$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.mft File: 5MWJuJPSconPhG3wWt-1lgNkKP0.mft (raw, json) Hash identifier: r8cTfV7gL9HFF2pvGpY+SN0OTrTLjYt6Hfs5GOBJoCI= Subject key identifier: 9A:E8:B8:02:89:E4:BA:EC:9D:6F:CF:F5:E2:44:B0:F1:1D:2F:44:17 Authority key identifier: E4:C5:89:B8:93:D2:72:89:CF:84:6D:F0:5A:DF:B5:96:03:64:28:FD Certificate issuer: /CN=A91B8AC8/serialNumber=E4C589B893D27289CF846DF05ADFB596036428FD Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.mft Manifest number: 48 Signing time: Wed 09 Apr 2025 06:16:28 +0000 Manifest this update: Wed 09 Apr 2025 06:16:27 +0000 Manifest next update: Wed 16 Apr 2025 06:16:27 +0000 Files and hashes: 1: 5MWJuJPSconPhG3wWt-1lgNkKP0.crl (hash: dgfgqfvPis1k/q6KTEd1VeEA3TavBuLI6KnGP+bC3oU=) 2: 8FFA61D4B13D11EF9EFDE433C4F9AE02.roa (hash: EhNDnWOJJGSPSxGl0lercQlAl3yvPmyKkzL2DPkH1sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.crl rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8AC8 Validity Not Before: Apr 9 06:16:27 2025 GMT Not After : Apr 16 06:16:27 2025 GMT Subject: CN=67f610bc-52c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ca:45:75:b9:d2:ba:9e:cb:f5:43:3e:81:03: ff:73:61:9a:95:2a:19:57:a8:5c:8b:9c:5a:c8:74: a7:90:a5:f2:5b:dc:f3:81:8e:32:79:82:a2:89:52: 27:43:14:a4:c0:ed:ff:d4:2a:c0:a2:89:5b:ae:75: 88:ab:be:d7:c2:c5:46:2c:2e:1f:f7:ea:b2:39:33: e7:9a:51:76:f7:8b:a1:82:8f:fc:8e:50:7a:50:25: 11:da:f8:4a:32:f7:01:b9:a7:9b:ae:fb:2d:b8:60: 22:d9:bb:08:f6:eb:53:8d:bf:99:23:80:14:89:39: 63:95:bf:fe:5f:9c:0a:bf:25:82:88:d0:19:67:a8: e5:71:7c:8f:b3:40:51:aa:d7:ca:90:51:7f:fa:53: d2:01:8e:af:c9:6c:33:50:18:2a:04:49:45:a1:1a: a9:65:ba:76:86:f4:8b:c4:90:6f:55:10:4d:fd:6d: 82:e8:6a:21:94:80:34:f0:7e:56:85:56:5e:dc:41: b8:57:4d:1a:3b:05:10:3b:6a:17:35:c1:49:b3:a6: 9b:98:4e:34:67:56:68:a5:83:5c:01:87:76:34:98: 00:d2:b9:2b:2e:96:43:30:c9:e8:b5:f9:ff:7c:05: c5:c1:b1:c5:bd:8a:ad:37:81:47:bb:a7:5a:97:0b: b7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E8:B8:02:89:E4:BA:EC:9D:6F:CF:F5:E2:44:B0:F1:1D:2F:44:17 X509v3 Authority Key Identifier: keyid:E4:C5:89:B8:93:D2:72:89:CF:84:6D:F0:5A:DF:B5:96:03:64:28:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:26:3e:35:a0:e3:84:a1:b5:ea:c2:18:25:2a:73:a5:00:29: 2e:1e:98:36:2a:c5:1a:79:7f:92:00:49:0f:1b:de:cd:33:09: 12:c3:86:c0:15:a5:58:4e:62:99:b6:7a:b8:7f:ee:90:c6:b4: 8a:91:aa:41:61:5a:49:21:f3:dd:0a:7f:78:89:de:8f:45:0d: c0:50:20:bf:ad:c4:60:83:99:59:f6:44:f8:83:5c:75:63:72: 7d:b3:83:07:9e:39:d2:4c:69:d7:de:cc:a7:92:72:64:fc:96: 90:2a:3d:9c:ba:cf:07:37:cd:5f:37:ea:ed:24:dc:8b:f2:60: ea:27:f4:8d:4e:a3:88:fb:38:28:9a:ee:2b:0f:7a:7a:ec:8c: bd:e6:a1:7b:67:7c:a1:3b:5e:d2:b9:fc:4f:86:88:bf:f6:9d: 1f:41:a7:6c:9c:95:a5:fd:f4:31:2c:63:ed:e7:b0:dc:7a:fa: 87:c4:c6:b7:9a:9e:52:43:ca:2c:66:8c:c4:be:e0:8f:8c:44: 26:93:56:df:2b:97:a6:ef:40:64:14:59:95:86:b1:d3:15:be: d3:e6:22:79:e2:01:62:10:7e:20:42:15:5b:2a:c3:25:37:0d: ee:d8:18:fb:e9:f8:1a:58:6a:ec:f7:49:72:99:ff:77:09:8d: 17:e9:b3:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEFDODExMC8GA1UEBRMoRTRDNTg5Qjg5M0QyNzI4OUNGODQ2REYwNUFERkI1OTYw MzY0MjhGRDAeFw0yNTA0MDkwNjE2MjdaFw0yNTA0MTYwNjE2MjdaMBgxFjAUBgNV BAMTDTY3ZjYxMGJjLTUyYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfykV1udK6nsv1Qz6BA/9zYZqVKhlXqFyLnFrIdKeQpfJb3POBjjJ5gqKJUidD FKTA7f/UKsCiiVuudYirvtfCxUYsLh/36rI5M+eaUXb3i6GCj/yOUHpQJRHa+Eoy 9wG5p5uu+y24YCLZuwj261ONv5kjgBSJOWOVv/5fnAq/JYKI0BlnqOVxfI+zQFGq 18qQUX/6U9IBjq/JbDNQGCoESUWhGqllunaG9IvEkG9VEE39bYLoaiGUgDTwflaF Vl7cQbhXTRo7BRA7ahc1wUmzppuYTjRnVmilg1wBh3Y0mADSuSsulkMwyei1+f98 BcXBscW9iq03gUe7p1qXC7dPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmui4Aonk uuydb8/14kSw8R0vRBcwHwYDVR0jBBgwFoAU5MWJuJPSconPhG3wWt+1lgNkKP0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4QUM4L0UxMkQxMDUyQjEz QzExRUZBQUY5RDczMUM0RjlBRTAyLzVNV0p1SlBTY29uUGhHM3dXdC0xbGdOa0tQ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNU1XSnVKUFNjb25QaEczd1d0LTFsZ05rS1AwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 QUM4L0UxMkQxMDUyQjEzQzExRUZBQUY5RDczMUM0RjlBRTAyLzVNV0p1SlBTY29u UGhHM3dXdC0xbGdOa0tQMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGwmPjWg44ShterCGCUqc6UAKS4emDYqxRp5f5IASQ8b3s0zCRLDhsAV pVhOYpm2erh/7pDGtIqRqkFhWkkh890Kf3iJ3o9FDcBQIL+txGCDmVn2RPiDXHVj cn2zgweeOdJMadfezKeScmT8lpAqPZy6zwc3zV836u0k3IvyYOon9I1Oo4j7OCia 7isPenrsjL3moXtnfKE7XtK5/E+GiL/2nR9Bp2yclaX99DEsY+3nsNx6+ofExrea nlJDyixmjMS+4I+MRCaTVt8rl6bvQGQUWZWGsdMVvtPmInniAWIQfiBCFVsqwyU3 De7YGPvp+BpYauz3SXKZ/3cJjRfps3g= -----END CERTIFICATE-----Generated at Thu Apr 10 23:59:28 2025 by rpki-client