:4a:f8:85:2c:1e:6a:58:d2: 10:8e:52:b7:4a:39:ed:30:64:22:6f:2b:40:92:a3:d8:88:c2: c2:c8:03:a0:b2:0e:11:57:98:22:3b:f5:1d:ae:74:5b:47:b7: 17:56:54:42:56:52:45:6f:66:1b:c1:6b:21:24:78:b8:80:71: d9:32:2a:55:eb:3b:57:1f:ac:66:6c:9a:9a:41:3a:f4:3c:a3: 85:86:b8:ae:bb:1d:49:cb:02:d3:78:2d:d1:c9:d6:4b:6e:f5: 87:4e:f0:1b:9f:8e:02:3b:67:ce:4e:03:59:8d:b0:50:01:22: 87:43:d3:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUwNDA3MDUxNzE1WhcNMjUwNDE0MDUxNzE1WjAYMRYwFAYD VQQDEw02N2YzNWZkYy0xYWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXEofiO2IDcACFuqPiW2r/KjdtqXvXyTolFL4j7snksRs4xwIJZ8DEEAix0C MT4nN+MYeUubl49fLUTdir9fHcWNRTsPX/nM1WzokEGUZ9ZlXIM+TvHqsLZJZ/Xc BUC5iUgQFbP+V4TEUre+ZI5kLWRKIE8cRT6NVlou54/dRXdmnBtlU+tSbJzd3toM CGBtqfnRP/tkhU8dCB2FerdconKbGIUiv/qFhmgQ2xBeAgJOYZhZ/DhoWicpjMtV 7J2TqKY/uiGGBefkwD1fhixA9NZzyhbKHvxNenyzrMURe0D2IlKHUdDxVfdNbN3o cChtF9XFT77xzVXaDbDDY6nxHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpk5YM0 CKT6N4KozFUOsn5QWeS+MB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbZpzwSL4pBp53De2KvihCDmGrrHLodPhr9XXNeDcC6vzz7CsmySiq 61k8qWUOFy4evTbPElpBAXQWrMEb3imvdEXcKPe149B5mSnABMYniNmUVrasj9t9 WZWgvZQUnkyKRGZaKzyGhn8VnzlEMAaSuYGpHAahLP5ph9y15mskCl3dem771szA SviFLB5qWNIQjlK3SjntMGQibytAkqPYiMLCyAOgsg4RV5giO/UdrnRbR7cXVlRC VlJFb2YbwWshJHi4gHHZMipV6ztXH6xmbJqaQTr0PKOFhriuux1JywLTeC3RydZL bvWHTvAbn44CO2fOTgNZjbBQASKHQ9NZ -----END CERTIFICATE-----Generated at Mon Apr 7 08:56:15 2025 by rpki-client